r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9455
Expires: Thu, 22 Sep 2022 13:44:40 GMT
Date: Thu, 22 Sep 2022 11:07:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 804f8bbb7f556d51a5f52d5ebd5b6eef
922cd7e06df278615a04abb81d811d14596c8180
ef4804d381a34ab67873a7755621081c49c646310e085a9b2356ae07098f6021
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Backoff, Retry-After, Content-Type
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 10:13:57 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AIhWS8z99LgdCv1sgXUsdf8HsAmTaaYdwRqzn5_oUG3NK5grPE5Wog==
Age: 3188
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash afb65a07bf7214addf83d17a53acba32
a8e973204431320aa7b362a4e73944520c4b51b9
46e1a9e6c98245afb7fa84bc6d9ba6844105024e2d3f56e28748e6c321475d02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4613
Expires: Thu, 22 Sep 2022 12:23:58 GMT
Date: Thu, 22 Sep 2022 11:07:05 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5XCbNlJCJ5vKSb2AuJWCcDpXMjN8zelJYeqMmIqzBU4y8BUHcKpI7BGs/4YKIAGWZZWxaO7ktu0=
x-amz-request-id: E7MA4W0GMSEFYJEA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 22 Sep 2022 10:43:47 GMT
age: 1398
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 11:07:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.quadrantmeasurements.com/
162.144.0.45301 Moved Permanently 0 B URL HTTP/1.1 www.quadrantmeasurements.com/
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
GET / HTTP/1.1
Host: www.quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 22 Sep 2022 11:07:05 GMT
Server: Apache
X-Redirect-By: WordPress
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://quadrantmeasurements.com/
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 22 Sep 2022 11:03:22 GMT
Expires: Thu, 22 Sep 2022 12:01:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rfXwofP8dDivOgCR7NJ67SWQKH0w_DipswKR0UJi-XvNM696CP6Ixg==
Age: 224
quadrantmeasurements.com/
162.144.0.45200 OK 6.4 kB URL HTTP/1.1 quadrantmeasurements.com/
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1820), with CRLF, LF line terminators
Hash 08c70e9d405f9cffd9b9c5d2d3438c8e
3a9b0327c811bd0c587f7eb1dd2d71611937da4e
8655abd766e62a8dc1a156abb3c7f6863efd8576b8c007376360fcd1df3a642b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
GET / HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 22 Sep 2022 09:27:34 GMT
Accept-Ranges: none
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 6393
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5936
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 11:07:06 GMT
Last-Modified: Thu, 22 Sep 2022 09:28:10 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c8ac2005f83e8a3a9da1a9837b6c2ff3
7c05f49683e49232c1e11b91253e684d2f96ab83
b0b42743b4c7e4b528fd78aadc5429ef34c2e127f3d5147330d428a47203dc0a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 11:07:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic
216.58.211.10200 OK 925 B URL HTTP/2 fonts.googleapis.com/css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic
IP 216.58.211.10:0
Hash f805f6a38d4a2db2179e74dcf4cea60b
907730f1b71920a00d68376dde7af3fc2ed0d5cc
1a903026c63b8c5853f67dfd5cd41055ce0c15ef7d7fb75234aa6bdaf3abc108
GET /css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://quadrantmeasurements.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 11:07:06 GMT
date: Thu, 22 Sep 2022 11:07:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.161.231.36101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.231.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AsL/AOrSgewiw8bzDdyWCA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NrnCE/6qwDZGMmy48DnkuAAFFY0=
quadrantmeasurements.com/wp-content/cache/minify/51d9f.css
162.144.0.45200 OK 17 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/cache/minify/51d9f.css
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (33393)
Hash 5cfb0761045c75d40490c715fb4c22db
613e2ee238391b97b839a1a457699748b7744ecd
53bd32654bc48a579366ab57a2a99e965177917b38dbacf78c49e5d7fc19ce19
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/cache/minify/51d9f.css HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 21 Sep 2022 06:58:25 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 16950
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
Content-Encoding: gzip
quadrantmeasurements.com/wp-content/cache/minify/31730.js
162.144.0.45200 OK 8.2 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/cache/minify/31730.js
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (16323)
Hash f99ef6f83d35ea4f399e4505234bb60b
00ea0f7365d224ecf559bd1a9bd570b6574b607c
edbf72193d0b426a7f1e4e720c4d5b9e6b6a8533344331be889cd9c4b4a39c55
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
GET /wp-content/cache/minify/31730.js HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 21 Sep 2022 06:58:26 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 8152
Keep-Alive: timeout=5, max=75
Content-Type: application/x-javascript
Content-Encoding: gzip
quadrantmeasurements.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5
162.144.0.45200 OK 5.2 kB URL HTTP/1.1 quadrantmeasurements.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15224)
Hash 00af0ddf324f69fcb25f0d2e5d08910a
df0379ab0e1b2902957c8aba77f89d88e1239b59
f0a06ed3b8d3917b358def04d87668001cd1c6da31a5cb4bb452313feb64a2a7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.5 HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 27 Oct 2021 06:57:56 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 5243
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/x-javascript
quadrantmeasurements.com/wp-content/cache/minify/71cef.js
162.144.0.45200 OK 31 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/cache/minify/71cef.js
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 401c40a2d166d2a26153eb65ffb7ef0a
1a32b524f5d076af49aa89344dc960e592f8ffe4
5c1afb16921e4096b7699e892ab0048a4eba527546d404a370e3de3e41b8664b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
GET /wp-content/cache/minify/71cef.js HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 21 Sep 2022 06:58:25 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 31325
Keep-Alive: timeout=5, max=75
Content-Type: application/x-javascript
Content-Encoding: gzip
quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
162.144.0.45200 OK 53 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (44651)
Hash 8667f27e9f34de931f866d644cc7ac1e
3857b7ded6461a35f91f69a694069b0206a0ef15
2ecc58dbf14dd0349a916f19b0319a2491141c81d3777477471321fd5fe81e08
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/cache/minify/1ef4c.css HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 21 Sep 2022 06:58:25 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 53006
Keep-Alive: timeout=5, max=75
Content-Type: text/css
Content-Encoding: gzip
quadrantmeasurements.com/wp-content/cache/minify/02b6f.js
162.144.0.45200 OK 64 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/cache/minify/02b6f.js
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash 72e1f8864401c2e44de140aa3444390f
305babdff4dc960ed3d7cd77acfb1509cbee1992
9667ddbb0884b3b8010531a1d1f09010c7575de14edd0e4aa2ac27a3d7257e8b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
GET /wp-content/cache/minify/02b6f.js HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 21 Sep 2022 06:58:25 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 64503
Keep-Alive: timeout=5, max=75
Content-Type: application/x-javascript
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 41630fb2c7ef9e435a8762b0943e0980
04b6c8bfe97bc5408e1450b5921331c6ae6de682
e9e83895eef14a5a26e91c9574fc9f60eb2f47959406eabe87b4618412519476
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 11:07:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
quadrantmeasurements.com/wp-content/themes/quadrant/images/footer_logo.png
162.144.0.45200 OK 9.8 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/images/footer_logo.png
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 241 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash bdea03f8d53575de276cca310c1f8b32
c557af002183d67df8d64555414a8b8e15383545
c49cdfe9e26c03c326844e1a6f2c454a76fb68369a526ec4bb8693a0d92a2faf
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/images/footer_logo.png HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:48 GMT
Accept-Ranges: bytes
Content-Length: 9787
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
quadrantmeasurements.com/wp-content/themes/quadrant/images/vision.png
162.144.0.45200 OK 5.4 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/images/vision.png
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 106 x 106, 8-bit/color RGBA, non-interlaced\012- data
Hash 2d20acbb4af516be192fa073d8aa78d6
83699486797e1de37459dd28d02210f2e13e4e59
58728a3c288708693d29a28e4c496ffa91991aa41472146857aa10529a5c4494
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/images/vision.png HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 30 May 2019 12:09:24 GMT
Accept-Ranges: bytes
Content-Length: 5352
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
quadrantmeasurements.com/wp-content/themes/quadrant/images/top.png
162.144.0.45200 OK 1.4 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/images/top.png
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 35 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 40289e26b3815fd8edf77105d6f61686
764958d74f847b1169db427b56265b73bf5e8bba
aad38f5a3438aaff5d9415ef017a91bc81b82df757ff26cef8b91d298706b736
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/images/top.png HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:52 GMT
Accept-Ranges: bytes
Content-Length: 1417
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
quadrantmeasurements.com/wp-content/themes/quadrant/images/logo.jpg
162.144.0.45200 OK 9.2 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/images/logo.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 343x100, components 3\012- data
Hash 23c5447d14efa0bebddcc23f748702c2
95a0a0b00c932e60c3fec2c3a413b935e3d3137b
3bcec81bd38ef096f126eb183ef82985f75b111257da0e1249f243b0417c4b7f
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/images/logo.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:50 GMT
Accept-Ranges: bytes
Content-Length: 9203
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/themes/quadrant/images/tag.jpg
162.144.0.45200 OK 22 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/images/tag.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x90, components 3\012- data
Hash 2ed7e50a3fa0e838b6e7ab718903755d
43a101f7c25ca20dfba574f2d328282160f66449
3e594362a33fbd000caa9b0df5f4e0c8b14efe5764ce7477138583e1da41d5e8
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/images/tag.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 27 Jun 2019 11:46:02 GMT
Accept-Ranges: bytes
Content-Length: 21621
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/jpeg
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3749.2470146774563!2d73.74059071444637!3d19.99814488656553!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3bddec5ebe18aff3%3A0x48ac23f4c76c07fb!2sQuadrant+Measurements+Pvt.+Ltd.!5e0!3m2!1sen!2sin!4v1557132102905!5m2!1sen!2sin
142.250.74.164200 OK 1.4 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3749.2470146774563!2d73.74059071444637!3d19.99814488656553!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3bddec5ebe18aff3%3A0x48ac23f4c76c07fb!2sQuadrant+Measurements+Pvt.+Ltd.!5e0!3m2!1sen!2sin!4v1557132102905!5m2!1sen!2sin
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2960)
Hash 1aead5ded4d89da7b8df7b9c932e906f
5f317c3dc9891a7cd26ea91b1e3d5ada27e0aca6
a4cde807d8be5d9fa6e382213b7839f6e57232d7d1aa6d45e6abd9c3256f9d21
GET /maps/embed?pb=!1m18!1m12!1m3!1d3749.2470146774563!2d73.74059071444637!3d19.99814488656553!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3bddec5ebe18aff3%3A0x48ac23f4c76c07fb!2sQuadrant+Measurements+Pvt.+Ltd.!5e0!3m2!1sen!2sin!4v1557132102905!5m2!1sen!2sin HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://quadrantmeasurements.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 22 Sep 2022 11:07:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-qlk658_WxBXiTmPKEERJzw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1440
x-xss-protection: 0
server-timing: gfet4t7; dur=162
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
quadrantmeasurements.com/wp-content/cache/minify/5b0ff.js
162.144.0.45200 OK 2.0 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/cache/minify/5b0ff.js
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 7d89c8c3387cc73237a428a5d3dd001a
0e486bd1ba157601db22df365d4a757ad900a1f7
1f70f1a5967bb0202ff65d2dad4eea4a5b455b19ee9dac03aad96f43833a94e8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
GET /wp-content/cache/minify/5b0ff.js HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:06 GMT
Server: Apache
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 21 Sep 2022 06:58:27 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:06 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 23129
Keep-Alive: timeout=5, max=75
Content-Type: application/x-javascript
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b33d59cf038a3fe7273f78fda2cce3a
0b367731ef6df8e1f6c1b8774198daa9959d7cf5
b02b1756112479f92786994de8e884986b0a7eb3d5885300bfd8a64f597f7cc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 11:07:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en®ion=in&callback=onApiLoad
142.250.74.106200 OK 57 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en®ion=in&callback=onApiLoad
IP 142.250.74.106:0
File type ASCII text, with very long lines (2577)
Hash ec451c103cc2287ba6622ff7e4e5b0f7
e0de6aa44d1c4b7668da964025888ea5f12dc389
0dbe71a56035fc4c1be82db9002ba44fb97006943a4fb07ffbc5a65b9d73826c
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en®ion=in&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56934
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=13
date: Thu, 22 Sep 2022 11:03:49 GMT
expires: Thu, 22 Sep 2022 11:33:49 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 198
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
quadrantmeasurements.com/wp-content/themes/quadrant/images/mission.png
162.144.0.45200 OK 4.8 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/images/mission.png
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 102 x 105, 8-bit/color RGBA, non-interlaced\012- data
Hash 40d132b4c685e8acdeb8d50673a4c178
2fc23c57a3bf1fe389dbfcc17902e93ed6fd73a1
5e62deda478ab5475f488000c6510f2471fd1bae8f33eb36ce7eb957c8e32234
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/images/mission.png HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 30 May 2019 12:09:24 GMT
Accept-Ranges: bytes
Content-Length: 4795
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 11:07:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/maps-api-v3/embed/js/50/6/init_embed.js
142.250.74.163200 OK 70 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/50/6/init_embed.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2669)
Hash 28b2f8991cb293000d95bcd22b064bdb
6cd3d214658feca2cd46b21b0e7312e986e60c68
9bc7a89f847eb9ef92849d1ec663511a56a942e60d683ce8f916924684b19300
GET /maps-api-v3/embed/js/50/6/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 70449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:51:15 GMT
expires: Thu, 21 Sep 2023 19:51:15 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 19:19:29 GMT
content-type: text/javascript
age: 54952
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 11:07:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
quadrantmeasurements.com/wp-content/themes/quadrant/images/wel_img.jpg
162.144.0.45200 OK 188 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/images/wel_img.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 488x384, components 3\012- data
Size 188 kB (188380 bytes)
Hash d9a45ef4b3fae70e3cfe9b76c44d858a
9c27056c74d3ef2871ea0960bb9bf39bb046125e
4bf2c19ecb2806bc06e186569ff72c1f47b6d7668ee55267560b1732eca01249
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/images/wel_img.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:54 GMT
Accept-Ranges: bytes
Content-Length: 188380
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/themes/quadrant/images/footer_img.jpg
162.144.0.45200 OK 221 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/images/footer_img.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x469, components 3\012- data
Size 221 kB (221173 bytes)
Hash 27caea17f8c6cc71b8e108895f675227
acae25aca977adffbae940ba05852635f444cb40
b32328abb0c4f2aa79a37f4dac76a266a84eec44fbd3ff373b70233fdd1a7555
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/images/footer_img.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:49 GMT
Accept-Ranges: bytes
Content-Length: 221173
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro17.jpg
162.144.0.45200 OK 32 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro17.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash 311b639c840baf8afe81e50083653fb8
4489a0559d7bb97bbe3ef14df05ffe34cfd065c7
ea21d286f0dd6ef3999c908c95ef23015da82412bec20253a0f3f17079f31103
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro17.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Jul 2019 12:42:45 GMT
Accept-Ranges: bytes
Content-Length: 31525
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11999
Expires: Thu, 22 Sep 2022 14:27:06 GMT
Date: Thu, 22 Sep 2022 11:07:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11999
Expires: Thu, 22 Sep 2022 14:27:06 GMT
Date: Thu, 22 Sep 2022 11:07:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11999
Expires: Thu, 22 Sep 2022 14:27:06 GMT
Date: Thu, 22 Sep 2022 11:07:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11999
Expires: Thu, 22 Sep 2022 14:27:06 GMT
Date: Thu, 22 Sep 2022 11:07:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd80c0b0-1f50-41ad-b183-4804f10ef060.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd80c0b0-1f50-41ad-b183-4804f10ef060.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b8bb6194dcfc32bf02932f4bbb1dcec0
8fa5650de8e274f8fc2fb96e13a4976e0fedb6c9
45d8af4c39b0bcacd2909b6deec2fc080a6a64936b53ebd7f6309381358bcaa9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd80c0b0-1f50-41ad-b183-4804f10ef060.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9877
x-amzn-requestid: 865f77de-c569-4938-9ae9-b79b11ae0804
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vF4oIAMF19w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-5111662b354f54bf3c2b77c9;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: epvqhKGy2mzjb3OLTsFvb1ruOFQBr0q-YpQDJYXpFhHiNgj9m8kktQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "8fa5650de8e274f8fc2fb96e13a4976e0fedb6c9"
content-type: image/jpeg
age: 48778
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62818de3c50f957b2e5680851a1768c9
80e48c9ae48c89598780736b089c98e22d58df9a
16f2c2d23e8641a3f297a175730343d11120a228c0fe846c0fdf1e39212c522c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8549
x-amzn-requestid: 6d44626b-16c6-4f19-ae52-d5350065b390
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwPHJJoAMFdfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84ce-46ebc35612eb7a4473b36189;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UoQTXSP0LgR4LwELp2Avm27hUekfO9TU9yfvNbIlmUtB-FrU9MGRbg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:19 GMT
age: 47928
etag: "80e48c9ae48c89598780736b089c98e22d58df9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8dc9975a-1730-4f22-938b-16d00b675774.webp
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8dc9975a-1730-4f22-938b-16d00b675774.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d19cac9573e6ead9bf47fafc522e65ad
804a11a71d93ce96d33d0c9eb97f200fd72295e9
27fe9a87f50dcd0ae95a7b4b1a867e4a93da6617c205e3b686c7b3ba781113ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8dc9975a-1730-4f22-938b-16d00b675774.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6667
x-amzn-requestid: ca197085-d84f-4b18-bb3f-bdcbe1a09179
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YzG6gFbVIAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ab843-7ad0e6464190f55e4efd96e4;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 07:07:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GqmLDOdrcoQM7d5mLJP_kinvgPhpAfuSh9tgKykku1Tow0xHS1bArw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 07:08:26 GMT
age: 14321
etag: "804a11a71d93ce96d33d0c9eb97f200fd72295e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36673ded-0a09-4aa6-b4c8-c3e3be3b0e4a.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36673ded-0a09-4aa6-b4c8-c3e3be3b0e4a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b5c8545323317489392c1f56707078e
fcc0cdd72a5c97f13b0c59e5b39e06a6add18a9c
c79efda3b792026233b13c07a2c69e3dff0fdbccfb081c768ffc7e52aa744668
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36673ded-0a09-4aa6-b4c8-c3e3be3b0e4a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8058
x-amzn-requestid: 78d8a4f9-b85f-4055-a17e-90ccd231e462
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YshUOE7jIAMFm-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632815b4-7d0717045b5fd71d5a41ccdb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 07:09:40 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Y-EsbrGZSY3WtqlLDDm4MLHjqeLlrzjqCRsSt7r_jSXr0LswkHP_yQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 13:08:32 GMT
age: 79115
etag: "fcc0cdd72a5c97f13b0c59e5b39e06a6add18a9c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2a425d5-4fbd-4af0-a85b-75f0878759cb.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2a425d5-4fbd-4af0-a85b-75f0878759cb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4d98acc059a69d51165fb5e0c7430ea3
09bd3300d710c3212483159f8398b84cde09da26
6e38bbb5c79c4f714973e10961d7bad9e7ae8711cf24d68b13a77206f474d2a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2a425d5-4fbd-4af0-a85b-75f0878759cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7507
x-amzn-requestid: 2a40c792-8b1b-4476-92de-1fce3df48fc1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCmaHefoAMF4Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e28-6b05350006b7f3fb73d1e37a;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gZ8I075ljJuPvMcsyyRU3m09P9z7mL3WNBiex99pwXtoWDzt_jWP0A==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:25:13 GMT
age: 45714
etag: "09bd3300d710c3212483159f8398b84cde09da26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91c56f0b9810bfdd84e10a626b89e389
15d83e44d568938b6c9c87201e898cedb3edec0a
942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Oem-Kw-aCUa2rA9B9-7CDYcZ-G968tFPnsrL5wJ9Dia43T5u6RDtg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
age: 48778
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
quadrantmeasurements.com/wp-content/themes/quadrant/images/services_bg.jpg
162.144.0.45200 OK 313 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/images/services_bg.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x662, components 3\012- data
Size 313 kB (312766 bytes)
Hash f1208ff4a2905709287375ba885beefe
c18d863e9eb7ae055b61da29204af0b386e2bd05
e3e964ef0dd923d1cb883501b2f38bbfda08e709e8443c5e472f4d59e46c0ad6
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/images/services_bg.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:52 GMT
Accept-Ranges: bytes
Content-Length: 312766
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/banner_TanD-1.jpg
162.144.0.45200 OK 179 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/banner_TanD-1.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2020:03:12 15:50:09], baseline, precision 8, 1600x549, components 3\012- data
Size 179 kB (179040 bytes)
Hash feed9075dbdee2bdb9633304ef9be4fb
04ca5e130003812cd2a10159a1b805a4b8073447
3de3fa09acf319c043af39f24c7b99bb8112671497465ccf0a692f213f8972a4
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/banner_TanD-1.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 12 Mar 2020 10:21:18 GMT
Accept-Ranges: bytes
Content-Length: 179040
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro3.jpg
162.144.0.45200 OK 52 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro3.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash aed0b173c558c84c4c2e71afdc691dae
ef8191eb5e540f5afe313814714505455de45caf
f3ef7af2fdb96059d64ad58c07083e8e166b9e23d176339ace9a17735474b38c
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro3.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:51 GMT
Accept-Ranges: bytes
Content-Length: 51863
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro6.jpg
162.144.0.45200 OK 42 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro6.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash 7237dd021908bc5018bc03a3e286949c
adfd99be09c5b116b73bd1ccf18d30c821f30fdc
13eefa66ce1d483e357a9cb4e779045e34ff82d73cce28c53abea2215ec9f8d9
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro6.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:53 GMT
Accept-Ranges: bytes
Content-Length: 42080
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro2.jpg
162.144.0.45200 OK 44 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro2.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash f6dde0ecbe4b96ce790bf8268121cfc1
965e744cd79da2821e72a9c2b53aebb4dcdaf06a
83212132fb5a2ea1f3337a822afe5efcad1dc34aed91f68cdbc34e829bf654a4
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro2.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:50 GMT
Accept-Ranges: bytes
Content-Length: 43623
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro16.jpg
162.144.0.45200 OK 36 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro16.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash 58e0e55a83df550ceba951b43a5debf5
901727f5ea46cace5fa5c3ae253ae4d52169b79c
9bfdff2b8679fcd03ec46ccec784a617544dbca0d5c69d3b8f4d4a0aed4bb694
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro16.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Jul 2019 12:39:29 GMT
Accept-Ranges: bytes
Content-Length: 36234
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro9.jpg
162.144.0.45200 OK 29 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro9.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash a7f9ea84d6615a52479ba5bd80234065
eef817692bf0f038c46f0523f0a56c3a9577639c
59c6455dc9f7ae4e94124194f3d26e9236e3cf98ccd41453d37a398a3801faac
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro9.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:55 GMT
Accept-Ranges: bytes
Content-Length: 28661
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro8-1.jpg
162.144.0.45200 OK 42 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro8-1.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash ff46e4ddbad89d8573fabdeadc6d7cb5
faeb9283981f2abeaa982822424a78034b3bd37c
2e07ccdb1093cc8aa3d45da06c118f4688effb8a39051de18b05ca449a95f0a4
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro8-1.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:54 GMT
Accept-Ranges: bytes
Content-Length: 41548
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro18.jpg
162.144.0.45200 OK 36 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro18.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash c462c3a6c7a70ac27a64ba36cc6fb189
791070dc1a55449a0a4a8b8712faa96de7699b2e
44d084fbcc2d5f7d027aee2d541ff9edea7e7cb331f09566eb0a67cffd68d771
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro18.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Jul 2019 12:44:00 GMT
Accept-Ranges: bytes
Content-Length: 35955
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro13.jpg
162.144.0.45200 OK 32 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro13.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash b41a47bf422abbe9f3bcc81c79cbdaff
3ef631b3148d00947060e12f69fbd26395aa0fff
47fa48b92469fe7a4f110d07dfc470a966d5040f6eb1c7ab3783398198aa4007
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro13.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:49 GMT
Accept-Ranges: bytes
Content-Length: 32131
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro12.jpg
162.144.0.45200 OK 24 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro12.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash c57658d2e62f6c5b631deee59aa886f0
d2f08e5ab940bfa6c24bcdc0ff2c6c434a18423f
57446762bd78cba9997a17a80356c9692ccc73efaa52174f1f5789ec07a5c4cf
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro12.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:48 GMT
Accept-Ranges: bytes
Content-Length: 23778
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro11.jpg
162.144.0.45200 OK 43 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro11.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash 484c19c484a72d3e3b3d5cc6ac43e9eb
d321a5961ebce9fbc7d8dfb151b2e494ad864d9e
fe76dfee8365ef221a49eaea898ad9f38081435a26ab9a9c00818e75abbdbf36
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro11.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:47 GMT
Accept-Ranges: bytes
Content-Length: 43234
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro10.jpg
162.144.0.45200 OK 42 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro10.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash 56c9a875689d356bca0fac990152a3af
0ae168b0d0a96435c423b77311581ba7cd44ee83
401adb3bec6379940588916d12b6f149dad8a21e945f4f1b749310d5eca63318
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro10.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:47 GMT
Accept-Ranges: bytes
Content-Length: 41893
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff2?v=4.7.0
162.144.0.45404 Not Found 12 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1820), with CRLF, LF line terminators
Hash d2a24501469039ff8a0ee1bded70f7b5
99ce707434467f98282cd5732948dcff76e2c008
756bf628a5ac6c89944203c34284798140a0e13e5eb615756227b0f2bfd6a712
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: http://quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://quadrantmeasurements.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
quadrantmeasurements.com/wp-content/uploads/2019/05/service2.jpg
162.144.0.45200 OK 120 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/service2.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x277, components 3\012- data
Size 120 kB (119640 bytes)
Hash 6f2c9bf0f6f944bcfd662c394bed639f
7d2b1fe8343b65aec93fd3b75b698029a883bc0e
a40a1eacc660265939a22eb58d2e25e85eeb0ffb6b04b655eb1269a889c31159
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/service2.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 30 May 2019 11:03:40 GMT
Accept-Ranges: bytes
Content-Length: 119640
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/service1-1.jpg
162.144.0.45200 OK 90 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/service1-1.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x277, components 3\012- data
Hash 5799b98a0197742f29050b779613c51f
723f2e140fae6a1244cd5d61eace4673b597714d
59d29ac3b74735bbf6180f3e29228a4417e13689a176bd5cdb94cbdf2a5824ec
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/service1-1.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 30 May 2019 11:04:01 GMT
Accept-Ranges: bytes
Content-Length: 89651
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/pro15.jpg
162.144.0.45200 OK 39 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/pro15.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash 516c2714fdc6427b5dfe100be1dbba86
d00bcca53c653e2291af19f9279494753186a1b8
511d9e7488b2377324ee8b31edcd0f2a0852bddf720c22b6872b13009f07e3f2
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/pro15.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:32:50 GMT
Accept-Ranges: bytes
Content-Length: 39233
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/jpeg
quadrantmeasurements.com/wp-content/uploads/2019/05/30-2.jpg
162.144.0.45200 OK 13 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/30-2.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x282, components 3\012- data
Hash c4a2f60534a55b6ce456bfb0c871cac6
4f6ef78dd2858b5d056066bb3d874ef1674d21c5
29426b09e14c1012d6ee08210f359eee91d5166736b6dd279c460e7eff28f6d8
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/30-2.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 27 Jun 2019 10:22:37 GMT
Accept-Ranges: bytes
Content-Length: 13019
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type gzip compressed data, max compression\012- data
Hash 2c5e576c986fa3babe2c32f4a7ca3f3c
2f9f0aaf63ec000b07fc073c26fddfb6ab4e4466
f560931ec3844307c32fb2b1503925261fc99f30ecd22d27664b104e13e5567c
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 55980
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
quadrantmeasurements.com/wp-content/themes/quadrant/images/favicon.ico
162.144.0.45200 OK 5.7 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/images/favicon.ico
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type MS Windows icon resource - 4 icons, 64x64, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 8e0ff1ff05ed93f7940430a0515e41a2
40a14eb9b5b4526ef10e79126a7fd8505f1a60da
55f70864916335183dd6dd4c5dcf2ce018daed5b2028a2e92323ff7c4f3a5280
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/images/favicon.ico HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:31:48 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Content-Length: 5658
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/x-icon
quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff?v=4.7.0
162.144.0.45404 Not Found 12 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff?v=4.7.0
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1820), with CRLF, LF line terminators
Hash 9639bba6a1f8ed0668c08bfb84e493aa
8c23e86471a2f5cbafa4f37d07ef884b37ab91ae
73e46366d8c457b9f55b94b6ec32051727239eb8b6176531c3bb2fd216d3d2f6
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/css/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: http://quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://quadrantmeasurements.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.ttf?v=4.7.0
162.144.0.45200 OK 106 kB URL HTTP/1.1 quadrantmeasurements.com/wp-content/themes/quadrant/css/fonts/fontawesome-webfont.ttf?v=4.7.0
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 13 tables, 1st "FFTM", 24 names, Macintosh\012- data
Size 106 kB (105572 bytes)
Hash 4a283a6c7f95dfb490f7b4aec34b9e4c
770238a0eadd8596223833eac22563f182a7fce7
d9265b2a745749f1818751f117d6fcb53dedac35c6e346e08f2125dc4547ff18
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
GET /wp-content/themes/quadrant/css/fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/wp-content/cache/minify/1ef4c.css
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:08 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 27 May 2019 04:34:46 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:08 GMT
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/x-font-ttf
quadrantmeasurements.com/wp-content/uploads/2019/05/Oil-Tan-Delta-test.jpg
162.144.0.45200 OK 3.5 MB URL HTTP/1.1 quadrantmeasurements.com/wp-content/uploads/2019/05/Oil-Tan-Delta-test.jpg
IP 162.144.0.45:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2020:01:03 23:13:30], baseline, precision 8, 4480x2274, components 3\012- data
Size 3.5 MB (3547984 bytes)
Hash bc3e83ae5a1604f04348af6943c74d88
fef5c2296c2a0f53f1e9516822ee9cf5d8c6b491
127db558edcf197db3493d855497f7e2b0f9bf3d4773a60395fad04bcad5cab3
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2019/05/Oil-Tan-Delta-test.jpg HTTP/1.1
Host: quadrantmeasurements.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://quadrantmeasurements.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 11:07:07 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 12 Mar 2020 12:02:08 GMT
Accept-Ranges: bytes
Content-Length: 3547984
Cache-Control: max-age=31536000
Expires: Fri, 22 Sep 2023 11:07:07 GMT
Referrer-Policy: no-referrer-when-downgrade
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/jpeg
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f1d773-46e0-4cf2-8178-3101a22f8b0c.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f1d773-46e0-4cf2-8178-3101a22f8b0c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c92f202bddcfee6efac41bcc25be5745
9d297544318ff34f839678d8b358290ab6bd62a8
f471aaff7c08c60905cff5b1c9d4b669a3179574493d23d27e681110688af6b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f1d773-46e0-4cf2-8178-3101a22f8b0c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7060
x-amzn-requestid: 69e8f4d4-2360-4124-a9e9-9cce3dd43da7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yx0NWEgmIAMFusQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a33ee-0f4861c226117d70664b8612;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:43:10 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: kj4FQUvvo13Yrwu_bKqee64IMn6X0UXlOJQ3fh40qejOi-3dtCrEYg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:59:09 GMT
age: 47285
etag: "9d297544318ff34f839678d8b358290ab6bd62a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2