Report - lakewoodlivingword.com/antibot-manager%20(1).zip

Report Overview

Submitted URL
lakewoodlivingword.com/antibot-manager%20(1).zip
IP
154.195.72.116
ASN
#54467 XNNET
Submitted
2024-04-18 03:56:07
Access
public
Website Title
lakewoodli
Final URL
www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
160

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
lakewoodlivingword.com	unknown	2008-12-31	2017-01-29	2023-06-10	502 B	402 B	154.195.72.116
www.lakewoodlivingword.com	unknown	2008-12-31	2021-04-02	2023-09-28	36 kB	555 kB	154.195.72.116
image.lakewoodlivingword.com	unknown	2024-03-21	2024-03-31	2024-03-31	3.3 kB	359 kB	154.195.72.116
static	627002	unknown	No data	No data	3.1 kB	0 B	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	lakewoodlivingword.com	Sinkholed
2024-04-18	medium	static	Sinkholed
2024-04-18	medium	static	Sinkholed
2024-04-18	medium	static	Sinkholed
2024-04-18	medium	static	Sinkholed
2024-04-18	medium	static	Sinkholed
2024-04-18	medium	static	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	www.lakewoodlivingword.com/t143/js/jquery-1.7.2.min.js?_v=2.0.0	95 kB	2023-03-07	2024-04-28
Pretty URL www.lakewoodlivingword.com/t143/js/jquery-1.7.2.min.js?_v=2.0.0 IP 154.195.72.116 ASN #54467 XNNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:41:26 Last Seen2024-04-28 23:35:38 Times Seen96 Hash a4ddac60f67ffcea35df0b6eedd2403c 953a6e59d2af69102e963f390ed6fd4748ea0b40 58a417568ebe6eb8f614f5a9e60ebc9ea56c01ece71c0d3dd7190c2f9551bd40 Loading...

	unknown	16 B	2023-04-10	2024-05-01
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 15:57:29 Last Seen2024-05-01 13:01:06 Times Seen34022 Hash 7c3c3ddeb80438dcbb3d081d2d00e152 5a4016732ee72ec77b4f6ab17047bcea6d2ea34d 321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187 Loading...

	www.lakewoodlivingword.com/basic/js/zbanner.js?_v=2.0.0	6.1 kB	2023-03-07	2024-04-28
Pretty URL www.lakewoodlivingword.com/basic/js/zbanner.js?_v=2.0.0 IP 154.195.72.116 ASN #54467 XNNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:41:26 Last Seen2024-04-28 23:35:38 Times Seen82 Hash 7fcb1c32c5a1a07354891303fc2deb42 a9c8ca15b587af6eb246d613eff5a086b57762f4 04b9c12ab47eacbc2650b77c42421c74caa25c914f0ac28ca3ff5d4eee18fc9d Loading...

	www.lakewoodlivingword.com/t143/js/main.js?_v=2.0.0	48 kB	2023-03-07	2024-04-28
Pretty URL www.lakewoodlivingword.com/t143/js/main.js?_v=2.0.0 IP 154.195.72.116 ASN #54467 XNNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:41:26 Last Seen2024-04-28 23:35:38 Times Seen69 Hash a0ad6944db65c22c3d7f93a9bcc9fb96 2016ab59acfb3d69094fb47b86808d04e77461a0 9599a6ea702767f8a663ebbf7dd580828f502885b4301ccbcfa64daed10dc6c9 Loading...

	www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71	1.1 kB	2023-04-12	2024-04-28
Pretty URL www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71 IP 154.195.72.116 ASN #54467 XNNET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-12 02:14:16 Last Seen2024-04-28 23:35:38 Times Seen32 Hash da50dacafeda33f4f6af509466414eb7 63a6c89a6b851e6d2966e6891accdbfd3efe284d 05b41cc966972afe1c4ba14b0d63a5e1c6b9e0180f9f2b057476300320dd2493 Loading...

	www.lakewoodlivingword.com/common/js/jquery.lazyload.js?_v=2.0.0	3.5 kB	2023-03-07	2024-04-28
Pretty URL www.lakewoodlivingword.com/common/js/jquery.lazyload.js?_v=2.0.0 IP 154.195.72.116 ASN #54467 XNNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:18:44 Last Seen2024-04-28 23:35:38 Times Seen121 Hash 1bd03842beb26aac1b249301cf4f6d91 c2d6ae31241e480a5d4b16ad88226b4c2794ccbd 4add8c0372f5ecbe4cd13b216fb818f134b77ac25bbad61fb83f01289c4f5e3c Loading...

	www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71	812 B	2023-03-07	2024-04-28
Pretty URL www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71 IP 154.195.72.116 ASN #54467 XNNET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:18:44 Last Seen2024-04-28 23:35:38 Times Seen54 Hash 96955fa244b0b25dc732b0e6b595bab1 47b24c6bef3422176637a71c39f15b176b638f4f 4182dc02e74d443315cc6fd75f3f3217be9186de17083d2623d63e043bcabb5f Loading...

	www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71	166 B	2024-01-16	2024-04-28
Pretty URL www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71 IP 154.195.72.116 ASN #54467 XNNET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-16 03:58:05 Last Seen2024-04-28 23:35:38 Times Seen10 Hash c2ef9264d3bf2a2bd34858391048f11a b3685466416fade5726d642c5d1e26511985f26a 3fbf8cae9e685b9ee3d7bb179b618fe87d8069d776c49be0891572b14f1cb5df Loading...

	www.lakewoodlivingword.com/common/js/layer/layer.js?_v=2.0.0	22 kB	2023-03-07	2024-04-28
Pretty URL www.lakewoodlivingword.com/common/js/layer/layer.js?_v=2.0.0 IP 154.195.72.116 ASN #54467 XNNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:18:44 Last Seen2024-04-28 23:35:38 Times Seen127 Hash e63d25855c990f95d3f97b8863c0f020 b5905df11299ca007b22e7cbc5f1a2c140bc91a4 7b1f82132555e5d4706c8cf44f2cd5eef83d36f7e85dcab1aef63071a03080df Loading...

	www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71	1.2 kB	2024-04-18	2024-04-18
Pretty URL www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71 IP 154.195.72.116 ASN #54467 XNNET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 05:56:15 Last Seen2024-04-18 05:56:15 Times Seen1 Hash bc21a7fff10b01765c57f8f346e19162 4da68c61eade44d89ddd0086a0528ebd17291976 941d853f194399b39691978834cff3103c21a66e7e3030f5f9873004d057e378 Loading...

	www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71	225 B	2023-03-07	2024-04-28
Pretty URL www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71 IP 154.195.72.116 ASN #54467 XNNET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 17:41:26 Last Seen2024-04-28 23:35:38 Times Seen30 Hash 33145e200349b4e085e484b6805d28b5 38c0d232791aa53f9242a02691dc2f517e1e0266 4cc0b1c83c5ec14e728aada5b4c6794e1b74afbd9f31d459db383821a978e81f Loading...

HTTP Transactions (80)

URL IP Response Size

lakewoodlivingword.com/antibot-manager%20(1).zip

154.195.72.116

301 Moved Permanently

169 B

URL User Request GET HTTP/1.1
lakewoodlivingword.com/antibot-manager%20(1).zip
IP
154.195.72.116:443
ASN
#54467 XNNET

Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
84855c13836b389d5ec7cfd4c9266173
1cf3056ff23c4176fd7ca9816a000ed461d6d323
502083c916ae481cdd413b8d93315300653df5fb3dcc5770c01991de19977eae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /antibot-manager%20(1).zip HTTP/1.1
Host: lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:40 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://www.lakewoodlivingword.com/antibot-manager%20(1).zip

www.lakewoodlivingword.com/antibot-manager%20(1).zip

154.195.72.116

302

0 B

URL User Request GET HTTP/1.1
www.lakewoodlivingword.com/antibot-manager%20(1).zip
IP
154.195.72.116:443
ASN
#54467 XNNET

Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /antibot-manager%20(1).zip HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:41 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71; Path=/; Secure; HttpOnly
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Location: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Content-Language: de

www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71

154.195.72.116

200

14 kB

URL User Request GET HTTP/1.1
www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
IP
154.195.72.116:443
ASN
#54467 XNNET

Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (890), with CRLF, LF line terminators
Size
14 kB (13597 bytes)
Hash
8c4c79eb87eb9ffca9041e9fd3583e8f
a06a7e169cdd6eaf1c9aed5b57c7c6fd85f293b1
54ed57f4a173df80c3791fe11610871367b9b25846ebbbefb791693c0dbbc975

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:41 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Language: de
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/js/jquery-1.7.2.min.js?_v=2.0.0

154.195.72.116

200

95 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/js/jquery-1.7.2.min.js?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65533), with CRLF line terminators
Size
95 kB (94802 bytes)
Hash
a4ddac60f67ffcea35df0b6eedd2403c
953a6e59d2af69102e963f390ed6fd4748ea0b40
58a417568ebe6eb8f614f5a9e60ebc9ea56c01ece71c0d3dd7190c2f9551bd40

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/js/jquery-1.7.2.min.js?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:41 GMT
Content-Type: application/javascript
Content-Length: 94802
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/css/user.css?_v=2.0.0

154.195.72.116

200

16 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/css/user.css?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with very long lines (1116), with CRLF line terminators
Size
16 kB (16462 bytes)
Hash
2bc022cacff52801ae2aa6f5681f28d4
868315095792abc8267905ad16fe9d2383af7938
eee188bf89d6c070d2c64b50a2f0c2dd75708dcb23ba0830c6c91f63f51bb750

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/css/user.css?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:50 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/css/font.css?_v=2.0.0

154.195.72.116

200

623 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/css/font.css?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with CRLF line terminators
Size
623 B (623 bytes)
Hash
a6960a653ceb15a1a2dc0403d3a011c1
8c7988aa0257bcefd60346c46d9520ee3449a38c
45feaf4695c0be71054681b7eb748bbac980440172f022304ac2409e3946bd11

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/css/font.css?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Content-Length: 623
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:50 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/css/visual.css?_v=2.0.0

154.195.72.116

200

1.6 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/css/visual.css?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with very long lines (404), with CRLF line terminators
Size
1.6 kB (1618 bytes)
Hash
62ece69c8c8ed6dcf1e251d16f2cf9b5
6058f88191a01048f0e78d7e6cdf5e6cc26f01ab
f0a616667b01ec0ab57b19acb63a7940a6e8ac7eea2c8f654473c2fc8701695a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/css/visual.css?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:50 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/css/global.css?_v=2.0.0

154.195.72.116

200

7.3 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/css/global.css?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with very long lines (383), with CRLF line terminators
Size
7.3 kB (7337 bytes)
Hash
af94c6bc3974b2272aff5fbc91b35e11
6ffc77e3b0c60265cd937a5f21a4cde3d3f5b5b6
713b695bc6875b65acb3f3e440f4027a610963e4c66039e59c77c0d4ba0fe7f0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/css/global.css?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:50 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/css/effect.css?_v=2.0.0

154.195.72.116

200

978 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/css/effect.css?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with CRLF line terminators
Size
978 B (978 bytes)
Hash
9517793bc3a3856fff619c0d729338eb
5753333366472390f60537adb29ee9448adbf138
d9c1a4327990c9d73d9359ddb3ad72583bd4773e6d77dd0600cd4fcfdbd82e1e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/css/effect.css?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Content-Length: 978
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:50 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/css/style.css?_v=2.0.0

154.195.72.116

200

3.7 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/css/style.css?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
assembler source, ASCII text, with CRLF line terminators
Size
3.7 kB (3711 bytes)
Hash
892570f075c634964d61059f43c90978
639ae1e359c80df40536a686897c6f12e0157000
fc8643a20cc76086a8f931f7660176be242ac6c289866a916b31838eeaad95f7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/css/style.css?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:50 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/common/js/jquery.lazyload.js?_v=2.0.0

154.195.72.116

200

3.5 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/common/js/jquery.lazyload.js?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
JavaScript source, ASCII text, with very long lines (3505), with no line terminators
Size
3.5 kB (3505 bytes)
Hash
1bd03842beb26aac1b249301cf4f6d91
c2d6ae31241e480a5d4b16ad88226b4c2794ccbd
4add8c0372f5ecbe4cd13b216fb818f134b77ac25bbad61fb83f01289c4f5e3c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /common/js/jquery.lazyload.js?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: application/javascript
Content-Length: 3505
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:04 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/css/default_global.css?_v=2.0.0

154.195.72.116

200

29 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/css/default_global.css?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with very long lines (671), with CRLF line terminators
Size
29 kB (28891 bytes)
Hash
c298ed22e3e7968307ca8d26614beab5
7f89478b05162014fce1dde820b045d32bf637b0
3259b87dbb05b62c97a27b9c0eb445472fe6826551fc65f5c7938c3111a168aa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/css/default_global.css?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:50 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/js/main.js?_v=2.0.0

154.195.72.116

200

48 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/js/main.js?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
48 kB (47756 bytes)
Hash
a0ad6944db65c22c3d7f93a9bcc9fb96
2016ab59acfb3d69094fb47b86808d04e77461a0
9599a6ea702767f8a663ebbf7dd580828f502885b4301ccbcfa64daed10dc6c9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/js/main.js?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: application/javascript
Content-Length: 47756
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/css/skin.css?_v=2.0.0

154.195.72.116

200

1.1 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/css/skin.css?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1096 bytes)
Hash
9acebede86f46372c9aa69d430523926
b91c64f934cc431c276d2c84776fe05262afe426
20be37398b12657ceb9b2c1c5e4c57a6226d36cca137fdf8c2337aeae59db598

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/css/skin.css?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:50 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/common/js/layer/layer.js?_v=2.0.0

154.195.72.116

200

22 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/common/js/layer/layer.js?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
JavaScript source, ASCII text, with very long lines (22032), with CRLF line terminators
Size
22 kB (22034 bytes)
Hash
e63d25855c990f95d3f97b8863c0f020
b5905df11299ca007b22e7cbc5f1a2c140bc91a4
7b1f82132555e5d4706c8cf44f2cd5eef83d36f7e85dcab1aef63071a03080df

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /common/js/layer/layer.js?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: application/javascript
Content-Length: 22034
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:04 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/css/index.css?_v=2.0.0

154.195.72.116

200

3.6 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/css/index.css?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with CRLF line terminators
Size
3.6 kB (3579 bytes)
Hash
f86aa7c6b8e13ccb4e54f662207f1183
6244c908466109c3cf5e31afe11d56d283592ce9
06aac64de5322771bb195ac600b048d45690dd5767c851226c7022a892710709

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/css/index.css?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:50 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/css/main.css?_v=2.0.0

154.195.72.116

200

5.7 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/css/main.css?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with CRLF line terminators
Size
5.7 kB (5660 bytes)
Hash
807c0f369f70ca9e0bbe1bf25bd0caba
6fbd267d8671f2cf077eb749b25b630f79e9a493
008caac9371cc3f92eb6d72bfb21329105f940752b25dc33d28c500660b634c7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/css/main.css?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:50 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/css/custom_style.css?_v=2.0.0

154.195.72.116

200

544 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/css/custom_style.css?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with CRLF line terminators
Size
544 B (544 bytes)
Hash
824613360d97c9686117a1d09787f51c
92b7a21e3cd98b5d2e12f3b21cb5916518937ccf
5f5e13ab898a9473f4660b1c09b49987735dede7f1b54af14b5d252f528208ce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/css/custom_style.css?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Content-Length: 544
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:50 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/visual.css

154.195.72.116

200

1.6 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/visual.css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
Unicode text, UTF-8 text, with very long lines (307)
Size
1.6 kB (1589 bytes)
Hash
e0cf6552e2db9b3b4c482dce91156b2c
dabe3103b47401b12c8477765769547d26dfc73d
407b82e2b666f8f2dc2601ddf1cda28cc108315e58004515dc2135c35d25cc58

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/visual.css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/Index_files/font.css

154.195.72.116

200

885 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/font.css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text
Size
885 B (885 bytes)
Hash
15b4f4e81c702662cd2f0d8afc22be93
70f9a3a27190823b1f26fd4e880f14995fcf9a7f
e0c09b8c9ae52fa3645227163dbe41d0431fed22bbb4e86e8a5a0a4a512d46f5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/font.css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Content-Length: 885
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/global.css

154.195.72.116

200

8.7 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/global.css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
Unicode text, UTF-8 text, with very long lines (463)
Size
8.7 kB (8725 bytes)
Hash
4036d0ff5306a6ad40bd77ddd7ced52e
c41a77942f49974f2c589302339fefd146ed4555
f169ef69e66584e1f451d1731b555c8c5874d0126ccb60d381b49a036348ad2c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/global.css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/Index_files/iconfont.css

154.195.72.116

200

1.1 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/iconfont.css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text
Size
1.1 kB (1110 bytes)
Hash
4048b031a48042d9710c34e365d513f4
df53c10087a931f6b43bd0c2df7878ba848fb34e
3cabbad6e795b29abeb3692e80d09495f0230ebc6aff81792e5fe733b25fa509

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/iconfont.css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/Index_files/user.css

154.195.72.116

200

28 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/user.css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
Unicode text, UTF-8 text, with very long lines (1156)
Size
28 kB (28340 bytes)
Hash
f0823ec60c4abd4ae8e690e01aea2bab
dc2cc28f95d4c92f84819f435394a3e63adb9511
c03dadcbe9791b1e533414b4b2238329326e178cc20565cc88d01d41d571ca79

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/user.css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/Index_files/effect.css

154.195.72.116

200

520 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/effect.css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
Unicode text, UTF-8 text
Size
520 B (520 bytes)
Hash
76c56229448ee3289db123b0afdf6e6d
24ada26a91c9449811623ace7746fd9881f99462
231e1191892ccdca7f48022c079a8a24e7b3ea195e71d4eb1f3d63eeb545b00f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/effect.css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/Index_files/image.css

154.195.72.116

200

807 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/image.css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text
Size
807 B (807 bytes)
Hash
90eaa96a04bceb8f3d6c8639f4394df1
dbbca09f672a836028212bc3f3492af1ff558a24
2e25553d7927a1eb669dd827be2f4fdd94b3e26536563622824c9bb8d763512d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/image.css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/Index_files/style.css

154.195.72.116

200

3.6 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/style.css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
Unicode text, UTF-8 text, with very long lines (476)
Size
3.6 kB (3573 bytes)
Hash
1e252e3d23a957980fa0941fe1146ba3
f1cd3086b8494734a0544077056600168176bca8
b66ff563e1a3153461623f2031c7c0609d2558f9c4edc06eddee16d3e78c40e7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/style.css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/Index_files/font(1).css

154.195.72.116

200

290 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/font(1).css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with no line terminators
Size
290 B (290 bytes)
Hash
26c177e229570a7b08feba98f259e874
379af80500152e639ef4fd5e2a06b0ba62f2a3c0
c6259263d48bf863c28be255641d4efa027e91fec421d0a45a7436790790ce01

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/font(1).css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/css
Content-Length: 290
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/global(1).css

154.195.72.116

200

41 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/global(1).css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
Unicode text, UTF-8 text, with very long lines (671)
Size
41 kB (40942 bytes)
Hash
7faf0ba9a704ace3a3adb9651bb39f98
54219f71bdcf8a247647dfbec430f73a4c30db8c
914c62aba5e98e11571c62f9286ff14f620071c9451b23473906c7ed6df72f59

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/global(1).css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/Index_files/font(2).css

154.195.72.116

200

254 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/font(2).css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with no line terminators
Size
254 B (254 bytes)
Hash
df4260669eaf19704d6db006b117b740
580c64b4542948939d5ada665c67efc70d4edaf3
1dc48964abacafb9a52a1169b5aa23d2edd9be2e566cd6908a6169a42cf7be3b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/font(2).css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/css
Content-Length: 254
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/index.css

154.195.72.116

200

482 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/index.css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
Unicode text, UTF-8 text
Size
482 B (482 bytes)
Hash
893a3946ee589e273ea598d22025a316
21b57efbbcf3c188bea9a32933c1339736bb32f8
f4975e9f122f0a5c0debf868db4c0f7ff9c16cafbed503c9ae52e9a97aaf06b6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/index.css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/css
Content-Length: 482
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/main.css

154.195.72.116

200

468 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/main.css
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text
Size
468 B (468 bytes)
Hash
7dfb6859019d909862fdfaff1b86c245
cdd62be13c963f14d68b0afd6e410d9bdf836f9e
3197748bdf4f363e04dd902771975a57e18772ca5bf7f8459e03b5a21b8897d9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/main.css HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/basic/js/zbanner.js?_v=2.0.0

154.195.72.116

200

6.1 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/basic/js/zbanner.js?_v=2.0.0
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
JavaScript source, ASCII text, with very long lines (6096), with no line terminators
Size
6.1 kB (6096 bytes)
Hash
7fcb1c32c5a1a07354891303fc2deb42
a9c8ca15b587af6eb246d613eff5a086b57762f4
04b9c12ab47eacbc2650b77c42421c74caa25c914f0ac28ca3ff5d4eee18fc9d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /basic/js/zbanner.js?_v=2.0.0 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: application/javascript
Content-Length: 6096
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:44:58 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/common/js/layer/theme/default/layer.css?v=3.1.1

154.195.72.116

200

3.0 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/common/js/layer/theme/default/layer.css?v=3.1.1
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
ASCII text, with very long lines (14339), with no line terminators
Size
3.0 kB (2988 bytes)
Hash
2f57eb408fa3979aae930dedf531e0e7
c4f2432642e0277c63c4e07fb339a0767e619902
b469940f8734c20eb464f9dbfe36a57cc2cd9329466dd9cf00ac09a4591e2567

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /common/js/layer/theme/default/layer.css?v=3.1.1 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:04 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/Index_files/icon_Mastercard.png

154.195.72.116

200

913 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/icon_Mastercard.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 76 x 48, 8-bit colormap, non-interlaced
Size
913 B (913 bytes)
Hash
465d4515165c69e4180e53b663e2550d
1732c50473c84449eb28720f6d4ab4cf8de9dfa5
98c1f4a0da2c6a7423ece7160775b3541531c0b413600a62318a8676486dac29

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/icon_Mastercard.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 913
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/icon_Visa.png

154.195.72.116

200

5.5 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/icon_Visa.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 76 x 48, 8-bit/color RGBA, non-interlaced
Size
5.5 kB (5472 bytes)
Hash
fe7adaa6e0bcce4ed73b4521fc6d08fd
c0a869445b8b7b66fdae35b917bcdf88ffb75f73
6c69982ba0f315cf02f051b7f0c2031af4617a6b2d0ffae8b628d4886243e361

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/icon_Visa.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 5472
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/icon_Jcb.png

154.195.72.116

200

1.7 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/icon_Jcb.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 76 x 48, 8-bit colormap, non-interlaced
Size
1.7 kB (1682 bytes)
Hash
4337da1374ebba0e5ce987686f1940e3
3ea92074597f22eeac70d32fca4c099feea7da62
946d67691f4fa3f667c04f5e4163b1f404d429655bf4d2a102c0775f93d0f598

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/icon_Jcb.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 1682
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/icon_Discover.png

154.195.72.116

200

6.1 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/icon_Discover.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 76 x 48, 8-bit/color RGBA, non-interlaced
Size
6.1 kB (6133 bytes)
Hash
160c8c3fe7fadb370bd9293872ad4565
8438eaab607b642f926935ea3be91cbe0b147bb7
9edc924d1c12994d60b1054528d89b4b35f10b7bfe858d5a32d3f0638ac018ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/icon_Discover.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 6133
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/icon_Dinersclub.png

154.195.72.116

200

1.5 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/icon_Dinersclub.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 76 x 48, 8-bit colormap, non-interlaced
Size
1.5 kB (1456 bytes)
Hash
629d3f64f220d465c193cba4dbbf8ec3
2c40630fda48465ae9e013b879c766ff735c244d
a063c0da2032d37105b7992985effcfd3568f8f86cb7f1ae6e2de53bf2356caf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/icon_Dinersclub.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 1456
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/icon_Maestro.png

154.195.72.116

200

1.3 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/icon_Maestro.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 76 x 48, 8-bit colormap, non-interlaced
Size
1.3 kB (1348 bytes)
Hash
1511f5feaa373b1e1aa8eecdbaa21130
e089f0be87dd3d8669d5e900939ae3a7108ee271
2baaa6a8883e4e26e8ba8437883775dc2dcea55b7b256baa56ca8d0329a710b9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/icon_Maestro.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 1348
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/font.woff2

154.195.72.116

302

0 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/font.woff2
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/font.woff2 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(1).css
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Location: https://www.lakewoodlivingword.com/
Content-Language: de

www.lakewoodlivingword.com/t143/Index_files/font.woff2

154.195.72.116

302

0 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/font.woff2
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/font.woff2 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(2).css
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Location: https://www.lakewoodlivingword.com/
Content-Language: de

www.lakewoodlivingword.com/t143/images/ixBtnL.png

154.195.72.116

200

1.3 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/images/ixBtnL.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 30 x 56, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1329 bytes)
Hash
bcc84b065a7a218bd0967f79a4c0094f
2b0447729a3013311848053189b78740b2a140c4
ffd42aeab2d282d0bc38755099f616470ac021824194c02c4e8b15d13373cad1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/images/ixBtnL.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/css/style.css?_v=2.0.0
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 1329
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:52 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/images/ixBtnR.png

154.195.72.116

200

1.3 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/images/ixBtnR.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 30 x 56, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1342 bytes)
Hash
d58bdb66db979c8cc4be3ef51010dd8e
896c8f2824423efc1e5fdc7b922844cef47fec30
113842cb3f91bbd57609352723fb8f9a209f3991d7198103dc623f6bf488e98f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/images/ixBtnR.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/css/style.css?_v=2.0.0
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 1342
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:52 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/themes/default/images/global/loading_oth.gif

154.195.72.116

302

0 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/themes/default/images/global/loading_oth.gif
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/themes/default/images/global/loading_oth.gif HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/Index_files/visual.css
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Location: https://www.lakewoodlivingword.com/
Content-Language: de

www.lakewoodlivingword.com/t143/Index_files/iconfont.ttf?t=1629338778212

154.195.72.116

200

17 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/iconfont.ttf?t=1629338778212
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
TrueType Font data, 11 tables, 1st "GSUB", 18 names, Macintosh, Created by iconfonticonfontRegulariconfonticonfontVersion 1.0iconfontGenerated by svg2ttf from F
Size
17 kB (17299 bytes)
Hash
ee1c6a8e42902cc86f7402f2e176eb46
a5b07df7bde4afcad635c4ee0e37d6b6179918cb
e23696dfb7b8f010f15c36c59389d976327fdc5d094ddac10b50234507b3da2e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/iconfont.ttf?t=1629338778212 HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/Index_files/iconfont.css
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: font/ttf
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/Index_files/icon_AmericanExpress.png

154.195.72.116

200

3.5 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/icon_AmericanExpress.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 76 x 48, 8-bit/color RGBA, non-interlaced
Size
3.5 kB (3518 bytes)
Hash
e8fee10c9c24eef9cc5c55db5155fc2f
de0d99c4ee7bb815f2092669b99a3742a8aba1f9
9bd50a210bf5692d11994136263d69aa2a457d6f472bbaef7e589cfacda6f4e8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/icon_AmericanExpress.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 3518
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:54 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t131/images/nav_close.png

154.195.72.116

200

2.4 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t131/images/nav_close.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced
Size
2.4 kB (2434 bytes)
Hash
b31ccc66b7bd581be5a4135f9745c36c
d1c4160a4202e28dacda69a1fa5bc556790fc332
55efc0cd322eb3ffa3b806f362cb8f3707e574a0edaef91e95b6ff0570ce1c45

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t131/images/nav_close.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 2434
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:44 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/mobile/images/icon_menu_user.png

154.195.72.116

302

0 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/mobile/images/icon_menu_user.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/mobile/images/icon_menu_user.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/Index_files/global(1).css
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Location: https://www.lakewoodlivingword.com/
Content-Language: de

www.lakewoodlivingword.com/t143/images/icon_eyes.png

154.195.72.116

200

1.3 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/images/icon_eyes.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1322 bytes)
Hash
cdbaab393671886d747a0b188edfa0c6
750a990327d4d776e2147d632dea772530404e36
914756682d33498ffc14ee0c16f847d4cc92e98b9d91cb4c0ec9bad4b2fefc35

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/images/icon_eyes.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/css/index.css?_v=2.0.0
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 1322
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:52 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/mobile/images/nav_close.png

154.195.72.116

302

0 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/mobile/images/nav_close.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/mobile/images/nav_close.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/Index_files/global(1).css
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Location: https://www.lakewoodlivingword.com/
Content-Language: de

www.lakewoodlivingword.com/

154.195.72.116

200

14 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (890), with CRLF, LF line terminators
Size
14 kB (13597 bytes)
Hash
d83dc1093c3f1b95b50d9910c0d7eeef
b4864d0f1e63aeb96404af1c4d706f1948e3528f
c838ea7969c4a7752154f153966cb7ff254277de3e5472da6585b334f75df701

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(1).css
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Language: de
Content-Encoding: gzip

www.lakewoodlivingword.com/t143/images/icon_shop.png

154.195.72.116

200

1.3 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/images/icon_shop.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1268 bytes)
Hash
ffefc71b392d5e6aa300302b3b42650c
c808b159cf3733e916024dab102414b09eaf97ce
831de0fadf0da3af1bf8556dd44781f9dffc3154794baffb69622f556465b5ee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/images/icon_shop.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/css/index.css?_v=2.0.0
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 1268
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:52 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/images/icon_heart.png

154.195.72.116

200

1.3 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/images/icon_heart.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1300 bytes)
Hash
fdf5598ea82e68aa7ba86d90c5b6ae5b
af2218fc3a50b9ee5bcaee97ebbb753c28381400
cfa04748070f3926476fbf9afa589b35ee8cc332cacf05086501d53b3e7e6f43

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/images/icon_heart.png HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/css/index.css?_v=2.0.0
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 1300
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Thu, 11 Apr 2024 22:45:52 GMT
Accept-Ranges: bytes

www.lakewoodlivingword.com/

154.195.72.116

200

14 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (890), with CRLF, LF line terminators
Size
14 kB (13597 bytes)
Hash
d83dc1093c3f1b95b50d9910c0d7eeef
b4864d0f1e63aeb96404af1c4d706f1948e3528f
c838ea7969c4a7752154f153966cb7ff254277de3e5472da6585b334f75df701

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(2).css
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Language: de
Content-Encoding: gzip

www.lakewoodlivingword.com/

154.195.72.116

200

14 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (890), with CRLF, LF line terminators
Size
14 kB (13597 bytes)
Hash
d83dc1093c3f1b95b50d9910c0d7eeef
b4864d0f1e63aeb96404af1c4d706f1948e3528f
c838ea7969c4a7752154f153966cb7ff254277de3e5472da6585b334f75df701

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lakewoodlivingword.com/t143/Index_files/visual.css
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Language: de
Content-Encoding: gzip

www.lakewoodlivingword.com/

154.195.72.116

200

14 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (890), with CRLF, LF line terminators
Size
14 kB (13597 bytes)
Hash
d83dc1093c3f1b95b50d9910c0d7eeef
b4864d0f1e63aeb96404af1c4d706f1948e3528f
c838ea7969c4a7752154f153966cb7ff254277de3e5472da6585b334f75df701

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lakewoodlivingword.com/t143/Index_files/global(1).css
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Language: de
Content-Encoding: gzip

www.lakewoodlivingword.com/

154.195.72.116

200

14 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (890), with CRLF, LF line terminators
Size
14 kB (13597 bytes)
Hash
d83dc1093c3f1b95b50d9910c0d7eeef
b4864d0f1e63aeb96404af1c4d706f1948e3528f
c838ea7969c4a7752154f153966cb7ff254277de3e5472da6585b334f75df701

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lakewoodlivingword.com/t143/Index_files/global(1).css
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Language: de
Content-Encoding: gzip

image.lakewoodlivingword.com/banner/Home_Furniture/c1a5da65547d4edfb35fecff6721b3bd.jpg

154.195.72.116

200 OK

219 kB

URL GET HTTP/1.1
image.lakewoodlivingword.com/banner/Home_Furniture/c1a5da65547d4edfb35fecff6721b3bd.jpg
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x732, components 3
Size
219 kB (218741 bytes)
Hash
b876e494763d84185c5dca0f449b8911
e2675879b26cb34e1073127106b323d8b1294efd
91a52f8a14c42d0fa8b99235c85e3c7ec73e2af834cc4ff8cffc216f651e8c4a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /banner/Home_Furniture/c1a5da65547d4edfb35fecff6721b3bd.jpg HTTP/1.1
Host: image.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/jpeg
Content-Length: 218741
Connection: keep-alive
Last-Modified: Sat, 06 Apr 2024 10:07:16 GMT
ETag: "66111ed4-35675"
Nginx-Cache: HIT
Accept-Ranges: bytes

image.lakewoodlivingword.com/logo/20240406/773dc0dab4c6439dbfff51a77ab8cf62.png

154.195.72.116

200 OK

24 kB

URL GET HTTP/1.1
image.lakewoodlivingword.com/logo/20240406/773dc0dab4c6439dbfff51a77ab8cf62.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 1549 x 250, 8-bit/color RGBA, non-interlaced
Size
24 kB (24502 bytes)
Hash
ea691e206a712de593284c510bd54235
df8fec61ac3b18bae8bee2bcad9aa69ec2065ee0
fbe08a4bc869616120e62c89f2cefb5d99133b6d76a2e142a34c0467901ebaed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /logo/20240406/773dc0dab4c6439dbfff51a77ab8cf62.png HTTP/1.1
Host: image.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:43 GMT
Content-Type: image/png
Content-Length: 24502
Connection: keep-alive
Last-Modified: Sat, 06 Apr 2024 10:07:16 GMT
ETag: "66111ed4-5fb6"
Nginx-Cache: HIT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/font.woff

154.195.72.116

302

0 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/font.woff
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/font.woff HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(1).css
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Location: https://www.lakewoodlivingword.com/
Content-Language: de

www.lakewoodlivingword.com/t143/Index_files/font.woff

154.195.72.116

302

0 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/font.woff
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/font.woff HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(2).css
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Location: https://www.lakewoodlivingword.com/
Content-Language: de

image.lakewoodlivingword.com/am2/images/I/41xteuYRyCL._AC_.jpg

154.195.72.116

200 OK

19 kB

URL GET HTTP/1.1
image.lakewoodlivingword.com/am2/images/I/41xteuYRyCL._AC_.jpg
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 305x496, components 3
Size
19 kB (18782 bytes)
Hash
9e57828606edb6e2135ce9814ce52152
c4aa99183711e73a0ef6764a9630dba50f3d385d
369a195466f63d6d861c11ee42b0b83fd28e6d478505a14c523fe0050a3a82bf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /am2/images/I/41xteuYRyCL._AC_.jpg HTTP/1.1
Host: image.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Type: image/jpeg
Content-Length: 18782
Connection: keep-alive
Last-Modified: Thu, 16 Nov 2023 19:40:45 GMT
ETag: "6556703d-495e"
Nginx-Cache: HIT
Accept-Ranges: bytes

www.lakewoodlivingword.com/

154.195.72.116

200

14 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (890), with CRLF, LF line terminators
Size
14 kB (13597 bytes)
Hash
3884fd82cc5611313699d97591bd1875
bf80549f1417a169e9c97444ae698d7f383f2007
532a825b90f311e6d8529015dc4a12aed330efab7fb8bc5bb2a58515009901d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(1).css
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Language: de
Content-Encoding: gzip

www.lakewoodlivingword.com/

154.195.72.116

200

14 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (890), with CRLF, LF line terminators
Size
14 kB (13597 bytes)
Hash
3884fd82cc5611313699d97591bd1875
bf80549f1417a169e9c97444ae698d7f383f2007
532a825b90f311e6d8529015dc4a12aed330efab7fb8bc5bb2a58515009901d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(2).css
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Language: de
Content-Encoding: gzip

image.lakewoodlivingword.com/am2/images/I/5199+YH97GL._AC_.jpg

154.195.72.116

200 OK

38 kB

URL GET HTTP/1.1
image.lakewoodlivingword.com/am2/images/I/5199+YH97GL._AC_.jpg
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 498x428, components 3
Size
38 kB (38004 bytes)
Hash
a47aa765a6ad98776eeffbb4cb0770e0
3a6283082692a2fa107bcf9384d277889aa8812b
ce1fd4b2509ed1bbf4d059174f8d028436c2fb454a2bef779b41a9f874639bde

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /am2/images/I/5199+YH97GL._AC_.jpg HTTP/1.1
Host: image.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Type: image/jpeg
Content-Length: 38004
Connection: keep-alive
Last-Modified: Sun, 26 Nov 2023 14:18:15 GMT
ETag: "656353a7-9474"
Nginx-Cache: HIT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/font.ttf

154.195.72.116

302

0 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/font.ttf
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/font.ttf HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(1).css
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Location: https://www.lakewoodlivingword.com/
Content-Language: de

www.lakewoodlivingword.com/t143/Index_files/font.ttf

154.195.72.116

302

0 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/font.ttf
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/font.ttf HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(2).css
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Location: https://www.lakewoodlivingword.com/
Content-Language: de

www.lakewoodlivingword.com/

154.195.72.116

200

14 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (890), with CRLF, LF line terminators
Size
14 kB (13597 bytes)
Hash
3884fd82cc5611313699d97591bd1875
bf80549f1417a169e9c97444ae698d7f383f2007
532a825b90f311e6d8529015dc4a12aed330efab7fb8bc5bb2a58515009901d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(1).css
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Language: de
Content-Encoding: gzip

www.lakewoodlivingword.com/

154.195.72.116

200

14 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (890), with CRLF, LF line terminators
Size
14 kB (13597 bytes)
Hash
3884fd82cc5611313699d97591bd1875
bf80549f1417a169e9c97444ae698d7f383f2007
532a825b90f311e6d8529015dc4a12aed330efab7fb8bc5bb2a58515009901d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(2).css
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Language: de
Content-Encoding: gzip

image.lakewoodlivingword.com/am2/images/I/41lQ56VzE0L._AC_.jpg

154.195.72.116

200 OK

17 kB

URL GET HTTP/1.1
image.lakewoodlivingword.com/am2/images/I/41lQ56VzE0L._AC_.jpg
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 474x456, components 3
Size
17 kB (16863 bytes)
Hash
397de2fe3574d46b00483b10d2a6f386
8f4c9f5cd7624569a979f142be48269626a9abab
99bb6c0fa07635ef70d3f04c49233a20bf494aea37c7440f6c1263a503e854f5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /am2/images/I/41lQ56VzE0L._AC_.jpg HTTP/1.1
Host: image.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Type: image/jpeg
Content-Length: 16863
Connection: keep-alive
Last-Modified: Sun, 19 Nov 2023 23:16:19 GMT
ETag: "655a9743-41df"
Nginx-Cache: HIT
Accept-Ranges: bytes

image.lakewoodlivingword.com/am2/images/I/51g3yI4PxBL._AC_.jpg

154.195.72.116

200 OK

33 kB

URL GET HTTP/1.1
image.lakewoodlivingword.com/am2/images/I/51g3yI4PxBL._AC_.jpg
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x500, components 3
Size
33 kB (32561 bytes)
Hash
81b65265334185d4da3c26fba6a5e449
501237ab2453a1c1a2e887140e54dccba2575fec
9435139d2a4e3846b090f6996aefc68b45ed5f317d18dd4b393bfc6e7c31cc32

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /am2/images/I/51g3yI4PxBL._AC_.jpg HTTP/1.1
Host: image.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Type: image/jpeg
Content-Length: 32561
Connection: keep-alive
Last-Modified: Tue, 14 Nov 2023 07:12:50 GMT
ETag: "65531df2-7f31"
Nginx-Cache: HIT
Accept-Ranges: bytes

www.lakewoodlivingword.com/t143/Index_files/font.otf

154.195.72.116

302

0 B

URL GET HTTP/1.1
www.lakewoodlivingword.com/t143/Index_files/font.otf
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t143/Index_files/font.otf HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(1).css
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Location: https://www.lakewoodlivingword.com/
Content-Language: de

www.lakewoodlivingword.com/

154.195.72.116

200

14 kB

URL GET HTTP/1.1
www.lakewoodlivingword.com/
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (890), with CRLF, LF line terminators
Size
14 kB (13597 bytes)
Hash
3884fd82cc5611313699d97591bd1875
bf80549f1417a169e9c97444ae698d7f383f2007
532a825b90f311e6d8529015dc4a12aed330efab7fb8bc5bb2a58515009901d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lakewoodlivingword.com/t143/Index_files/font(1).css
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=D3B3EC1F0FF7742740A5BEE77F813C71
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:44 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Language: de
Content-Encoding: gzip

image.lakewoodlivingword.com/icon/20240406/0ff331fcacf54ae0bb75e1fb87105627.png

154.195.72.116

200 OK

8.2 kB

URL GET HTTP/1.1
image.lakewoodlivingword.com/icon/20240406/0ff331fcacf54ae0bb75e1fb87105627.png
IP
154.195.72.116:443
ASN
#54467 XNNET

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71
Certificate
IssuerLet's Encrypt
Subjectlakewoodlivingword.com
Fingerprint49:B6:0C:1C:5B:83:E3:D6:AA:B1:FC:1F:1B:CB:13:D4:A7:3F:83:F6
ValiditySun, 07 Apr 2024 14:49:35 GMT - Sat, 06 Jul 2024 14:49:34 GMT

File type
PNG image data, 246 x 218, 8-bit/color RGBA, non-interlaced
Size
8.2 kB (8158 bytes)
Hash
caa1f72eb39b36992099b9d04ee0e083
2786b6161f06796e77c98e9aa5e8aad63b8a5643
f91836a20194b0abbd177c3cd1c9787ce0785484dee6b966591e3307d67f7253

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /icon/20240406/0ff331fcacf54ae0bb75e1fb87105627.png HTTP/1.1
Host: image.lakewoodlivingword.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 18 Apr 2024 03:55:45 GMT
Content-Type: image/png
Content-Length: 8158
Connection: keep-alive
Last-Modified: Sat, 06 Apr 2024 10:07:16 GMT
ETag: "66111ed4-1fde"
Nginx-Cache: HIT
Accept-Ranges: bytes

static/font/Heebo-Bold/font.ttf

0.0.0.0

0 B

URL GET
static/font/Heebo-Bold/font.ttf
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/Heebo-Bold/font.ttf HTTP/1.1
Host: static
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lakewoodlivingword.com
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

static/font/Heebo-Regular/font.woff2

0.0.0.0

0 B

URL GET
static/font/Heebo-Regular/font.woff2
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/Heebo-Regular/font.woff2 HTTP/1.1
Host: static
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lakewoodlivingword.com
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

static/font/Heebo-Regular/font.woff

0.0.0.0

0 B

URL GET
static/font/Heebo-Regular/font.woff
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/Heebo-Regular/font.woff HTTP/1.1
Host: static
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lakewoodlivingword.com
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

static/font/Heebo-Regular/font.ttf

0.0.0.0

0 B

URL GET
static/font/Heebo-Regular/font.ttf
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/Heebo-Regular/font.ttf HTTP/1.1
Host: static
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lakewoodlivingword.com
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

static/font/Heebo-Bold/font.woff2

0.0.0.0

0 B

URL GET
static/font/Heebo-Bold/font.woff2
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/Heebo-Bold/font.woff2 HTTP/1.1
Host: static
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lakewoodlivingword.com
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

static/font/Heebo-Bold/font.woff

0.0.0.0

0 B

URL GET
static/font/Heebo-Bold/font.woff
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.lakewoodlivingword.com/;jsessionid=D3B3EC1F0FF7742740A5BEE77F813C71

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/Heebo-Bold/font.woff HTTP/1.1
Host: static
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lakewoodlivingword.com
DNT: 1
Connection: keep-alive
Referer: https://www.lakewoodlivingword.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL