Report - bestpublic.info/

Report Overview

Submitted URL
bestpublic.info/
IP
104.21.32.21
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-08 23:35:05
Access
public
Website Title
Monuments Synthesis Essays some The meeting is about to begin and Wiess is grabbed by a hand
Final URL
www.bestpublic.info/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
172

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.bestpublic.info	unknown	unknown	No data	No data	40 kB	5.5 MB	188.114.96.1
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-07	455 B	1.6 kB	216.58.207.234
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-05-07	512 B	1.2 kB	35.244.181.201
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-08	520 B	24 kB	142.250.74.131
bestpublic.info	unknown	unknown	No data	No data	472 B	100 kB	104.21.32.21
dog.theurl.fun	unknown	2021-12-14	2023-01-16	2024-03-05	401 B	21 kB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed
2024-05-08	medium	bestpublic.info	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	www.bestpublic.info/includes/public/common.js	2.2 kB	2023-05-12	2024-05-09
Pretty URL www.bestpublic.info/includes/public/common.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-09 22:10:49 Times Seen21 Hash 41a1017007e75284bfd0088a3b341c95 8e45edb5559445a1b080535e016f50c2eee7dc44 6b304459c49b1acf7dcaf525015ffba70679af3e7271c5a22f5bd92da89e1dd9 Loading...

	www.bestpublic.info/	64 B	2023-05-12	2024-05-09
Pretty URL www.bestpublic.info/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-09 22:10:49 Times Seen13 Hash bd146bc11f8c177016e01bb1c3cb2b84 5307602062928420d50938d40d883ae5babcd61e 302d7c85b977c75475394af66ced057fc243ccee3834ffa7bc42b41b5207627b Loading...

	www.bestpublic.info/includes/templates/zz/js/jquery.cookie.js	3.7 kB	2023-03-10	2024-05-09
Pretty URL www.bestpublic.info/includes/templates/zz/js/jquery.cookie.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:17:01 Last Seen2024-05-09 22:10:49 Times Seen28 Hash b8971117e9c8947cf893238ff9cb72d9 701f08b7ca1e82d19f3d9293e7287c42f7b62441 6095bcf7fc41ef2ce227b773040e9878e2ed86349adedd2c87e61ce6eae5bd22 Loading...

	www.bestpublic.info/	445 B	2023-05-12	2024-05-09
Pretty URL www.bestpublic.info/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-09 22:10:49 Times Seen13 Hash 3bfabe3a0b26194d076635ef091f9a28 0ee4efef9a90448fd86acf6b52606fbcd0dd05b7 b9c1304ab2cffcee322f776399bfb8ecb27cec6174462154f0f73bc2ddc2c285 Loading...

	www.bestpublic.info/includes/templates/zz/js/main.min.js	168 kB	2023-05-12	2024-05-09
Pretty URL www.bestpublic.info/includes/templates/zz/js/main.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-09 22:10:49 Times Seen21 Hash 963608f1c69df54f544f04f3410ba54a 086530ffd03a8cdc0ed75cefa81cf81fbfe086d4 d98cb5ffb9342be5ba20b320cdd9e6b2e03e279aaa05a1263abb9d49b4512277 Loading...

	www.bestpublic.info/includes/templates/zz/js/math.js	668 kB	2023-03-12	2024-05-09
Pretty URL www.bestpublic.info/includes/templates/zz/js/math.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:26:42 Last Seen2024-05-09 22:10:49 Times Seen16 Hash e6da9959fba966e384a82ec5219abd11 68029acbfd887841005f9079b40ac28a63974dc9 bae55dcedeb7936344bedc3bae8b9bb45800642163487b92d02b773ea26e8afc Loading...

	www.bestpublic.info/	305 B	2023-05-12	2024-05-09
Pretty URL www.bestpublic.info/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-09 22:10:49 Times Seen13 Hash 3c5877dfc329785b3b1feaa851814219 fa454d9df84b08f936fca5c1b52b40758329bf9c 7c1633ee8604dc64868fdd39d2804031ad83eab0b8be8b7b5442dd6a8def6c0d Loading...

	www.bestpublic.info/includes/templates/zz/js/show.js	3.3 kB	2023-05-12	2024-05-09
Pretty URL www.bestpublic.info/includes/templates/zz/js/show.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-09 22:10:49 Times Seen15 Hash f9f8bcb387fccc01469bf2331eeb2058 ca47be61b25995e36c56d680e24ef7594503dfdb 76c955dc43f3da4b30149d83aeae128ef910f7c59b6311b08caf45037d7b9c98 Loading...

	www.bestpublic.info/	786 B	2023-05-12	2024-05-09
Pretty URL www.bestpublic.info/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-09 22:10:49 Times Seen13 Hash b0c87d50c0600c0936f66c1b9dbfa30f 1ef525b658f825f269fec1dc7552192c930d7f2e f3cc63005b1d0051480cf9b2eb854f3f4b811cca7aa714ee571c047f99fa1422 Loading...

	www.bestpublic.info/	786 B	2023-05-12	2024-05-09
Pretty URL www.bestpublic.info/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-09 22:10:49 Times Seen12 Hash aad1d565d728dbb8e9237e82119c6b96 fe6c74668fabd5eff252b43db19da49d52bf4840 dd0b00cbdbccb956f10bce6ffd68f58c01a703f33f32947c8c164a979074528e Loading...

	www.bestpublic.info/	786 B	2023-05-12	2024-05-09
Pretty URL www.bestpublic.info/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-09 22:10:49 Times Seen12 Hash d87bf2e8525cb8cd560b24981e878f03 0722bd930b611e38a70c206b167ed4df12940662 3e5cc92dc63e80647aa323b9c2f5bdd5fc388c051c5d1c0a93f453980b4d03ec Loading...

	dog.theurl.fun/dog.js	21 kB	2023-03-08	2024-05-19
Pretty URL dog.theurl.fun/dog.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:27:57 Last Seen2024-05-19 01:55:25 Times Seen135 Hash 363238022f57abd2c177de9f6eb493a2 406d2b6f088ddee8efbf2030e1133f40ff8afb56 60b7079153ad519731ca32621217e42c420d3c2100440b4b0c5326f814b4e30d Loading...

	www.bestpublic.info/includes/templates/zz/js/public.js	40 kB	2024-01-28	2024-05-09
Pretty URL www.bestpublic.info/includes/templates/zz/js/public.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-28 05:14:35 Last Seen2024-05-09 22:10:49 Times Seen12 Hash c7a5a0613f0e7e26a3715f5d9ddfee60 bf07b648a162988f36f2647b9f6dea8b66cc528b 2122e1b5aaeb0f9a07335d835dd074cb0f60d04dcf486a81d4d4917810acf59f Loading...

	www.bestpublic.info/includes/public/pet.js	3.8 kB	2023-05-12	2024-05-09
Pretty URL www.bestpublic.info/includes/public/pet.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-09 22:10:49 Times Seen15 Hash 61fea4a7df3023f3f5b18001217a87a3 428bb44d8470d729dffebd1ae4a01bf3d5a1c13c b8674344a06c3629dc7b0d4877afe849c01de343550d1d9c281019c778d1eb6b Loading...

	www.bestpublic.info/	786 B	2023-05-12	2024-05-09
Pretty URL www.bestpublic.info/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-09 22:10:49 Times Seen12 Hash fcb968171464979de87bc4948d6b4a51 53b11a43670de7c6ff3f33e67db7d198768fdf1c f8c61631cce24f2827480509948c0c7900b0401831557e606d8ad501afb0c06d Loading...

	www.bestpublic.info/	198 B	2023-05-12	2024-05-09
Pretty URL www.bestpublic.info/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-09 22:10:49 Times Seen12 Hash 91be9223d169f0bbeab4c8e45cdde859 cbef4b29156c975a7745b869ae5ad353fd92e164 591bfb2933f83f121c5998d1480fbe08742304aa1397d23f1dda6dc58b9e6d00 Loading...

HTTP Transactions (90)

URL IP Response Size

www.bestpublic.info/

188.114.96.1

200 OK

167 B

URL User Request GET HTTP/2
www.bestpublic.info/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
0104c301c5e02bd6148b8703d19b3a73
7436e0b4b1f8c222c38069890b75fa2baf9ca620
446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Wed, 08 May 2024 23:34:36 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 09 May 2024 00:34:36 GMT
Location: https://www.bestpublic.info/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AP6OXb%2FoAzh2krDIBZUhy9TORw3wDM8tvFCL4pRereWI0%2FYwQblF7b%2BWSoJQMagCzNnGCT0P5w%2FbN359%2FqeXAGbMXm2miwxaxBL9qPg0quo7DF0XPUw4ZGV645tXFtUqq8d%2FjgmO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 880d42ee8e95b4f1-OSL
alt-svc: h2=":443"; ma=60

fonts.googleapis.com/css?family=Lato:400,400i,700,700i,900,900i

216.58.207.234

200 OK

951 B

URL GET HTTP/2
fonts.googleapis.com/css?family=Lato:400,400i,700,700i,900,900i
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
951 B (951 bytes)
Hash
c9c988f39f4364293e0fc69754a8d73d
adf65df7f7a0282cc28133f20eb02cfa4a803ed3
40bb4dc8f2c3d4711a0a727d10bbac611488977461a365fcbd94d4d876052bc8

HTTP Headers

GET /css?family=Lato:400,400i,700,700i,900,900i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 23:34:38 GMT
date: Wed, 08 May 2024 23:34:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.bestpublic.info/includes/templates/zz/images/logo.png

188.114.96.1

200 OK

4.6 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/images/logo.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
PNG image data, 430 x 31, 8-bit/color RGBA, non-interlaced
Size
4.6 kB (4645 bytes)
Hash
f5a91a145d9b027abd3891fc58bcd736
417d8529796427847fcb6508e0783f4267f7dff1
f569b407210e3c0ac0b7d9e06654cca842e09b2c0a982bbc529029f808d06bd2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/logo.png HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/png
content-length: 4645
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 07 Jun 2024 23:34:38 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MNZI095nvADYGeBdkWzbQBUGv5csVzVzij8noJci2d5L3AEm6Lcv3oWhwQVTBoQCL1MzM4J2GSL3btscY74firmis%2Bz%2BfyMGn%2FUygtaehQWCjlu2le9Mi%2Fg16qLtilipgQviCsfW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbeb5c568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/images/safe/1.png

188.114.96.1

200 OK

5.2 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/images/safe/1.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
PNG image data, 114 x 50, 8-bit/color RGB, non-interlaced
Size
5.2 kB (5212 bytes)
Hash
32f2065b479aa3f5eabe642c40d49e25
96a9e87e3756be89f7ad17d42f1d35bf762c3da3
d505895ce16935f199a638e825608f780df1ab794f71dec7a2cd7877e330e039

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/safe/1.png HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/png
content-length: 5212
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 07 Jun 2024 23:34:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3LoY28GUzcO%2FbPDtJtwE2%2FIeSyDdT65dT4wIrUn%2B75AThmzeu4BZjy3NcTeIwPrSiEvJPsiPdbGsPPVAbsdkoZLItrixgiuQJ22bEHO%2BdfLSNNlLSaULjyxNdTrAp9JwIY1TpmKq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fcac30568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/images/safe/2.gif

188.114.96.1

200 OK

7.6 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/images/safe/2.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
GIF image data, version 89a, 90 x 50
Size
7.6 kB (7599 bytes)
Hash
1931d61a7a5c4a5f41e2202367e56c71
1cdff3ebaa351822a827d7a2062f9ad44596ab01
234bafeda944f540c5b76f81c2d11077e445bc4655888dafb1594b380683ddb1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/safe/2.gif HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/gif
content-length: 7599
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 15 May 2024 23:34:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7SXhwPukP9McJxIl9mLoNnHYnLUutZIZOfCea0XA8kmMWvctGF9NrMNU%2By%2BW0EUDvohIZE%2FFVUBp%2BZrVNKwVMjYnwkHBdjBD9ACg%2FaZjpAqGv5gnA2xlE1qiT82pY%2BK6H2tW3JpD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fcac31568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/images/cr.jpg

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/images/cr.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2020:02:17 14:16:15], baseline, precision 8, 75x50, components 3
Size
12 kB (12446 bytes)
Hash
d84629ed4f3688263730cd7cba05a78a
acc27344113183549c299e9e7822503ef93c228a
71b372ded31e65b16b203a42cc8e3f070f516ce0f47c81b92e9a88375cc1ceba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/cr.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 12446
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 07 Jun 2024 23:34:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NZXV8IpGtQNBPXLpGKaE5bGA5OTo4vzjmsbJQ4xQxaBXf8WD7supbC2Xf24j8r3FZD1FJI2nNeSZ0b9T5kank4fNq110jM8MyYDnEJSD7WMZZwdiTdONi8nzPCfvXHc7rmhvYHDQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fcac3c568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/images/7dayreturn1.jpg

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/images/7dayreturn1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=200, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=200], baseline, precision 8, 50x50, components 3
Size
14 kB (14457 bytes)
Hash
612a870e4af8b62dd0a5dbc227bc7243
a632f76b67592684abc1406d95b298c1109bb182
634f3b0695d5b97dccb6d739866aaa1e2eb4d7f3ef6b9be71a05b7d1ad1d320c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/7dayreturn1.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 14457
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 07 Jun 2024 23:34:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jJN6mG0tlrTHjBOfsdlpKWcBJCS27%2BP9rzOJH8PBC8qG5s39NSlRHeZa1v156WoyrggvzCbCFzJiAQRKBFLVNyN1O9t4tLY%2B6GPD6fArg%2FytgwIEwL0dTKYk4jcJXQw8vgoTIYYt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fcac37568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/8911/60f4ee896854b6d1fc89a49f.jpg

188.114.96.1

200 OK

11 kB

URL GET HTTP/3
www.bestpublic.info/static/8911/60f4ee896854b6d1fc89a49f.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 385x400, components 3
Size
11 kB (11072 bytes)
Hash
5cf1375309a33841dd4106a78433bbec
eca2be9edcaea25437a5e46c7e3a866258be1e0e
6dd15cd3278ee9d921a991dc45fa65ec1b03a66f2fa8a495ab5fde4778beee7d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/8911/60f4ee896854b6d1fc89a49f.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 11072
last-modified: Mon, 19 Jul 2021 03:16:25 GMT
etag: "60f4ee89-2b40"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z2OZmWekCgWQDMN0%2BGFek1CTKWeYG8r%2F4hFLpL84ir43CkLs7hhHWNJFdohu1I%2F7DLXYH1MTOdKo8FpkgzLwKP56V1GRA7iaanAvIBJEqGyhU%2F4g9TdvbU8ZWvuEnaKPJ7jg%2FuFCCkQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fbfb63568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/images/banner_pc/14.jpeg

188.114.96.1

200 OK

58 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/images/banner_pc/14.jpeg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2022:09:08 10:32:42], progressive, precision 8, 1200x350, components 3
Size
58 kB (57842 bytes)
Hash
4e058229a4bf5178e310a85003d84134
1de9026fca8261297898903d58ceb72387092e2b
4948ee0f7a72fe36302fc0a5a1df793eec3903fdbcbdfa49e2c653cf1ed40dc8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/banner_pc/14.jpeg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 57842
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 07 Jun 2024 23:34:38 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7ITWcKcngonP5BM%2BX%2BXmUjfJZrZUuuR91de9px4p74KNUC%2FrXaZ00ucJAQxTTmrM2nyZ3Co24CNdRUOvAQaeDVfMeoPDQn2R7ebAc5aWccVHlkYsriWbGBfKZA9YCFk4HIZmReud"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbeb60568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/images/banner_pc/7.jpeg

188.114.96.1

200 OK

85 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/images/banner_pc/7.jpeg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2022:09:08 10:34:16], progressive, precision 8, 1200x350, components 3
Size
85 kB (84585 bytes)
Hash
a98eb2b6bf268ec29ad02328b2fad32f
7e56237c5726bc66e47dd55ad5613fd79738e001
388daa6155ff31749b41404e70962bf13c48a574a7261e388207c460e670b716

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/banner_pc/7.jpeg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 84585
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 07 Jun 2024 23:34:38 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N8IrZLq6n5RIyUZskCYIYJ5YIujR%2FrreylVkIXSbit3ckH%2BvqG9VF6wCYzqpWfWrqA%2FLAiARxz2S5tZ%2F3uGvJMplFmKDZbaL6lqjwGn2saVYi0XTT8tLgcqySGgWs%2FFkmr7Nnd3X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbeb5e568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/9740/60e2d1735c35faac3f64cc3c.jpg

188.114.96.1

200 OK

9.8 kB

URL GET HTTP/3
www.bestpublic.info/static/9740/60e2d1735c35faac3f64cc3c.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
9.8 kB (9787 bytes)
Hash
9e7b49888bd02be80ffda0e9fcce011c
a24b859789faed707072a5cac75890133f82c492
501188183b0fa309fd03b16244b9718aaebd26b2ff0b4cc7397da3f65c231c63

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/9740/60e2d1735c35faac3f64cc3c.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 9787
last-modified: Mon, 05 Jul 2021 10:02:32 GMT
etag: "60e2d8b8-263b"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o5FesFyAUgWO8CGhWndpvAZNuDHnQvDUHNggMrYX2Lh0Fcri08vkuJscS4agKzgxdAfOol5h6Icsob89zpw8alevaWPv4yfH%2BlxHDkBUm5Y%2B9IRBCaYs8tRC%2FKUnrXALRxPHh98yF8k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc1b80568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/images/payments2-min_1584400166.jpg

188.114.96.1

200 OK

66 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/images/payments2-min_1584400166.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
PNG image data, 1049 x 50, 8-bit/color RGB, non-interlaced
Size
66 kB (65740 bytes)
Hash
49bdf28c54a80d43a273495df22484db
c94ccbb3b33f25e3612abe91248bdd68dd92ed73
7cbb025935534836e8fd86310e93ca452e1ba1aa76584f66f91bfb5f4bc10db7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/payments2-min_1584400166.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 65740
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 07 Jun 2024 23:34:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jGd5S1XdKq4QesTZKVhTh9OeVlwCyGJfoXeSEtxbZCHpKvFofgR4xVfkbNxIfCOJpdibEb9LIx6CnPw1g9uIcYaZONEcuf8Zu9do7hlPXXjGakb6CSI6zZmuGwfinmHGiJv%2BIl8%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fcac3f568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/6353/60e2d0bd5c35faac3f628521.jpg

188.114.96.1

200 OK

18 kB

URL GET HTTP/3
www.bestpublic.info/static/6353/60e2d0bd5c35faac3f628521.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
18 kB (18416 bytes)
Hash
fd6fdb5d9f2b4d52e710ad4e874a2fee
ab7619de0010b73dc94a682d967b2a97a1db8705
49f0de4b39fca93cf34ff5c5db816b16aaf2169cd4099fc7ec775fd6ca2edd76

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/6353/60e2d0bd5c35faac3f628521.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 18416
last-modified: Mon, 05 Jul 2021 10:02:08 GMT
etag: "60e2d8a0-47f0"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K5vwgm1qA84krtfcMDC1Xmvcxkib5Yjqq9u300Lx74fen%2FvFMSDfJXoYPG2hdHd3AYatCcjJ2G%2FGMTgKJxKl4mKPr2RH1iRPxVvSWpJyzIrN%2FCWqIvKPP8ZrxaDBLWX3Fs0XSaV7LVM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc2b8a568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/7777/60e4a9115c35faac3fce1cc1.jpg

188.114.96.1

200 OK

1.3 kB

URL GET HTTP/3
www.bestpublic.info/static/7777/60e4a9115c35faac3fce1cc1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 180x180, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B1", progressive, precision 8, 96x72, components 3
Size
1.3 kB (1254 bytes)
Hash
e1de3c52c26d1471c421ceae87c5895d
b0abb851d454558c7ce3e0735bcd218f5da1f8a9
9bcffff2ae6be75b135500e5e5ab4ce93c99960d7b0498e73afb9b8f1c25b33b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/7777/60e4a9115c35faac3fce1cc1.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 1254
last-modified: Tue, 06 Jul 2021 19:03:45 GMT
etag: "60e4a911-4e6"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PPS1THYzCt8fuGCNgyU6hCMO6cRPE1l1SqjEymB2BPXMS%2BSVqLMBCQxp1CBPiHxv4Fm%2BH4GoKawHS1nK4oy9vY1RdR3IKYoLdBrpVaWuBKjqFfEwAwIlk9L7jo2E%2Fq6d%2BbVOB6i3r3Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc6bc3568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/6219/60e5104f5c35faac3fd9d30b.jpg

188.114.96.1

200 OK

24 kB

URL GET HTTP/3
www.bestpublic.info/static/6219/60e5104f5c35faac3fd9d30b.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
24 kB (24412 bytes)
Hash
f33a4ad5bff4f3984fd396d61311624f
33f3de9f8d43890d876102e87c488fd5b9fe21d3
adaf3ec19fc8b1c8132f912187ff8df924c7b662ce759d96daa8cb5828541626

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/6219/60e5104f5c35faac3fd9d30b.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 24412
last-modified: Wed, 07 Jul 2021 02:24:15 GMT
etag: "60e5104f-5f5c"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hnrDOwT%2Bc8C4FGH81K%2FbPzJdyVhZjhtvBev6f5%2Bbq1D3iXScw9fVFpudR3ZZEPz%2BM%2BRqycdrdALXocMp9Fr9SLFMNovY18ETWY4LCSIRnRk80HSICbZoYbC3YYso7ep6Bs%2B4Zy%2BLKFI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fbfb6f568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/8456/60f159bb6854b6d1fc10ea48.jpg

188.114.96.1

200 OK

34 kB

URL GET HTTP/3
www.bestpublic.info/static/8456/60f159bb6854b6d1fc10ea48.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 676x736, components 3
Size
34 kB (33534 bytes)
Hash
2d74fde3eae43bc33174eae000b02c7d
96c564082fc3a656ba166bf5764e87fc94337eca
2dda25204d92bbab56439bb01e85e9f4e179aee91d062034688166cee38dc4af

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/8456/60f159bb6854b6d1fc10ea48.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 33534
last-modified: Fri, 16 Jul 2021 10:04:43 GMT
etag: "60f159bb-82fe"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IPrYSX3V%2B9lrT7QjONGj9cqopwMizH7KUcuZqp2HPGw97gtnPa5ZgVrPZewAsYQUa20ILWFppLNOIo0CC5LGUHfkhEawDIxmMie5pOsVIB3mcZo3uYhBbUuN%2Bw37FJyQJlDUpPWOreQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fbfb70568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/0091/60e67915e9f4224eb5bc44bb.jpg

188.114.96.1

200 OK

18 kB

URL GET HTTP/3
www.bestpublic.info/static/0091/60e67915e9f4224eb5bc44bb.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 510x364, components 3
Size
18 kB (17789 bytes)
Hash
d1593481f900686d173ccb842b55176a
45a193d0e97c9575ec8744cf6ca8263b8b389c75
d1e54cf0454b2519fb4250d182cd57d42223f3b82dcbe4f966971a03be0f9d44

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/0091/60e67915e9f4224eb5bc44bb.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 17789
last-modified: Thu, 08 Jul 2021 04:03:34 GMT
etag: "60e67916-457d"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HOuaCX2RYuOSzPwh5B0z9bdHZE8FNKdn%2FthVENBYjZmJ7DNb1mEwiCFNolqtueI77MLhKMaZm73%2FKMMG7pAv1KZiBJlYXLuDIXdSlfzQB6xyGQ6%2BSTFKWo6pltOTGwBoiMn6nU0BuYQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc0b76568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/6767/60e6768ae9f4224eb5b588df.jpg

188.114.96.1

200 OK

20 kB

URL GET HTTP/3
www.bestpublic.info/static/6767/60e6768ae9f4224eb5b588df.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 598x598, components 3
Size
20 kB (19915 bytes)
Hash
0ae3996327b9315dfda93e0b430fe185
aa35145642e824982d91165f4e09fc076244eeea
06f766e5f463f7dd21f5b87b2160946d0eb67fd1f88d843957d4832a9e8e413d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/6767/60e6768ae9f4224eb5b588df.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 19915
last-modified: Thu, 08 Jul 2021 03:52:42 GMT
etag: "60e6768a-4dcb"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=js%2BeFfu2llBbgNKm02qV4Hovd57cCtJe%2B3aQ82hkl5ysTQ9QJRJ%2FnsfbvYz1MtQTWgU4mwINj6Vk9A9M8M%2Fk1%2F%2BZP60ZeGFJ8l0StOPswMGCJU6zkpLkOsl9gkaB7wjt9jpFGhRAkZs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc0b78568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/4648/60ef29f36854b6d1fce6c628.jpg

188.114.96.1

200 OK

22 kB

URL GET HTTP/3
www.bestpublic.info/static/4648/60ef29f36854b6d1fce6c628.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x345, components 3
Size
22 kB (22533 bytes)
Hash
cc1d0ef74d751ce72bea024147439ca2
04f259bce2cde3374731dfc33bc8c75117683334
b0ebf938a7ddca1fd3a75a8653f96ffaac8cdbcb7c8243e3f2e361320ccaa184

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/4648/60ef29f36854b6d1fce6c628.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 22533
last-modified: Wed, 14 Jul 2021 18:16:19 GMT
etag: "60ef29f3-5805"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fUyMrhKHnE0deUkVh14SsclHwFnfusb7zshHPgtUKSlOeCqdfihIRCo%2BRxHGT2CakpHMn5nQMfRpc7cDyjsKwV9o2s7OAhST%2BUPP8M4dJ6%2B8XNpVRf%2Bxr3%2FiG%2FcCiAtWTaKcMqVAUgU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fbfb61568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/1187/60e676e8e9f4224eb5b67d13.jpg

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
www.bestpublic.info/static/1187/60e676e8e9f4224eb5b67d13.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x300, components 3
Size
14 kB (13656 bytes)
Hash
65acb834446add74493ae57bb2b44b31
8736cfa3d9ab0b217cf6b184292852d1bc3aa702
9f54294bfded3d75798634a49eb5e8c381c22ffbc237ce9d62ac1a5b4d39df41

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/1187/60e676e8e9f4224eb5b67d13.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 13656
last-modified: Thu, 08 Jul 2021 03:54:16 GMT
etag: "60e676e8-3558"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Um1%2F59zAadPBaOxp4zhghwTWPLliTLLU4HRXzkFP3BfNGdBP%2BDszsqI2OYkGS4S7w1AexTpDets7HtnpGgY8Vxp2%2FKXLNQh1Q8ZQ%2B8IFeOv6%2BGm56DMsnCR67HrWpQSq5b6jZKLoPes%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fbfb69568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/8189/611850a985ba2dd5681c070d.jpg

188.114.96.1

200 OK

40 kB

URL GET HTTP/3
www.bestpublic.info/static/8189/611850a985ba2dd5681c070d.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 500x497, components 3
Size
40 kB (40381 bytes)
Hash
dfcabb44c59a4352316d39969f60a52f
502be339ef2793ee206dd3e11358234b7920a996
7c68d35ad56260a8572299d0f93aef2ce9b8b0eea03e3f028325cfec14d95e6f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/8189/611850a985ba2dd5681c070d.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 40381
last-modified: Sat, 14 Aug 2021 23:24:26 GMT
etag: "611850aa-9dbd"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IcgPw9AolU21FQqn4yBPHOUlFtUk6ioRuZ26SI8dGNhkw2sO6LkvGFvr8rFjCAVB02dJslqg%2BpCQ9R65hADG58aTMhdATeGttGQ9E8l4f2TPi19Q16IuDu9rPQf9LyeOQ0VHLgPPiyE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc4ba5568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/8515/60e2d0d65c35faac3f62da23.jpg

188.114.96.1

200 OK

29 kB

URL GET HTTP/3
www.bestpublic.info/static/8515/60e2d0d65c35faac3f62da23.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
29 kB (28874 bytes)
Hash
e5c197950fb4c2bf935f31a18ba48996
64330e81d29c65dc706ae678d02d862f4d7be2fa
0e0c7ca8aad4ae5cd26807b4e315028480fd80aff3a4798d417a9b8ec18ecc41

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/8515/60e2d0d65c35faac3f62da23.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 28874
last-modified: Mon, 05 Jul 2021 10:01:43 GMT
etag: "60e2d887-70ca"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bbs5WlKwYMwlMHMBrFAKABqUB%2Fg1TvWZglQs%2ForzkdCops%2FYNmuMgRllZO8KWNltD%2FBMYXdrbN5ipcFjw4wpmcECXyJS05nPQMkLkQKXKtpIWiTCyF0MeC03qAoUbLlYZfdCPty%2BX2o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc2b89568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/4388/60e67632e9f4224eb5b49dd4.jpg

188.114.96.1

200 OK

18 kB

URL GET HTTP/3
www.bestpublic.info/static/4388/60e67632e9f4224eb5b49dd4.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
18 kB (17980 bytes)
Hash
4fae4921bf817b18b8c9709b1b7df5da
ddbb389451205a47a9956767a6baf3cc288146af
ef140aac04f7178e6db331e5f52126ebcebf771b1014481e40f64e85be6f69a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/4388/60e67632e9f4224eb5b49dd4.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 17980
last-modified: Thu, 08 Jul 2021 03:51:14 GMT
etag: "60e67632-463c"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ytSVWndknmyVoRGDrWL3m%2FzegxkjCQIoZHxh4giEGxhxjStUIwhMfKQy%2BtHtyNl%2FcldFN%2FMY4KBbu%2FgyNBP2SjrA4fPlmKFugj%2BDopZyNp9y4YWGh3f8WkNXWB5z5Y5TyV%2FFhXuEIEY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fbfb67568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/8917/60e485ee5c35faac3f6f0155.jpg

188.114.96.1

200 OK

25 kB

URL GET HTTP/3
www.bestpublic.info/static/8917/60e485ee5c35faac3f6f0155.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
25 kB (24917 bytes)
Hash
4223f10751f4ce18dc769d47871fe21f
b971f31d28af1a830cd2b21cec2e495068df5417
add6a13cd6264ab662433dcb64292bb39799bbcd5da05a295878aaeacade0d66

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/8917/60e485ee5c35faac3f6f0155.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 24917
last-modified: Tue, 06 Jul 2021 16:33:50 GMT
etag: "60e485ee-6155"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fx3qWZ7%2FCXen7R99Jq79IiXGzRXArbLPxvpwlSprHeqFPlKn%2B5rRyHcHyMEV8IMpawa9LvCZZB8%2F%2B1PzWb%2FENAPCQmJ3ofOvxApR93OL%2FRX%2BAzBLNSMI76K738aY1AyPtJotxLHACN0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc5bb3568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/public/pet.js

188.114.96.1

200 OK

25 kB

URL GET HTTP/3
www.bestpublic.info/includes/public/pet.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
Unicode text, UTF-8 text
Size
25 kB (25137 bytes)
Hash
61fea4a7df3023f3f5b18001217a87a3
428bb44d8470d729dffebd1ae4a01bf3d5a1c13c
b8674344a06c3629dc7b0d4877afe849c01de343550d1d9c281019c778d1eb6b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/public/pet.js HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Wed, 08 May 2024 23:39:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sys4h6%2FcFAFQYsWb4XUz%2B4pqZCadpkpk%2FydOH4GA6GVSDBeB4stz5X557fDil707NO0sgMM%2FSrUOJwvCsaG8ZPDixPNWc4uP5pKAzWqXTq7ycbkTCIJMzEBRTRm2W%2BKqyQDgEQSz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbdb50568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/7773/60e2f1145c35faac3f9fbf2d.jpg

188.114.96.1

200 OK

23 kB

URL GET HTTP/3
www.bestpublic.info/static/7773/60e2f1145c35faac3f9fbf2d.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
23 kB (23322 bytes)
Hash
6c5e76a888da485fbd460ba0dafd2406
be20204d4873ba6c7bdcd99419ca2f24e303a14c
e9d42ae1ede807ca0354622453891457bd1409e4cf17d90454b9fdf750616629

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/7773/60e2f1145c35faac3f9fbf2d.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 23322
last-modified: Mon, 05 Jul 2021 11:46:28 GMT
etag: "60e2f114-5b1a"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ucMk8e0Ex39%2Fm3bgimXM4pmarte86KdGP5ea3FJouNNqAyMsUz3zUL%2BENQitAIDZFOUrtMdnJ4A0yuox%2FazrgSmlqz%2BgVnG1ZCE9hNwn8fjKbga6DNg%2BjR2VaHNCyDqA%2BYbl6yuD7pA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc5bb4568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/3452/60f719436854b6d1fc7bb3cc.jpg

188.114.96.1

200 OK

36 kB

URL GET HTTP/3
www.bestpublic.info/static/3452/60f719436854b6d1fc7bb3cc.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
36 kB (35945 bytes)
Hash
8e9b2d55c88f2518aefd49effa20d898
b76bcad9d81bb79b7f2535685886e08e905775c3
26bd05d6832b7c4069d18ccde40de840174f3ffff3b7a3f28027b8ec5ee654da

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/3452/60f719436854b6d1fc7bb3cc.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 35945
last-modified: Tue, 20 Jul 2021 18:43:16 GMT
etag: "60f71944-8c69"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=98tIyP%2Bea6LbtS0rgduKaUTk52IwxA%2FJ8HXJ%2F2JLnRQbmApfv9B%2FgHZrjTjKw9RD7AfNQAcZJTQO6Uy8FIHXxe37JDIOGEfXpWcq08ROzIUrhS8GhPv3oWdxWNZfQ1HG9q10XhZlfQs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc4ba7568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/6530/60ef29fe6854b6d1fce6d632.jpg

188.114.96.1

200 OK

57 kB

URL GET HTTP/3
www.bestpublic.info/static/6530/60ef29fe6854b6d1fce6d632.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 488x500, components 3
Size
57 kB (57079 bytes)
Hash
6c74cb2c52a9fb2e2a7fa2318f3e6550
904537cda8f6ba66c28e62a4a74b4583a24886f3
9c1738b4130dad59501a6cddfddf1e19e19d2bdd5bbf758fd3624f0335fe0283

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/6530/60ef29fe6854b6d1fce6d632.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 57079
last-modified: Wed, 14 Jul 2021 18:16:33 GMT
etag: "60ef2a01-def7"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BGmKdb1k1RegemhLz5S17tIQgZ6A0ksMrXzpTGLxxkjvM8f8iLsT9N4ry1D0NtAVI2Gz86zzHzUS9gMdjaJlz2jvQyZpVSgQWa9zJb6zfKJJGyrRI238PmRdGThh%2FBZPhBzao382pYc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fbfb64568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/9052/60ff471cd0f1a9d54fd8a54c.jpg

188.114.96.1

200 OK

1.5 kB

URL GET HTTP/3
www.bestpublic.info/static/9052/60ff471cd0f1a9d54fd8a54c.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 180x180, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B1", progressive, precision 8, 96x72, components 3
Size
1.5 kB (1467 bytes)
Hash
07e2984cde9c9baed03515d4c649b7af
038cc6dc0ab6086802a018e1f5fb8506e3e64c7b
9df8da686c576f5fd98a5406ed8b4df39d8ca86a51a0b8cb2d639d605c71a383

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/9052/60ff471cd0f1a9d54fd8a54c.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 1467
last-modified: Mon, 26 Jul 2021 23:37:00 GMT
etag: "60ff471c-5bb"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d6T%2FBz71JF5cLSsCEAqPrp1iGOdznVxyAAPrAU32JJX8Uy54M9Sy2sbmsNsJBFJvKlTEhjf9pGDvIMgzkgWcIqdIk5XD4vRFtfFVTEc7qu97Jj8IpGuoHI1cbHM9hYhRF5N4SLpdP9E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc6bd5568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/7624/60e7f28be9f4224eb55a0df8.jpg

188.114.96.1

200 OK

40 kB

URL GET HTTP/3
www.bestpublic.info/static/7624/60e7f28be9f4224eb55a0df8.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 800x800, components 3
Size
40 kB (40262 bytes)
Hash
4f8d2c1cfaf81b16954051673171fca8
6ad8e68402c3b80787e0c016d2841e13bf4a11c9
ada32fa94238bdee691dde7287153d3806a6c12484046809446e9e0bf24fcce1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/7624/60e7f28be9f4224eb55a0df8.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 40262
last-modified: Fri, 09 Jul 2021 06:54:03 GMT
etag: "60e7f28b-9d46"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DIzNMSHQ6MM%2F4FR5IIyUTb4C8Peid2V%2FrVmlZZZfmf2C2XtuS15vf5TY2WGGhlrnvqESeKU5J3Nr1JKpv02qBSstHswaseevHCVsvkHMdlvkyWf%2FyCpMKvp0T9csI3YQMuNwxyRbM4U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc8c1d568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/2738/60f3dda96854b6d1fcddbc72.jpg

188.114.96.1

200 OK

36 kB

URL GET HTTP/3
www.bestpublic.info/static/2738/60f3dda96854b6d1fcddbc72.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 500x500, components 3
Size
36 kB (36108 bytes)
Hash
def8d03220f5dfebecd5f1d8ddec8ee9
39dfd234999010d38102e2cf5dea84670cec74d7
35ba1e1ce2a27fc67bc54ea62342a105bdd38c5ad4f8b0c1966f4b025e9fb602

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2738/60f3dda96854b6d1fcddbc72.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 36108
last-modified: Sun, 18 Jul 2021 07:52:10 GMT
etag: "60f3ddaa-8d0c"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NPyNguOqjiYVyBgyTsYC4DMdYdRlFKC%2BEtOQybxrvK8zLeGqHAo36E%2FD0QmfmH4We2b5XPU%2BLgy4sKJ8R%2BgtK1ko3ixq1Yt%2F7yx49SO5pNEeEzdjEc9I1XhwdMLJzZwlwy8I1gantzY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc7be0568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/9810/60e62cb9e9f4224eb5009312.jpg

188.114.96.1

200 OK

15 kB

URL GET HTTP/3
www.bestpublic.info/static/9810/60e62cb9e9f4224eb5009312.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
15 kB (14682 bytes)
Hash
b56aee63587f1c6120e2181fed767efd
a37d5dda988ee326cfc14fc25fcf946c4349372c
3a63a272b746c0da91248c11c9c7e53d63244f311baa62585f290ba1c94b7936

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/9810/60e62cb9e9f4224eb5009312.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 14682
last-modified: Wed, 07 Jul 2021 22:37:45 GMT
etag: "60e62cb9-395a"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WhkeBwWCWyEL9CkVs8yGjbQLRjQF8n99lkSsnNZYPT2Jq5YmjBBq4rvBzH0KiBfk5YHAg9PKmWQu53ph%2B69TaMdUdm%2B8Ibh8uk%2BT8eGtmSMULlXKd%2BP12bKt3BcyrXA3t%2FCRZ2dwknA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc8c1b568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/js/main.min.js

188.114.96.1

200 OK

55 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/js/main.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size
55 kB (54850 bytes)
Hash
963608f1c69df54f544f04f3410ba54a
086530ffd03a8cdc0ed75cefa81cf81fbfe086d4
d98cb5ffb9342be5ba20b320cdd9e6b2e03e279aaa05a1263abb9d49b4512277

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/js/main.min.js HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Wed, 08 May 2024 23:39:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=71OMuHflRbRVWc7F9xdlfkxxLo7ALZOoqbJ%2Foko%2FybEIr1H7MXhT0SpOlyRq7FOLUzRPnV6sDe3ZTKACVIGiagw8khuI%2BH%2F%2FBSRY7qJURkjthddjlP1SvOpV74Q2f6hso4RFZsx%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbdb4c568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/1526/60e524d7e9f4224eb5226ef6.jpg

188.114.96.1

200 OK

89 kB

URL GET HTTP/3
www.bestpublic.info/static/1526/60e524d7e9f4224eb5226ef6.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1500x1500, components 3
Size
89 kB (89295 bytes)
Hash
867628ebfa7d66ac6d6865ec1f74a05a
27b25ef90ff9989122eecec8b37f9ba9e2d398fb
9fa6d084423cd08257f972d92cc4a73223a6c0fa9db12cab9bee4511404181d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/1526/60e524d7e9f4224eb5226ef6.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 89295
last-modified: Wed, 07 Jul 2021 03:51:51 GMT
etag: "60e524d7-15ccf"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hW4UrO27ZtGm3Qc28ZCwjPicCVQbRUo5v2mNG6XvfxZhTcaRy7s3aBO91NR3Ft37HWXP2ltrzcK3QJNPCnefsNpNilXG83HSVt2A1FRLISbdlCEj2%2FT0qal9sIZfTU9wmXcNwfhfHAs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc2b8f568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/js/public.js

188.114.96.1

200 OK

10 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/js/public.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
10 kB (10218 bytes)
Hash
65c93dc14d124e7aa6efcb41c1bc4798
c959380a8a6a9cba12f204d1c09b764bd5e69b60
9f15404a1409a737b996adc4fdfe911cdde800dae049b83119059cf23bfea396

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/js/public.js HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Wed, 08 May 2024 23:39:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qXSd792AxuQHuTLKNg5hQK5Y5PmCCkQRby2hxFGSTpi5nYa96bl4aHgwHJG%2FJckIB%2BuRBlP74kMBcYKzuG00yqLl7fAXUpPLzwOfndLnBVYj%2FfKovwmhYfncsVcBM3vyQ%2FM%2BMnEB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbdb4e568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/3371/60e67535e9f4224eb5b1fd4b.jpg

188.114.96.1

200 OK

42 kB

URL GET HTTP/3
www.bestpublic.info/static/3371/60e67535e9f4224eb5b1fd4b.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
42 kB (42343 bytes)
Hash
041cf51103142b982267c9bc5038a067
8081087f38450f88ed06f0df698d6f4a1588e395
9c05abedca92a764433764e903aa0d8eae67a7aed8599ea731349678480123fd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/3371/60e67535e9f4224eb5b1fd4b.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 42343
last-modified: Thu, 08 Jul 2021 03:47:01 GMT
etag: "60e67535-a567"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MXEVFzFcNYp7Yp%2BkNoHeNkGlm8hvl3kqPYwflZhyQjsVqLTQ2CV%2FBI5qAOKQlkqPGy%2BZ7M6PnD%2B0ChB%2F%2FKQaqTzUelzY7V6L0pNALkEWw7EFpueDna0XFq6pxctLzPaIVaLwtuOv0sk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc0b72568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/6948/60e7f27ae9f4224eb559da64.jpg

188.114.96.1

200 OK

26 kB

URL GET HTTP/3
www.bestpublic.info/static/6948/60e7f27ae9f4224eb559da64.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 700x933, components 3
Size
26 kB (25887 bytes)
Hash
28477f29038b3a172172f47d6818335d
ee560ffeef7e17e4029c64094bea93c9657c3ca6
c77150e8def8acd603dfd26bf4c69e29a3822e077712541abfbcb8077f616ce1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/6948/60e7f27ae9f4224eb559da64.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 25887
last-modified: Fri, 09 Jul 2021 06:53:46 GMT
etag: "60e7f27a-651f"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CxtIT9Rfig9m5GNvDyi0U%2BpZ7dIiL8%2FPXUpagOzg4PfwO78S2W7Ph3Dqmp%2FhdmC4ob%2BovbLo59MBG36XYCHnxON8ljZ2vpw5f1wGuEItXUD1NTwBkQSlQIqXOkUVW%2FoFjRbkQ4tq3cY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc9c2b568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/css/archive.css

188.114.96.1

200 OK

6.0 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/css/archive.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
ASCII text
Size
6.0 kB (6020 bytes)
Hash
077acb9c1e813cce43e6a9df34622ffc
0721f61882dc9f13c88ad25309d9233f654bc87c
ce96f8705a489478d0434ef893fc5675894e042ebf7c7ce77fb9af03f4076976

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/archive.css HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Thu, 09 May 2024 00:34:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OHXWPa7af4Q%2FnLbY5HGAqeMmJzJny%2F1ustzzZeCWZKxvTDheuWNrFePZaL8mX8vRbNPwAhdUTQ8RjFC%2FQUBAY1b5lxk26JErDfPSzFSAuztIDyOJyRDWWZhwOgGTAV09yUfWKzaD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbcb46568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/0702/60e5c98fe9f4224eb5edc46e.jpg

188.114.96.1

200 OK

18 kB

URL GET HTTP/3
www.bestpublic.info/static/0702/60e5c98fe9f4224eb5edc46e.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 522x522, components 3
Size
18 kB (18259 bytes)
Hash
08fe5b52c374b842b0e1e33c94306075
84347cd05f6815242f4024d52745389b51638a0e
7ed745ec7174edfd231e6ed5ceff68c791ceecb6a88c7529561f83139bf5a6b8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/0702/60e5c98fe9f4224eb5edc46e.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 18259
last-modified: Wed, 07 Jul 2021 15:34:40 GMT
etag: "60e5c990-4753"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kaDOR1bsC0JSkwQBttaqwwZ5t5LZLL4UUeXgHycYp9MleaLevfGND1RkIj1fIs3roADaPpydr2DsWGqhsSSrt67dnDoIJqDYuoH7WlzAdQRBxjusuzwA%2FlsmcQHLIEEEmaZojaAYJAg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc2b87568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/css/list.css?v=2.1

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/css/list.css?v=2.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
ASCII text
Size
1.4 kB (1367 bytes)
Hash
98fa4d4301e7bc1660ee8b09caf6d715
ed7fe9da42622a7ec274d9315dfabe96e821bcf2
18d7cdd04d81b0ac0da457548beb653dddbd4d6188cb503a2cc3b73d5ae3d8c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/list.css?v=2.1 HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:38 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Thu, 09 May 2024 00:34:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ND2ygB1JC3sjDKKDoJpdQQwYLKXLgPaSwReaUDj2G8juOo9G8Auyo7t9ZQf0afWIlpVxmDYGLx6Zn2PlETfyWbS7eKyrsDRUMIJhVFV25qBfvD6s4uycxnvxc5gkp%2Bggxv97SJ6P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbcb45568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/7559/612a3a4485ba2dd5680184d7.jpg

188.114.96.1

200 OK

190 kB

URL GET HTTP/3
www.bestpublic.info/static/7559/612a3a4485ba2dd5680184d7.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1196x1600, components 3
Size
190 kB (190082 bytes)
Hash
3cc987a9e45301a5775032ccdd163fd2
3a6861a8ebdc09b5f4e8a049e85815e3c00dd1f8
4dbf650d6698767b86a32ed01fb27e8a6863524f4a2863f96c03c2a8ec0fb15e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/7559/612a3a4485ba2dd5680184d7.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 190082
last-modified: Sat, 28 Aug 2021 13:29:41 GMT
etag: "612a3a45-2e682"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yHsjKbs3YrIFaBdhjM2lOn5lcXCYQCV2fOf32LOJ5K1jAWFbmq0Lxfp7E67uitg%2FzXgQE8NujXICBsk%2Fv2%2B5eML1pvgDg9TA5gw%2BcaviGThmvQMmz4NOxvithBkNToyVqUHxCuHGlrU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc4ba3568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/css/stylesheet_coupon.css

188.114.96.1

200 OK

586 B

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/css/stylesheet_coupon.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
ASCII text
Size
586 B (586 bytes)
Hash
699f294528e00dd7bea5ff537bb8df62
c5ca42ba2dacaf959756165382aa853c1ea78b69
b01af930bb28330c9479e3119403cfba980240201a20807bec0d0a319769735d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/stylesheet_coupon.css HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Thu, 09 May 2024 00:34:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p%2ByAVK1Xj2ub5AMFK76zhXV9a7jWJ23khhBswWfPg1hwkuVkEib33c5sLC4pMDhRzYF0lerTdqfEHl%2BQUvMW59%2BZB5N8fg3EtTiLNoyTa8JNKQ1VJb4OW8BMpsMBfXkhBiwziV1D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbcb48568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/0391/60e362ec5c35faac3fa97337.jpg

188.114.96.1

200 OK

424 kB

URL GET HTTP/3
www.bestpublic.info/static/0391/60e362ec5c35faac3fa97337.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1066, components 3
Size
424 kB (424043 bytes)
Hash
0d6cddff993b1e6dc466606ae37e8923
918aeab5ef2512a4dfb482cba543563f3a34c96d
2650a1aa8f5ca6a6fe56543976cf650ec3e22c00aaa59ac52d0308bf44efb684

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/0391/60e362ec5c35faac3fa97337.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 424043
last-modified: Mon, 05 Jul 2021 19:52:12 GMT
etag: "60e362ec-6786b"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hsxt6z2nk0yRJFVx%2Fp5CQKJ%2F1y5Fh9g8Aa%2BjysFQE8x6IHsTt45KkO3tBL%2FDwdJy4BxU0W%2BBomXuMPhy%2Ft9dw3GYSKpREkpM%2FNt%2Fv2Ds6T9ltGSMGqiY4WEfhNXsQzT67YWGu0LlGVs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc9c27568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/4297/60f3be336854b6d1fca38d39.jpg

188.114.96.1

200 OK

35 kB

URL GET HTTP/3
www.bestpublic.info/static/4297/60f3be336854b6d1fca38d39.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 500x500, components 3
Size
35 kB (35433 bytes)
Hash
57f2106a24007f8f579575a1f8613011
fc8baec04088655b37c83a46c00d5dc8da4a8182
d979082b226e0ab7fb51dc950bb3a907f76f485d97105d12661e80e24d1fc2b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/4297/60f3be336854b6d1fca38d39.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 35433
last-modified: Sun, 18 Jul 2021 05:37:55 GMT
etag: "60f3be33-8a69"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wfZiCbDDpHHMp%2BN8goKdNJ5Qqz6tAMk5zbSYAL6Sio4ZAbORXJa9h7aXwzXYlrQ23LPAPT2ZENMR%2FuDYuH6Xa3KeWC1CYvu2TzNXNSiuab%2Fl13LJooPMNz0WEavJGEdmZYtmDw6PV7g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc5bb6568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/public/common.js

188.114.96.1

200 OK

1.1 kB

URL GET HTTP/3
www.bestpublic.info/includes/public/common.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
Unicode text, UTF-8 text
Size
1.1 kB (1067 bytes)
Hash
41a1017007e75284bfd0088a3b341c95
8e45edb5559445a1b080535e016f50c2eee7dc44
6b304459c49b1acf7dcaf525015ffba70679af3e7271c5a22f5bd92da89e1dd9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/public/common.js HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Wed, 08 May 2024 23:39:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uhpNrX4yw3kgTavjnIWAfK5SMJDM%2Fx59S4WkuCCQ5KHKjDI4mAHiH1y3bOS7EqRjfv2HyNZGPe0Qp1aeL8VrqGA7AIDCR117JdiC0%2Fn3VKeibfNA4AI0ai83TKm1DEZ00MB7XuQA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbdb4b568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/8392/60e7f293e9f4224eb55a2c98.jpg

188.114.96.1

200 OK

87 kB

URL GET HTTP/3
www.bestpublic.info/static/8392/60e7f293e9f4224eb55a2c98.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1000x1000, components 3
Size
87 kB (86972 bytes)
Hash
722067987b50207daad7a1e60fa35a5b
616600276557b1c2dc3d0c6c203701d36f8a9797
b06e86803d16baeb33ba1f8c3d90195c12344526c3d614d37872d906ea53a9b9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/8392/60e7f293e9f4224eb55a2c98.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 86972
last-modified: Fri, 09 Jul 2021 06:54:11 GMT
etag: "60e7f293-153bc"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G7cPSDOEUzicfnANzPNTe5fnvWBCa%2BtEUaGTq6kKWMczrqMPI4LtpR%2BSbSxM6HZ8EqYjLRmkudU4jNHOUdd%2FEUJaA8F%2BcXmdZWLH2XUxXTB9an90SqpyKaDjsL5a6xQpxPG5xMAdr50%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc7bf5568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/3815/60e508615c35faac3fc5a747.jpg

188.114.96.1

200 OK

251 kB

URL GET HTTP/3
www.bestpublic.info/static/3815/60e508615c35faac3fc5a747.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x900, components 3
Size
251 kB (251385 bytes)
Hash
5c80769d5059c0256dd68fff56c1cb20
170498f47b036cb3ba8bec6fd08eba325b5be7d5
66ccca52a9b0d5a4b4d39cf4c0e6f33fe5c1497a0917bdea6487e5a287a81f47

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/3815/60e508615c35faac3fc5a747.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 251385
last-modified: Wed, 07 Jul 2021 01:50:26 GMT
etag: "60e50862-3d5f9"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xxwOz5DVExPgGmJvgdSnGzFZyym6J4kk1%2BKnxjtvFDgsE3zVC8j9Y4mcDRExmaVewQ2kIULWwkqrce6%2BNOqQcrWTKypiZ0SUN3CVaVEqAOXcHpxNawVu5xJcmhi%2F1RUVF9gYNTRg95I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc1b7e568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/4620/60e67648e9f4224eb5b4d72c.jpg

188.114.96.1

200 OK

215 kB

URL GET HTTP/3
www.bestpublic.info/static/4620/60e67648e9f4224eb5b4d72c.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1251x1251, components 3
Size
215 kB (214688 bytes)
Hash
7b214263e5a7a231dc1514fac3aed6da
2ec77e566770bd0f21d0349396b650e0dd97b23e
723bc9062601f2eed92bc0daf9dd86696aaae6a08937209d14d92bab70993082

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/4620/60e67648e9f4224eb5b4d72c.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 214688
last-modified: Thu, 08 Jul 2021 03:51:36 GMT
etag: "60e67648-346a0"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=duPEpuwKCR6WAKpwLwoGS93GtP3Y%2B%2FS4MS86E4ZDWxeIhMkfK%2BovrB2FOLBEWQl7Ol2VRwz6WMUGvbgTHe%2FnIGkYNhM%2BKLvYvm2lhmbhN3TSLqr%2Bric35OuDtXLTLD%2BOP2aM%2BlTtQwg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fbfb62568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/3376/60e5c878e9f4224eb5eac500.jpg

188.114.96.1

200 OK

110 kB

URL GET HTTP/3
www.bestpublic.info/static/3376/60e5c878e9f4224eb5eac500.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 900x1135, components 3
Size
110 kB (110270 bytes)
Hash
b79ed7551b8aad52704d9ca4df80fa56
5473881f8f70a13daf7fea0b54bbb5acbe40ef47
4117c053e1d23c054b99249ee8433f391cc3ecb4106c8a4a56f86eeae7f1ac2f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/3376/60e5c878e9f4224eb5eac500.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 110270
last-modified: Wed, 07 Jul 2021 15:30:00 GMT
etag: "60e5c878-1aebe"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vu%2BZEdqfkXS6UcLbQioVK%2BSv4NklULAfyrwQlxH6Jfz%2BbbPmtA0sHJRhEfan7u0E9HYF7gUfpyP6NNc9ZaLEF95U%2Fgc7KWEjP%2BdORcfUm3oJl7w%2BIkd3TiuEnb%2Fyv0QEkpgbUu88WDI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc3b96568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/4170/6115558d85ba2dd56811369a.jpg

188.114.96.1

200 OK

310 kB

URL GET HTTP/3
www.bestpublic.info/static/4170/6115558d85ba2dd56811369a.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 971x1507, components 3
Size
310 kB (309788 bytes)
Hash
bd4bb3720fe40c83c7cc2590b12bccba
0d9c73855aca2f4d2ad1436c88da0234083c22c3
ddc4188b0e793b953749da30bf5c93493b28a54a998aadfa5f854ce62aa4546a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/4170/6115558d85ba2dd56811369a.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 309788
last-modified: Thu, 12 Aug 2021 17:08:29 GMT
etag: "6115558d-4ba1c"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EvoNXzeumk4Nj9c0Y8nv66DTf9tmzw8qOXD1WCIy7dMbPfxe3rBmuXQ3csIR1Q%2FeTTfebxiLJ2gnZLe4sqj7OH9ArcXWrnHc4fJK5YduMWA3WHw1d1RlsGgozkku9SATeiMR06VPuE0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc3b99568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/4297/611594b685ba2dd568420e99.jpg

188.114.96.1

200 OK

151 kB

URL GET HTTP/3
www.bestpublic.info/static/4297/611594b685ba2dd568420e99.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1500x1500, components 3
Size
151 kB (151272 bytes)
Hash
197028da5116612cc724bcc7b14bfb2b
0480f196a6ce7d7624ca6d0ba47dc08b4dec3e76
275fa443295a492eb03d7a2bf99d6f42dd00187eda8f20baf1cb411266aae9e6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/4297/611594b685ba2dd568420e99.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: image/jpeg
content-length: 151272
last-modified: Thu, 12 Aug 2021 21:37:58 GMT
etag: "611594b6-24ee8"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IQsk%2By%2BHqfgWeNtg4BKbosOpWHYQgxjsj2p5I0c7IQNxYBM8BRc035jMAxqPk7lAfj1kYDuuX9WOnP4jwOZK9P%2FXJQ%2BFynyN1iIsGKQ0JLYxgZuocFGNC1anZkeNMzUvtG32FAYy8AY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc3b97568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/7885/632b56f3c91e3755fef8495d.jpg

188.114.96.1

200 OK

322 kB

URL GET HTTP/3
www.bestpublic.info/static/7885/632b56f3c91e3755fef8495d.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1074x1597, components 3
Size
322 kB (321547 bytes)
Hash
9cda8d26f21f9a6ae6536dfb1d5463e9
655f85c6b7fed07b9a63a997d89bffc26847aa4f
508f6f664189ce642a4303fd7339c82c84a137482394742e6d4d294530a6c362

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/7885/632b56f3c91e3755fef8495d.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 321547
last-modified: Wed, 21 Sep 2022 18:24:51 GMT
etag: "632b56f3-4e80b"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mJEw3jDN3IpIuuMTQfcq8jLY9%2B47%2FPkg%2BP1rCnPazaQ2aOyRt%2BiwyqIlWePEXSv31RLFZ7NmAnK2WTbQB9%2FoM4gWUOP77edm2LgvO0%2BpKSY14%2FTRDLwhK3fxL5qssKD9VwGEWb2vwQ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc4ba0568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/2307/60e53738e9f4224eb5538753.jpg

188.114.96.1

200 OK

20 kB

URL GET HTTP/3
www.bestpublic.info/static/2307/60e53738e9f4224eb5538753.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x382, components 3
Size
20 kB (20539 bytes)
Hash
302cf7b4c5443cf64a49da56c18b271b
3cc3aca017ac85f69d2e3c3f1a4cc76d18b9b6b6
c4898a2402b4d74be4840701f1f019d66b82dc4a15b10d92caf859dbf0c7219d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2307/60e53738e9f4224eb5538753.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: image/jpeg
content-length: 20539
last-modified: Wed, 07 Jul 2021 05:10:16 GMT
etag: "60e53738-503b"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n18A55tT%2BFkNoNdXa536MxXvrhxDBPnsVXXJUhYgIMx32dvE0hNh43%2F%2FxSW%2BFF5yJ%2FrDYXLdh4%2B29%2BDqfoSKl%2F6HNEloJbsgCAS%2FjBIXePSLWBdmZ5Xn67dRTElbC%2B5PleuL9r7CVj0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc4bad568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/2362/60f0795c6854b6d1fc5a160a.jpg

188.114.96.1

200 OK

51 kB

URL GET HTTP/3
www.bestpublic.info/static/2362/60f0795c6854b6d1fc5a160a.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 500x500, components 3
Size
51 kB (51257 bytes)
Hash
a42456c7efa5c7a284306390752f2fbf
803e54053aee6f06c3f5d96a1b7106502c48414e
50a06af4b659ec7ede9c75644f47527dc9ee42e85fdb1b601567c4378d6a886f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2362/60f0795c6854b6d1fc5a160a.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: image/jpeg
content-length: 51257
last-modified: Thu, 15 Jul 2021 18:07:24 GMT
etag: "60f0795c-c839"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bm5AQ0a6wMkLhjT%2F9nxjbyet%2B%2BqNFyb2Ga92iuEZIyX85toRmGlOVynxxF%2BkHswrFNfmf1hbq1h7VQcjqL9ndDKMDAmrAegvzv2NPH21iLeUotlJ53d17UhaKjk5oxRg%2B529062Yotw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc6bbb568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/1819/60f1edfa6854b6d1fc7cb62b.jpg

188.114.96.1

200 OK

60 kB

URL GET HTTP/3
www.bestpublic.info/static/1819/60f1edfa6854b6d1fc7cb62b.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 500x500, components 3
Size
60 kB (59616 bytes)
Hash
a2b8e28229ca38478432ae732d8b643b
0d0674f078832875b5b8dbf3c4db693ae0fabde3
b85edcbd5bf1824ddd1c0dd8d730435b426b44c5e470720a6ec82f869d943142

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/1819/60f1edfa6854b6d1fc7cb62b.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: image/jpeg
content-length: 59616
last-modified: Fri, 16 Jul 2021 20:37:15 GMT
etag: "60f1edfb-e8e0"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PUuKYmtqvdy1rdzSB2Eaa6vDmUbHptmkPkch%2BxrL7OqFwYIyDW%2FXp0oNuq%2FDs8Z4BWC7z60m%2B2j4xD%2FqNY0HHj2ad3QwKH74RVmvsS4087e1UyP%2FUdYoGMicObP22Nxucwt11GaTxZc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc7bda568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/5004/60e2c1455c35faac3f550fdc.jpg

188.114.96.1

200 OK

239 kB

URL GET HTTP/3
www.bestpublic.info/static/5004/60e2c1455c35faac3f550fdc.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1600, components 3
Size
239 kB (239072 bytes)
Hash
47f1f1c28315764e410fbb10c12b3667
53bb6aae7b79aeb22ff8fdc200f479151d132fa3
36d4c2b965f59c7d182760c90337b659c5648f40ba30e16efa23569e6fc4c0d3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/5004/60e2c1455c35faac3f550fdc.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 239072
last-modified: Mon, 05 Jul 2021 10:03:40 GMT
etag: "60e2d8fc-3a5e0"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=96c%2F0n7JVTaHm4HMZQbBuHCgfN2MJVQAf%2FTgs7Q672tRRlFmo5GiFjhNCrZfl%2FqfONcVflgus%2Fb4PSSXjkgFGonYaOUA8c%2FretzlI9umTN%2BqnW6VHl4aC76v6mWV6dG5jxKVeVCA%2F8c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc7bef568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/7164/60e4daa35c35faac3f57483c.jpg

188.114.96.1

200 OK

177 kB

URL GET HTTP/3
www.bestpublic.info/static/7164/60e4daa35c35faac3f57483c.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1500x1500, components 3
Size
177 kB (176920 bytes)
Hash
9f68f91a9a48a47d7a2828fba2232d99
89b9c03dec9e913651b68f16c8ed4f1e5a3298c4
0482ba97e47a8ffff519e88e3536781935bf2d7ccab6a07319dbdb36590c0075

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/7164/60e4daa35c35faac3f57483c.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 176920
last-modified: Tue, 06 Jul 2021 22:35:15 GMT
etag: "60e4daa3-2b318"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4iyPqA3sLx9gz6arH1XdICNIxoF1mDsfG4bLtkyCFL96HucZL7HsZM20lfM%2FTjGP42F9IYovzEvbMJ3eOXGpw%2B1khLMWjGU6QUBVFcEYVFdw151cX4UI7sr%2FF17P58Q%2BKrkw0SX4HYY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc7c00568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/4753/60e4d9f55c35faac3f556eb1.jpg

188.114.96.1

200 OK

36 kB

URL GET HTTP/3
www.bestpublic.info/static/4753/60e4d9f55c35faac3f556eb1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1001x1001, components 3
Size
36 kB (36257 bytes)
Hash
0d4b7a7a3cde2fbe4f49452287f19d22
855db4efbf9f76b60d0df69e88f38528bd65ecbb
02b8436a155004b65198e09a73e7921e64adf24ae4cee71ae3c4af33db1ecd0f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/4753/60e4d9f55c35faac3f556eb1.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: image/jpeg
content-length: 36257
last-modified: Tue, 06 Jul 2021 22:32:21 GMT
etag: "60e4d9f5-8da1"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rbPNsYaRSFtBoDdncChOApKB2hvd2NBWxoW%2B1b0P7fznGr2pjkZfUTPI8UUor15FCrCzM1MOXaCS%2F2t7NFgBlaFB2r5Zphea5iDSGXr2%2BoN32iZeRY2MtrDbPTOphDQ9kTsdjrQMhi8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc8c21568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/9241/60e4da195c35faac3f55d579.jpg

188.114.96.1

200 OK

65 kB

URL GET HTTP/3
www.bestpublic.info/static/9241/60e4da195c35faac3f55d579.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1042x1042, components 3
Size
65 kB (64974 bytes)
Hash
e59193f35ec61bbdfcedb7a9dd6f78a4
cf9e58ca498fcd8192339eeece3e0c778aa2c468
82146ac4a1cda4be5cff78cf51977a7a20060f8d1d09b353ab177bf6cc325e97

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/9241/60e4da195c35faac3f55d579.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: image/jpeg
content-length: 64974
last-modified: Tue, 06 Jul 2021 22:32:57 GMT
etag: "60e4da19-fdce"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=85vjjF2C4QoQvDy0uiBm%2F9HhsNqn0nic5RLBHpX6cp9ddFsUw9xpAx5wt1H2HJ7KO31azzmDFJuaBsOY0AYq8nYSJ36iVgX8qGKxUJ0O1vYoIJOUW2tyRLJD0Lcq8xlTJkwSW1JLeVk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc8c23568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/3712/60e83ca9e9f4224eb52615b0.jpg

188.114.96.1

200 OK

20 kB

URL GET HTTP/3
www.bestpublic.info/static/3712/60e83ca9e9f4224eb52615b0.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
20 kB (20434 bytes)
Hash
c3062638197affd13ac96a163efac09d
2c4f9db3638255fb963158c11ac907e514e3e707
e3e72db843f811aa48394ddbdfdbeb6ce14f9b2eee217ec8e5eaf1ec7b0b4d9a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/3712/60e83ca9e9f4224eb52615b0.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: image/jpeg
content-length: 20434
last-modified: Fri, 09 Jul 2021 12:10:17 GMT
etag: "60e83ca9-4fd2"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EBlvgI5Qb63RM5JuDe4W4SuNv8%2FU%2FLtdQjiV6SECDL%2Bac4XGKZDAbvNz0Bt3zlCfbVOIXs8%2BLZhyLv9rjHnxcqnNBvyfm9gX523DNKL9%2BlNT9vZH%2BTzTjLj%2B%2B5y1TaQHm4pucEo5gMA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc9c26568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/1305/632b5b8bc91e3755fef8a339.jpg

188.114.96.1

200 OK

192 kB

URL GET HTTP/3
www.bestpublic.info/static/1305/632b5b8bc91e3755fef8a339.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1500x1500, components 3
Size
192 kB (191977 bytes)
Hash
84c4e86f18d14ff596b517fe0913a2fd
79798e7ced9b15b21a1c70db9c5e8ddd4fb38b99
e98260f8f8789072a79feea26a8c68009184c70f5c468d13331d31b79d8a56df

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/1305/632b5b8bc91e3755fef8a339.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: image/jpeg
content-length: 191977
last-modified: Wed, 21 Sep 2022 18:44:27 GMT
etag: "632b5b8b-2ede9"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=50xxsZsuSDgg3nuUEPYpNmaTVYi4GV14zEZrInejUJmQpHRfYzhZV8YgWyR9DUQNUn0fBxlgd4CIUvLpeTwC9iHBSIviGbHL8Jcrg7nsZ3c%2FoZbUXALbtgX54lBSlUpHA%2FoynBNp79o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc4b9e568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/2509/60e369b95c35faac3fbc0b9d.jpg

188.114.96.1

200 OK

50 kB

URL GET HTTP/3
www.bestpublic.info/static/2509/60e369b95c35faac3fbc0b9d.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1001x1001, components 3
Size
50 kB (49764 bytes)
Hash
0a252ec4e9636638f110be5eab93a96e
33f7a12b1368088b50a1a6e4f7d9910d65273b5f
e2b731476aed76ef2cab3ed943239711d62edd96ecda3d965ae4d9407b4f6bb1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2509/60e369b95c35faac3fbc0b9d.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: image/jpeg
content-length: 49764
last-modified: Mon, 05 Jul 2021 20:21:13 GMT
etag: "60e369b9-c264"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m%2Fo7DWGppCUrM0GTWYjmu3Vexl4HpRlGe3tFmoZ%2B7NH32qbhhswxobkA4C0mbV7ClyMwqPlrt4eDkWw1yAzTh%2BxL2Pf0bUg34TPFB4Gzgjka7bj1cTEK%2F3r92NHdjgdKFwaF0%2FU9dKg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc9c25568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/6802/60f88b276854b6d1fc118482.jpg

188.114.96.1

200 OK

238 kB

URL GET HTTP/3
www.bestpublic.info/static/6802/60f88b276854b6d1fc118482.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1242, components 3
Size
238 kB (238429 bytes)
Hash
05b999e6e5d6f7e020456e5e0f5d6b37
74e782ba58f3943d5f97793a3d66c592eb8f1703
0ff00ca4f9737e04969d82acaa735d7f6dcba29e4dbde40f1fe6a2dab45668c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/6802/60f88b276854b6d1fc118482.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/jpeg
content-length: 238429
last-modified: Wed, 21 Jul 2021 21:01:31 GMT
etag: "60f88b2b-3a35d"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XHUavw0ACnuNOkCa1JDg0j5MN2%2BBqgt9IGtJhjxjX8lbiZkdtg%2BaNLnw7FKIDciDunQTRT2lMZssa64wkxkmBUKA%2B%2FbMZLoFtXv%2B9ejLEmu5b1TzR803qP3b3O%2FOqTzyY48sruQqNnA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc9c2e568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/5630/60e4dda75c35faac3f5fb03e.jpg

188.114.96.1

200 OK

80 kB

URL GET HTTP/3
www.bestpublic.info/static/5630/60e4dda75c35faac3f5fb03e.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1292x1000, components 3
Size
80 kB (79690 bytes)
Hash
5cb4d2ac08301bb4c3e2e22800c9e112
3b39287ce122cb278b96d93aa436395bf875c3ab
8f528898c6f533be69f1f0ce842130c2f41c68d908a4131c9e06486c5ca2df15

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/5630/60e4dda75c35faac3f5fb03e.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: image/jpeg
content-length: 79690
last-modified: Tue, 06 Jul 2021 22:48:08 GMT
etag: "60e4dda8-1374a"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VqPY8X7tV7mwDaGFzTk8A30EMhJ%2F2wdKdEeLGkg0tLeFSoVeVX4%2BHIBPR%2FFRui3677HZ0EMNQxOEPbEeXfi8IDVqYUiakcY%2FgGd%2B5T8YDydNwfLUYldAHZzTIZZOdurxARHNjHwuJek%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc9c2f568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/images/i_sale.png

188.114.96.1

200 OK

2.2 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/images/i_sale.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
PNG image data, 81 x 83, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2224 bytes)
Hash
71bf04b2b192c1177d8700c7d538b5a1
f2054b868ee68fff37db755a1d30266419636276
35f39050ebc2493eda9c7d4744afc3ca60caecacb51165fbfa36d39a06813b87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/i_sale.png HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/includes/templates/zz/css/stylesheet.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: image/png
content-length: 2224
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 07 Jun 2024 23:34:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:40 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hz1RJ7EqBoGNvUxv3QGyctdTytZB0as9rQQSJF4Ft8fsYkKKMHKmHz9P8o1cdILeSvg00mr%2Fj1%2FT6uJ2O%2B1MTXej%2FwTrRHwxIC1N%2BQVuYV7h9V0OP15LBHSTm8eBkRQiyuqoaNto"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d4302398c568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/static/2200/60e2c0365c35faac3f530108.jpg

188.114.96.1

200 OK

241 kB

URL GET HTTP/3
www.bestpublic.info/static/2200/60e2c0365c35faac3f530108.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1600, components 3
Size
241 kB (241144 bytes)
Hash
7ef4b344a2e59acbe68c425f1a046cca
2642aa5116c451f21e398cbc0036310761288127
49dc3c23af2f69c52fe0dbb500e21f725dc832a51467b0debc5a804296111d3c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2200/60e2c0365c35faac3f530108.jpg HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: image/jpeg
content-length: 241144
last-modified: Mon, 05 Jul 2021 10:02:13 GMT
etag: "60e2d8a5-3adf8"
expires: Fri, 07 Jun 2024 23:34:39 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SHKSRZqdUhe%2F7n1GltRUhYirF3hjz%2Fjww2Z8bYi7UyXh7F0jT7vhxCjZlIwDeCrGuM4nPluYEXp4qDKt6Q9GMTkg9MrMK1iTXyid1VhrhC1nliNR4ejMfYmPNFaA%2FnRFhNkQyXrSyn4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d42fc6bbe568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/css/main.min.css?v=1.0

188.114.96.1

200 OK

31 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/css/main.min.css?v=1.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
ASCII text, with very long lines (25218)
Size
31 kB (31117 bytes)
Hash
ba191be877d1648c7b7728ecc0a7eb77
9ade154853061029357281c9b22e13e0d5f71d46
f34c0f0dcc5b876c56d1c39343f9fde7c11f9dce19c8141b1e719ab5f633b125

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/main.min.css?v=1.0 HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Thu, 09 May 2024 00:34:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bTZQhD9NyeB5nY%2BSgYk0QpPV3thhqgP69G2mIR9fZb%2BjUYFwfDUbugr4FaETeDCWyS2dtqxd1NaqMVUA8Ly5cf9YeKORSCV6ShnVPaHSVg3NNJfMqpTVcl%2FzoV2CVmeZJCCKKSbk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbcb42568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/images/favicon.ico

188.114.96.1

200 OK

13 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/images/favicon.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel
Size
13 kB (12706 bytes)
Hash
65522fdbf2c438821cdc6cf6ff05ec37
0a1b06ec47207da3b9dfe0a4806ff14fc2c74e45
2eb9393f69afdfba8381e96892d70ceabd63522dd45009ba0256b9f7b8bc8438

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/favicon.ico HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Cookie: zenid=eh4ah4m8106gnas96gfc2frkp3; language=en; currency=USD
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:41 GMT
content-type: image/x-icon
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Thu, 09 May 2024 23:34:40 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:41 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n2NqH72EGqk0OcJUSPauVbAvpupZQNA0zMNgqGUGWwIFys7W7Af2DC9v7nMUmxxWY0fS0P%2BcUGsPzZuwps7dDmiIo6oQQfB1nCqauqvJYWxJ38iaM2j%2BvP%2Bd9gs0gQDp6YWiUT%2Bm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d43092e77568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=tYAvl3IpMJOL1FPyXjRo76i6kz4_Zqz5jJ4wFXu6XIbjBFHSXpBJDrxiPWObJ0UbnQF2WQWWO-rKvK_KsDQsVBgZ9vH1rnCScw5kO8FliLmW7k7WuaPVCRth5dCLlg7c
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Wed, 08 May 2024 23:33:55 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 59
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

www.bestpublic.info/includes/templates/zz/font/icomoon.ttf

188.114.96.1

200 OK

9.6 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/font/icomoon.ttf
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon
Size
9.6 kB (9592 bytes)
Hash
8e5141e352db24a29233a2468e189b14
3bb36e1ab54481ec670c0523781212937836a8a2
afdc22749775b45f73ca80a0ad7d2a372baa7fbfb8cf2a08f0f0b402ecba6e09

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/font/icomoon.ttf HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/includes/templates/zz/css/main.min.css?v=1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: font/ttf
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 08 May 2024 23:39:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:40 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RnUyHoJwDZekdX6BcswSpHtQYiX%2B0o2wpHpjkDtbb15jlGI%2BoUZwbcrKssdlZwUdX4%2BU81vcvRKth%2FaRfdg%2FRykEj%2B85McWsR4ENj4oweeBOu3fn4nqK4%2FW7piberynhFbw8fXl6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d43019900568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/css/common.min.css?v=1.0

188.114.96.1

200 OK

10 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/css/common.min.css?v=1.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
ASCII text, with very long lines (10525), with no line terminators
Size
10 kB (10525 bytes)
Hash
34755041a5e7323e10b5b505c1e5c6d2
6be0d82f5f8b5164a90c9cb91feeba9750380198
94dbe6c83f1440dbec86d4dc8f7e4a9b69b1b7cce9f6461bee13004d0d2e5b5e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/common.min.css?v=1.0 HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:38 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Thu, 09 May 2024 00:34:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c0Blmd7M2l%2F4xV3YROiRqRuRSET639PsQjXrnT2H7SuKA%2BZ57wDtl%2BBGKn0L5MQUW2LL2wFvBZBTDOtVzX1Vv%2FxTWRvUvBUj30btcRNFG%2FJ7%2FHFpR5yy3ld6JLuqTUlNAddcXtd8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbcb3c568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/js/show.js

188.114.96.1

200 OK

3.3 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/js/show.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (3542), with no line terminators
Size
3.3 kB (3280 bytes)
Hash
11c483707baab9b31214a308c43fc152
8c81931e4158e88f660010b9e2818f6fc7f325c0
99d44523804155b9135ea5ecf95af13b3f888e35cf7717dd04d2fe340d6f7954

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/js/show.js HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Wed, 08 May 2024 23:39:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8XnOGwUB%2BRx%2FziNnZQcs12aduRVZJCA3jkupDj4tLf3p%2B43fPu5ReWa4g2sGA%2FHFn%2BklI00%2FtA187sZFopjboGD5EJu64nYEAXDWheA1xPSY78hId%2FiCz5rJAOwSZXQE5HqSfg0U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbeb5d568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/css/font_append.css

188.114.96.1

200 OK

944 B

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/css/font_append.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
ASCII text, with very long lines (997), with no line terminators
Size
944 B (944 bytes)
Hash
6d9bef5581689f5ac5942f0f334e7f59
a997c0ab7c776a7955b04b08f3d85e0e770d34a2
9579fe443de979d85a6cb637d7b9c7318017df7002370efedc3d35076617f5c1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/font_append.css HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:38 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Thu, 09 May 2024 00:34:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n6wIa1ZDH1PTBkHasMRFzHmXL3JWQTPtWoCvFGfZOSJ%2Fb1cifbuA4x6yeV25PDqTGgJPU6PTjgbD7HSLK7ADrfbTDImt9We%2BP4SRGrTaS44grJMtl7ho7KXm3XcLhDlAdZ0GDye8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbcb41568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/index.php?main_page=get_dog_config

188.114.96.1

200 OK

380 B

URL POST HTTP/3
www.bestpublic.info/index.php?main_page=get_dog_config
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (413), with no line terminators
Size
380 B (380 bytes)
Hash
e976e40db29b9d000feca29be4b34eb6
6f580ed656b8d442d7545d7af5803421ec806d69
969bf0bcdc9df733bbb5b8f197184dba44775eb9a36cbecb306eca3d09741d98

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /index.php?main_page=get_dog_config HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://www.bestpublic.info
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: zenid=vi9jp7i2l6lcgrov4kpbsa6sh4; path=/; domain=.www.bestpublic.info; HttpOnly
language=en; expires=Wed, 15-May-2024 23:34:40 GMT; Max-Age=604800; path=/
currency=USD; expires=Wed, 15-May-2024 23:34:40 GMT; Max-Age=604800; path=/
content-language: en
link: <https://www.bestpublic.info/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en-us", <https://www.bestpublic.info/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en-gb" , <https://www.bestpublic.info/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en-ca" , <https://www.bestpublic.info/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en-au" , <https://www.bestpublic.info/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en-nz" , <https://www.bestpublic.info/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en-ie" , <https://www.bestpublic.info/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en" , <https://www.bestpublic.info/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="x-default"
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AN7VuTK3D1A2ETtIPpir9PDKWt03vpVVz8pb0%2Fz3LSSJ8EXf7JZbhlARK1SG9TEb2eIr0xUfqyHAVTDXXsr3sz4vYS9%2FDfSf3MHr9LBqggCI9bLHXSX9dB3Yvu9nvgao3YgFSSeq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42ff9f30568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/languages/english/images/icon.gif

188.114.96.1

200 OK

1.2 kB

URL GET HTTP/3
www.bestpublic.info/includes/languages/english/images/icon.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
PNG image data, 49 x 32, 8-bit/color RGBA, non-interlaced
Size
1.2 kB (1233 bytes)
Hash
4b7a64715c15cc5fd05450fa59402b16
7be75d26c88e9894b55d9ecbcb4a74b821c87d7e
9225185152dd4e84cbcc0a3e0197bdffcbc036343f8333561a8b130b03a84151

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/languages/english/images/icon.gif HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/gif
content-length: 1233
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 15 May 2024 23:34:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aRfJ9NdxT9eBVeQVw6CL25pyigA96rr9E2txxGj%2BjjpQ%2B36K8vO2dYng%2BfUehSOLmfm0R78Ce61LBwXVYhMUvKSSjV8XKQPozVaxtC7cGymlFWYVvn0oH02I9Iwh89GDyDC7d2bq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d430168b7568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/languages/french/images/icon.gif

188.114.96.1

200 OK

295 B

URL GET HTTP/3
www.bestpublic.info/includes/languages/french/images/icon.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
GIF image data, version 89a, 24 x 15
Size
295 B (295 bytes)
Hash
013d1c4a57e2d88d215ae2a5fc17e225
f33c00b8fb338e3f2d7ae7a1f83ddd60514668be
b62dbc80ab2937d6863c9b00706cd959860b4a17c7ca9b7be335c0b5d214aef8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/languages/french/images/icon.gif HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/gif
content-length: 295
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 15 May 2024 23:34:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e2rOhrFylmPW3jK9fR4olxtsjGg2dSu4t7gB2a%2FSZRl%2BXDEAe%2B22wcXfoeau8ThpsVQ5mWHODJX%2FYhpImiDHQJ1ygOcUYXtEb9IWfH9PDiMs%2BfMMHhttMwOXGz3u%2BbL2b3d7ebbS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d430168ba568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/index.php?main_page=customer_loginstatus

188.114.96.1

200 OK

36 B

URL POST HTTP/3
www.bestpublic.info/index.php?main_page=customer_loginstatus
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
36 B (36 bytes)
Hash
82b17edf862f02f0317ad430aee7a879
c4d9c9db63a3dbd7cd69d4d49caedef4686db992
842963752588b8cc3ae073364fdd06a2970703123e248cc44512d1dec2ee2d00

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /index.php?main_page=customer_loginstatus HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://www.bestpublic.info
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: zenid=eh4ah4m8106gnas96gfc2frkp3; path=/; domain=.www.bestpublic.info; HttpOnly
language=en; expires=Wed, 15-May-2024 23:34:40 GMT; Max-Age=604800; path=/
currency=USD; expires=Wed, 15-May-2024 23:34:40 GMT; Max-Age=604800; path=/
content-language: en
link: <https://www.bestpublic.info/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en-us", <https://www.bestpublic.info/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en-gb" , <https://www.bestpublic.info/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en-ca" , <https://www.bestpublic.info/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en-au" , <https://www.bestpublic.info/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en-nz" , <https://www.bestpublic.info/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en-ie" , <https://www.bestpublic.info/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en" , <https://www.bestpublic.info/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="x-default"
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FL6ae8HlOK35fy%2F5ntj7Aprd25fZwL5DVekc0kqwlDMvK%2Ff63abGwgxjwXtXNlgEUlenHJTWXoQhIinVFQsGWg5nET5EMoBNsQBn9YAYnA%2FCl5KlWMd4pwiTSBwc9wtVap%2FXB2s7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d4302d9fa568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

142.250.74.131

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bestpublic.info
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 23:17:17 GMT
expires: Fri, 02 May 2025 23:17:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 519442
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.bestpublic.info/includes/templates/zz/font/zippo-custom-icons.woff

188.114.96.1

200 OK

1.2 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/font/zippo-custom-icons.woff
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
Web Open Font Format, CFF, length 1160, version 1.0
Size
1.2 kB (1160 bytes)
Hash
a590a56a7e13c9be5e4317ab4a64b88b
4510d03a11a5db93492b2840725302cbc78eb973
b621eb2cbe8e572bcb5cfe645b2d138b82a1f0ff62f2de65e372eeb12eea108b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/font/zippo-custom-icons.woff HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/includes/templates/zz/css/main.min.css?v=1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: font/woff
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 08 May 2024 23:39:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6P50bpx4wUZzEqnaQUkZFQE9Q5MSuoHIaWrasrvUzyFPpNzQiw3lMkFQ12MgqQmwt8Lmt%2BoKDmRi7SKpBiIkPAoEvLIlrzieJQshSulGzVOMTqTz1YZCjYP9TlCx6K6LSmdvAhIQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d4301a911568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/fonts-append/icomoon1.ttf?8ng78a

188.114.96.1

200 OK

1.6 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/fonts-append/icomoon1.ttf?8ng78a
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon
Size
1.6 kB (1596 bytes)
Hash
883f3ad96d0f4b688be7afda2ee86d9c
1186c3918b206008021df0d29be29996fcfaad31
9e170484d33b1c01a2545eb44a0725ac04778464077843dae232f0245d51a0e9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/fonts-append/icomoon1.ttf?8ng78a HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/includes/templates/zz/css/font_append.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: font/ttf
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 08 May 2024 23:39:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mJXgy0kA%2FsWRjP9u5see5c5ySIwJUSZkXUX0kIyniX%2FCAfOLnQMHvf87l6yxTRVt%2BeDsL8LE1xQyRD%2FZO7%2BAbOjsjCWgRmyHkFIiRBZlkI3xoJAYNSkMUltM2EuCDxpch8OlNqmN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d4301a916568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/languages/dutch/images/icon.gif

188.114.96.1

200 OK

356 B

URL GET HTTP/3
www.bestpublic.info/includes/languages/dutch/images/icon.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
GIF image data, version 89a, 24 x 16
Size
356 B (356 bytes)
Hash
76a03f2d53129797ec0c69ae4afa626e
ffe260fc13135bb12f3d94185cc4781bf5a0ffac
e53b7061b81f44cd76c766c5ab497bfd363dddfa8fc95d3d7579d80cbb5ad870

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/languages/dutch/images/icon.gif HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/gif
content-length: 356
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 15 May 2024 23:34:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4cJTjafrGY6jf57huO%2BA1velObiDhrNQmpDDYKN3IBXSfRl5iHD0Yc0ytOrh9bTAm%2BMXpWURWBgOrOTfW2yI3Ptdm%2BzXWfhfsf74TGxAI%2B9jVz2KjwJEYE0%2B8zMk7kW5DkZwZk8H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d430168c2568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/css/stylesheet.css

188.114.96.1

200 OK

116 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/css/stylesheet.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
ASCII text, with very long lines (1353)
Size
116 kB (115455 bytes)
Hash
695c58ea78c8d8ab3a16b27dafb53c97
15221f42f9c575f1f3fdabe847b1f9202b8528cd
f56ba6c69cef1da53520b7754edfd313ae46958d94e7f1d08cc3ecbf034cf334

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/stylesheet.css HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Thu, 09 May 2024 00:34:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BdvYrjyYqdiICekvDg9vJDjEjcGzlxBw3HqSs9nfvRI3xcOaeEhYSErZNzq34wv2hnyAxCi2HEv76tl7CeZMl3CTRsUaA6LMFINxFXkMha8Jo9oyfKomhvILx%2FEvtXMzcA5lUB10"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbcb49568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/index.php?main_page=selected_data

188.114.96.1

200 OK

4.2 kB

URL POST HTTP/3
www.bestpublic.info/index.php?main_page=selected_data
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (4686), with no line terminators
Size
4.2 kB (4218 bytes)
Hash
efeb92c5a700e5503de4356a6615d6d9
63e55d4a36a6df1eda3d555eca18828dfaef95c1
43b4373ea4be87215cd5da26fbf643031ea13182400c0c96c7c58daece492503

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /index.php?main_page=selected_data HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://www.bestpublic.info
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Cookie: zenid=eh4ah4m8106gnas96gfc2frkp3; language=en; currency=USD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-language: en
link: <https://www.bestpublic.info/index.php?main_page=selected_data>; rel="alternate"; hreflang="en-us", <https://www.bestpublic.info/index.php?main_page=selected_data>; rel="alternate"; hreflang="en-gb" , <https://www.bestpublic.info/index.php?main_page=selected_data>; rel="alternate"; hreflang="en-ca" , <https://www.bestpublic.info/index.php?main_page=selected_data>; rel="alternate"; hreflang="en-au" , <https://www.bestpublic.info/index.php?main_page=selected_data>; rel="alternate"; hreflang="en-nz" , <https://www.bestpublic.info/index.php?main_page=selected_data>; rel="alternate"; hreflang="en-ie" , <https://www.bestpublic.info/index.php?main_page=selected_data>; rel="alternate"; hreflang="en" , <https://www.bestpublic.info/index.php?main_page=selected_data>; rel="alternate"; hreflang="x-default"
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YtrcXBYooRiTBoKDOqVbyyUdXmfBtlAP7lPtqSFSUHpTmLwdZXhQ8ZAOkgDv4rcJu2DDyepItB4GeqphWHxDfXnRCdtlzyDCaVAk0gr4rskDG5Ij5tTU9aIMfnzsoCNf7OuRIOM5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d43082dbb568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/templates/zz/js/jquery.cookie.js

188.114.96.1

200 OK

3.7 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/js/jquery.cookie.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3858), with no line terminators
Size
3.7 kB (3731 bytes)
Hash
4afc396961d087387944aeae391bb17e
bfda399ab5d56939ee3ba464d5f8c12862a76dba
2ec95b45153d555e26dbacb2b4a9ab4bbfdf4df6670257e5f2582327dcf8672b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/js/jquery.cookie.js HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Wed, 08 May 2024 23:39:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kKGvY5JpS6OEeFDEtf3RSZ4zZ%2BFxx5GohJbl9uftworT6h%2BtcD9SPOBbCX7TjQsv4pIajlctfdNHc6mEjzha2ONd7tgOpVIxtToDpDvvb7Jspiz%2Bl9qG%2F48Mc81Fyz9g7WvKM%2FXL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbdb51568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bestpublic.info/

104.21.32.21

301 Moved Permanently

99 kB

URL User Request GET HTTP/2
bestpublic.info/
IP
104.21.32.21:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type

Size
99 kB (98971 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Wed, 08 May 2024 23:34:36 GMT
content-type: text/html; charset=iso-8859-1
location: http://www.bestpublic.info/
content-language: en
link: <(null)://(null)(null)>; rel="alternate"; hreflang="en-us", <(null)://(null)(null)>; rel="alternate"; hreflang="en-gb" , <(null)://(null)(null)>; rel="alternate"; hreflang="en-ca" , <(null)://(null)(null)>; rel="alternate"; hreflang="en-au" , <(null)://(null)(null)>; rel="alternate"; hreflang="en-nz" , <(null)://(null)(null)>; rel="alternate"; hreflang="en-ie" , <(null)://(null)(null)>; rel="alternate"; hreflang="en" , <(null)://(null)(null)>; rel="alternate"; hreflang="x-default"
x-cache: MISS
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y2gHg0ZXkbT5f45TZHstxyKYCJRvogATM9WQYI1UgdtJhYldKcuGsbABWeZhZoKsHI21SjuMR48cSrTXAUixpEbbRY1XQLVFkWlSE08jXGuJqWoE8v2TU1gG8kE7fa3b3Mk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880d42eb2a0d56aa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.bestpublic.info/includes/templates/zz/js/math.js

188.114.96.1

200 OK

668 kB

URL GET HTTP/3
www.bestpublic.info/includes/templates/zz/js/math.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type

Size
668 kB (667902 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/js/math.js HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Fri, 29 Mar 2024 07:49:22 GMT
cache-control: max-age=14400
expires: Wed, 08 May 2024 23:39:38 GMT
x-cache: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nOPU822ELa6n7oATolvKne%2BScEXXt2NtyVQEjNKbsXAzlfGZNLo6fp7CoDMfCqLb0aGPTzIOMNxryjkGOSYdktad1nX5JfH%2F2F5jVOEdMJEpORk4BUldZfFtNtVGu6LtceTlMOgj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d42fbeb5a568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/languages/italian/images/icon.gif

188.114.96.1

200 OK

94 B

URL GET HTTP/3
www.bestpublic.info/includes/languages/italian/images/icon.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
GIF image data, version 89a, 24 x 15
Size
94 B (94 bytes)
Hash
d56ff8d06072afcedc9efbae308949ac
f34e669cda6b19091466ffb618a324490e84ee7c
ae793be450080e0c773c31fc00daecbb0828d5eff5542dab87ae108c98e7422f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/languages/italian/images/icon.gif HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/gif
content-length: 94
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 15 May 2024 23:34:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ym3GE5vNziBkvXVUaaqjbsR5r15pK4g1W9I445kdGcn3DFIrbqqqfVyqA5YQnlLSwesCbzr57wMQmPpTkSQuS9GaPJI8vDz4z0TYKGEGaaJp97lJwzHBXBOikG7hGJ%2FFep0T3RwF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d430168be568b-OSL
alt-svc: h3=":443"; ma=86400

www.bestpublic.info/includes/languages/spanish/images/icon.gif

188.114.96.1

200 OK

370 B

URL GET HTTP/3
www.bestpublic.info/includes/languages/spanish/images/icon.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
GIF image data, version 89a, 24 x 15
Size
370 B (370 bytes)
Hash
3748f4226c70f5578a8f31ca1947044a
a9f8304be2414d6832c5d5f21a6f7bc139d4cb32
1afc8e9fbefc7f2e684e9ccfcaef9250d113d9d21a8b7200c647a0e2015c0ee6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/languages/spanish/images/icon.gif HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/gif
content-length: 370
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 15 May 2024 23:34:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xASkFq6mdpqN%2FgkbjfDZH47wPjE0W2I1QMsvoFDNK%2BlymEXgsNFazSiZF818iw3JnHV84dYojhyjBQxUVfbZhs1rutvqw%2BI0Ah4%2BPkKnIltqGUee4yPTWmMxlXREb4ANckfwE%2BTP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d430168c0568b-OSL
alt-svc: h3=":443"; ma=86400

dog.theurl.fun/dog.js

188.114.96.1

200 OK

21 kB

URL GET HTTP/2
dog.theurl.fun/dog.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerLet's Encrypt
Subjecttheurl.fun
FingerprintCE:35:82:47:76:0E:AC:7D:47:6C:94:DB:A4:3C:95:25:73:80:6B:0B
ValidityThu, 11 Apr 2024 10:03:30 GMT - Wed, 10 Jul 2024 10:03:29 GMT

File type

Size
21 kB (20650 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dog.js HTTP/1.1
Host: dog.theurl.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 23:34:40 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
x-cache: MISS
cache-control: max-age=14400
cf-cache-status: HIT
age: 3978
last-modified: Wed, 08 May 2024 22:28:22 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8XddOz1etKGlGzSh1mYN1VilGiz5Wfc57569bGBYCQ8tUyRg%2B%2F%2FeKcXsOnK9A7bYDQ%2FWZmBABzBrMzd5tbBSR7KcX3fSX3KXAkkf%2BzvQs0vXgxSYPut4u85ZQdhp4zu3OQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d43085849568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.bestpublic.info/includes/languages/german/images/icon.gif

188.114.96.1

200 OK

113 B

URL GET HTTP/3
www.bestpublic.info/includes/languages/german/images/icon.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestpublic.info/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestpublic.info
FingerprintFB:A4:CC:13:43:A3:61:80:A3:F1:B3:D4:B6:B4:2D:0F:C6:BC:5C:8E
ValidityThu, 28 Mar 2024 01:07:00 GMT - Wed, 26 Jun 2024 01:06:59 GMT

File type
GIF image data, version 89a, 24 x 15
Size
113 B (113 bytes)
Hash
a8322202d4482003fa45a989beb83b3d
7fcc605f48d6ac6a8e1f8cbd703e396e269dda4e
e3ca5080e33b648425002ba39b9652478fdc46d89545602f89daf40cacf6e861

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/languages/german/images/icon.gif HTTP/1.1
Host: www.bestpublic.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestpublic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 23:34:39 GMT
content-type: image/gif
content-length: 113
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 15 May 2024 23:34:39 GMT
x-cache: MISS
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 23:34:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Og%2Bwou%2FvL0OahrVYc3fLIQu4I1jFZLW8KjyGskbwCSf5nAhdwyndH9YM3uhGu%2Far2BQZwlwuesp7EHQDr2FgT7ELJtLgQ2HB7rluKkL%2BmyymVSXvRGQngBV5kR2azLsFSBgjYOHU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d430168bd568b-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML