Overview

URL pragmaticinquiry.org/gpsvwfw.exe
IP98.124.252.145
ASNAS21740 eNom, Incorporated
Location United States
Report completed2019-02-17 16:45:15 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-02-17 2 pragmaticinquiry.org/gpsvwfw.exe Malware
2019-02-17 2 www.pragmaticinquiry.org/gpsvwfw.exe Malware
2019-02-17 2 www.pragmaticinquiry.org/gpsvwfw.exe Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-includes/js/wp-emoji-release.min.js?ver=5.0.3 Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-content/themes/generatepress_child/style.css?ve (...) Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-includes/css/dist/block-library/style.min.css?v (...) Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-content/plugins/gp-premium/blog/functions/css/s (...) Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-content/themes/generatepress/css/unsemantic-gri (...) Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-content/themes/generatepress/css/mobile.min.css (...) Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-content/themes/generatepress/style.min.css?ver=2.2.2 Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-content/plugins/gp-premium/menu-plus/functions/ (...) Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-content/plugins/ultimate-social-media-icons/css (...) Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-content/plugins/ultimate-social-media-icons/js/ (...) Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-content/plugins/gp-premium/menu-plus/functions/ (...) Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-content/plugins/ultimate-social-media-icons/js/ (...) Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-content/themes/generatepress/js/navigation-sear (...) Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-includes/js/wp-embed.min.js?ver=5.0.3 Malware
2019-02-17 2 www.pragmaticinquiry.org/wp-content/themes/generatepress/fonts/generatepres (...) Malware
DNS-BH  No alerts detected
mnemonic secure dns
Added / Verified Severity Host Comment
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted
2019-02-17 2 pragmaticinquiry.org Blacklisted


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 98.124.252.145

Date UQ / IDS / BL URL IP
2019-05-24 01:10:25 +0200
0 - 0 - 6 pragmaticinquiry.org/gpsvwfw.exe 98.124.252.145
2019-04-19 16:22:57 +0200
0 - 0 - 2 pragmaticinquiry.org/gpsvwfw.exe 98.124.252.145
2019-02-17 20:06:57 +0100
0 - 0 - 48 pragmaticinquiry.org/gpsvwfw.exe 98.124.252.145
2019-02-17 20:06:00 +0100
0 - 0 - 44 https://www.pragmaticinquiry.org/gpsvwfw.exe 98.124.252.145
2019-02-17 16:44:56 +0100
0 - 0 - 44 https://www.pragmaticinquiry.org/gpsvwfw.exe 98.124.252.145
2018-03-19 21:22:48 +0100
0 - 0 - 0 reactionpm.com/bruno/index.php 98.124.252.145
2018-01-28 20:39:23 +0100
0 - 0 - 1 pragmaticinquiry.org/A9C52F470AE5AE6F18C051CA (...) 98.124.252.145
2018-01-28 16:39:34 +0100
0 - 0 - 1 pragmaticinquiry.org/A9C52F470AE5AE6F18C051CA (...) 98.124.252.145
2018-01-27 15:11:01 +0100
0 - 0 - 1 pragmaticinquiry.org/A9C52F470AE5AE6F18C051CA (...) 98.124.252.145
2018-01-25 17:06:42 +0100
0 - 0 - 4 pragmaticinquiry.org/A9C52F470AE5AE6F18C051CA (...) 98.124.252.145

Last 10 reports on ASN: AS21740 eNom, Incorporated

Date UQ / IDS / BL URL IP
2019-06-10 15:52:06 +0200
0 - 0 - 1 jerkybuy.com/transacciones/83.58.109.913516/c (...) 98.124.199.46
2019-06-09 14:21:22 +0200
0 - 0 - 1 englishgarden.net/index.php 98.124.199.107
2019-06-09 13:37:25 +0200
0 - 0 - 1 pipersoperahouse.net/cast/bookmark 98.124.199.102
2019-06-09 11:26:35 +0200
0 - 0 - 3 weldmaster.com/zyq/bigtyme/nD 98.124.199.24
2019-06-09 11:23:21 +0200
0 - 0 - 3 weldmaster.com/gp 98.124.199.24
2019-06-07 08:05:50 +0200
0 - 0 - 4 kelownatownhomes.com/g76ub76 98.124.199.89
2019-06-05 08:06:09 +0200
0 - 0 - 6 suncoastot.com/webpage/forms/SCHOOLAGE_CHECKL (...) 98.124.252.176
2019-06-04 14:10:51 +0200
0 - 0 - 1 hal9000.ehost-services142.com/n53s3pog/hyimeh7.exe 69.64.156.54
2019-06-03 00:43:35 +0200
0 - 0 - 1 zkaoo.com/download/update/update.exe 98.124.199.125
2019-06-02 19:58:16 +0200
0 - 1 - 0 ncdrive.com/wow.exe 98.124.199.68

Last 10 reports on domain: pragmaticinquiry.org

Date UQ / IDS / BL URL IP
2019-05-24 01:10:25 +0200
0 - 0 - 6 pragmaticinquiry.org/gpsvwfw.exe 98.124.252.145
2019-05-24 01:08:41 +0200
0 - 0 - 2 https://www.pragmaticinquiry.org/gpsvwfw.exe 209.59.190.120
2019-04-24 04:42:34 +0200
0 - 0 - 2 https://www.pragmaticinquiry.org/8y6ghhfg 209.59.190.120
2019-04-19 16:28:00 +0200
0 - 0 - 2 https://www.pragmaticinquiry.org/gpsvwfw.exe 209.59.190.120
2019-04-19 16:22:57 +0200
0 - 0 - 2 pragmaticinquiry.org/gpsvwfw.exe 98.124.252.145
2019-02-17 20:06:57 +0100
0 - 0 - 48 pragmaticinquiry.org/gpsvwfw.exe 98.124.252.145
2019-02-17 20:06:00 +0100
0 - 0 - 44 https://www.pragmaticinquiry.org/gpsvwfw.exe 98.124.252.145
2019-02-17 16:44:56 +0100
0 - 0 - 44 https://www.pragmaticinquiry.org/gpsvwfw.exe 98.124.252.145
2018-01-28 20:39:23 +0100
0 - 0 - 1 pragmaticinquiry.org/A9C52F470AE5AE6F18C051CA (...) 98.124.252.145
2018-01-28 16:39:34 +0100
0 - 0 - 1 pragmaticinquiry.org/A9C52F470AE5AE6F18C051CA (...) 98.124.252.145


JavaScript

Executed Scripts (30)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (48)


Request Response
                                        
                                            GET /gpsvwfw.exe HTTP/1.1 
Host: pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         98.124.252.145
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:43 GMT
Content-Length: 178
Connection: keep-alive
Location: http://www.pragmaticinquiry.org/gpsvwfw.exe


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /gpsvwfw.exe HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         98.124.252.145
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:45 GMT
Content-Length: 20
Connection: keep-alive
X-Powered-By: PHP/5.6.31
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: https://www.pragmaticinquiry.org/gpsvwfw.exe
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20
Md5:    7029066c27ac6f5ef18d660d5741979a
Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4
Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "F983682730884294C7A3C2633ABD0AB4FD7264517381BCBCA866F70B8DF9C008"
Last-Modified: Thu, 14 Feb 2019 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43200
Expires: Mon, 18 Feb 2019 03:44:46 GMT
Date: Sun, 17 Feb 2019 15:44:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    743f36131d4f1a527d6d02aae7b74549
Sha1:   e772f2208ccf63990a67ffe543d49af194cf7d16
Sha256: f983682730884294c7a3c2633abd0ab4fd7264517381bcbca866f70b8df9c008
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.113
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Thu, 14 Feb 2019 23:17:37 GMT
Etag: "580147684556011bb1f08cd79363ba83893db847"
Content-Length: 1396
Cache-Control: public, no-transform, must-revalidate, max-age=37487
Expires: Mon, 18 Feb 2019 02:09:33 GMT
Date: Sun, 17 Feb 2019 15:44:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1396
Md5:    0fe4ce1a97fd734057c46ba03a70679a
Sha1:   580147684556011bb1f08cd79363ba83893db847
Sha256: 05bdbad8bcb3886291b3125bc8736ca654d0e7012581c611ccecae3e10b600c4
                                        
                                            GET /gpsvwfw.exe HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         98.124.252.145
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:47 GMT
Content-Length: 8467
Connection: keep-alive
X-Powered-By: PHP/5.6.31
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.pragmaticinquiry.org/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8467
Md5:    b6c038bcacea67c5fc4e7b3d54fa7d26
Sha1:   1c1e32e9da91d871f4ec59a1296d5a4cfabcb9ae
Sha256: 8b69b72f821e732f8a2e8d93de1c0bf251a6beffadab7028bf3406673bfdaf79

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 17 Feb 2019 15:44:47 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    dc2483f81b9902f61e0dbcf701a885f9
Sha1:   a3440907d0cd11b9091577af56e409ecd1fd10cf
Sha256: adbf77dec4c9380f4c603795100a7053e6c3d1ee3350f60bfad4eafebc7b8ae5
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 17 Feb 2019 15:44:47 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /css?family=Open+Sans:300,300italic,regular,italic,600,600italic,700,700italic,800,800italic|Tinos:regular,italic,700,700italic|Roboto:100,100italic,300,300italic,regular,italic,500,500italic,700,700italic,900,900italic HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 17 Feb 2019 15:44:47 GMT
Date: Sun, 17 Feb 2019 15:44:47 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   745
Md5:    a7e780b4bff2b03f7733f21ca9709433
Sha1:   8aa587107236f87013517273f2856211c95cec3d
Sha256: 162a4b3a98cdaa2315f977a0ae3bfaf0d99dbf3f8bb33094508155e650ef6976
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.0.3 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:47 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970a-2efa"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4382
Md5:    fe05400b94a75668a17a99986b4658c3
Sha1:   3b1592b054709be35f5a809244e1117dcb02633e
Sha256: aad5379b020a7c8e338871e1dd0090f6dde8662a1f2053cce95c0fcbcf412116

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/generatepress_child/style.css?ver=1548916494 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:47 GMT
Content-Length: 255
Last-Modified: Thu, 31 Jan 2019 06:34:54 GMT
Connection: keep-alive
Etag: "5c52970e-ff"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII C program text, with CRLF line terminators
Size:   255
Md5:    492327f0d88ad2d055581d06770af6e2
Sha1:   5298ca7b326e86185ed8a29c66fd46ef356d6e84
Sha256: f22691711c373a3444980cc32ab028fa86dad687c1b386e14847a47ce8b88e73

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.0.3 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:47 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970a-643a"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4302
Md5:    536e26727e020e7e2aa427cd61723c0a
Sha1:   26c58f761b7c2f1a4d2fbf0ed136afe5ff7df842
Sha256: 5a58cc2e81afa9b9d577abffd5e2b8e2fbbfb53539057e97b3b56ea8c9864dc1

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/plugins/gp-premium/blog/functions/css/style-min.css?ver=1.7.7 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:47 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970b-1474"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1047
Md5:    b1d4072bb75e80e68fa739c1aae62ec1
Sha1:   4d6df4ee3ad160d236d7dba0c171a95cad991e32
Sha256: 1d1c4f8dc34f7bdf70bebdd8e8ac7d936502389f84aa412568734a2d243c334a

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/generatepress/css/unsemantic-grid.min.css?ver=2.2.2 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:47 GMT
Last-Modified: Thu, 31 Jan 2019 14:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c530abf-3107"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2217
Md5:    5e5b8890de8fe7f0896a6e108b725cf0
Sha1:   10a845edf48349a2ad4bfc78b1ec529ef6730b92
Sha256: c697cf48a6b6ef188699894dac48d5fa2148f7dc4cb7dda4306c540f5ac4d2cc

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/generatepress/css/mobile.min.css?ver=2.2.2 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:47 GMT
Last-Modified: Thu, 31 Jan 2019 14:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c530abf-1064"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1236
Md5:    05e4f7c4d9a067cc396c160f9c1c9994
Sha1:   ab4bde46448082bd1413fd4e79c5db7689df1373
Sha256: 81d7214ca381e1ddd04b1bd686bdad562913ef35a3224251eb3aca9fc3cb6f8d

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/generatepress/style.min.css?ver=2.2.2 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:47 GMT
Last-Modified: Thu, 31 Jan 2019 14:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c530abf-63ca"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5722
Md5:    00dd0ee334ba31b208e8501b4a311d00
Sha1:   85db7d9c519e950fe6c5c8a69fc267f341f3523b
Sha256: 1488e58a5d4dce77aea001e06a561ed7b43a5c535e79cd4d82f608ab5196b2a3

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/plugins/gp-premium/menu-plus/functions/css/sticky.min.css?ver=1.7.7 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970b-523"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   432
Md5:    02dc5a5fda3f283b6dc0a8278d8f8b25
Sha1:   7e33f322cca5176bed79cba36a0e58ed4ccdd053
Sha256: 7717d2c90d630d4da4442e74c7ab859d90823735659de939d0a309f55ffb41da

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css?ver=5.0.3 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:47 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970e-c2dd"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8647
Md5:    7d0584fd8b1b7b844f9e28347c8123ff
Sha1:   f89e5c366fedad2d757bb3c60c25a6f4b21ee55b
Sha256: 0628af020d2a573fa36484e28b0f6765809b740ad64687e47f0156c11703b4e8

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970a-2748"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4014
Md5:    a6c81e2f02bd04160d2de88c4e8f3559
Sha1:   e3f3c91427d785820ca97dabe738f01faf041f36
Sha256: b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970a-17ba0"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33799
Md5:    252047cc64c4b1980fafe6abca669f06
Sha1:   912b757d6d268e5e94f09581c5dec4d72c64b219
Sha256: 1045d98023671ce42bbcb900f609fe49c335479963cdfab1f1824f1db18892dc

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=5.0.3 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970d-c02"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1487
Md5:    d9adcb83a6fe961d6a0af652dd950cf3
Sha1:   cf23a24562f4119a18e67cb4ff7b1617e466c225
Sha256: 5c83cfcbc57fced25f34b1de03258b124446522f2762e3702eef72ff4c9be0a5

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/plugins/gp-premium/menu-plus/functions/js/sticky.min.js?ver=1.7.7 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970b-20e1"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2797
Md5:    fe78a1b9afec228bcb7afcb2f1c28495
Sha1:   6e76a98b9ba331e5a6c02c272e993ae0f023ff03
Sha256: c1854e9eb4c8abe8b9785093431b8cd22378bd4777104627e3a79ffc8256adb2

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/plugins/gp-premium/general/js/smooth-scroll.min.js?ver=1.7.7 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970b-1ae3"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2712
Md5:    81eb65147fdacd9de7c9fa223d655006
Sha1:   e8bbf6d4f3a08fe63809d130ca4ae276e1c83669
Sha256: eebd53c97b83fc2ee308d71919dc4fd979682934629c156dc6c61e0b6ff8f4b2

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970a-fa0"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1821
Md5:    4664a831e60a807962a0341122693831
Sha1:   0c582fa939884d543af617c2bad977157f8c319b
Sha256: f1320f1c4d030cd930d721d93ea112dc789295f06afc8a3381c922a92b077f0d

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=125796
Date: Sun, 17 Feb 2019 15:44:48 GMT
Etag: "5c68bb8d-1d7"
Expires: Tue, 19 Feb 2019 02:41:24 GMT
Last-Modified: Sun, 17 Feb 2019 01:40:29 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    f1993e5f7b90e2a57bc7bd4e1d933ded
Sha1:   e05b11543ef473a4814d24924feb3c61fe5b6f13
Sha256: b8486ee9a3769c246c1793850c8474d56b8ec578747069c7be2f0f726d8aae91
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=168495
Date: Sun, 17 Feb 2019 15:44:48 GMT
Etag: "5c695f90-1d7"
Expires: Tue, 19 Feb 2019 14:33:03 GMT
Last-Modified: Sun, 17 Feb 2019 13:20:16 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    87657f8713eed54db85bfa9053f19ed7
Sha1:   faff6f5830a80d4b1b29fe4a1db690f50118327f
Sha256: 180dd00ebac8c6be3359b60ccc1cdea5114041b7294a9ed134ba394aa7c0fadc
                                        
