Report - www.quadrantmeasurements.com/

Report Overview

Submitted URL
www.quadrantmeasurements.com/
IP
162.144.0.45
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-09-22 11:07:16
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
98

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
maps.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	71 kB	142.250.74.163
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	64 kB	34.120.237.76
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	466 B	17 kB	142.250.74.163
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
www.quadrantmeasurements.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	348 B	395 B	162.144.0.45
quadrantmeasurements.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	5.6 MB	162.144.0.45
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.5 kB	142.250.74.3
maps.googleapis.com	33876	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	467 B	58 kB	142.250.74.106
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	455 B	1.7 kB	216.58.211.10
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.161.231.36
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	720 B	2.2 kB	142.250.74.164
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-22	medium	www.quadrantmeasurements.com/	Malware
2022-09-22	medium	quadrantmeasurements.com/	Malware
2022-09-22	medium	quadrantmeasurements.com/wp-content/cache/minify/31730.js	Malware
2022-09-22	medium	quadrantmeasurements.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5	Malware
2022-09-22	medium	quadrantmeasurements.com/wp-content/cache/minify/71cef.js	Malware
2022-09-22	medium	quadrantmeasurements.com/wp-content/cache/minify/02b6f.js	Malware
2022-09-22	medium	quadrantmeasurements.com/wp-content/cache/minify/5b0ff.js	Malware
2022-09-22	medium	quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff2?v=4.7.0	Malware
2022-09-22	medium	quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.ttf?v=4.7.0	Malware

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed
2022-09-22	medium	quadrantmeasurements.com	Sinkholed

Quad9 DNS

No alerts detected

Files detected

URL
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
16 kB (16002 bytes)
Hash
2c5e576c986fa3babe2c32f4a7ca3f3c
2f9f0aaf63ec000b07fc073c26fddfb6ab4e4466
f560931ec3844307c32fb2b1503925261fc99f30ecd22d27664b104e13e5567c

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

JavaScript (21)

	URL	Size	First Seen	Last Seen
	quadrantmeasurements.com/	2.1 kB	2023-03-07	2023-03-07
Pretty URL quadrantmeasurements.com/ IP 162.144.0.45 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:11:24 Last Seen2023-03-07 23:11:24 Times Seen1 Hash 98ab0c0138413f09dd969fa9a046200a e91c5efba838afb1935edea1bf2ce5e41b2d8f85 2634ebc4f1117b527721aa79357beb5363bdec0f4f72374288cb51c624f40faa Loading...

	quadrantmeasurements.com/	150 B	2023-03-07	2023-03-07
Pretty URL quadrantmeasurements.com/ IP 162.144.0.45 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:11:24 Last Seen2023-03-07 23:11:24 Times Seen1 Hash 63e48d33cd2fe9de82335c1c38fbb559 38c146cd476b405334c2ff3fa982610d4705241f ca672ed7d9d9e281e8da0e30fdfd67578bbfc3910731c7809c27826dd6110538 Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/6/util.js	162 kB	2023-03-07	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/6/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:47:31 Last Seen2023-03-08 03:11:05 Times Seen1 Hash d025c70ff0f9d652f7f2588550a50655 7ccc317814e37ffd3b56c9b4319f7800ccd734fe 7c57756950e7e2a4219d67ac9f6822c57a3bd19484e7cd197e7c3b35fccaa05f Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/6/overlay.js	3.6 kB	2023-03-07	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/6/overlay.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:54:54 Last Seen2023-03-08 03:07:26 Times Seen1 Hash 8c0b67a456bdaf58f051ef9afafa46ae c45b6fa01721570237877c828a8467cddecf5ba7 30c95c3b9adb7f826844bfd1966319f6801cc3432f57f1c6f79ddb49a64721df Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/6/common.js	252 kB	2023-03-07	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/6/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:47:31 Last Seen2023-03-08 03:11:05 Times Seen1 Hash d3fd1f634c6bb18b363f3d03b7b3925e a2a082e3a12138256cc67310c21e4378d4378508 f37f4f2ac2c66956043d95284071e516a633f7113819e8a675a68577c82b29ad Loading...

	quadrantmeasurements.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5	18 kB	2023-03-07	2024-04-27
Pretty URL quadrantmeasurements.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5 IP 162.144.0.45 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-27 02:39:29 Times Seen12604 Hash 116c86c56f8db0bb63f15ceda50fdc98 75e308982ecf7cd43644b8b426e6aa1a0b0fbe26 def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7 Loading...

	unknown	0 B	2023-03-07	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 07:10:28 Times Seen37113902 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	quadrantmeasurements.com/wp-content/cache/minify/5b0ff.js	84 kB	2023-03-07	2023-03-07
Pretty URL quadrantmeasurements.com/wp-content/cache/minify/5b0ff.js IP 162.144.0.45 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:11:24 Last Seen2023-03-07 23:11:24 Times Seen1 Hash 4dbe143a48493ef9e2484236e8676091 33f86863b5db128210b3f08c810828e79cd5444f d3f53b6b1071577604567fa66eb8fd52d942038d60e989bc51612bc9dde77fca Loading...

	quadrantmeasurements.com/wp-content/cache/minify/02b6f.js	200 kB	2023-03-07	2023-03-07
Pretty URL quadrantmeasurements.com/wp-content/cache/minify/02b6f.js IP 162.144.0.45 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:11:24 Last Seen2023-03-07 23:11:24 Times Seen1 Hash e95d4a33a531c512122b9c88bf6067af 377903c0f06123b922f78ea71670b75c6cef4de3 c3bebe472cbb13b2f75052393c732da79e00c4d4810bc584d1122d1cef52a4f9 Loading...

	www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3749.2470146774563!2d73.74059071444637!3d19.99814488656553!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3bddec5ebe18aff3%3A0x48ac23f4c76c07fb!2sQuadrant+Measurements+Pvt.+Ltd.!5e0!3m2!1sen!2sin!4v1557132102905!5m2!1sen!2sin	3.2 kB	2023-03-07	2023-03-07
Pretty URL www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3749.2470146774563!2d73.74059071444637!3d19.99814488656553!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3bddec5ebe18aff3%3A0x48ac23f4c76c07fb!2sQuadrant+Measurements+Pvt.+Ltd.!5e0!3m2!1sen!2sin!4v1557132102905!5m2!1sen!2sin IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:11:24 Last Seen2023-03-07 23:11:24 Times Seen1 Hash 6f3f013dd1ffd0864eb556ead86149c4 47d3db867647920ee49fa12d5959e76f41accb0a 10c4bf3326057f3270a8fed39cfa20f088b8d0bdc52edc74fc9758d3570938d5 Loading...

	maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&region=in&callback=onApiLoad	174 kB	2023-03-07	2023-03-07
Pretty URL maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&region=in&callback=onApiLoad IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:11:24 Last Seen2023-03-07 23:25:10 Times Seen1 Hash b3796c8c7de76e53c43a6e1070294fdb 9dbcd3a9fb57a3a744b76c020b8978426ad615ec 2c1d38620f2f42d27c40d88547c47805039c87950819a6fd5261fe955739633f Loading...

	maps.gstatic.com/maps-api-v3/embed/js/50/6/init_embed.js	226 kB	2023-03-07	2023-03-08
Pretty URL maps.gstatic.com/maps-api-v3/embed/js/50/6/init_embed.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:54:54 Last Seen2023-03-08 03:07:26 Times Seen1 Hash ecea07c3fe85e8678aac6c89c9dc1cec 022f651a99df0dc5b2da73bb751557923c7de8ae 0ce14757ada5db3cb6f1c10cb80357a99984c34517f220d1728afdc6a3bc2583 Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/6/search_impl.js	2.8 kB	2023-03-07	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/6/search_impl.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:54:54 Last Seen2023-03-08 03:07:26 Times Seen1 Hash e68d4a524db9e4eec94e4e574bcf462e 13a4ac9984de00040b2ffa4d9545922c1c8ffa46 0237bccee042a397442b7e204d07e524ffcde76100a42f1ffb5acf3b8fb719ea Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&callback=_xdc_._lkdbea&client=google-maps-embed&token=74987	62 B	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&callback=_xdc_._lkdbea&client=google-maps-embed&token=74987 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-17 12:55:46 Times Seen1 Hash 0e17a392d717b51a588445d5d37fde38 bf28db243e1250adcbc26ead733c95fde9b8ff9d e8787b986ce1452c351a4976cb95b95be50429a278530debf91d524e72a65ec8 Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7scy91g5&10e1&callback=_xdc_._9z37rw&client=google-maps-embed&token=91405	62 B	2023-03-07	2023-03-07
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7scy91g5&10e1&callback=_xdc_._9z37rw&client=google-maps-embed&token=91405 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:11:24 Last Seen2023-03-07 23:11:24 Times Seen1 Hash 39c665b4380342790a690e885d6fd0df 22c4a8337f9b64f97e22a7dad6ecd417902a0e5e aeeec3282347872009c3134bbab30a5927e867768e5c2ebc6afeb0be4cf7c5e5 Loading...

	quadrantmeasurements.com/wp-content/cache/minify/31730.js	23 kB	2023-03-07	2023-06-06
Pretty URL quadrantmeasurements.com/wp-content/cache/minify/31730.js IP 162.144.0.45 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:11:24 Last Seen2023-06-06 03:11:17 Times Seen15 Hash e08d6f6cdcef52465c26286b9deadcdf 275697259393014c62a0beea075f99d8f43aaf03 c85e25ec9b13ac5809394c55c27e7b16658968f268fb61b4e2bdb5a72e7b6e08 Loading...

	quadrantmeasurements.com/	1.2 kB	2023-03-07	2023-03-07
Pretty URL quadrantmeasurements.com/ IP 162.144.0.45 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:11:24 Last Seen2023-03-07 23:11:24 Times Seen1 Hash c58736c93ba36d3c1cd146c3b4181437 f7c9adaad47329d7c9d3724590f3fa9f019aff33 f578c4ff1c60d173f87c49016887decbe4729260e756437c3c71e17853dd6a85 Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/6/map.js	72 kB	2023-03-07	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/6/map.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:53:41 Last Seen2023-03-08 03:07:26 Times Seen1 Hash 3879b8ce682bd9aeddae1ec171d598e4 cce0e90503509ca5a313c9e2720d41dafab21d43 b123f4c5ea191fa6460046c73664b0be01b82c5344f13a014694848062b82862 Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/6/onion.js	28 kB	2023-03-07	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/6/onion.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:53:41 Last Seen2023-03-08 03:07:26 Times Seen1 Hash 504e2af1af235b43a9f7087334afe36b bdb6022c92e76752ac0860db6472c3d717eeb6b8 34725ee368d02e21f81a344faf32a5b543d3294ed4bc3aa4a7ee50b7dc08b44f Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d19.98883163783042&2d73.71925145888753&2m2&1d20.00758402194774&2d73.76582996137249&2u15&4sen&5e0&6sm%40619000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._907jgg&client=google-maps-embed&token=44481	14 kB	2023-03-07	2023-03-07
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d19.98883163783042&2d73.71925145888753&2m2&1d20.00758402194774&2d73.76582996137249&2u15&4sen&5e0&6sm%40619000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._907jgg&client=google-maps-embed&token=44481 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:11:24 Last Seen2023-03-07 23:11:24 Times Seen1 Hash 34f5f5d8ffe562df88c5be00b649ab35 730bdb9ee63079553beb5bd92ceb1d0096e08f39 882d2f04bd1cde05c1369a33c30819e1ecfa0c7d1587ad1b70e8aef3f6ec111f Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/6/controls.js	93 kB	2023-03-07	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/6/controls.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:51:55 Last Seen2023-03-08 03:07:26 Times Seen1 Hash 8c318723077254983c1bc3ac4e3297d6 be2bbb964e8b91022c394fa883f179fafc28bed4 bf527935a58d517ff8b899fdc11893b8f90d413a9a5b82a7d2ef51a2f84519b3 Loading...

HTTP Transactions (69)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9455
Expires: Thu, 22 Sep 2022 13:44:40 GMT
Date: Thu, 22 Sep 2022 11:07:05 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
804f8bbb7f556d51a5f52d5ebd5b6eef
922cd7e06df278615a04abb81d811d14596c8180
ef4804d381a34ab67873a7755621081c49c646310e085a9b2356ae07098f6021

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Backoff, Retry-After, Content-Type
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 10:13:57 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AIhWS8z99LgdCv1sgXUsdf8HsAmTaaYdwRqzn5_oUG3NK5grPE5Wog==
Age: 3188

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
afb65a07bf7214addf83d17a53acba32
a8e973204431320aa7b362a4e73944520c4b51b9
46e1a9e6c98245afb7fa84bc6d9ba6844105024e2d3f56e28748e6c321475d02

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4613
Expires: Thu, 22 Sep 2022 12:23:58 GMT
Date: Thu, 22 Sep 2022 11:07:05 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 5XCbNlJCJ5vKSb2AuJWCcDpXMjN8zelJYeqMmIqzBU4y8BUHcKpI7BGs/4YKIAGWZZWxaO7ktu0=
x-amz-request-id: E7MA4W0GMSEFYJEA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 22 Sep 2022 10:43:47 GMT
age: 1398
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 11:07:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.quadrantmeasurements.com/

162.144.0.45

301 Moved Permanently

0 B

URL HTTP/1.1
www.quadrantmeasurements.com/
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 22 Sep 2022 11:07:05 GMT
Server: Apache
X-Redirect-By: WordPress
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://quadrantmeasurements.com/
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 22 Sep 2022 11:03:22 GMT
Expires: Thu, 22 Sep 2022 12:01:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rfXwofP8dDivOgCR7NJ67SWQKH0w_DipswKR0UJi-XvNM696CP6Ixg==
Age: 224

quadrantmeasurements.com/

162.144.0.45

200 OK

6.4 kB

URL HTTP/1.1
quadrantmeasurements.com/
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1820), with CRLF, LF line terminators
Size
6.4 kB (6393 bytes)
Hash
08c70e9d405f9cffd9b9c5d2d3438c8e
3a9b0327c811bd0c587f7eb1dd2d71611937da4e
8655abd766e62a8dc1a156abb3c7f6863efd8576b8c007376360fcd1df3a642b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 22 Sep 2022 09:27:34 GMT
Accept-Ranges: none
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 6393
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5936
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 11:07:06 GMT
Last-Modified: Thu, 22 Sep 2022 09:28:10 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c8ac2005f83e8a3a9da1a9837b6c2ff3
7c05f49683e49232c1e11b91253e684d2f96ab83
b0b42743b4c7e4b528fd78aadc5429ef34c2e127f3d5147330d428a47203dc0a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 11:07:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic

216.58.211.10

200 OK

925 B

URL HTTP/2
fonts.googleapis.com/css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type
data
Size
925 B (925 bytes)
Hash
f805f6a38d4a2db2179e74dcf4cea60b
907730f1b71920a00d68376dde7af3fc2ed0d5cc
1a903026c63b8c5853f67dfd5cd41055ce0c15ef7d7fb75234aa6bdaf3abc108

HTTP Headers

GET /css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://quadrantmeasurements.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 11:07:06 GMT
date: Thu, 22 Sep 2022 11:07:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.161.231.36

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.231.36:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AsL/AOrSgewiw8bzDdyWCA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NrnCE/6qwDZGMmy48DnkuAAFFY0=

quadrantmeasurements.com/wp-content/cache/minify/51d9f.css

162.144.0.45

200 OK

17 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/cache/minify/51d9f.css
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (33393)
Size
17 kB (16950 bytes)
Hash
5cfb0761045c75d40490c715fb4c22db
613e2ee238391b97b839a1a457699748b7744ecd
53bd32654bc48a579366ab57a2a99e965177917b38dbacf78c49e5d7fc19ce19

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/cache/minify/51d9f.css HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 21 Sep 2022 06:58:25 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 16950
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
Content-Encoding: gzip

quadrantmeasurements.com/wp-content/cache/minify/31730.js

162.144.0.45

200 OK

8.2 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/cache/minify/31730.js
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (16323)
Size
8.2 kB (8152 bytes)
Hash
f99ef6f83d35ea4f399e4505234bb60b
00ea0f7365d224ecf559bd1a9bd570b6574b607c
edbf72193d0b426a7f1e4e720c4d5b9e6b6a8533344331be889cd9c4b4a39c55

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/cache/minify/31730.js HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 21 Sep 2022 06:58:26 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 8152
Keep-Alive: timeout=5, max=75
Content-Type: application/x-javascript
Content-Encoding: gzip

quadrantmeasurements.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5

162.144.0.45

200 OK

5.2 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15224)
Size
5.2 kB (5243 bytes)
Hash
00af0ddf324f69fcb25f0d2e5d08910a
df0379ab0e1b2902957c8aba77f89d88e1239b59
f0a06ed3b8d3917b358def04d87668001cd1c6da31a5cb4bb452313feb64a2a7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.5 HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 27 Oct 2021 06:57:56 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 5243
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/x-javascript

quadrantmeasurements.com/wp-content/cache/minify/71cef.js

162.144.0.45

200 OK

31 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/cache/minify/71cef.js
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (31325 bytes)
Hash
401c40a2d166d2a26153eb65ffb7ef0a
1a32b524f5d076af49aa89344dc960e592f8ffe4
5c1afb16921e4096b7699e892ab0048a4eba527546d404a370e3de3e41b8664b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/cache/minify/71cef.js HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 21 Sep 2022 06:58:25 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 31325
Keep-Alive: timeout=5, max=75
Content-Type: application/x-javascript
Content-Encoding: gzip

quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css

162.144.0.45

200 OK

53 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (44651)
Size
53 kB (53006 bytes)
Hash
8667f27e9f34de931f866d644cc7ac1e
3857b7ded6461a35f91f69a694069b0206a0ef15
2ecc58dbf14dd0349a916f19b0319a2491141c81d3777477471321fd5fe81e08

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/cache/minify/1ef4c.css HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 21 Sep 2022 06:58:25 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 53006
Keep-Alive: timeout=5, max=75
Content-Type: text/css
Content-Encoding: gzip

quadrantmeasurements.com/wp-content/cache/minify/02b6f.js

162.144.0.45

200 OK

64 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/cache/minify/02b6f.js
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65447)
Size
64 kB (64503 bytes)
Hash
72e1f8864401c2e44de140aa3444390f
305babdff4dc960ed3d7cd77acfb1509cbee1992
9667ddbb0884b3b8010531a1d1f09010c7575de14edd0e4aa2ac27a3d7257e8b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/cache/minify/02b6f.js HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 21 Sep 2022 06:58:25 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 64503
Keep-Alive: timeout=5, max=75
Content-Type: application/x-javascript
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
41630fb2c7ef9e435a8762b0943e0980
04b6c8bfe97bc5408e1450b5921331c6ae6de682
e9e83895eef14a5a26e91c9574fc9f60eb2f47959406eabe87b4618412519476

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 11:07:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

quadrantmeasurements.com/wp-content/themes/quadrant/images/footer_logo.png

162.144.0.45

200 OK

9.8 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/images/footer_logo.png
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 241 x 65, 8-bit/color RGBA, non-interlaced\012- data
Size
9.8 kB (9787 bytes)
Hash
bdea03f8d53575de276cca310c1f8b32
c557af002183d67df8d64555414a8b8e15383545
c49cdfe9e26c03c326844e1a6f2c454a76fb68369a526ec4bb8693a0d92a2faf

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/images/footer_logo.png HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:48 GMT
Accept-Ranges: bytes
Content-Length: 9787
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png

quadrantmeasurements.com/wp-content/themes/quadrant/images/vision.png

162.144.0.45

200 OK

5.4 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/images/vision.png
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 106 x 106, 8-bit/color RGBA, non-interlaced\012- data
Size
5.4 kB (5352 bytes)
Hash
2d20acbb4af516be192fa073d8aa78d6
83699486797e1de37459dd28d02210f2e13e4e59
58728a3c288708693d29a28e4c496ffa91991aa41472146857aa10529a5c4494

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/images/vision.png HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 30 May 2019 12:09:24 GMT
Accept-Ranges: bytes
Content-Length: 5352
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png

quadrantmeasurements.com/wp-content/themes/quadrant/images/top.png

162.144.0.45

200 OK

1.4 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/images/top.png
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 35 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1417 bytes)
Hash
40289e26b3815fd8edf77105d6f61686
764958d74f847b1169db427b56265b73bf5e8bba
aad38f5a3438aaff5d9415ef017a91bc81b82df757ff26cef8b91d298706b736

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/images/top.png HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:52 GMT
Accept-Ranges: bytes
Content-Length: 1417
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png

quadrantmeasurements.com/wp-content/themes/quadrant/images/logo.jpg

162.144.0.45

200 OK

9.2 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/images/logo.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 343x100, components 3\012- data
Size
9.2 kB (9203 bytes)
Hash
23c5447d14efa0bebddcc23f748702c2
95a0a0b00c932e60c3fec2c3a413b935e3d3137b
3bcec81bd38ef096f126eb183ef82985f75b111257da0e1249f243b0417c4b7f

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/images/logo.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:50 GMT
Accept-Ranges: bytes
Content-Length: 9203
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/themes/quadrant/images/tag.jpg

162.144.0.45

200 OK

22 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/images/tag.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x90, components 3\012- data
Size
22 kB (21621 bytes)
Hash
2ed7e50a3fa0e838b6e7ab718903755d
43a101f7c25ca20dfba574f2d328282160f66449
3e594362a33fbd000caa9b0df5f4e0c8b14efe5764ce7477138583e1da41d5e8

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/images/tag.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 27 Jun 2019 11:46:02 GMT
Accept-Ranges: bytes
Content-Length: 21621
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/jpeg

www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3749.2470146774563!2d73.74059071444637!3d19.99814488656553!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3bddec5ebe18aff3%3A0x48ac23f4c76c07fb!2sQuadrant+Measurements+Pvt.+Ltd.!5e0!3m2!1sen!2sin!4v1557132102905!5m2!1sen!2sin

142.250.74.164

200 OK

1.4 kB

URL HTTP/2
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3749.2470146774563!2d73.74059071444637!3d19.99814488656553!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3bddec5ebe18aff3%3A0x48ac23f4c76c07fb!2sQuadrant+Measurements+Pvt.+Ltd.!5e0!3m2!1sen!2sin!4v1557132102905!5m2!1sen!2sin
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2960)
Size
1.4 kB (1440 bytes)
Hash
1aead5ded4d89da7b8df7b9c932e906f
5f317c3dc9891a7cd26ea91b1e3d5ada27e0aca6
a4cde807d8be5d9fa6e382213b7839f6e57232d7d1aa6d45e6abd9c3256f9d21

HTTP Headers

GET /maps/embed?pb=!1m18!1m12!1m3!1d3749.2470146774563!2d73.74059071444637!3d19.99814488656553!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3bddec5ebe18aff3%3A0x48ac23f4c76c07fb!2sQuadrant+Measurements+Pvt.+Ltd.!5e0!3m2!1sen!2sin!4v1557132102905!5m2!1sen!2sin HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://quadrantmeasurements.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 22 Sep 2022 11:07:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-qlk658_WxBXiTmPKEERJzw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1440
x-xss-protection: 0
server-timing: gfet4t7; dur=162
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

quadrantmeasurements.com/wp-content/cache/minify/5b0ff.js

162.144.0.45

200 OK

2.0 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/cache/minify/5b0ff.js
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
2.0 kB (1964 bytes)
Hash
7d89c8c3387cc73237a428a5d3dd001a
0e486bd1ba157601db22df365d4a757ad900a1f7
1f70f1a5967bb0202ff65d2dad4eea4a5b455b19ee9dac03aad96f43833a94e8

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/cache/minify/5b0ff.js HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 21 Sep 2022 06:58:27 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 23129
Keep-Alive: timeout=5, max=75
Content-Type: application/x-javascript
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1b33d59cf038a3fe7273f78fda2cce3a
0b367731ef6df8e1f6c1b8774198daa9959d7cf5
b02b1756112479f92786994de8e884986b0a7eb3d5885300bfd8a64f597f7cc4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 11:07:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&region=in&callback=onApiLoad

142.250.74.106

200 OK

57 kB

URL HTTP/2
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&region=in&callback=onApiLoad
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2577)
Size
57 kB (56934 bytes)
Hash
ec451c103cc2287ba6622ff7e4e5b0f7
e0de6aa44d1c4b7668da964025888ea5f12dc389
0dbe71a56035fc4c1be82db9002ba44fb97006943a4fb07ffbc5a65b9d73826c

HTTP Headers

GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&region=in&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56934
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=13
date: Thu, 22 Sep 2022 11:03:49 GMT
expires: Thu, 22 Sep 2022 11:33:49 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 198
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

quadrantmeasurements.com/wp-content/themes/quadrant/images/mission.png

162.144.0.45

200 OK

4.8 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/images/mission.png
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 102 x 105, 8-bit/color RGBA, non-interlaced\012- data
Size
4.8 kB (4795 bytes)
Hash
40d132b4c685e8acdeb8d50673a4c178
2fc23c57a3bf1fe389dbfcc17902e93ed6fd73a1
5e62deda478ab5475f488000c6510f2471fd1bae8f33eb36ce7eb957c8e32234

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/images/mission.png HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 30 May 2019 12:09:24 GMT
Accept-Ranges: bytes
Content-Length: 4795
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 11:07:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.gstatic.com/maps-api-v3/embed/js/50/6/init_embed.js

142.250.74.163

200 OK

70 kB

URL HTTP/2
maps.gstatic.com/maps-api-v3/embed/js/50/6/init_embed.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2669)
Size
70 kB (70449 bytes)
Hash
28b2f8991cb293000d95bcd22b064bdb
6cd3d214658feca2cd46b21b0e7312e986e60c68
9bc7a89f847eb9ef92849d1ec663511a56a942e60d683ce8f916924684b19300

HTTP Headers

GET /maps-api-v3/embed/js/50/6/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 70449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:51:15 GMT
expires: Thu, 21 Sep 2023 19:51:15 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 19:19:29 GMT
content-type: text/javascript
age: 54952
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 11:07:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

quadrantmeasurements.com/wp-content/themes/quadrant/images/wel_img.jpg

162.144.0.45

200 OK

188 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/images/wel_img.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 488x384, components 3\012- data
Size
188 kB (188380 bytes)
Hash
d9a45ef4b3fae70e3cfe9b76c44d858a
9c27056c74d3ef2871ea0960bb9bf39bb046125e
4bf2c19ecb2806bc06e186569ff72c1f47b6d7668ee55267560b1732eca01249

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/images/wel_img.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:54 GMT
Accept-Ranges: bytes
Content-Length: 188380
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/themes/quadrant/images/footer_img.jpg

162.144.0.45

200 OK

221 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/images/footer_img.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x469, components 3\012- data
Size
221 kB (221173 bytes)
Hash
27caea17f8c6cc71b8e108895f675227
acae25aca977adffbae940ba05852635f444cb40
b32328abb0c4f2aa79a37f4dac76a266a84eec44fbd3ff373b70233fdd1a7555

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/images/footer_img.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:49 GMT
Accept-Ranges: bytes
Content-Length: 221173
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro17.jpg

162.144.0.45

200 OK

32 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro17.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
32 kB (31525 bytes)
Hash
311b639c840baf8afe81e50083653fb8
4489a0559d7bb97bbe3ef14df05ffe34cfd065c7
ea21d286f0dd6ef3999c908c95ef23015da82412bec20253a0f3f17079f31103

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro17.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Jul 2019 12:42:45 GMT
Accept-Ranges: bytes
Content-Length: 31525
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11999
Expires: Thu, 22 Sep 2022 14:27:06 GMT
Date: Thu, 22 Sep 2022 11:07:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11999
Expires: Thu, 22 Sep 2022 14:27:06 GMT
Date: Thu, 22 Sep 2022 11:07:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11999
Expires: Thu, 22 Sep 2022 14:27:06 GMT
Date: Thu, 22 Sep 2022 11:07:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11999
Expires: Thu, 22 Sep 2022 14:27:06 GMT
Date: Thu, 22 Sep 2022 11:07:07 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd80c0b0-1f50-41ad-b183-4804f10ef060.jpeg

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd80c0b0-1f50-41ad-b183-4804f10ef060.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9877 bytes)
Hash
b8bb6194dcfc32bf02932f4bbb1dcec0
8fa5650de8e274f8fc2fb96e13a4976e0fedb6c9
45d8af4c39b0bcacd2909b6deec2fc080a6a64936b53ebd7f6309381358bcaa9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd80c0b0-1f50-41ad-b183-4804f10ef060.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9877
x-amzn-requestid: 865f77de-c569-4938-9ae9-b79b11ae0804
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vF4oIAMF19w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-5111662b354f54bf3c2b77c9;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: epvqhKGy2mzjb3OLTsFvb1ruOFQBr0q-YpQDJYXpFhHiNgj9m8kktQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "8fa5650de8e274f8fc2fb96e13a4976e0fedb6c9"
content-type: image/jpeg
age: 48778
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8549 bytes)
Hash
62818de3c50f957b2e5680851a1768c9
80e48c9ae48c89598780736b089c98e22d58df9a
16f2c2d23e8641a3f297a175730343d11120a228c0fe846c0fdf1e39212c522c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8549
x-amzn-requestid: 6d44626b-16c6-4f19-ae52-d5350065b390
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwPHJJoAMFdfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84ce-46ebc35612eb7a4473b36189;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UoQTXSP0LgR4LwELp2Avm27hUekfO9TU9yfvNbIlmUtB-FrU9MGRbg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:19 GMT
age: 47928
etag: "80e48c9ae48c89598780736b089c98e22d58df9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8dc9975a-1730-4f22-938b-16d00b675774.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6667 bytes)
Hash
d19cac9573e6ead9bf47fafc522e65ad
804a11a71d93ce96d33d0c9eb97f200fd72295e9
27fe9a87f50dcd0ae95a7b4b1a867e4a93da6617c205e3b686c7b3ba781113ad

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8dc9975a-1730-4f22-938b-16d00b675774.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6667
x-amzn-requestid: ca197085-d84f-4b18-bb3f-bdcbe1a09179
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YzG6gFbVIAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ab843-7ad0e6464190f55e4efd96e4;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 07:07:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GqmLDOdrcoQM7d5mLJP_kinvgPhpAfuSh9tgKykku1Tow0xHS1bArw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 07:08:26 GMT
age: 14321
etag: "804a11a71d93ce96d33d0c9eb97f200fd72295e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36673ded-0a09-4aa6-b4c8-c3e3be3b0e4a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8058 bytes)
Hash
2b5c8545323317489392c1f56707078e
fcc0cdd72a5c97f13b0c59e5b39e06a6add18a9c
c79efda3b792026233b13c07a2c69e3dff0fdbccfb081c768ffc7e52aa744668

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36673ded-0a09-4aa6-b4c8-c3e3be3b0e4a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8058
x-amzn-requestid: 78d8a4f9-b85f-4055-a17e-90ccd231e462
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YshUOE7jIAMFm-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632815b4-7d0717045b5fd71d5a41ccdb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 07:09:40 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Y-EsbrGZSY3WtqlLDDm4MLHjqeLlrzjqCRsSt7r_jSXr0LswkHP_yQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 13:08:32 GMT
age: 79115
etag: "fcc0cdd72a5c97f13b0c59e5b39e06a6add18a9c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2a425d5-4fbd-4af0-a85b-75f0878759cb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7507 bytes)
Hash
4d98acc059a69d51165fb5e0c7430ea3
09bd3300d710c3212483159f8398b84cde09da26
6e38bbb5c79c4f714973e10961d7bad9e7ae8711cf24d68b13a77206f474d2a6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2a425d5-4fbd-4af0-a85b-75f0878759cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7507
x-amzn-requestid: 2a40c792-8b1b-4476-92de-1fce3df48fc1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCmaHefoAMF4Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e28-6b05350006b7f3fb73d1e37a;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gZ8I075ljJuPvMcsyyRU3m09P9z7mL3WNBiex99pwXtoWDzt_jWP0A==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:25:13 GMT
age: 45714
etag: "09bd3300d710c3212483159f8398b84cde09da26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8678 bytes)
Hash
91c56f0b9810bfdd84e10a626b89e389
15d83e44d568938b6c9c87201e898cedb3edec0a
942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Oem-Kw-aCUa2rA9B9-7CDYcZ-G968tFPnsrL5wJ9Dia43T5u6RDtg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
age: 48778
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

quadrantmeasurements.com/wp-content/themes/quadrant/images/services_bg.jpg

162.144.0.45

200 OK

313 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/images/services_bg.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x662, components 3\012- data
Size
313 kB (312766 bytes)
Hash
f1208ff4a2905709287375ba885beefe
c18d863e9eb7ae055b61da29204af0b386e2bd05
e3e964ef0dd923d1cb883501b2f38bbfda08e709e8443c5e472f4d59e46c0ad6

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/images/services_bg.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:52 GMT
Accept-Ranges: bytes
Content-Length: 312766
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/banner_TanD-1.jpg

162.144.0.45

200 OK

179 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/banner_TanD-1.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2020:03:12 15:50:09], baseline, precision 8, 1600x549, components 3\012- data
Size
179 kB (179040 bytes)
Hash
feed9075dbdee2bdb9633304ef9be4fb
04ca5e130003812cd2a10159a1b805a4b8073447
3de3fa09acf319c043af39f24c7b99bb8112671497465ccf0a692f213f8972a4

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/banner_TanD-1.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 12 Mar 2020 10:21:18 GMT
Accept-Ranges: bytes
Content-Length: 179040
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro3.jpg

162.144.0.45

200 OK

52 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro3.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
52 kB (51863 bytes)
Hash
aed0b173c558c84c4c2e71afdc691dae
ef8191eb5e540f5afe313814714505455de45caf
f3ef7af2fdb96059d64ad58c07083e8e166b9e23d176339ace9a17735474b38c

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro3.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:51 GMT
Accept-Ranges: bytes
Content-Length: 51863
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro6.jpg

162.144.0.45

200 OK

42 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro6.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
42 kB (42080 bytes)
Hash
7237dd021908bc5018bc03a3e286949c
adfd99be09c5b116b73bd1ccf18d30c821f30fdc
13eefa66ce1d483e357a9cb4e779045e34ff82d73cce28c53abea2215ec9f8d9

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro6.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:53 GMT
Accept-Ranges: bytes
Content-Length: 42080
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro2.jpg

162.144.0.45

200 OK

44 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro2.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
44 kB (43623 bytes)
Hash
f6dde0ecbe4b96ce790bf8268121cfc1
965e744cd79da2821e72a9c2b53aebb4dcdaf06a
83212132fb5a2ea1f3337a822afe5efcad1dc34aed91f68cdbc34e829bf654a4

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro2.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:50 GMT
Accept-Ranges: bytes
Content-Length: 43623
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro16.jpg

162.144.0.45

200 OK

36 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro16.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
36 kB (36234 bytes)
Hash
58e0e55a83df550ceba951b43a5debf5
901727f5ea46cace5fa5c3ae253ae4d52169b79c
9bfdff2b8679fcd03ec46ccec784a617544dbca0d5c69d3b8f4d4a0aed4bb694

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro16.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Jul 2019 12:39:29 GMT
Accept-Ranges: bytes
Content-Length: 36234
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro9.jpg

162.144.0.45

200 OK

29 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro9.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
29 kB (28661 bytes)
Hash
a7f9ea84d6615a52479ba5bd80234065
eef817692bf0f038c46f0523f0a56c3a9577639c
59c6455dc9f7ae4e94124194f3d26e9236e3cf98ccd41453d37a398a3801faac

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro9.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:55 GMT
Accept-Ranges: bytes
Content-Length: 28661
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro8-1.jpg

162.144.0.45

200 OK

42 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro8-1.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
42 kB (41548 bytes)
Hash
ff46e4ddbad89d8573fabdeadc6d7cb5
faeb9283981f2abeaa982822424a78034b3bd37c
2e07ccdb1093cc8aa3d45da06c118f4688effb8a39051de18b05ca449a95f0a4

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro8-1.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:54 GMT
Accept-Ranges: bytes
Content-Length: 41548
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro18.jpg

162.144.0.45

200 OK

36 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro18.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
36 kB (35955 bytes)
Hash
c462c3a6c7a70ac27a64ba36cc6fb189
791070dc1a55449a0a4a8b8712faa96de7699b2e
44d084fbcc2d5f7d027aee2d541ff9edea7e7cb331f09566eb0a67cffd68d771

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro18.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Jul 2019 12:44:00 GMT
Accept-Ranges: bytes
Content-Length: 35955
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro13.jpg

162.144.0.45

200 OK

32 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro13.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
32 kB (32131 bytes)
Hash
b41a47bf422abbe9f3bcc81c79cbdaff
3ef631b3148d00947060e12f69fbd26395aa0fff
47fa48b92469fe7a4f110d07dfc470a966d5040f6eb1c7ab3783398198aa4007

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro13.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:49 GMT
Accept-Ranges: bytes
Content-Length: 32131
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro12.jpg

162.144.0.45

200 OK

24 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro12.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
24 kB (23778 bytes)
Hash
c57658d2e62f6c5b631deee59aa886f0
d2f08e5ab940bfa6c24bcdc0ff2c6c434a18423f
57446762bd78cba9997a17a80356c9692ccc73efaa52174f1f5789ec07a5c4cf

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro12.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:48 GMT
Accept-Ranges: bytes
Content-Length: 23778
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro11.jpg

162.144.0.45

200 OK

43 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro11.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
43 kB (43234 bytes)
Hash
484c19c484a72d3e3b3d5cc6ac43e9eb
d321a5961ebce9fbc7d8dfb151b2e494ad864d9e
fe76dfee8365ef221a49eaea898ad9f38081435a26ab9a9c00818e75abbdbf36

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro11.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:47 GMT
Accept-Ranges: bytes
Content-Length: 43234
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro10.jpg

162.144.0.45

200 OK

42 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro10.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
42 kB (41893 bytes)
Hash
56c9a875689d356bca0fac990152a3af
0ae168b0d0a96435c423b77311581ba7cd44ee83
401adb3bec6379940588916d12b6f149dad8a21e945f4f1b749310d5eca63318

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro10.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:47 GMT
Accept-Ranges: bytes
Content-Length: 41893
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff2?v=4.7.0

162.144.0.45

404 Not Found

12 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1820), with CRLF, LF line terminators
Size
12 kB (12469 bytes)
Hash
d2a24501469039ff8a0ee1bded70f7b5
99ce707434467f98282cd5732948dcff76e2c008
756bf628a5ac6c89944203c34284798140a0e13e5eb615756227b0f2bfd6a712

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: http://quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://quadrantmeasurements.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

quadrantmeasurements.com/wp-content/uploads/2019/05/service2.jpg

162.144.0.45

200 OK

120 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/service2.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x277, components 3\012- data
Size
120 kB (119640 bytes)
Hash
6f2c9bf0f6f944bcfd662c394bed639f
7d2b1fe8343b65aec93fd3b75b698029a883bc0e
a40a1eacc660265939a22eb58d2e25e85eeb0ffb6b04b655eb1269a889c31159

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/service2.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 30 May 2019 11:03:40 GMT
Accept-Ranges: bytes
Content-Length: 119640
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/service1-1.jpg

162.144.0.45

200 OK

90 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/service1-1.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x277, components 3\012- data
Size
90 kB (89651 bytes)
Hash
5799b98a0197742f29050b779613c51f
723f2e140fae6a1244cd5d61eace4673b597714d
59d29ac3b74735bbf6180f3e29228a4417e13689a176bd5cdb94cbdf2a5824ec

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/service1-1.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 30 May 2019 11:04:01 GMT
Accept-Ranges: bytes
Content-Length: 89651
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/pro15.jpg

162.144.0.45

200 OK

39 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/pro15.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
39 kB (39233 bytes)
Hash
516c2714fdc6427b5dfe100be1dbba86
d00bcca53c653e2291af19f9279494753186a1b8
511d9e7488b2377324ee8b31edcd0f2a0852bddf720c22b6872b13009f07e3f2

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/pro15.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:50 GMT
Accept-Ranges: bytes
Content-Length: 39233
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/jpeg

quadrantmeasurements.com/wp-content/uploads/2019/05/30-2.jpg

162.144.0.45

200 OK

13 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/30-2.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Size
13 kB (13019 bytes)
Hash
c4a2f60534a55b6ce456bfb0c871cac6
4f6ef78dd2858b5d056066bb3d874ef1674d21c5
29426b09e14c1012d6ee08210f359eee91d5166736b6dd279c460e7eff28f6d8

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/30-2.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 27 Jun 2019 10:22:37 GMT
Accept-Ranges: bytes
Content-Length: 13019
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
16 kB (16002 bytes)
Hash
2c5e576c986fa3babe2c32f4a7ca3f3c
2f9f0aaf63ec000b07fc073c26fddfb6ab4e4466
f560931ec3844307c32fb2b1503925261fc99f30ecd22d27664b104e13e5567c

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 55980
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

quadrantmeasurements.com/wp-content/themes/quadrant/images/favicon.ico

162.144.0.45

200 OK

5.7 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/images/favicon.ico
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
MS Windows icon resource - 4 icons, 64x64, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
5.7 kB (5658 bytes)
Hash
8e0ff1ff05ed93f7940430a0515e41a2
40a14eb9b5b4526ef10e79126a7fd8505f1a60da
55f70864916335183dd6dd4c5dcf2ce018daed5b2028a2e92323ff7c4f3a5280

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/images/favicon.ico HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:48 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 5658
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/x-icon

quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff?v=4.7.0

162.144.0.45

404 Not Found

12 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff?v=4.7.0
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1820), with CRLF, LF line terminators
Size
12 kB (12429 bytes)
Hash
9639bba6a1f8ed0668c08bfb84e493aa
8c23e86471a2f5cbafa4f37d07ef884b37ab91ae
73e46366d8c457b9f55b94b6ec32051727239eb8b6176531c3bb2fd216d3d2f6

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: http://quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://quadrantmeasurements.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.ttf?v=4.7.0

162.144.0.45

200 OK

106 kB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.ttf?v=4.7.0
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
TrueType Font data, 13 tables, 1st "FFTM", 24 names, Macintosh\012- data
Size
106 kB (105572 bytes)
Hash
4a283a6c7f95dfb490f7b4aec34b9e4c
770238a0eadd8596223833eac22563f182a7fce7
d9265b2a745749f1818751f117d6fcb53dedac35c6e346e08f2125dc4547ff18

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/themes/quadrant/css/fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:34:46 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/x-font-ttf

quadrantmeasurements.com/wp-content/uploads/2019/05/Oil-Tan-Delta-test.jpg

162.144.0.45

200 OK

3.5 MB

URL HTTP/1.1
quadrantmeasurements.com/wp-content/uploads/2019/05/Oil-Tan-Delta-test.jpg
IP
162.144.0.45:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2020:01:03 23:13:30], baseline, precision 8, 4480x2274, components 3\012- data
Size
3.5 MB (3547984 bytes)
Hash
bc3e83ae5a1604f04348af6943c74d88
fef5c2296c2a0f53f1e9516822ee9cf5d8c6b491
127db558edcf197db3493d855497f7e2b0f9bf3d4773a60395fad04bcad5cab3

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/05/Oil-Tan-Delta-test.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 12 Mar 2020 12:02:08 GMT
Accept-Ranges: bytes
Content-Length: 3547984
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/jpeg

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f1d773-46e0-4cf2-8178-3101a22f8b0c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7060 bytes)
Hash
c92f202bddcfee6efac41bcc25be5745
9d297544318ff34f839678d8b358290ab6bd62a8
f471aaff7c08c60905cff5b1c9d4b669a3179574493d23d27e681110688af6b2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f1d773-46e0-4cf2-8178-3101a22f8b0c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7060
x-amzn-requestid: 69e8f4d4-2360-4124-a9e9-9cce3dd43da7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yx0NWEgmIAMFusQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a33ee-0f4861c226117d70664b8612;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:43:10 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: kj4FQUvvo13Yrwu_bKqee64IMn6X0UXlOJQ3fh40qejOi-3dtCrEYg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:59:09 GMT
age: 47285
etag: "9d297544318ff34f839678d8b358290ab6bd62a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL