r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13618
Expires: Wed, 07 Dec 2022 13:07:46 GMT
Date: Wed, 07 Dec 2022 09:20:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f83c5e33ba42e312ee398848bbb711f5
caa1fd23b1fbbe883292ded04404c1cfd861eb09
106d08fba45f1e13f85b4b5abc456594878494238933e54b6a06e21ed8a52bc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2356
Cache-Control: max-age=92986
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 09:20:48 GMT
Etag: "638f19f6-1d7"
Expires: Thu, 08 Dec 2022 11:10:34 GMT
Last-Modified: Tue, 06 Dec 2022 10:31:18 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 09:20:28 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 20
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5224
Expires: Wed, 07 Dec 2022 10:47:52 GMT
Date: Wed, 07 Dec 2022 09:20:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: uwmH9jy8TKomni72TBiX4GBOcyht7rQrBEUxGw/h25i1kmVa8ESAc/LSvq6eiZLyT2sYhqV4Q4U=
x-amz-request-id: 3ZC5A1VRB8NQ5CX6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 08:49:18 GMT
age: 1890
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 09:20:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
easternbaytravels.com/
66.147.230.55200 OK 9.8 kB IP 66.147.230.55:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16001), with CRLF line terminators
Hash b29468f75e518188072c40a3c07e89ce
6afc2d9cb488956557239b8390f1e63d97056d68
b6b36c41f3e8a8729b77321a1e2c0f12322da890baf3201ab8cbd3cb1e6e5b55
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
last-modified: Sat, 26 Feb 2022 12:21:12 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 9758
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
fonts.googleapis.com/css?family=Lato:300,400,700
142.250.74.106200 OK 386 B URL HTTP/1.1 fonts.googleapis.com/css?family=Lato:300,400,700
IP 142.250.74.106:0
Hash 88aba26970ea41ba4a8d4a0ec987d39e
d81dcd9677b15fd128f3b06a1e4c8047e19a659b
55040a618035f8ebaffe610905b981b9f9334ec7928395e20a0cfbdb720da3ee
GET /css?family=Lato:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 07 Dec 2022 09:20:49 GMT
Date: Wed, 07 Dec 2022 09:20:49 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
easternbaytravels.com/css/font-awesome.min.css
66.147.230.55200 OK 4.2 kB URL HTTP/1.1 easternbaytravels.com/css/font-awesome.min.css
IP 66.147.230.55:0
File type troff or preprocessor input, ASCII text, with very long lines (336)
Hash 487a61a6f43448711b76fe69c89c3d41
eca0b29787934cfb7377c2b1b3be2dba16feb71c
ccb61bfcf32217caa56338e6ccfff1065a5d168c4577ca7e906e24acee7136b1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/font-awesome.min.css HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2016 13:47:02 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4163
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/css/animate.min.css
66.147.230.55200 OK 4.9 kB URL HTTP/1.1 easternbaytravels.com/css/animate.min.css
IP 66.147.230.55:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash b6df989771d72c0adf4d8250e9fabb66
d7d231a6688ab94589858291cc5765ed1c67aaa7
f56b079d2c8d04765972f9f2340c0aef30e50e9b8027b5510b0f5415851634b0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/animate.min.css HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2016 13:47:02 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4916
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 09:08:58 GMT
cache-control: public,max-age=3600
age: 711
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
easternbaytravels.com/css/bootstrap.min.css
66.147.230.55200 OK 20 kB URL HTTP/1.1 easternbaytravels.com/css/bootstrap.min.css
IP 66.147.230.55:0
File type assembler source, ASCII text, with very long lines (540)
Hash 4e200821b83373ed3547e9eea33b5657
0467d5bdecc4bd71678e29a3dc45e00c92ba6d7d
63ae51c24125cf4039cd8e4be7c258acddc1acb48072b2fbc61f2c8c85b753b7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/bootstrap.min.css HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2016 13:47:02 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 19671
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/components/flexslider/flexslider.css
66.147.230.55200 OK 1.7 kB URL HTTP/1.1 easternbaytravels.com/components/flexslider/flexslider.css
IP 66.147.230.55:0
File type ASCII text, with very long lines (445)
Hash be486b461b1d2ef0b3fbed1f780ba3fe
d0edf8d8c22637d743b26b53b5fd6641699cde7a
4756610d47a38958e055e2ffc9431c2625bc0e0131a90a5c125a70e8df2f079e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/flexslider/flexslider.css HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2016 13:46:40 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1685
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/css/updates.css
66.147.230.55200 OK 898 B URL HTTP/1.1 easternbaytravels.com/css/updates.css
IP 66.147.230.55:0
File type ASCII text, with CRLF line terminators
Hash 155523a847e288a2b5863ef3610d0f43
4cb617aa28269fe553c7dcf9c422dc4875405669
82722f9030ec1b39e38c171ccb089b945bc1ddb8d8b232f17763641b8ce5b26c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/updates.css HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2016 13:47:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 898
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f7dcaa590e32cfd1c075255188d5f06
d4bb4954fefdb3b59560b54adf500e806e252e39
195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2310
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 09:20:49 GMT
Last-Modified: Wed, 07 Dec 2022 08:42:19 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
easternbaytravels.com/components/jquery.bxslider/jquery.bxslider.css
66.147.230.55200 OK 1.2 kB URL HTTP/1.1 easternbaytravels.com/components/jquery.bxslider/jquery.bxslider.css
IP 66.147.230.55:0
Hash 769bcca68fdb580ffd3fa9edf0269edd
0576dd451e5970cd1c0330a9600c69db6dbf91c6
5ee6e6de19cc206b96157f6c0440f5b9645514fdb1b2c5dbcf34c82c58225c7f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/jquery.bxslider/jquery.bxslider.css HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2016 13:46:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1200
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/www.google.com/recaptcha/api.js
66.147.230.55404 Not Found 1.2 kB URL HTTP/1.1 easternbaytravels.com/www.google.com/recaptcha/api.js
IP 66.147.230.55:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /www.google.com/recaptcha/api.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/WebResource1367.js?d=l9BegjhCNw3zbSKIp9RkOBaQjfi1RJJhS9psgc2BBuGP3JsUzZ85LpGo1EM9Dx9pnTeRQiuBnorKblZkZ9tQh8stkO_ufjsrA9aCTkB9vY81&t=636765464300000000
66.147.230.55200 OK 4.6 kB URL HTTP/1.1 easternbaytravels.com/WebResource1367.js?d=l9BegjhCNw3zbSKIp9RkOBaQjfi1RJJhS9psgc2BBuGP3JsUzZ85LpGo1EM9Dx9pnTeRQiuBnorKblZkZ9tQh8stkO_ufjsrA9aCTkB9vY81&t=636765464300000000
IP 66.147.230.55:0
File type ASCII text, with CRLF line terminators
Hash 2143dc10240659ea88fdfe019f7550ce
b0f96d3542dcc129c878e615d24133e9567bdd8b
596c71b88be2c454de3f3e250f34636195e93e131807023b15a0269bdee65ffb
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /WebResource1367.js?d=l9BegjhCNw3zbSKIp9RkOBaQjfi1RJJhS9psgc2BBuGP3JsUzZ85LpGo1EM9Dx9pnTeRQiuBnorKblZkZ9tQh8stkO_ufjsrA9aCTkB9vY81&t=636765464300000000 HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: application/javascript
last-modified: Wed, 31 Oct 2018 05:33:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4625
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/css/custom.css
66.147.230.55200 OK 491 B URL HTTP/1.1 easternbaytravels.com/css/custom.css
IP 66.147.230.55:0
File type ASCII text, with CRLF line terminators
Hash 1199dd065944b0731792700d4279dd51
c9483be2974526deb8b783706886110509097fcb
857ca45d2169cc2a1b7afbcbaa77dec5ba3cd2f271ed127741239b5feb390782
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/custom.css HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2016 13:47:02 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 491
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/css/responsive.css
66.147.230.55200 OK 3.2 kB URL HTTP/1.1 easternbaytravels.com/css/responsive.css
IP 66.147.230.55:0
File type ASCII text, with very long lines (380), with CRLF line terminators
Hash 8894756b9d4bda0a5b4659c5a2c8ca2e
39a56bd67f3fcc19aa0b81b28141004925428c20
5e0d26f0d799836bd45c4a06a259aec45c260a5c80e60d61ad016cbdf85d77cf
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/responsive.css HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2016 13:47:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3184
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/WebResourcea239.js?d=i3g16zqok7tVd-YABRQ8guCAf9A_h9TgYrC340fTYMUsQ3FmL0jR-H3hp4MyI90CEul-aEbffRknwc-vm102HXzsgL5qixEHl90rO7rsiSg1&t=636765464300000000
66.147.230.55200 OK 5.5 kB URL HTTP/1.1 easternbaytravels.com/WebResourcea239.js?d=i3g16zqok7tVd-YABRQ8guCAf9A_h9TgYrC340fTYMUsQ3FmL0jR-H3hp4MyI90CEul-aEbffRknwc-vm102HXzsgL5qixEHl90rO7rsiSg1&t=636765464300000000
IP 66.147.230.55:0
File type ASCII text, with CRLF line terminators
Hash 221bec1bbfd0a88f0cb1d59dbe26357b
df6ab7ec6a2cb83dd7656fbdeb05e162deb1a621
cb777840db9001247ea6e069fdf9e102ba6db2e0172acd5ce6f5b3679efaf529
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /WebResourcea239.js?d=i3g16zqok7tVd-YABRQ8guCAf9A_h9TgYrC340fTYMUsQ3FmL0jR-H3hp4MyI90CEul-aEbffRknwc-vm102HXzsgL5qixEHl90rO7rsiSg1&t=636765464300000000 HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: application/javascript
last-modified: Wed, 31 Oct 2018 05:33:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5488
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/js/modernizr.2.7.1.min.js
66.147.230.55200 OK 6.0 kB URL HTTP/1.1 easternbaytravels.com/js/modernizr.2.7.1.min.js
IP 66.147.230.55:0
File type HTML document, ASCII text, with very long lines (14611), with no line terminators
Hash 920140d9c58e0febd49b472176c4760a
0f37f3aaad46f0348c1d213f9b427d5fa6b20f82
8a49a2bd8d5e3e392d54beeb8d36c81e09d06443e0586735405a650533ac7d24
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/modernizr.2.7.1.min.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:51:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5962
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/js/jquery-migrate-1.2.1.min.js
66.147.230.55200 OK 3.1 kB URL HTTP/1.1 easternbaytravels.com/js/jquery-migrate-1.2.1.min.js
IP 66.147.230.55:0
File type ASCII text, with very long lines (7085), with CRLF line terminators
Hash cc04f2214bb266c246f21d63af159321
a143bc3759985a8f3dbe477665523030e99225a7
8a05c84ca8e4a77a62aec294469e4df465f6cc397cc1583304a3d8270fd14260
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery-migrate-1.2.1.min.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:51:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3071
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/js/jquery.noconflict.js
66.147.230.55200 OK 28 B URL HTTP/1.1 easternbaytravels.com/js/jquery.noconflict.js
IP 66.147.230.55:0
File type ASCII text, with CRLF line terminators
Hash c7ba6efed7c1a8a3b65ce696f3884740
03603805e7e276c7763b58d575a42d5acdcc9dfd
d257c30d93ec580482e46aab8b27ad332751fcebf0ba1e9ae2fe5afaa42e44f9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery.noconflict.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:51:46 GMT
accept-ranges: bytes
content-length: 28
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/js/jquery.placeholder.js
66.147.230.55200 OK 1.7 kB URL HTTP/1.1 easternbaytravels.com/js/jquery.placeholder.js
IP 66.147.230.55:0
Hash 8c6a21f028cc5f29f38e70ab749e2dcd
b20341a1b50ec6d7896819076605dc8fac667a4d
44efecc9ea934ea1b0a6df66381ca949fe57ba7e76e2a3be3793ef7a404bf9e3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery.placeholder.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:51:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1707
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/css/style.css
66.147.230.55200 OK 49 kB URL HTTP/1.1 easternbaytravels.com/css/style.css
IP 66.147.230.55:0
File type ASCII text, with very long lines (993), with CRLF line terminators
Hash c8f59bbc5b70f97dbea85db8ae5f6882
e83d5200ece7c57284826511179895e380e6820d
c9f6b3f92a85a41f8ab1a3bf1ab0e5a45aa1d84e3f9437a920cd07aa6289a096
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/style.css HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2016 13:47:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 48825
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
push.services.mozilla.com/
54.148.53.106101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.53.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cahKaBTQ/5468C9dUjyDOw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JNLFy9P93DdT8rIcC4rFkfGt0ig=
easternbaytravels.com/components/flexslider/jquery.flexslider-min.js
66.147.230.55200 OK 6.3 kB URL HTTP/1.1 easternbaytravels.com/components/flexslider/jquery.flexslider-min.js
IP 66.147.230.55:0
File type ASCII text, with very long lines (22533)
Hash 6abe213f9d32d46f9b80a6508a373b25
ab54a2e2b32ee93565d97a1716b2b0ca4919c2d0
0fe734a6993829c81d20bad1e3b1ddc612e140fa9e12b077e45b7a9fb842c8fc
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/flexslider/jquery.flexslider-min.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:46:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6349
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/js/jquery-1.11.1.min.js
66.147.230.55200 OK 40 kB URL HTTP/1.1 easternbaytravels.com/js/jquery-1.11.1.min.js
IP 66.147.230.55:0
File type ASCII text, with very long lines (600), with CRLF line terminators
Hash ab6563e07fef994e02b0fde3ecdca4c6
3f2142cb7c93aa3c6425447c968839e20e9ccc5d
f50bf3e7baeeaf7e1f300ba4cf3685975355d404983312a4f9ca049af5be4da4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery-1.11.1.min.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:50:40 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 39618
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/js/jquery.stellar.min.js
66.147.230.55200 OK 3.4 kB URL HTTP/1.1 easternbaytravels.com/js/jquery.stellar.min.js
IP 66.147.230.55:0
File type ASCII text, with very long lines (12453)
Hash 4251320ad7efe382ccba5d4938da4fa1
e12451225eb25604d9bbf1b2aa442b98e9f193fe
70619a3a9f5f5965f900d35e106b99a07f85cf7f0f108df27c16ebb9b05f4a1f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery.stellar.min.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:51:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3390
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/js/bootstrap.js
66.147.230.55200 OK 11 kB URL HTTP/1.1 easternbaytravels.com/js/bootstrap.js
IP 66.147.230.55:0
Hash cc70d6699877ec6d87e8ba01140633b8
2fcecc303218ac6f01710bc00099b9a5aeec2b3a
9585f3c15662232e28be996c2ddd9d396c722cfd7c18a1c91c4b38a6e3742a80
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/bootstrap.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:47:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 11044
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/js/jquery-ui.1.10.4.min.js
66.147.230.55200 OK 62 kB URL HTTP/1.1 easternbaytravels.com/js/jquery-ui.1.10.4.min.js
IP 66.147.230.55:0
File type ASCII text, with very long lines (64555), with CRLF line terminators
Hash cf6a291cefef6a4da5359e96142fd61d
c1a6639ed09c8c68e066b3c5e44550d200375704
99cb869ed109c8a404474e73264ee428b151a7670dc402c491973cb1d86c3dcf
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery-ui.1.10.4.min.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:51:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 61594
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/js/waypoints.min.js
66.147.230.55200 OK 2.6 kB URL HTTP/1.1 easternbaytravels.com/js/waypoints.min.js
IP 66.147.230.55:0
File type ASCII text, with very long lines (7828)
Hash 8f087af78fd1f5b149c9ca9f37cc4cce
73bb9a6fa3df98f0bb70a59fbdec516554c70817
3a2bdc0ed5a975f6e823d179d72b6d873a3fce2f7d5b357494c3327111e35b4a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/waypoints.min.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:51:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2592
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/js/theme-scripts.js
66.147.230.55200 OK 11 kB URL HTTP/1.1 easternbaytravels.com/js/theme-scripts.js
IP 66.147.230.55:0
File type ASCII text, with very long lines (511), with CRLF line terminators
Hash f0ffa91b624fd713d285c5a06a427969
b452658dba18e2baa442bfa3ff808d7deb725860
20773f44a0e71f13356f7584c9e83586c6a036e70f8b38fb8e638e7115a0d604
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/theme-scripts.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:51:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 10638
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/components/revolution_slider/css/settings.css
66.147.230.55200 OK 10 kB URL HTTP/1.1 easternbaytravels.com/components/revolution_slider/css/settings.css
IP 66.147.230.55:0
File type ASCII text, with very long lines (375)
Hash be2130efde64e09491417f7ebb346325
2abf2f024e7b5c11aaf9d611a9852370a93b3d61
fd77c4d750837460149d53ede43efd0f021f55b8c386ec88a17f7df8fea4a457
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/revolution_slider/css/settings.css HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2016 13:46:54 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 10428
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/js/scripts.js
66.147.230.55200 OK 187 B URL HTTP/1.1 easternbaytravels.com/js/scripts.js
IP 66.147.230.55:0
File type ASCII text, with CRLF line terminators
Hash b04f488afa0065487b1d5701d556c9a6
8ccb565df56c6ebb3e1e5d00bc20aeb8002fb37b
1eb6697843fa5d77de8e378e2d6216ea6e3a4bfe4c6723b25d047cc1f4c7970e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/scripts.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:51:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 187
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/components/revolution_slider/css/style.css
66.147.230.55200 OK 1.4 kB URL HTTP/1.1 easternbaytravels.com/components/revolution_slider/css/style.css
IP 66.147.230.55:0
File type ASCII text, with CRLF line terminators
Hash 2ea48e537477e1c00a83cde96b97d71c
e80f0989893d4ebb5e73f7406c49d2599a41ef72
5576229bd8b990adb35169b8f27867e13d8e66e7174e643f8097a90ddf05f2da
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/revolution_slider/css/style.css HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2016 13:46:54 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1415
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/components/revolution_slider/js/jquery.themepunch.plugins.min.js
66.147.230.55200 OK 32 kB URL HTTP/1.1 easternbaytravels.com/components/revolution_slider/js/jquery.themepunch.plugins.min.js
IP 66.147.230.55:0
File type ASCII text, with very long lines (24483)
Hash ad04be1d80a2df953922306589443f20
28263b8699583dfef9c33a2931d917e91a2ac8c2
f12e834316e19ca5f7397c96b5350881dd98b61f8df0ab7226309eb762ff00e9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/revolution_slider/js/jquery.themepunch.plugins.min.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:46:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 32016
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/components/revolution_slider/js/jquery.themepunch.revolution.min.js
66.147.230.55200 OK 24 kB URL HTTP/1.1 easternbaytravels.com/components/revolution_slider/js/jquery.themepunch.revolution.min.js
IP 66.147.230.55:0
File type ASCII text, with very long lines (65207)
Hash e521a0d8aa40b64670aae20020341ce6
b572cf80bcc616ba305d446b9939242f82280236
2a84d7a7620c8cc05cc2ed6e5ccb1d7530dbcf7cc59a7eeb1e5ccf3a4c61ee1d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/revolution_slider/js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:49 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2016 13:46:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 24197
date: Wed, 07 Dec 2022 09:20:49 GMT
server: LiteSpeed
easternbaytravels.com/uploads/outgoing/overview/18.jpg
66.147.230.55200 OK 23 kB URL HTTP/1.1 easternbaytravels.com/uploads/outgoing/overview/18.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 270x160, components 3\012- data
Hash d4cc21d378ee9f39003ff0545d9e52c8
ddf0b87d628eb68d0ba931dc050a9d0baab9a3be
fdfeaedaf33dbed3c1ba26ae8ad64d8d99be395f1626373d684681df334b2b0e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/outgoing/overview/18.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:57:06 GMT
accept-ranges: bytes
content-length: 22950
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/www.google-analytics.com/analytics.js
66.147.230.55404 Not Found 1.2 kB URL HTTP/1.1 easternbaytravels.com/www.google-analytics.com/analytics.js
IP 66.147.230.55:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /www.google-analytics.com/analytics.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/uploads/outgoing/overview/1017.jpg
66.147.230.55200 OK 16 kB URL HTTP/1.1 easternbaytravels.com/uploads/outgoing/overview/1017.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 270x160, components 3\012- data
Hash 7b959efd84acc8a966577ac8a8c5908f
27933729b1fb48dcbae96e6b0dd5155a4c205305
b3205bebd111f9044b4849d947490b04956f7f7c71cb7eb8cb23cc4fa484ff11
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/outgoing/overview/1017.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:57:02 GMT
accept-ranges: bytes
content-length: 15752
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/www.google.com/recaptcha/api.js
66.147.230.55404 Not Found 1.2 kB URL HTTP/1.1 easternbaytravels.com/www.google.com/recaptcha/api.js
IP 66.147.230.55:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /www.google.com/recaptcha/api.js HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/uploads/outgoing/overview/24.jpg
66.147.230.55200 OK 17 kB URL HTTP/1.1 easternbaytravels.com/uploads/outgoing/overview/24.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 270x160, components 3\012- data
Hash 75a412fb3cdf02bcdb6507b9e08aef1d
d46a5b3500be43648c11787e4f3501a3ed2b30ad
c38f68ad34c1d0b9bbefb78a8471d1dd54863a885a72ba0cb969a9c91bafdb73
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/outgoing/overview/24.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:57:08 GMT
accept-ranges: bytes
content-length: 17288
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL HTTP/1.1 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://easternbaytravels.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23580
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 18:21:14 GMT
Expires: Wed, 06 Dec 2023 18:21:14 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 26 Apr 2022 15:48:56 GMT
Content-Type: font/woff2
Age: 53976
easternbaytravels.com/uploads/outgoing/overview/1019.jpg
66.147.230.55200 OK 12 kB URL HTTP/1.1 easternbaytravels.com/uploads/outgoing/overview/1019.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 270x160, components 3\012- data
Hash 193bbc5c8a7ea6947e78ad340986e07b
af1f3fb80eca94b521125c8d90372c6ff1323114
ff66e1e87251ffe6cd7cf62ec9b9dbfbdf49d00a3dcb692712a6e70628700d4d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/outgoing/overview/1019.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:57:06 GMT
accept-ranges: bytes
content-length: 11618
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.163200 OK 23 kB URL HTTP/1.1 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://easternbaytravels.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23040
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 17:29:30 GMT
Expires: Wed, 06 Dec 2023 17:29:30 GMT
Cache-Control: public, max-age=31536000
Age: 57080
Last-Modified: Tue, 26 Apr 2022 15:56:42 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
142.250.74.163200 OK 23 kB URL HTTP/1.1 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://easternbaytravels.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23236
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 08:20:12 GMT
Expires: Thu, 07 Dec 2023 08:20:12 GMT
Cache-Control: public, max-age=31536000
Age: 3638
Last-Modified: Tue, 26 Apr 2022 16:04:12 GMT
Content-Type: font/woff2
easternbaytravels.com/uploads/destinations/171/34.jpg
66.147.230.55200 OK 36 kB URL HTTP/1.1 easternbaytravels.com/uploads/destinations/171/34.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 172x172, components 3\012- data
Hash 8345da9a2248fbfebac541f0dc2333d7
c55009b9d7672b4c81f5e607c5d5bfc1fcb18bd2
07a1c75018fadb4a1ad0814046e2e93932e18ec58c0b53a60e802082624f2ad8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/destinations/171/34.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:51:52 GMT
accept-ranges: bytes
content-length: 35637
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/uploads/destinations/171/32.jpg
66.147.230.55200 OK 35 kB URL HTTP/1.1 easternbaytravels.com/uploads/destinations/171/32.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 172x172, components 3\012- data
Hash 77bbba51732c4703ba8138975cb80a1e
83cfd14a2c48b449b7be80790937211b2a27e08c
0d6b3448fdf657ffa5513ac9bf27e74938afd4392471db2dfe48b7b1afa9de23
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/destinations/171/32.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:51:52 GMT
accept-ranges: bytes
content-length: 34864
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/uploads/destinations/171/33.jpg
66.147.230.55200 OK 45 kB URL HTTP/1.1 easternbaytravels.com/uploads/destinations/171/33.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 172x172, components 3\012- data
Hash 58e674771720e9b43560d5b563749bd5
a5092a89dcc90c1f17a0d1cc0da69ff2902e4620
bf10734be433880d21c4799c215570d75ef2fb715183a142a40e31e1801e18c4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/destinations/171/33.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:51:52 GMT
accept-ranges: bytes
content-length: 45068
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/uploads/destinations/171/35.jpg
66.147.230.55200 OK 42 kB URL HTTP/1.1 easternbaytravels.com/uploads/destinations/171/35.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 172x172, components 3\012- data
Hash b0cf7a7fae72e3df998853344f6f8097
de07caae194a3d2bf8a79dce2953f2c0c908ee30
c995927a4d0f7dcda7b491a06af21deb223a0469d4601fd411b7eb6cb92322d2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/destinations/171/35.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:51:52 GMT
accept-ranges: bytes
content-length: 41609
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/fonts/fontawesome-webfontba72ba72.woff?v=4.0.3
66.147.230.55200 OK 44 kB URL HTTP/1.1 easternbaytravels.com/fonts/fontawesome-webfontba72ba72.woff?v=4.0.3
IP 66.147.230.55:0
File type Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Hash 3293616ec0c605c7c2db25829a0a509e
04c3bf56d87a0828935bd6b4aee859995f321693
0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /fonts/fontawesome-webfontba72ba72.woff?v=4.0.3 HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://easternbaytravels.com/css/font-awesome.min.css
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: font/woff
last-modified: Mon, 03 Oct 2016 13:47:06 GMT
accept-ranges: bytes
content-length: 44432
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/fonts/glyphicons-halflings-regular.woff
66.147.230.55200 OK 23 kB URL HTTP/1.1 easternbaytravels.com/fonts/glyphicons-halflings-regular.woff
IP 66.147.230.55:0
File type Web Open Font Format, TrueType, length 23320, version 1.0\012- data
Hash 68ed1dac06bf0409c18ae7bc62889170
22037a3455914e5662fa51a596677bdb329e2c5c
fc969dc1c6ff531abcf368089dcbaf5775133b0626ff56b52301a059fc0f9e1e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /fonts/glyphicons-halflings-regular.woff HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://easternbaytravels.com/css/bootstrap.min.css
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: font/woff
last-modified: Mon, 03 Oct 2016 13:47:10 GMT
accept-ranges: bytes
content-length: 23320
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/uploads/outgoing/overview/1020.jpg
66.147.230.55200 OK 25 kB URL HTTP/1.1 easternbaytravels.com/uploads/outgoing/overview/1020.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 270x160, components 3\012- data
Hash e77d76d76eef529e05994299e7402b4a
0cb1bf1afff0e50249c15a4a72dc4ca9e2f67585
46bf6664897c56471c292478378a5669895bac30f2057b9501d354d67dc05cd9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/outgoing/overview/1020.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:57:04 GMT
accept-ranges: bytes
content-length: 24680
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/images/logo.png
66.147.230.55200 OK 7.5 kB URL HTTP/1.1 easternbaytravels.com/images/logo.png
IP 66.147.230.55:0
File type PNG image data, 436 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash a582fa7dffed1abd86019942913e62cd
5b2b9a82c558c5a56701f85d34726610e1875cc5
d4ded9efdb94ad2c222f43f007c041f226c72703b7533f61c03fe803ebd04312
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /images/logo.png HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/png
last-modified: Sat, 26 Feb 2022 12:42:02 GMT
accept-ranges: bytes
content-length: 7528
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/fonts/soap-iconsc526.woff?26664784
66.147.230.55200 OK 42 kB URL HTTP/1.1 easternbaytravels.com/fonts/soap-iconsc526.woff?26664784
IP 66.147.230.55:0
File type Web Open Font Format, TrueType, length 41836, version 1.0\012- data
Hash 7351b5d5f8f144235fd78db7645854d3
b1039a7b36a939ba13188c52be85704f061b591d
6cb6f6696b688267834f7f7b01bbf0b06ec864ab3c5ec4895c0bf8e9e8464d83
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /fonts/soap-iconsc526.woff?26664784 HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://easternbaytravels.com/css/style.css
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: font/woff
last-modified: Mon, 03 Oct 2016 13:47:16 GMT
accept-ranges: bytes
content-length: 41836
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/images/global-map.jpg
66.147.230.55200 OK 192 kB URL HTTP/1.1 easternbaytravels.com/images/global-map.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2080x1362, components 3\012- data
Size 192 kB (192381 bytes)
Hash f8c11fbd8878de274e8b79c30c05bcb8
51dd7f78a658b21eb3eca21fe1f6ac421018bea1
0698880ffb36c0447ba987d9c6a1db97431e884609bd5ffb33175cfedba6611b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /images/global-map.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/css/style.css
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:48:04 GMT
accept-ranges: bytes
content-length: 192381
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/uploads/outgoing/overview/1011.jpg
66.147.230.55200 OK 16 kB URL HTTP/1.1 easternbaytravels.com/uploads/outgoing/overview/1011.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 270x160, components 3\012- data
Hash 6fee9a8e327542c0d088af38abcb591b
a5fb9cfd78f64c766544150ca7dde6341c8e0f98
699aeb877e860522eafc02f88b493f5d437d143868d233d147c79b59c9e5a900
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/outgoing/overview/1011.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:57:02 GMT
accept-ranges: bytes
content-length: 15802
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10313
Expires: Wed, 07 Dec 2022 12:12:44 GMT
Date: Wed, 07 Dec 2022 09:20:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10313
Expires: Wed, 07 Dec 2022 12:12:44 GMT
Date: Wed, 07 Dec 2022 09:20:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10313
Expires: Wed, 07 Dec 2022 12:12:44 GMT
Date: Wed, 07 Dec 2022 09:20:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10313
Expires: Wed, 07 Dec 2022 12:12:44 GMT
Date: Wed, 07 Dec 2022 09:20:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10313
Expires: Wed, 07 Dec 2022 12:12:44 GMT
Date: Wed, 07 Dec 2022 09:20:51 GMT
Connection: keep-alive
easternbaytravels.com/uploads/tours.jpg
66.147.230.55200 OK 62 kB URL HTTP/1.1 easternbaytravels.com/uploads/tours.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 370x172, components 3\012- data
Hash 743dd155d9a66a85ec12befd97c416eb
1fab45266915a225876d6fe956dd0615a703bda9
4cb70f5fa7b588a8f15ce9092d68ed62929e86dcb9aec236016de033559e4860
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/tours.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:57:52 GMT
accept-ranges: bytes
content-length: 61741
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/uploads/outgoing/overview/1012.jpg
66.147.230.55200 OK 23 kB URL HTTP/1.1 easternbaytravels.com/uploads/outgoing/overview/1012.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 270x160, components 3\012- data
Hash d306f0c8136f6b7b457a5d19277aebd8
5baf945f1d98862c718d640c65eb44de28c3894b
a18f79df11098472dd40505e237a3bc0963f706e9ca17b43b8be190bee93c763
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/outgoing/overview/1012.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:57:02 GMT
accept-ranges: bytes
content-length: 23187
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ViuPsZBEVJ-aGOcsfrl3nXu244mzMUMQVhpPeNlO7W3sBrrfuUfXpA==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:32:04 GMT
age: 38927
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 604a4132da78a0c013b5818644adb121
ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566
eecab519c33596c67f2d2021dfd1af24e7fd8f2ed403f99b4ba0c265c08a259f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8701
x-amzn-requestid: 653284c3-ee7f-45f1-9513-3a6c81e1d6e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cm3-2HRWIAMFjfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c39f8-6f8969a26787a9463ba6c2ec;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 06:11:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EpyIdH9YEXjxbGhZpBIfzoZHQxMvAKl0eCFQsgMt0e1SSeWsiuey7g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:15:06 GMT
age: 39945
etag: "ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98d2cf29c710d25bd2f03ff216fdd369
b8eb2e11f9655f19334befc036f21489a6473827
614c9b4a7ace908c1ef807964709cb292b33b48ce1d81ccbd2959c2c0ee156ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8351
x-amzn-requestid: 607d07ab-6833-4001-82ed-699ea91f84c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlitFk9oAMFakQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb611-3e5f14f833b332647ef7358d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0w5Usq-LJMNHxw9UrwUqSslSVROXVHTmY_UhSHNaGh4k4xqh-FSa0A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:55:40 GMT
etag: "b8eb2e11f9655f19334befc036f21489a6473827"
content-type: image/jpeg
age: 41111
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e3174edbfe337cc29266cc38abb51e
80283cb298a1b2326620be406ee3daa42ee0b3ef
520858a9d9540d5768988d0ebb04f0162ded5eb9cd8f4718989b033d04702111
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 3b64a1cf-0ad7-4ecf-a25e-ca65c06330ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csVFcECMoAMF1SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6889-42dde2da60f083383ab06b82;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:54:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z3yEknYzqJG3oEe-t3nxHYkDXSYGdWkRdbB1V4ixYcJjV5DjxzLzEA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 08:48:55 GMT
age: 1916
etag: "80283cb298a1b2326620be406ee3daa42ee0b3ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5025a35-c128-4d8f-a429-7148aaebb3b1.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5025a35-c128-4d8f-a429-7148aaebb3b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f38ce0fb35ef0fc66b61cafd2b09eeb6
aded2fe97a129dc820ba9d6d7605aeadfe17c15c
39bcb5e0c3a9cd39c0fcefbffd9e6f949bb9d85f0bee2b0b7c5cb999b508b1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5025a35-c128-4d8f-a429-7148aaebb3b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9781
x-amzn-requestid: 24355473-a83a-42b6-bdf3-ae2c39f7f3eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ccq48GfKoAMFjmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63882505-2f58dd012665cb131ceff8f2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 03:52:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VySWUb7U2HlkyL8T1PCOzSDXNSDJDRIIF1PAnwaK2DHiGJFGGzRCOQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 06:07:33 GMT
age: 11598
etag: "aded2fe97a129dc820ba9d6d7605aeadfe17c15c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb602c981-caf1-4cfc-b19b-56f816dc7417.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb602c981-caf1-4cfc-b19b-56f816dc7417.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2ae931d0f14a81013f782d43b8c7b85
9ec84996b63362ad370ff67b0fd8136a343c1bbf
9b4a2b3e5e2d2b4fac094135fed10a3040598f1208f6b2ec52d95d10aca66ed5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb602c981-caf1-4cfc-b19b-56f816dc7417.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9891
x-amzn-requestid: f15dc6ba-901b-4ef6-8589-d8918fe84173
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csU8lF3MoAMF47g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6850-496d269b228065a365a67eea;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:53:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3SFFPJye5LvexbHVfPukXIdJ-BSkP5MCpesIJhqxtSNKamcRNr1lFA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 18:21:44 GMT
age: 53947
etag: "9ec84996b63362ad370ff67b0fd8136a343c1bbf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
easternbaytravels.com/uploads/outgoing/overview/23.jpg
66.147.230.55200 OK 17 kB URL HTTP/1.1 easternbaytravels.com/uploads/outgoing/overview/23.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 270x160, components 3\012- data
Hash 7d67816eb1aa2cfd0f79d3ed153be791
ed353347f22a50ee8c0e378b8da29e1213f0e1e4
ac0af619a746fab3e80eb63b26735f870e5b62c0bc1848422955d03074879dfb
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/outgoing/overview/23.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:57:08 GMT
accept-ranges: bytes
content-length: 17181
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/uploads/dicoverBG.jpg
66.147.230.55200 OK 219 kB URL HTTP/1.1 easternbaytravels.com/uploads/dicoverBG.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2080x1362, components 3\012- data
Size 219 kB (218808 bytes)
Hash 12870a3030d684bced11ae3dfb01364a
9c51554552a4f8b3ae9090d95d23e395039a1d0e
7983e45048b8cca812ed908e0e687127a8ffefab56e448ab5947a639421decdf
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/dicoverBG.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/css/updates.css
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:50 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:51:48 GMT
accept-ranges: bytes
content-length: 218808
date: Wed, 07 Dec 2022 09:20:50 GMT
server: LiteSpeed
easternbaytravels.com/uploads/hotels.jpg
66.147.230.55200 OK 53 kB URL HTTP/1.1 easternbaytravels.com/uploads/hotels.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 370x172, components 3\012- data
Hash 0cd24fa0201a067839007e7c75f9a992
eefcd24b5e86128192de9293f04baf7e58ec82a9
919a7c681f26d7debec18d2cf928320e1cdb8506e324680e88525d27b92de76c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/hotels.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:52:02 GMT
accept-ranges: bytes
content-length: 53402
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/uploads/holidays.jpg
66.147.230.55200 OK 72 kB URL HTTP/1.1 easternbaytravels.com/uploads/holidays.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 370x172, components 3\012- data
Hash 7e2479bfd21a9addce8876b83b4a77a2
3d1521a3c0d676b33c8fbcdd250e3b11abcd66f1
a27fb3b9ee49f9e77a225a589e53e26418ba443bc78b000608c494e9426f1f25
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/holidays.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:52:02 GMT
accept-ranges: bytes
content-length: 72393
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/uploads/cruises.jpg
66.147.230.55200 OK 96 kB URL HTTP/1.1 easternbaytravels.com/uploads/cruises.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 370x172, components 3\012- data
Hash 147df0657e08d8942f1515529e43a7e9
4765cc976499d5a3421d9e4588c849520495a657
b8ac1625ea974565cabd35a2e3e0662fdf07012797ceed8cb49087d7e649db8a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/cruises.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:51:48 GMT
accept-ranges: bytes
content-length: 96500
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/uploads/HomecarHiring.jpg
66.147.230.55200 OK 7.1 kB URL HTTP/1.1 easternbaytravels.com/uploads/HomecarHiring.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x172, components 3\012- data
Hash fb45853af7f84cbfda940135d6457f2e
2e154d8a918d2e2af9d45943679d373253d82f25
12f7ec3fe432493359c3fa56d74e92063f5aec46df90cde13c5942fff04ba3de
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/HomecarHiring.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:52:02 GMT
accept-ranges: bytes
content-length: 7069
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/uploads/HomeTravelInsurance.jpg
66.147.230.55200 OK 6.7 kB URL HTTP/1.1 easternbaytravels.com/uploads/HomeTravelInsurance.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x172, components 3\012- data
Hash eb924b78ec3db0c25bb39c4c6b4e5c7b
9b214aab08385ede3272a00dc4238984cb621dd3
a4d65e4e6e312a8c64f766b348ddb7823e51851e90263eaa48c318ec0b034ff2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/HomeTravelInsurance.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:52:02 GMT
accept-ranges: bytes
content-length: 6747
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/uploads/homeTravelGuide.jpg
66.147.230.55200 OK 6.9 kB URL HTTP/1.1 easternbaytravels.com/uploads/homeTravelGuide.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x172, components 3\012- data
Hash d17b1e1c59e104ea7788dee6fa65bfda
67a788fae7fa064ea3e586b765ebf208b22deb8f
c4382a3c98faf5a1bc14a0206b52f42a7dcc2c30f3e15a617b2bb9f35247b395
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/homeTravelGuide.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:52:02 GMT
accept-ranges: bytes
content-length: 6931
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/images/icon/hover-effect.png
66.147.230.55200 OK 2.0 kB URL HTTP/1.1 easternbaytravels.com/images/icon/hover-effect.png
IP 66.147.230.55:0
File type PNG image data, 49 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash d04a25a16b372497b8e2ea5f8f7078bf
6f12715b6ff8dd9e94954aee5c84d5e71f1da27b
b909a9a784793cb0d53f9ddd32775eed54e72585e6dac881816904ae2120e416
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /images/icon/hover-effect.png HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/css/style.css
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/png
last-modified: Mon, 03 Oct 2016 13:48:14 GMT
accept-ranges: bytes
content-length: 2014
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/components/revolution_slider/assets/timer.png
66.147.230.55200 OK 125 B URL HTTP/1.1 easternbaytravels.com/components/revolution_slider/assets/timer.png
IP 66.147.230.55:0
File type PNG image data, 1 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash ba593bd9fc9e07110f3dc74f728b3768
9620e53c9e0a5b5d55e15b23f556e2089e903fc1
a15348b049a18c85702dde38f379aa78d3809af8c07adcf25236c69b03f6f746
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /components/revolution_slider/assets/timer.png HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/components/revolution_slider/css/settings.css
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/png
last-modified: Mon, 03 Oct 2016 13:46:52 GMT
accept-ranges: bytes
content-length: 125
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/uploads/destinations/171/36.jpg
66.147.230.55200 OK 41 kB URL HTTP/1.1 easternbaytravels.com/uploads/destinations/171/36.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 172x172, components 3\012- data
Hash c8bcf304005a21e0849907ec416fdd33
b3df91f3a3290f7342ec434e724c59c7a07412c1
ab65cbb39da7ea66a4a556439d3573a78e352f46b882cfa78f6d462e8351c3ca
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/destinations/171/36.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:51:52 GMT
accept-ranges: bytes
content-length: 41125
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/Lights-fireworks-flying-carpets-welcome-to-Baku-2015.jpg
66.147.230.55200 OK 467 kB URL HTTP/1.1 easternbaytravels.com/Lights-fireworks-flying-carpets-welcome-to-Baku-2015.jpg
IP 66.147.230.55:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1876x1011, components 3\012- data
Size 467 kB (467191 bytes)
Hash 5b758474b9dae99f0a1414b0e6c6b151
ee0ccef222acc29a8c2152cd6442582cc65b53d4
590df2d63444234a53c0ff61d85156bdf446e5921253a226cc186cabc8fac25f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /Lights-fireworks-flying-carpets-welcome-to-Baku-2015.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Sat, 26 Feb 2022 13:35:00 GMT
accept-ranges: bytes
content-length: 467191
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/uploads/destinations/171/37.jpg
66.147.230.55200 OK 51 kB URL HTTP/1.1 easternbaytravels.com/uploads/destinations/171/37.jpg
IP 66.147.230.55:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 172x172, components 3\012- data
Hash 7f5d90129540333f2482345d1b414e8e
d498d0a28b6af79dc888b29c378df16f8e5badfc
c609d501d0632e34e2cd8b5d7f4c336a4059bb1f6182e66ca0a3b8587d5088ef
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /uploads/destinations/171/37.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2016 13:51:52 GMT
accept-ranges: bytes
content-length: 51332
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/gabala.jpg
66.147.230.55200 OK 408 kB URL HTTP/1.1 easternbaytravels.com/gabala.jpg
IP 66.147.230.55:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1920x1080, components 3\012- data
Size 408 kB (407546 bytes)
Hash cac9f41692e9d1d3588fd94995c339a3
55433d9684a98d3f3a71be68544aa6c25f50c37e
5fa424e98efec5dbe13e8bbbc3aa97e40213c96bfb9a9bd7945aecffc4205ff6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /gabala.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Mon, 17 May 2021 10:50:24 GMT
accept-ranges: bytes
content-length: 407546
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/images/favicon.png
66.147.230.55200 OK 789 B URL HTTP/1.1 easternbaytravels.com/images/favicon.png
IP 66.147.230.55:0
File type PNG image data, 54 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 301e81f8a29dc8dfc49f9fe8ebf62d02
e93384613048a64cfc208fa93493b8b865ba00aa
b8cb0c1b54d663ac4b4eca2a50af0adb279d183902a0924f40ca1bd4d058b245
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /images/favicon.png HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/png
last-modified: Sat, 26 Feb 2022 12:44:48 GMT
accept-ranges: bytes
content-length: 789
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed
easternbaytravels.com/19talk-baku-slide-W3M5-superJumbo.jpg
66.147.230.55200 OK 308 kB URL HTTP/1.1 easternbaytravels.com/19talk-baku-slide-W3M5-superJumbo.jpg
IP 66.147.230.55:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1596x1064, components 3\012- data
Size 308 kB (308470 bytes)
Hash a14e68efe7f78b511c54ffcdcc49e8a8
2ac81d4c7d5030c57db797cf6455efc05cff2f58
e6d3541f062b1a843a91129642181c796aebbf1b235909e8cb246eb971fe2af4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /19talk-baku-slide-W3M5-superJumbo.jpg HTTP/1.1
Host: easternbaytravels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://easternbaytravels.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 09:20:51 GMT
content-type: image/jpeg
last-modified: Wed, 01 Jul 2020 21:06:08 GMT
accept-ranges: bytes
content-length: 308470
date: Wed, 07 Dec 2022 09:20:51 GMT
server: LiteSpeed