                                            GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=5.0.3 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970d-2f18"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4328
Md5:    cdf073603035026a4d55232f0dab2fbd
Sha1:   758f0bbceda5c83e7549e1834313c5e10609fe17
Sha256: daefd0d60e0781754a5ddb1b7601b1d38f53cbeb91120eeeaa7841bbc912cf46

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=5.0.3 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970d-5c0"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   697
Md5:    c70c4639aa4137958f14f0e737fca12a
Sha1:   5cd2f746a4d799e5748e1fff720706bd9e092689
Sha256: 5474c08cf4933aa755055e15e16fbc675adf04975b9265b5f8bf878ca9bcc4b8

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/01/cropped-PI_Masthead.png HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Content-Length: 31296
Last-Modified: Thu, 31 Jan 2019 06:34:55 GMT
Connection: keep-alive
Etag: "5c52970f-7a40"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 715 x 89, 8-bit/color RGBA, non-interlaced
Size:   31296
Md5:    f6f9dd40cf12d042454bf182bad244ea
Sha1:   984d2688e1c625442dd11cce654fff6827d6a9d9
Sha256: af6a56c8a361d209b3dcc0451a180b6b18edfb4a11ff16056ab79e6395b14a7b

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=5.0.3 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970d-4771"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3708
Md5:    ff962973a97bf2bbc9917a243beaf116
Sha1:   7de53afadd48fdf55cf2a3afc0cf5acbc25903ed
Sha256: 77db4f5cf0aa2e0532674f38255d5004939e76ce33ace110307c112b579e08be

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/generatepress/js/menu.min.js?ver=2.2.2 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 14:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c530abf-100d"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1094
Md5:    853e3be0c606fcc10c4f35820004eeb3
Sha1:   77ecad874edb310b4fcc5fa830e7a023ec945aeb
Sha256: 0c3da055cde5a77d1b425c7720b4d4ad8057bb4a6ca99350256c3313f8e953d9

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/generatepress/js/a11y.min.js?ver=2.2.2 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 14:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c530abf-80d"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   777
Md5:    9b635ce397b891b93c3fed9fa5367fda
Sha1:   31323a14a893bad04f75e6ad24737210d7c1b83a
Sha256: 42ea7a94b9fcad70afcbe29a9f839e6d6093b33a8d2ce0007c493f51d91a6753

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /en_US/sdk.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Expose-Headers: X-FB-Content-MD5
X-XSS-Protection: 0
Etag: "435ee64464cab13e9d2315c8e9140ec0"
X-Frame-Options: DENY
Content-Encoding: gzip
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Accept-Encoding
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' chrome-extension://boadgeojelhgndaghljhdicfkmllpafd chrome-extension://dliochdbjfkdbacpmhlcpmleaejidimm;
Expires: Sun, 17 Feb 2019 16:02:47 GMT
x-fb-content-md5: 080becdb5f8fe675780d6b4027cb34e2
Content-MD5: IOHX9mszX3ycXRUJUDjCag==
X-FB-Debug: E5Pi9i5KN56z+4uW12n4ad3mj3BLIuUqiMoe0x2x2FApcXUF1zsQO04tojhwk9CDeZqg0kPXl3V8OKBlRCq6jg==
Date: Sun, 17 Feb 2019 15:44:48 GMT
Connection: keep-alive
Content-Length: 1745


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1745
Md5:    20e1d7f66b335f7c9c5d15095038c26a
Sha1:   d305635ddb7180f117c1746ddcc8af5a12947387
Sha256: c0f0f344e4ce8ead144bd2bb8d7a9d5a7eada45f97caae48910eaf15cc7bf3ed
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 17 Feb 2019 15:44:48 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    0691bd665efcab15dd35c545388fea37
Sha1:   1a8dc3cedebc7a630cab5037df13dd68d82ca411
Sha256: d2e25e6525c8a93d2cdc1877d98f3de545859c4871442f65c796d96f13382a42
                                        
                                            GET /wp-content/themes/generatepress/js/navigation-search.min.js?ver=2.2.2 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 14:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c530abf-81b"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   688
Md5:    1db3e870c745fceba421b907a6225760
Sha1:   b3a520c5546f2cf0e158eaadee51580fc8fc031d
Sha256: d3e73083660c165c730568e5a8ddf47eaf3617684fb74277059ed4b91993abe1

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.0.3 HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Last-Modified: Thu, 31 Jan 2019 06:34:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c52970a-57b"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   753
Md5:    8151177dccb399a75164172bb63b0491
Sha1:   0a2a5bf7eaa29bb8690a657bbc982360802ab41b
Sha256: 71d58666e959b9ea4a90f83fa5926fced7f92c084a098ee23ec450054b7292a8

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/generatepress/fonts/generatepress.woff HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/wp-content/themes/generatepress/style.min.css?ver=2.2.2

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Content-Length: 2716
Last-Modified: Thu, 31 Jan 2019 14:48:31 GMT
Connection: keep-alive
Etag: "5c530abf-a9c"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  data
Size:   2716
Md5:    2e147fd857fc952d9ab867982bfc1dc9
Sha1:   87041c2edcb96076325a07352e01c6d7e47a1d1b
Sha256: e07e8b5b4ffcf48fca723ebe3ed328e95fb68ad9e478d83dbeb6999bfc09658f

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=168313
Date: Sun, 17 Feb 2019 15:44:48 GMT
Etag: "5c695ae0-1d7"
Expires: Tue, 19 Feb 2019 14:30:01 GMT
Last-Modified: Sun, 17 Feb 2019 13:00:16 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    19dd71a3f3f7604897e09b6377e6cc5b
Sha1:   884466d4de35fa6ebf636492bc7cbad80f270c2f
Sha256: 189c828d4f9687d18806891e6c56792bd74589cd170b6235f60226219d395fe3
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 17 Feb 2019 15:44:49 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    099f70bc95e862fe8e95a3aa6ef67e9f
Sha1:   85ce88628b156a7ad7a5210dde9dffa678565b87
Sha256: 64e2703095138a78914fd8f2dfbbff0522a56a847f625367d78b12bb6d8b781e
                                        
                                            GET /widgets.js HTTP/1.1 
Host: platform.twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         93.184.220.66
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Content-Encoding: gzip
Cache-Control: public, max-age=1800
Date: Sun, 17 Feb 2019 15:44:49 GMT
Etag: "fea26becff163da78dd1cdd52ecc6adc+gzip"
Last-Modified: Tue, 12 Feb 2019 18:31:21 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71B)
Vary: Accept-Encoding
X-Cache: HIT
Content-Length: 28030


--- Additional Info ---
Magic:  gzip compressed data, from Unix, last modified: Tue Feb 12 19:31:21 2019
Size:   28030
Md5:    07252920594e1ddb64e0f8b0ea057a41
Sha1:   05b341766ec09928381899183a071a3560f359e5
Sha256: 16e039f4066a26147b556e3062baca3b9610719912f6a57261fbc05e79f5e0a0
                                        
                                            GET /en_US/sdk.js?hash=11119ed727b866cef13ea73a970272f2 HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
X-XSS-Protection: 0
Etag: "87e32195fd390f0f66e7c490ed77a466"
X-Frame-Options: DENY
Content-Encoding: gzip
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Cache-Control: public,max-age=31536000,stale-while-revalidate=3600,immutable
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: X-FB-Content-MD5
Vary: Accept-Encoding
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Expires: Mon, 17 Feb 2020 15:01:52 GMT
x-fb-content-md5: afff29c036fc91d78c6a287568fb02c5
Content-MD5: 01A7T8KYW1Kgd7kmq56M/g==
X-FB-Debug: NhU07iAOJvreupjv6Qs5wyLkbRp+32m36OOtw2eyHPv/vKQPu1AU6fS5MZbBuNXKxkOYipf3fyprXkKoh+q8gw==
Date: Sun, 17 Feb 2019 15:44:49 GMT
Connection: keep-alive
Content-Length: 58578


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   58578
Md5:    d3503b4fc2985b52a077b926ab9e8cfe
Sha1:   e9eae6ebc17f084e9ca8337437b89ea49428f073
Sha256: 23e5be6d621f310e5be6bd18d6ac02b77fde01a9c3a55659b2c6e85649638bbe
                                        
                                            GET /js/plusone.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Timing-Allow-Origin: *
Etag: "25018f601637af4ac1c960368ec9691c"
Expires: Sun, 17 Feb 2019 15:44:49 GMT
Date: Sun, 17 Feb 2019 15:44:49 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: NID=160=ZhLzie_jwzSB0YViJjuWdub8fqE3rBEXu7PyI_n6ZW9Iz4LezDYfsQPPSn3LN70Czf9N50B5JHU75XrrznqGK8z85NEaAT6PEVLVKoPhG1I8DQWt_9Avp4RO5Qbxsp4dkCbM0n2HEBqm107foF1WnrL9bQonrSuZIm5HFYlz5PU;Domain=.google.com;Path=/;Expires=Mon, 19-Aug-2019 15:44:49 GMT;HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16815
Md5:    ccdf32fed9388037dcb45205008f9dd8
Sha1:   9126e75a90e87d5ae43a7f9c2b83c0c329b49937
Sha256: b5eab3fbb7cd12e8962f969839d8892e07a18bdabf24f218f0955c6df847d1e0
                                        
                                            GET /s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0d.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,300italic,regular,italic,600,600italic,700,700italic,800,800italic|Tinos:regular,italic,700,700italic|Roboto:100,100italic,300,300italic,regular,italic,500,500italic,700,700italic,900,900italic
Origin: https://www.pragmaticinquiry.org

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 17704
Date: Thu, 07 Feb 2019 11:12:19 GMT
Expires: Fri, 07 Feb 2020 11:12:19 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:44 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 880350
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  data
Size:   17704
Md5:    bf2d0783515b7d75c35bde69e01b3135
Sha1:   0e92462e402c15295366d912a7b8be303d0257d8
Sha256: 054349dda27b80bb105fbc59b5973ef9889ed976aca1fbe39f77688dcff8c552
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.en_US.LDL3x_JdBVc.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=wQ/rs=AGLTcCMRiBBtr07eIOeY_RnI2x8Chi9xXw/cb=gapi.loaded_0 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe
Cookie: NID=160=ZhLzie_jwzSB0YViJjuWdub8fqE3rBEXu7PyI_n6ZW9Iz4LezDYfsQPPSn3LN70Czf9N50B5JHU75XrrznqGK8z85NEaAT6PEVLVKoPhG1I8DQWt_9Avp4RO5Qbxsp4dkCbM0n2HEBqm107foF1WnrL9bQonrSuZIm5HFYlz5PU

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 46755
Date: Sat, 16 Feb 2019 00:33:38 GMT
Expires: Sun, 16 Feb 2020 00:33:38 GMT
Last-Modified: Thu, 14 Feb 2019 23:43:12 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, immutable, max-age=31536000
Age: 141071
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   46755
Md5:    2ef9b3067f9bfdee4286ae6519611f51
Sha1:   0d1f8005e0bb7c4af433524d7e88c28abf144895
Sha256: 3c1f98a613336e07e42343b9186e1b91780a6e516d872829c6a7a5cdfe481891
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,300italic,regular,italic,600,600italic,700,700italic,800,800italic|Tinos:regular,italic,700,700italic|Roboto:100,100italic,300,300italic,regular,italic,500,500italic,700,700italic,900,900italic
Origin: https://www.pragmaticinquiry.org

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19888
Date: Thu, 07 Feb 2019 21:28:31 GMT
Expires: Fri, 07 Feb 2020 21:28:31 GMT
Last-Modified: Mon, 16 Oct 2017 17:33:11 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 843377
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  data
Size:   19888
Md5:    cf6613d1adf490972c557a8e318e0868
Sha1:   b2198c3fc1c72646d372f63e135e70ba2c9fed8e
Sha256: 468e579fe1210fa55525b1c470ed2d1958404512a2dd4fb972cac5ce0ff00b1f
                                        
                                            GET /wp-content/uploads/2019/01/cropped-PI_Icon-192x192.png HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:48 GMT
Content-Length: 52919
Last-Modified: Thu, 31 Jan 2019 06:34:55 GMT
Connection: keep-alive
Etag: "5c52970f-ceb7"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 192 x 192, 8-bit/color RGBA, non-interlaced
Size:   52919
Md5:    d23c40918ce7fdad91043ff9813e4a94
Sha1:   c5d572f29dec77b911718afd8c8a3048a7851c83
Sha256: 3c999d6667c9ab463b53c2f0fe21f44e5416b7d09953476e99e40a8a2f47f5e3

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /s/tinos/v12/buE4poGnedXvwjX7fmI.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300,300italic,regular,italic,600,600italic,700,700italic,800,800italic|Tinos:regular,italic,700,700italic|Roboto:100,100italic,300,300italic,regular,italic,500,500italic,700,700italic,900,900italic
Origin: https://www.pragmaticinquiry.org

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 34028
Date: Thu, 07 Feb 2019 11:34:53 GMT
Expires: Fri, 07 Feb 2020 11:34:53 GMT
Last-Modified: Tue, 15 Jan 2019 20:16:23 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 878996
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"


--- Additional Info ---
Magic:  data
Size:   34028
Md5:    82e73afffe68ed76bed2fa719902f430
Sha1:   e56e1acf58a03b6c617326f0f8ea3363a88b98ce
Sha256: 4220fb956609acbf914aa81db60bf0b0c13cdf79cd1f8c2d00f1863d6bd5bb13
                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.pragmaticinquiry.org/gpsvwfw.exe

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Timing-Allow-Origin: *
Etag: "ae17675eac2168a38209f67f640a7930"
Expires: Sun, 17 Feb 2019 15:44:49 GMT
Date: Sun, 17 Feb 2019 15:44:49 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: NID=160=B9DqmDKqEtOxiduKCqwTqJRltlYwT1inpzvuOb_vbgekUQf7cwhepp7r81-i2p1JocuZzI8O1eGkUTXvBa7E6Thv7zHxYr0t1L-j3Ico3YXuwcRE5iOlIOkI8gOo2jSjtvlNxAT5s36wUJ9K5UiS2Vpmx2FzuQLCm6fm5BgSfiQ;Domain=.google.com;Path=/;Expires=Mon, 19-Aug-2019 15:44:49 GMT;HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16813
Md5:    1387d58e5eeb357285fc6795faa1e367
Sha1:   886c90666c15e014882257d2f96bc1fc320a3ec8
Sha256: b2be0d1d3c78161901dab63cb55e44130b3f2b41ad60101b7019951382887ccd
                                        
                                            GET /wp-content/uploads/2019/01/cropped-PI_Icon-32x32.png HTTP/1.1 
Host: www.pragmaticinquiry.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         98.124.252.145
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sun, 17 Feb 2019 15:44:51 GMT
Content-Length: 2813
Last-Modified: Thu, 31 Jan 2019 06:34:55 GMT
Connection: keep-alive
Etag: "5c52970f-afd"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit/color RGBA, non-interlaced
Size:   2813
Md5:    0773c109781afd9ea4a9d647a894ff97
Sha1:   e29d87bcf34b89f6076bd50c2a08fa762d60542a
Sha256: a8bf62fb801fc4de861124e7fade90d6cc3fa6e050f38a23f27663d2b7e2f43e

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted