r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7153
Expires: Wed, 22 Mar 2023 12:09:47 GMT
Date: Wed, 22 Mar 2023 10:10:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 00e304a3fc0c2f01af0e94fcefe0ca40
833969e75e5e13e823c8d97ee59a9821eb157ee3
c2b7f7ae4861f2dd16867de54c7e47d95582de77887f523841d9683a369d20a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2B7F7AE4861F2DD16867DE54C7E47D95582DE77887F523841D9683A369D20A7"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2634
Expires: Wed, 22 Mar 2023 10:54:28 GMT
Date: Wed, 22 Mar 2023 10:10:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 22 Mar 2023 09:15:00 GMT
content-type: application/json
age: 3334
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 51a5d4696a6090c295850554508b51ce
c44e143c2223546e64b19f543b8101aaf3b11e97
8794223d5e8d4d276c35e2fdcc24bf99694240634dd749cd9b5bf874dec055cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10330
Expires: Wed, 22 Mar 2023 13:02:44 GMT
Date: Wed, 22 Mar 2023 10:10:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DfMGWbzpi/tgEc0SUXFC7aZr7CjXVAJZ8GWFYkfUjx8uVvTFsR9c1jR7w2ksfTaPdF/GyMDVAKQ=
x-amz-request-id: 0G67M0TW59KZ15VN
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 22 Mar 2023 09:59:29 GMT
age: 665
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 10:10:34 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 22 Mar 2023 09:17:23 GMT
age: 3192
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3462d41d9283fedf24f278089d5d1570
b8bcea77656f775cdc34620322cc616216ed2b95
55e47b413ba648a98eb6e92ab73aee602912cd13e7da23ef3cea1490c1b9de50
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55E47B413BA648A98EB6E92AB73AEE602912CD13E7DA23EF3CEA1490C1B9DE50"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5456
Expires: Wed, 22 Mar 2023 11:41:31 GMT
Date: Wed, 22 Mar 2023 10:10:35 GMT
Connection: keep-alive
www.infoplay.tv/
104.21.32.207301 Moved Permanently 0 B IP 104.21.32.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 22 Mar 2023 10:10:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.34
X-UA-Compatible: IE=edge
Location: http://www.infoplay.tv/start/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A0Inh3F37Nu6kUGKe4n6jkWOt%2FN9qHe7Rq%2BbBopmMdlOmZd0OXDYG89ObrWxRSAAJZ2qvLy6yQ%2FMTKUG7bh9B2CM94yLEyZz5l9CKtQMmg1wF6mkrntVCmLi4Z%2B7rS8qxls%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7abda5450ae1b50b-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
54.148.240.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.240.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: c5vmTqHkqqtP/y0bbtIWpQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 90Q/Ld18QHTGo4ZB8v9k8IjMELo=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2841
Expires: Wed, 22 Mar 2023 10:57:57 GMT
Date: Wed, 22 Mar 2023 10:10:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2841
Expires: Wed, 22 Mar 2023 10:57:57 GMT
Date: Wed, 22 Mar 2023 10:10:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2841
Expires: Wed, 22 Mar 2023 10:57:57 GMT
Date: Wed, 22 Mar 2023 10:10:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2841
Expires: Wed, 22 Mar 2023 10:57:57 GMT
Date: Wed, 22 Mar 2023 10:10:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 412bd6aea60211324e649d7d920601d2
a813976bda850a584b5ab94d9a70bfe0da69aca0
d36ef17fc6ab3cd4e5e43836f7df2c6fdf1781f1bac73e42c9a09e8594f797f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: 1b374321-f2df-404f-ab91-4e73d830fac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJqmAEhHoAMFgRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a248c-217d81154ecfe0c44ca70432;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:41:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: DL7vQgu72hwpt7yHbmIKnAZnoIaR4CQPE1JJAjq8M4jg0REUsq5lOw==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:48:25 GMT
age: 44531
etag: "a813976bda850a584b5ab94d9a70bfe0da69aca0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.infoplay.tv/start/
104.21.32.207200 OK 8.8 kB IP 104.21.32.207:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1933), with CRLF, LF line terminators
Hash 7fb998ec477387fd591234b632dd0ade
1930fbd1a433824e7906afceb2725718db3d30d1
8023b077abe3d0b3d4350692fdb7d6b71fadba510cbc657a5f1e322beeab1125
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/ HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.34
X-UA-Compatible: IE=edge
Link: <http://www.infoplay.tv/start/wp-json/>; rel="https://api.w.org/", <http://www.infoplay.tv/start/>; rel=shortlink
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=flsd%2FZF2Mq6tvb6JYPY%2FzCwOUE5sVGU7Qt5KU5MZZBsRmVCL5rfasluM%2BhWSOb7IwYx9FTBfXXEN0ClJeAi4rMPY%2BdiYpcfPdd4GMJImRV8GB44t7jU3xpc%2F08REPz2kg4w%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7abda54b2aa8b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F882a2ebf-b22a-46de-bf52-8b9a1aaa2743.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F882a2ebf-b22a-46de-bf52-8b9a1aaa2743.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aeb0d8069d746e467fecd886c0e42628
8229b537f84a7418dc67e30691e62db4cea67f0f
24705dc5b7eefd79a35323beee7c741aa041c3bf55801d13b4ffc2b202e6a394
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F882a2ebf-b22a-46de-bf52-8b9a1aaa2743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8037
x-amzn-requestid: 7a9f7bb5-d810-4831-b5d2-3eead1af864a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJprcGY1IAMFSAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-53cdee4b645ed18e1dfeb92c;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: QW8T5AGg_L1mT4fE8IHeBG9TSiGpbBJpZE2yZdBtAQMJCPV8OKK5Dw==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 ae06b19943a6bad1c1b12b79f7339498.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:43:22 GMT
age: 44834
etag: "8229b537f84a7418dc67e30691e62db4cea67f0f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F844f3e97-b153-4a18-b087-e858f349c316.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F844f3e97-b153-4a18-b087-e858f349c316.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8ab9fe4465396637b9c70a873634f63
d4e02105d3b968143681ee23ffe08443da8a7968
8f95b0a0bd72b13e993324d417e7a5b06803d9a506be2092a16054797e248982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F844f3e97-b153-4a18-b087-e858f349c316.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8979
x-amzn-requestid: 2ef93be0-3140-4ee5-82d7-a56e73350e9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEVyoAMF4_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-5ef93dc8183099e43c4679d9;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: bKtbsfvZ9ooTwHawEQd1g5a4uQQGQfLJWf_QhiFkwRgwhSvW4JbYSA==
via: 1.1 ee32c7a76e2727d565413cc6c352ef48.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:41:23 GMT
age: 44953
etag: "d4e02105d3b968143681ee23ffe08443da8a7968"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 2e9Y7K5xIkpbhFR8a4kGAVX7X2-97lB13zHrjOuqlkalxzdbCDcfPA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:41:23 GMT
age: 44953
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6f0b9e85381489dcf646c251722b21d4
5f7ea91288a2170bcabdca6be296718c4191eacd
911f803271ad9053ebac3787bdde9b75ec604acc6aa28692cc8e4c5c4fb61483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10480
x-amzn-requestid: 58aa8272-4b4e-4a2f-9d6e-d47f70891c49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJptHG7JoAMFSwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2320-2fd6502b1271d5c13b4ebbe9;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:28 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: hqGFdT1Sk0IcvaNqfvjz5RsGBK-qMBcNKbK9FyZ7OoiH30hDL9ekxA==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:59:52 GMT
age: 43844
etag: "5f7ea91288a2170bcabdca6be296718c4191eacd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44275491-68d9-43b4-8a23-8d98e6e935bd.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44275491-68d9-43b4-8a23-8d98e6e935bd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a281f27512fbe07f84702fe8801c4397
a80ecb653048fee95df524941bdac2550f241460
b08919f9cd7c08ad24c3c9e5942c0de1f51f9cf6b7a045244bb31296e151eb90
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44275491-68d9-43b4-8a23-8d98e6e935bd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6822
x-amzn-requestid: 078bf5af-64af-4704-874f-fd88d1022db9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CHqLzEthoAMFUkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64195718-6b8a8d1818d2b1b11c8c5f49;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 07:04:56 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: lp4v-h-_sfUox7cmYPLd9RZ34NexCPwJ0QOzqP-9fdAqxT4pXgOS6g==
via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 3bb2b699cd244bf37141ea08a6a61732.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 07:18:49 GMT
age: 10307
etag: "a80ecb653048fee95df524941bdac2550f241460"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.infoplay.tv/start/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=2.1.5.1
104.21.32.207200 OK 9.1 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=2.1.5.1
IP 104.21.32.207:0
File type Unicode text, UTF-8 text, with very long lines (7136), with CRLF line terminators
Hash 2e9bff4f27e99b1f232bdbdfca2217d2
4d256043edf487e647e2930dfcae1b2212af7b10
74e9a03ab573a19a86334264d154dad1d8e3a95458dbc379f55a69a7c2e8d361
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=2.1.5.1 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:34 GMT
ETag: W/"fed-a9c2-5668d98410515"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OspO0hQJqoFIXZVmqlK94CqANQwPvoO2i%2ByBeou87BsqCsu7GmXTaw7d5bbhNAzgaW3o4UjhgDdRASm4el5%2BEfKffmPh9id0b7ipDsgETJuV5s9z8PwmxkWdL5tTBdqhvCI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5548898b524-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.css?ver=4.8.21
104.21.32.207200 OK 1.9 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.css?ver=4.8.21
IP 104.21.32.207:0
File type ASCII text, with CRLF line terminators
Hash e7157dba3f414494d88b26f1049f0e39
35965cd7f86744ff408d58b354c571da61dda81d
1ce63213c8a0f86cc2c1e8f2e73b251eac6694a8c3145610b2f91ef8b3fc06c3
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.css?ver=4.8.21 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:30 GMT
ETag: W/"1679-26b1-5668d9809301d"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wPt6nrvCGrFzlAhh8nBdm7lLOZFl8mfXEMSgJ1YGgovUdclxW6x%2F33pBvxmShPxOLEUs2kyIHZm1CH%2BpjD3PWomKbkEcsBqXgMnaS7qusRQbEZBfWmNg0ECqbg26NyEqQVc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5548f62b50b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=1.2.3
104.21.32.207200 OK 3.5 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=1.2.3
IP 104.21.32.207:0
File type ASCII text, with very long lines (22648)
Hash 5a0beae1edbf816c0c1508f5cff00448
fa8f5d02b38b6adda8898be1d904bb6c3f039781
8408bc15d9286828e1975f6ef92cf2c089a35458f4661b9002c6c0d058bcb54d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=1.2.3 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:34 GMT
ETag: W/"1695-58a3-5668d9843df8d"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bU%2B1bRJUvhL5cT9CT%2BvTkIyiZIGRQZk%2FL9UP0HIQzDJd1pj9mmbUAoTY1uOyOis4H%2F%2Ffn0p6yh%2BOamYkqR8xRG2kQXpUBauoK3ykVK9le1lS%2BVkWPZO3Qr0b5OAqtS2nAI8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda554adbfb517-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/wpml-cms-nav/res/css/navigation.css?ver=1.4.20
104.21.32.207200 OK 202 B URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/wpml-cms-nav/res/css/navigation.css?ver=1.4.20
IP 104.21.32.207:0
File type ASCII text, with CRLF line terminators
Hash 1b988949bc0120b87ee68499dbe939fe
04f4c8a10b30e8069cee293668b4513ce9f536df
36e66713aac553e1a83eb67786ae4a01b190d03e679e2a8ff42ffcdea63b949d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/wpml-cms-nav/res/css/navigation.css?ver=1.4.20 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:33 GMT
ETag: W/"40ab4-167-5668d98368595"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9ktb1CL1vJZOVWGLjOTt0ttYbNlVyzLeDdf5BDYtEvNeu7pkdZcp7lb%2B4FFWS%2BuAgucLqWR%2FjCrBf3oO0Pvgq53eguKjBWgOqhx55z2Xn%2F6C1KE894rUYjLV1mQWAv12JDA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda554aee4b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1
104.21.32.207200 OK 313 B URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1
IP 104.21.32.207:0
File type ASCII text, with very long lines (850)
Hash 1dd1129795df6e900fecbe2d73ac3068
9adafd827ba7c5a59f41d466862547c45508a0a8
9dfdac78c0115c8877fbe917d83f5ade1e64af7c50c3167ecae8e139efe1edd3
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:29 GMT
ETag: W/"a50-353-5668d97fb39e5"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5qaBCoqDvqvM1Xk8GkA%2BvIMh4flSl1k0e6FUzUAFpGyp8IWJlMc22YlLxo1Fit%2BWkwBshnrGRSOYSJfKgD8J%2B8rCrtLSDj91JVHR3Smy4KeIrK7EDMt6DTBNccWHTo%2BjLzw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5549ecbb51d-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/fd-elementor-button-plus/assets/css/fd-elementor-btn-plus.css?ver=4.8.21
104.21.32.207200 OK 3.4 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/fd-elementor-button-plus/assets/css/fd-elementor-btn-plus.css?ver=4.8.21
IP 104.21.32.207:0
File type ASCII text, with CRLF line terminators
Hash 808c7f1487c125a3e3f5a6dfdf99fa4c
05d3f5a8c69327e262d4880de61dcb48f748b6f4
4bc0f5332c983966ac42bb9f51e54231149080f670c5e68af8858a52cefba80e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/fd-elementor-button-plus/assets/css/fd-elementor-btn-plus.css?ver=4.8.21 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:28 GMT
ETag: W/"415b3-8202-5668d97edb8dd"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HQc3bfUjaOtNBBp3RnMS0xCft%2FjLjEWPb2hukjR0QWMr40ZqPsMDSqJNNw5vd0npx58ggPkXDRR9%2BiY%2Bas4VHGnmRdd1cmVVsJ%2FcQNGHsh4D%2FsFIWdKOkr5zTy1%2BD3O%2FAEc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda554980a069b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/themes/oceanwp/assets/css/devs/font-awesome.min.css?ver=4.7.0
104.21.32.207200 OK 6.9 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/themes/oceanwp/assets/css/devs/font-awesome.min.css?ver=4.7.0
IP 104.21.32.207:0
File type ASCII text, with very long lines (30927)
Hash 1db04442205a4da01f1da223eacb8db3
b106e623f87bdc6a663a9b35490aecb89a58ef90
52220ab58d630a82e645b3059f4866c49b5bf192f0057c9a60a44626171b21d2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/themes/oceanwp/assets/css/devs/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:34 GMT
ETag: W/"40559-7971-5668d9846ba05"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U4P4B4XgljfLSU3wXv%2FgUWem5QN%2FATVysJn9TWoyE9LmRvzJsIyZqBbSWqaKiSgd2eYxmmVZqeuLCNo1gczB23QTWAuvi%2FLUTOGb1MqgI4tuq4H1BlVfegb8xk9jyaNDEOY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5555ea9b517-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css?ver=1.4.20
104.21.32.207200 OK 933 B URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css?ver=1.4.20
IP 104.21.32.207:0
Hash 9ca191c7330c981bebabc67e387342af
7c96423a2c08dd3ec862ebb7974306a51404c154
7f685a8117d9e1f65d28ddfdf128249b798255fbb9d3913b00a8ba5fe5ccf21b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css?ver=1.4.20 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:33 GMT
ETag: W/"40ab2-bbc-5668d9836897d"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BghLA%2B6hVrE%2FBcfzEHGBBlJsZf0O1et9XnJAuynOsMWe%2Fhu0bnonSKIdNmBprj%2BIXntTrA1LjZTWSYnWFAnMEFzvot5zt7EJfxzxgLGTUDgJldNczc%2FlhR%2FS%2BleZgi3IHF4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda55549c5b524-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/themes/oceanwp/assets/css/devs/simple-line-icons.min.css?ver=2.4.0
104.21.32.207200 OK 2.4 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/themes/oceanwp/assets/css/devs/simple-line-icons.min.css?ver=2.4.0
IP 104.21.32.207:0
File type ASCII text, with very long lines (10909), with no line terminators
Hash 36a5e5a8fed7dc7f71cf04e6d921052f
cc7ab5623926d96cb2ef5de507bfb05a91d6a026
68905a4d719de86e9918a1cf17e186cf07fc19c8752aa480f978b174012fa747
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/themes/oceanwp/assets/css/devs/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:34 GMT
ETag: W/"40557-2a9d-5668d9846b235"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GK4uwW8PU%2FjOdDijzQwqHDRpxNGd78ih5Ac9LYEhCG1I%2Bx09ucUlaHXGLIjWt3wJmH%2BTbwFOuar2yXproxcdXZtkj6dge8nE1tsQVToeXdJNiu0a4fqMXIzB1uIIE6tHK9k%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5555ff7b51d-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css?ver=1.4.20
104.21.32.207200 OK 645 B URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css?ver=1.4.20
IP 104.21.32.207:0
Hash 00dd2118cf8a84082c2fdb78d1025782
504780b22b09dff1df741b00476c84dc18a3a78b
692ed4602287a2d53a63fa43f3d95edc0e29c6cca8934a941620c7301f068dfe
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css?ver=1.4.20 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:33 GMT
ETag: W/"40aad-946-5668d98368595"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ilL4K1IEzWy1ktZxRX84JrMQYTNn%2FnVL%2FMTzfXb2i5%2FiRQsiuLq%2BOFjF%2Ftw2x%2B60NLdFwPxR5jQPDdiGey5VKl8e8fOw9hYiRt9NkQ%2BOlfHH656SAVYmPQX30wjqTJqx%2F5I%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5554873b50b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1.7.6
104.21.32.207200 OK 1.6 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1.7.6
IP 104.21.32.207:0
File type ASCII text, with very long lines (6767)
Hash 0c24972636b5d1559f7d8592731765d8
1a5d92e39739b86446cff10de8b487f67536e26b
98e4b9077a52b27bf6a2f576aa02f93a96b83d73b82ec46db7a88b55957af56e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1.7.6 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:30 GMT
ETag: W/"12a2-1a9c-5668d9809a54d"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IiQLdqattsooeNXbwS3%2BTTJgFu4L%2B2Gy%2BNtPyUV0hDirtpXki%2FyGT2IB5GXIx7K5f0J%2BjnN%2FaejOel3yNM73CcLd3YOuEJNGKfWGqklKEZph9XrmeVazEnyVGBwzX%2FljWfE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda55568a6069b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/elementor/assets/css/animations.min.css?ver=1.7.6
104.21.32.207200 OK 2.6 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/elementor/assets/css/animations.min.css?ver=1.7.6
IP 104.21.32.207:0
File type ASCII text, with very long lines (10019)
Hash 1816c3e0699ed1cacf45410e55b56341
87bbd273f6c1c7092b78f9cb0cd82c4524bc8ad3
306349e7cf0eb5bea1c36bd41be77161af22db8f11c3a17f442db8aaf99ffac1
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/plugins/elementor/assets/css/animations.min.css?ver=1.7.6 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:30 GMT
ETag: W/"12db-4824-5668d980991c5"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1tENlWMjMx1RQ3UueahftdGAWqeIp3VGXgzgjPqhtE1oXmSuWVPaezsD6Kh5R5s6K3O9%2BP7sz0%2FOW4Lbz8XbIKyxDvkTxu9021g494OiecUV7ETMjTvvPB4bSFHZUNPWO8Y%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda555bf4ab517-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/uploads/elementor/css/post-1522.css?ver=1633884956
104.21.32.207200 OK 884 B URL HTTP/1.1 www.infoplay.tv/start/wp-content/uploads/elementor/css/post-1522.css?ver=1633884956
IP 104.21.32.207:0
File type ASCII text, with very long lines (11591), with no line terminators
Hash ad83e16510c8b72bb2a567ce24f3e41b
af2ecabe879f947a3482b06ed713d80f0d979cea
76f765e15df8bc0d9bb6d13f3710b3aa1ed145a8f91f7228148ed099c8d0c09f
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/uploads/elementor/css/post-1522.css?ver=1633884956 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Oct 2021 16:55:56 GMT
ETag: W/"4185b-2d47-5ce027c681be4"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nTBoisEaXmNC7WyzGMgs%2BwSVNKEthSBK6AEsl6llwyL4dgauFXI0Qk1SCBFTuQSjtcCCWCCyQ4MGEuD%2Fdtbuqs4DAR5pc5nMzvzBIaqyYC8eKbxpPedZjD2j%2BO48TelTgjg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5560979b50b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/themes/oceanwp/assets/css/style.min.css?ver=1.3.9
104.21.32.207200 OK 23 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/themes/oceanwp/assets/css/style.min.css?ver=1.3.9
IP 104.21.32.207:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65529), with no line terminators
Hash cee974fbdfe0f60d1e1d49809262b183
725b187e6cfed5469d148fe063866adc2b697406
591fe913885615a7350c6eafc168841d84427a84d05fb1f80b2fab34532f8596
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/themes/oceanwp/assets/css/style.min.css?ver=1.3.9 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:34 GMT
ETag: W/"40553-25743-5668d9846aa65"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NQZBlKDRqEmTEq4RtFtCLfhuGkUSuQIk3d8BfkM%2B1pVmAXljmody7WN%2FtfMLvHpvgCT4ZC%2FU3YcCQObQeIr2thLBgxnd7eXX9Lj1Py57h1Wq1LPTMadIO2RFnhzyAplD%2Bzs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5556810b51d-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=1.7.6
104.21.32.207200 OK 10 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=1.7.6
IP 104.21.32.207:0
File type Unicode text, UTF-8 text, with very long lines (65495)
Hash 25a3363930b4b94d7053b1864bd59481
f1fa87e17e587f7769768a440556665acacbf6f4
2b9eec47a4e69c6decbc245184f26114493a0a397a9c8faf47a716748b16da7c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=1.7.6 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:30 GMT
ETag: W/"12da-10f39-5668d980989f5"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fBiBWl%2BN3gE8YVnW%2FDlBJikPZgqzdj%2B8OBGN5w8wPVMBuR3gf5x7%2FGux5vzJKYwBI500xCgRsaEgP0cJXAsO881jplbp1nAnpyNrCT49Bb337ELBE09H4gfAi7dCnAVVaXw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda555fab8b524-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/addons-for-elementor/assets/css/lae-widgets.css?ver=1.3
104.21.32.207200 OK 6.7 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/addons-for-elementor/assets/css/lae-widgets.css?ver=1.3
IP 104.21.32.207:0
File type ASCII text, with very long lines (439)
Hash 8895ba1cc32b6d391b122a4499920526
2d6e4fbd39b0e8ff4fd474913814b2a4453911d4
6f65d6ad5d4d658bae533d97d816337220412f25ff73598136268a7813f6e8c7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/addons-for-elementor/assets/css/lae-widgets.css?ver=1.3 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:29 GMT
ETag: W/"1200-e06e-5668d97fcb0e5"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2gNssVyFni5zSBOyrjUIoko%2Bz3loKwlKTtl529%2Bejic5%2Bk%2BDizMiumVtjNpdK3tTTtNg5CEjvmwhS5vWy%2FLfRU72TELyiLl0SSbOCd0BaRJysRpXqjlRWFHlNpO29psLokU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5562836b517-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/addons-for-elementor/assets/css/lae-frontend.css?ver=1.3
104.21.32.207200 OK 3.3 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/addons-for-elementor/assets/css/lae-frontend.css?ver=1.3
IP 104.21.32.207:0
File type ASCII text, with very long lines (851)
Hash 656c51801c5ea59802f584f41717e0c2
7f4680c4e90897f5d17acce2ef87450229162f0e
ed8557350bc104b5d57d665b2b2c73a8504449430fb058a29b4d3f05f37c159a
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/plugins/addons-for-elementor/assets/css/lae-frontend.css?ver=1.3 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:29 GMT
ETag: W/"11fe-573b-5668d97fcb4cd"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nJIhWMVY%2B4kzzpv4JPHLp7%2B%2BUZ6Taxyn1y%2Fa7Tih2Sutu7OcvY6SpU%2FN7RlJI2j9RLq4GrViqq2IMjFAdGYlFW9fmsXXoo%2Bm%2FoSO1ccEhu7ZQpfSrP7YjRK8NcgCQYTuWik%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda556299b069b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/uploads/elementor/css/global.css?ver=1500673249
104.21.32.207200 OK 1.0 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/uploads/elementor/css/global.css?ver=1500673249
IP 104.21.32.207:0
File type ASCII text, with very long lines (9162), with no line terminators
Hash fd98c0661d05fb1a906ca17a871c3d53
4c712c64dc2142361294297d430caa9dc6c85231
2e2700d93d3ce3b894a3cde189031fd7295f789a70a44055a1369f93d6245e5e
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/uploads/elementor/css/global.css?ver=1500673249 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:35 GMT
ETag: W/"41859-23ca-5668d984d556d"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V8axnN1%2FjkiSUMZg3hebtrAtifYD%2F0WjhqmTku4o5vUy8hxI410wMzoZ4A6pKkXIVnZ%2FzomZdScKOSfDlAYDvtJG6VZ9S%2FTeFTTolT4Dg2A%2BwSGvEukCGVHskLgZ8VvFHB4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5560932b51d-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/addons-for-elementor/assets/css/icomoon.css?ver=1.3
104.21.32.207200 OK 652 B URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/addons-for-elementor/assets/css/icomoon.css?ver=1.3
IP 104.21.32.207:0
Hash 6bfc5e76a452c391a780336b89cb34b2
b2a6467b2f08f968ad039690c7bb0af2be26b69f
db5a6a55f38568bc3550b287fff1ea7b1578bf4484866de8fc8fe0d6b423e8b7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/addons-for-elementor/assets/css/icomoon.css?ver=1.3 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:29 GMT
ETag: W/"11f4-9fe-5668d97fc9975"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fJwM5MGAF1OveLrzH0Lp%2FekWIvxJp8%2B7E9%2BIJhYv58ALScxmjx57JCKKe83s%2BaV27WiVvQ2gDUGhAnlzrk86hR6NeOTBHxTsmw798jJXPd0Y7%2BHz6BF6COJEmXI%2BdikHvN8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5567a2eb50b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/addons-for-elementor/assets/css/sliders.css?ver=1.3
104.21.32.207200 OK 1.7 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/addons-for-elementor/assets/css/sliders.css?ver=1.3
IP 104.21.32.207:0
Hash 9015de74af0896b9f13cde2e251ac122
138b9d81fbdd1c9866b4f57798c1146a19826163
462f96e956ec7a45f2458658a7efc9059c38f7b8f8160a34f9d7a8f35c3d0aeb
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/addons-for-elementor/assets/css/sliders.css?ver=1.3 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:29 GMT
ETag: W/"1201-1f4f-5668d97fcb4cd"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qEaDScyl6GGswzU3Zm26%2F9kuxAaRolF6%2B%2B2pcIFurbINRNg6ovlV1lr791eDgK1ShIH2EB35nZwqP2jwHZEnueZsU9SzILT%2FFY7QXzRb8N4CsWjdjlsyFxoRm6SBcUAECmA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda55689f0b51d-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 06adbc463c1bafb4b79a2d2f10791ef8
30a6d093719f89764805f62102b0a07c493016a0
64000d2bedca454efa1fc2de6083ca06cb3e94b33565427ba9ac7c9345a926fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.infoplay.tv/start/wp-content/plugins/convertplug/admin/assets/css/frosty.css?ver=4.8.21
104.21.32.207200 OK 901 B URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/convertplug/admin/assets/css/frosty.css?ver=4.8.21
IP 104.21.32.207:0
File type ASCII text, with CRLF line terminators
Hash e932f4d797ce7f9e10eb17f08371dbdf
a6c631d958e101077aa0c8171441bfe9e5ba4003
5a0c05d7e792d7a299d4db91eb8ce1190636049014df441fea8ace9ef8b29b1a
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/plugins/convertplug/admin/assets/css/frosty.css?ver=4.8.21 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:31 GMT
ETag: W/"415f3-10a4-5668d980ea2a5"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ww0CNqt2CfbvvrtWQI5kxJ0wwZARlCn%2Bd17bX3mSr1UVFuCopdl26g26bckA1Vbu2i0cZQGS31nVo9XaW44QEZLC9FTkpX2Guddya7P%2FfFYXdibJshGj%2B2kEeQVK9yZiZFc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda556abeeb524-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 06adbc463c1bafb4b79a2d2f10791ef8
30a6d093719f89764805f62102b0a07c493016a0
64000d2bedca454efa1fc2de6083ca06cb3e94b33565427ba9ac7c9345a926fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.infoplay.tv/start/wp-content/plugins/convertplug/admin/assets/css/perfect-scrollbar.min.css?ver=4.8.21
104.21.32.207200 OK 447 B URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/convertplug/admin/assets/css/perfect-scrollbar.min.css?ver=4.8.21
IP 104.21.32.207:0
File type ASCII text, with very long lines (3073), with CRLF line terminators
Hash ba1338b7ae2d873124ea73f4aef6070f
ecb002002697a59307ed77dd041e70fb5ac22f0b
a41f5f81c080264554a4e2a0f3ab479e937bbe1e83c23035f9d5998117142d1a
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/plugins/convertplug/admin/assets/css/perfect-scrollbar.min.css?ver=4.8.21 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:31 GMT
ETag: W/"415f1-c21-5668d980eaa75"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CTA4NhF9cpdvvjNd%2FnipHuusgEY5QYzhPZTAgFSuyHxDzxiuXdoczFgD7jr7nw7cCs%2FJ4htAJmTH%2BkoxjN6OKg2Nlzqca2YO2F6Hmoew5AMJfp1X1Qwy4EvFwmu5IcGQE18%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda556ca17069b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=4.8.21
104.21.32.207200 OK 4.5 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=4.8.21
IP 104.21.32.207:0
File type ASCII text, with very long lines (28616)
Hash 7d472b473ec7336bb47c765f69ef4cf4
765ba3b8482bdbbc4788b1d0eb1eb411edf72847
346e9ebe9b487e9084b8b91b27b381d3c886a43347504e96c8bb170874384dae
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=4.8.21 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:31 GMT
ETag: W/"6b8-6fc9-5668d981bc205"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aUKyIlHN47SiB6cPPPb3f32dIL3Ry%2FFWfKnNqPhE%2FF9semFzHez4Qu3DP2Qr0nsbSM4cVlx3apVOtn%2F27buuaAyEg2ZLGFDTyB4fiuMRgjHsX2HXOlbfYTadyGW16%2BvHtzk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda556da44b51d-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 06adbc463c1bafb4b79a2d2f10791ef8
30a6d093719f89764805f62102b0a07c493016a0
64000d2bedca454efa1fc2de6083ca06cb3e94b33565427ba9ac7c9345a926fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.infoplay.tv/start/wp-content/plugins/convertplug/modules/modal/assets/css/modal.min.css?ver=4.8.21
104.21.32.207200 OK 18 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/convertplug/modules/modal/assets/css/modal.min.css?ver=4.8.21
IP 104.21.32.207:0
File type ASCII text, with very long lines (40778), with CRLF line terminators
Hash dd4b17bcb1a0d843a4bdbf770809e08f
ca8f32891dca54ef6fa7c8a7fa5e4d3fa9c4df83
f76e64e29d3c6f772d6be0563401ae2d72131170b80494e0059b3122a596c825
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/convertplug/modules/modal/assets/css/modal.min.css?ver=4.8.21 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:31 GMT
ETag: W/"41798-25285-5668d98133a6d"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IClqDURSW6WdjHNhmZPODYwpmdywpkSe%2FICkcO6vfQ7ZtYyaOlocQcUkWqzwBKy85xjC6FctE%2Ff9263GUplrupYNSUtmrQ5vt3dePlyxljNsiSHRW7Is3vim9axrQvikN%2Bw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda556c8f4b517-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 06adbc463c1bafb4b79a2d2f10791ef8
30a6d093719f89764805f62102b0a07c493016a0
64000d2bedca454efa1fc2de6083ca06cb3e94b33565427ba9ac7c9345a926fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 06adbc463c1bafb4b79a2d2f10791ef8
30a6d093719f89764805f62102b0a07c493016a0
64000d2bedca454efa1fc2de6083ca06cb3e94b33565427ba9ac7c9345a926fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.infoplay.tv/start/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
104.21.32.207200 OK 4.0 kB URL HTTP/1.1 www.infoplay.tv/start/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 104.21.32.207:0
File type ASCII text, with very long lines (9959)
Hash a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:28 GMT
ETag: W/"40109-2748-5668d97eb5395"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TfDmVLlYNuL%2FWSLcQj1y5WrqHoAzmNrafiwItOgxpHJM14LcIUpbYNUb45JLx%2FrxT775GVDh7lLFlJ0B9AZXycbuG60ImJ7A3hT5WaqO3nMrt%2BnKa0QIfo3DLzTWquYXymo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5575afbb51d-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 06adbc463c1bafb4b79a2d2f10791ef8
30a6d093719f89764805f62102b0a07c493016a0
64000d2bedca454efa1fc2de6083ca06cb3e94b33565427ba9ac7c9345a926fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.infoplay.tv/start/wp-content/plugins/convertplug/modules/modal/assets/demos/first_order/first_order.min.css?ver=4.8.21
104.21.32.207200 OK 939 B URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/convertplug/modules/modal/assets/demos/first_order/first_order.min.css?ver=4.8.21
IP 104.21.32.207:0
File type ASCII text, with very long lines (4038), with no line terminators
Hash 5bc8d601140d801d195b4c4f506d48a9
5a1cec240ee81acfa4e476ebccc495bfb40697c3
f90465b29fd990e7366d2ed707277e4768a4200cb00d44f1ec9ecd3ccb6014e0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/convertplug/modules/modal/assets/demos/first_order/first_order.min.css?ver=4.8.21 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:31 GMT
ETag: W/"41763-fc6-5668d98143085"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9vMqX%2BN1b0qtvmoksg6wojRSMQDgKf4KlI5nfA8jiSoJV58t0viaBzu%2BAbNGVlaRz6iKsVFx9MBTH610d9LzWdMMEN%2FBrZCiZjKkTs6pFz0jLZKIW6JKtmK%2BgGBpQX3ZHhg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5576d07b524-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-includes/js/imagesloaded.min.js?ver=3.2.0
104.21.32.207200 OK 2.4 kB URL HTTP/1.1 www.infoplay.tv/start/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP 104.21.32.207:0
File type ASCII text, with very long lines (7855), with no line terminators
Hash 1f21fa17dec00fe93a1c3afb7a90e8d0
317e3fc2006e61afa79649807b896b9777d5c175
45a0a865603d2c343a6e9048c91f0b24dbd4e5f77a0c5583b6daa3415e8023b3
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 15 Apr 2021 21:33:19 GMT
ETag: W/"401cf-1eaf-5c0099ca9820e"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HQJM8RCg%2Fgl3iEeH%2BjRLhsM5SS7rvu4HLaBDECqlann60VODdqhfpXTjqD4F%2BiATYkBWV6Xqhr0YRHQy%2FRXuHo5Dwidbt0CZY5wxI%2BVQStePbmnldC6TpnN%2FSAz30NjHREY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5578b3eb51d-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.js?ver=1.0
104.21.32.207200 OK 1.3 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.js?ver=1.0
IP 104.21.32.207:0
Hash 7cf5e5f263da9d6730a7f13b708ccc02
e95a8e5349fea405aaf713471451e0fea1891aa7
bf299d401c6dc894de793744d786658c5828b7729df1b61d21a54d42c05815a0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.js?ver=1.0 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:30 GMT
ETag: W/"1673-11f1-5668d980937ed"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XS40CBrlv%2FjoVM9DKoxui3MDusPztZZwfjvkRl0rNZV1o4D%2FKR%2FqUE6PkwAqeEdg%2BFd22D4Pn1VGHR3qBRFt6lFcSdOAYYrvRZOJy1JCMo7gUfYcnnYlyO9aJniGX9YHlcw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5576a9d069b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-includes/js/wp-embed.min.js?ver=4.8.21
104.21.32.207200 OK 735 B URL HTTP/1.1 www.infoplay.tv/start/wp-includes/js/wp-embed.min.js?ver=4.8.21
IP 104.21.32.207:0
File type ASCII text, with very long lines (1386), with no line terminators
Hash d2b60c1231015fbb2cfb0680a4fdfc87
2964b5bc32aad38d53ba3063503711c5cb6006ed
a83053c9a437c08c7d62ae9b07cf680d43a3ad129de64633eee91a860fab7844
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-includes/js/wp-embed.min.js?ver=4.8.21 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 15 Apr 2021 21:33:19 GMT
ETag: W/"400dc-56a-5c0099ca95716"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QQOLAQGmgvT7JLBPjdSIsbbSk2vTaEyAaQg%2FWo2KivZHzqEJuizQxkMa5CGWD54uLAiF7mCF%2FhO3cytbO2J2c6kZlxuvy6fdRyNVksJIAfz9h44Qf9NHh9o%2B60zzf5A%2B0CU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda557bb90b51d-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-includes/js/jquery/jquery.js?ver=1.12.4
104.21.32.207200 OK 34 kB URL HTTP/1.1 www.infoplay.tv/start/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 104.21.32.207:0
File type ASCII text, with very long lines (31997)
Hash 258ac3c10e5d635e9f8fd967eb6b0bb5
fa9e545ac540893acbd346087c03eabdd45bdf67
eb0a68c6aac064f758926da5dd81e6aa9395b9568860ebcad109ee8e30a13daf
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 05 Sep 2019 10:02:45 GMT
ETag: W/"4010e-17a6a-591cb6c4f7ee8"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DsJKn8NR%2FdrokmU8WiZd4EXejBl5J49B6VQEABcIjbEtjLh%2FRf50pnfQIgIWuMGx8%2BaOibEU3u3rUUv1xrj6QwXZ0fQtTmiLeSjc9q9cfLDU0h0tYNxWRcKEzUAm%2FkJtDJw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5574b84b50b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/sitepress-multilingual-cms/res/js/sitepress.js?ver=4.8.21
104.21.32.207200 OK 190 B URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/sitepress-multilingual-cms/res/js/sitepress.js?ver=4.8.21
IP 104.21.32.207:0
Hash 5c60e1110f34f18bbdf37ff7ec75f52b
fccb4c3183741ad2a2738e4e8a6b85439c043987
0cef176b338bfd2cd70d192577789a540e668af10d1d5fb1a212bf5794ca55ce
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/sitepress-multilingual-cms/res/js/sitepress.js?ver=4.8.21 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:29 GMT
ETag: W/"84d-15d-5668d97fa5b3d"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UbeZ38BXkw0oXgjTWkQttz3udC2F0g28remDI2QvlCFTnu0M5uMYC1zoQrT2PNYisWug%2B54gLLrlV%2F7HEssu8Z3XmOIzceKTn%2BepUVnEFFpOyTvJMFeLyKRPNNzt1X1LVLk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5583e57b524-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/themes/oceanwp/assets/js/main.min.js?ver=1.3.9
104.21.32.207200 OK 35 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/themes/oceanwp/assets/js/main.min.js?ver=1.3.9
IP 104.21.32.207:0
File type ASCII text, with very long lines (32044)
Hash 3d0304ecac5563e0fc4bc163461c5893
f51549dd1cd58a6b9d2f480408d2c576192defa3
df3abd771afda631129e5d16bc61804a81a946f9c4fec68fde3095ef6805a657
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/themes/oceanwp/assets/js/main.min.js?ver=1.3.9 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:34 GMT
ETag: W/"40509-2015b-5668d98476db5"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gNDdJEKk658AKXqLlKSeApLMRf9vRTvcBHQTUxbKBuTL12wyEOLP9%2FkG%2FLODoL%2BmuGPlenhtnGtmCxNUGHpEnkQTbl7bSaLvH8C8N5pYPqweypGV7bKdNvbo0ASxlVPehZ0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5579a19b517-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/convertplug/admin/assets/js/frosty.js
104.21.32.207200 OK 2.6 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/convertplug/admin/assets/js/frosty.js
IP 104.21.32.207:0
File type ASCII text, with CRLF line terminators
Hash 4b285e8df750aaafbd1919433a155f5b
b41ada7ba596424dbaf48ed0042da3ea6e755bfd
69efb51cf5cc3ff6d1c22481585cb8ec0b1ff7112f65d7f7cc8f03154e4fe9b1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/convertplug/admin/assets/js/frosty.js HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:31 GMT
ETag: W/"415dd-2977-5668d980f1fa5"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DGT8lttIpTY47W7X%2FB25lZS%2BK7hu6hm7wIjyURVyhpFCUav%2F7h2Dq5f5HItVQ5z5R2EZITqU45n%2FUhv%2F2zX070m%2FFhXoGFpVlvNu8hbuSs0Top6RuysDCvz0qh%2F1ImUQo6c%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5583c1bb51d-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=1.2.3
104.21.32.207200 OK 3.5 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=1.2.3
IP 104.21.32.207:0
File type ASCII text, with very long lines (11277)
Hash 7ce7e4dfa59aafa96f04934939738d89
d63b658ebab8b051ecdb832d025aceba401bf92c
260e45a140176de0c545da05a88855f8ddb1a643fca5aafadf5d2a7a78ecce05
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=1.2.3 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:34 GMT
ETag: W/"1684-2c38-5668d9843eb45"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xyHf4aOcNxd7rEsTzmZPpJbjBSWuBw0mqelcVAlOZ6NshNg2Pvjub2iAsb1Nr3sCge8LCQIJ%2F7aDqDiUmddoHOMNw2%2FdyGZf%2FG6171uRSSmSfjgF58nCc2kcRG2bz4lRqWk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5588d4db50b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4
104.21.32.207200 OK 2.5 kB URL HTTP/1.1 www.infoplay.tv/start/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4
IP 104.21.32.207:0
File type ASCII text, with very long lines (6219)
Hash 16add6298eb37fed5715cf0bf288913e
37ba35ef7cb0890d6cc69231624f42d0368f1a49
f6317065a3a12ae27cd8f7221480d76dfd8ef873c6ded2dbbf2d482b07e7e5aa
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 15 Apr 2021 21:33:19 GMT
ETag: W/"400ee-1928-5c0099ca8ab36"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9bRTSZlQXwQk0g6rMu94x2T5Wa3gsae07fg2VTEf3sqqTyuXw8m%2FW5Ruzf69pViGN5cxhtKN1Z77okBBzkaz0ckFn2CF90yZN%2FFpUj2cjqa22pGxsOfz%2Fh4K6qwHIsTfVkU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5589ee4b524-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=3.2.4
104.21.32.207200 OK 2.8 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=3.2.4
IP 104.21.32.207:0
File type ASCII text, with very long lines (8341)
Hash 19d91b2833544cb107c0b2b5fad3a6dc
8ef88b1e55a25f37e32f6be1ccc861fcc88c1889
d6b139ba6136e18e2c89ba9473206920de7abf4ce8396ced94b347f5d4a2b7d0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=3.2.4 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:30 GMT
ETag: W/"1269-211e-5668d9809c48d"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bjgVqvXnZLjSuh1lnRGpj14CRH3SOkw7Yr5I0rHmpElwnPrwjOT%2Bg7h0YW9QEMcXJ7wpaqQkMYvqrfhNe73GRiUwN4e4%2ByIAw5yhlXvPvOQH1mFmiP7Ccg4Pjc7b039gTEs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5589b5db517-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 0086fc6b6b52670b2d7ca51fc65d8d44
1d906db50d0373e0e3e1e85031de970218264f4d
24a9078b3b1b7b060c8e68777d0baaa3651c18cebe9107a2598f07981086f830
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 0086fc6b6b52670b2d7ca51fc65d8d44
1d906db50d0373e0e3e1e85031de970218264f4d
24a9078b3b1b7b060c8e68777d0baaa3651c18cebe9107a2598f07981086f830
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.infoplay.tv/start/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
104.21.32.207200 OK 3.0 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 104.21.32.207:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash dceed141ce93f206eca963c22e1deacf
ac2a9d2441b756845ebac12797822bb6cf62b274
f57cec207bc90dbe9269a675148a52aca7bf697ca5ac9f531c7c36d6044363d4
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:30 GMT
ETag: W/"126e-2fa6-5668d980a3da5"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dkrSWrz2CixJLZhPs9CJatAxGwiFTFj2OcgC8E0uMUx5TWDZymb%2FEWBgANz5VriKHZTdhqzlHfXEhhZJtWee9qZgLpTLzRMFTRhC0djTZTatYXii3eLN86bLpR5jiIlRi6M%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda558bbae069b-OSL
alt-svc: h2=":443"; ma=60
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.infoplay.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 14:12:20 GMT
expires: Tue, 19 Mar 2024 14:12:20 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 158297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.infoplay.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 18:52:41 GMT
expires: Tue, 19 Mar 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 141476
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.infoplay.tv/start/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=1.7.6
104.21.32.207200 OK 9.0 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=1.7.6
IP 104.21.32.207:0
File type ASCII text, with very long lines (31820)
Hash 86237d1fecb9088a804ecd8317138ef2
405088f985efdc98a9703361effa1492e382d5b0
24bac76275ce962c544ccce6c3ae5fba684c3624e9c6f70bbce0bddedc737cb1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=1.7.6 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:30 GMT
ETag: W/"1249-7c73-5668d980aa335"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BvRFa8ny8s5xWB66W%2FEPQA9AxqfcX%2BDGn3k4VG46dRnzs5cPzzgEvznZB99Mtg1jzxwPDxBZav2rrZSlb4T7rKf34Jgt%2Bqn3Yew%2FjRs9%2FldklP8gpC7TLR%2FB8RNn4UL0fng%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda558edc8b50b-OSL
alt-svc: h2=":443"; ma=60
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.infoplay.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 21:12:36 GMT
expires: Fri, 15 Mar 2024 21:12:36 GMT
cache-control: public, max-age=31536000
age: 478681
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.infoplay.tv/start/wp-content/plugins/convertplug/modules/modal/assets/js/modal.min.js
104.21.32.207200 OK 15 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/convertplug/modules/modal/assets/js/modal.min.js
IP 104.21.32.207:0
File type HTML document, ASCII text, with very long lines (31995), with CRLF line terminators
Hash 0590c82f405907216cd52f8e19049b81
d2502d366f7d48fad79a836f5cf037a6a0aa90e6
2517cd8fef3c5e1544165ff741b691a7155b3d4046fd2a9e777d3517bcd40be6
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /start/wp-content/plugins/convertplug/modules/modal/assets/js/modal.min.js HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:31 GMT
ETag: W/"41739-fcab-5668d9814c10d"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YAkso6GXkuiWewu7JMRfb6QXtitMnCRvQy3R7ieuicNj6RDFU0tT5jJVZXSoxuSZoqszdXWUOEJqAGjvxj41fH6SgIj0cW5rrqVc%2B38kUcqZqsrjPxAAH5cSo6CuLCRGuJ8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5586c69b51d-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/uploads/2017/07/1-b_-1-150x150.jpg
104.21.32.207200 OK 3.1 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/uploads/2017/07/1-b_-1-150x150.jpg
IP 104.21.32.207:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash efebb4b1ffde28908dd955b5a0579cc2
9606879c44fdb23f8967ff826d18c7f633ffbb51
b83996ca6fa658afc7ff331deadd44c50dccb3ce83ddfb2fb8f7d50cc7e54927
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/uploads/2017/07/1-b_-1-150x150.jpg HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: image/jpeg
Content-Length: 3136
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:35 GMT
ETag: "418a3-c40-5668d9852c7f5"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mZnMz2PiTio0NJdAbp1Fx%2BYjM6xejtfKB44kZehfZZ3xvYhi1KA%2FVcheK%2BnVi3WYKtVqGtIjq97bR%2BGjKQqJxlePNSBsaZXlGEzogXfJslevX8ZMPC%2FFfh3zmMiSwQ33L30%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda558ff5eb524-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 0086fc6b6b52670b2d7ca51fc65d8d44
1d906db50d0373e0e3e1e85031de970218264f4d
24a9078b3b1b7b060c8e68777d0baaa3651c18cebe9107a2598f07981086f830
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.infoplay.tv/start/wp-content/uploads/2017/07/3-p_-150x150.jpg
104.21.32.207200 OK 3.1 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/uploads/2017/07/3-p_-150x150.jpg
IP 104.21.32.207:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash fbc504f8cda2aa5bd1ca3b0e4ab6c641
a6947b42d80ba17af1af4eeb9f7a57fd6adc9b72
e1e5f962b9c914e36cac5333e268d81c49c6813f66f6f2f1459972528c80ee9b
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/uploads/2017/07/3-p_-150x150.jpg HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: image/jpeg
Content-Length: 3055
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:35 GMT
ETag: "418f6-bef-5668d98522bb5"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YLtvdnWjZq%2BZ9%2BRGWJm0A%2BC%2B7jJCqC5Ry82WpBOi7IRXEvs53VkUDN4Uc%2B9vM8gIe68GuHTrzBHUwmsGN9VuAAOGsbMLeJw4vySwPJ9sRw6DBE9JxVj1x5k80gumXKjefA4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5599e9cb50b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/uploads/2018/07/ponude-exyu-1-150x150.png
104.21.32.207200 OK 8.5 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/uploads/2018/07/ponude-exyu-1-150x150.png
IP 104.21.32.207:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash b6c0610642bec7beeef7cf61ec43082e
924d1335c5343c11518b81d4e8a44b9052735385
cb62c2b265218d3fb3ed94f0200ddf31262757934de1dbb9e2589c54288ad864
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/uploads/2018/07/ponude-exyu-1-150x150.png HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: image/png
Content-Length: 8516
Connection: keep-alive
Last-Modified: Sat, 21 Jul 2018 22:07:51 GMT
ETag: "459a5-2144-57189a4b78ad1"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Civmsmu1PP%2FlRVqf%2BISHPgW0iQGw%2BvhQZp591RLeHt0B5uDF2scc8diM2IhE3ZjfpWqc8Rbh%2FmGhfVzPCAZfrhM4hngG9XWlwFP3qrWmiWNE91ek24a5HKk4ZqbczgGPdjk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5594c50b517-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/elementor/assets/lib/swiper/swiper.jquery.min.js?ver=3.4.2
104.21.32.207200 OK 21 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/elementor/assets/lib/swiper/swiper.jquery.min.js?ver=3.4.2
IP 104.21.32.207:0
File type ASCII text, with very long lines (65240)
Hash 36ea4831e4407b1c9bf1c82091dd20f5
fd03db5339e8adf0eb50b9806b9a2eab9f6771d1
dc5e21d99d5119a4cefe093b662fd9a560a0e249590a20c38cd2e9d5c032e39b
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/plugins/elementor/assets/lib/swiper/swiper.jquery.min.js?ver=3.4.2 HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:30 GMT
ETag: W/"1298-15352-5668d980a512d"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gx9nzGJ90aNoms%2FDLsg5WJMvE4789USjJv1xd2giA6f%2BL30RR7pDgidH6j0rz%2FWFVzVAq4GgVf31iaTs6%2FiHI5BextTe92%2BegK7H%2FzR5v7SlXt%2FfWZzFQEF5oS2gD3uRhh4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda558dd16b51d-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/uploads/2017/07/4-p_-150x150.jpg
104.21.32.207200 OK 3.4 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/uploads/2017/07/4-p_-150x150.jpg
IP 104.21.32.207:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 877fa06cba94cb4e35fe29118ccaeefb
b222ba20fd704b9dbb8d1cc5601e10e651b325aa
2271d23335fa48f76e037445382f7d09b66c7b1b1d43e968e239b5c4f800f812
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/uploads/2017/07/4-p_-150x150.jpg HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: image/jpeg
Content-Length: 3413
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:35 GMT
ETag: "418f3-d55-5668d98529915"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KhqzJAfoa88FMHQxD0xY9LLhq2uUVORKV0gPAg4hgD0AXNoObl7m%2FcsHXuY4rdPym4h47Zq9qCGZRRSF6j5DrLZ8rtg4w8SH8VfW%2B6O68fTccEb0jAJ08jsX%2FW9vC23F2WE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda559ae40b51d-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/plugins/convertplug/modules/assets/images/grey_close.png
104.21.32.207200 OK 2.8 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/plugins/convertplug/modules/assets/images/grey_close.png
IP 104.21.32.207:0
File type PNG image data, 95 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a761e5dd165777929ad97b0b4fdc2bb
56d8b9249a95dd4b392327f82495fd67dd81494d
bd32f58e09637482c0a6789f53565abf38b25f253c4ecfda71108557e5811c9e
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/plugins/convertplug/modules/assets/images/grey_close.png HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: image/png
Content-Length: 2812
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:31 GMT
ETag: "155b-afc-5668d980fdb25"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9dLH%2BBWI1lKXlv9xDBCnv%2FKp1hGIcjm1Oa0yCPtXgT%2FouHenGNiMJOjTWL%2BE9Q4aVhVpuoWhkhozwsZ42Zdb3LdRVfd86yKJHTMjTWaspnGyAupVINS%2FwnHbK1i4pUH%2BCl4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda559ed44b517-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/uploads/2017/07/Info-Play-logo-1024.png
104.21.32.207200 OK 87 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/uploads/2017/07/Info-Play-logo-1024.png
IP 104.21.32.207:0
File type PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d49c4df368f149859e2d5212aa3e90e
ccd6bf1380cd1b049e0b76c7fcc7aafb29994414
79fb9f19cd23156744196907ddfad5ef1ef1f5d8a14f4b063638f3d89ffb6c56
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/uploads/2017/07/Info-Play-logo-1024.png HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: image/png
Content-Length: 87188
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:35 GMT
ETag: "4191f-15494-5668d985252c5"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dpgdQCoyL41%2Bcd8TWOUCt326Rr1efAM4jN2kmxxmgYprnbmL3r68XKDIeF%2BOtKl8nH4qBw3OOT%2BqdOFjGFWPTzkXqb%2FVy%2FXmuEUrNkH1oJl2g72jCyYZbJFCwdnm%2FTYl518%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda5596c71069b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/uploads/2017/07/Info-Play-logo-center-2-2-849x1024.png
104.21.32.207200 OK 204 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/uploads/2017/07/Info-Play-logo-center-2-2-849x1024.png
IP 104.21.32.207:0
File type PNG image data, 849 x 1024, 8-bit/color RGBA, non-interlaced\012- data
Size 204 kB (203938 bytes)
Hash 2c132d7939b618638624776b55f364f6
43cb3f8c02e77682058f39de8efebf05378c1155
a069a9cc6da6812ead031deaab4a10a6970f732c0212da0b9caeb237b26e0add
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/uploads/2017/07/Info-Play-logo-center-2-2-849x1024.png HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:37 GMT
Content-Type: image/png
Content-Length: 203938
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:35 GMT
ETag: "4186c-31ca2-5668d98529145"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WATzPbN3ohxqCLQxnvzlJeGAcr2y3CkMyPyGnUQrleh7R61L4ES74f%2FAMjwQiF01crOEJNhVHpPO10TON0bsA8lnUBX7sxbJAP9rFj3No3ro4BxbAtdn1leox4S5EGdH7%2FY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda559eefcb50b-OSL
alt-svc: h2=":443"; ma=60
www.infoplay.tv/start/wp-content/uploads/2017/07/gss-media-tv-1.jpg
104.21.32.207200 OK 144 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/uploads/2017/07/gss-media-tv-1.jpg
IP 104.21.32.207:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 144 kB (144413 bytes)
Hash 162cf6763f793550c6fae0ec57552c4c
529c5c62c8aedfcfc63008dd5e036331483b8016
39a83aba72d85e031675edaef5de745e9a3230b5d67ae554b8c48e46e1ddb1d4
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/uploads/2017/07/gss-media-tv-1.jpg HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/wp-content/uploads/elementor/css/post-1522.css?ver=1633884956
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:38 GMT
Content-Type: image/jpeg
Content-Length: 144413
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:35 GMT
ETag: "418c3-2341d-5668d9852fea5"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bIyKM8AVGdHye2MLcDRc1rOUkbiuoiDgTkMsGQp7qwwGj0nN55QjESDr3CfpMgdz3TgLEF6W6x6%2Fb1MdIgeslmHbe7PEF%2BTrbezYcCoHwg%2F2%2FYdB94TBrMiR3LEQr7Qeal0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda559a842b524-OSL
alt-svc: h2=":443"; ma=60
www.google-analytics.com/analytics.js
142.250.74.78200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Wed, 22 Mar 2023 09:46:35 GMT
Expires: Wed, 22 Mar 2023 11:46:35 GMT
Cache-Control: public, max-age=7200
Age: 1443
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3e968c0f4319273e79821cbabf3bdbdc
99f1127052594878d49370fdcc61b1e4fbb69e61
82ea5f81bec224fa88a6b83c50481d819586b5de2fbb435d522d24ce1250b6cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.infoplay.tv/start/wp-content/uploads/2017/07/cropped-infoplay_favicon-32x32.png
104.21.32.207200 OK 2.0 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/uploads/2017/07/cropped-infoplay_favicon-32x32.png
IP 104.21.32.207:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash e908a3beb19a18d696e9b5912e07b6a1
7b681db83b67acfb476acaa7fa44e817aeb5df49
87c26c7e3321e50a6898ffd6ff67f78c2f1c432e40e6f11933568da6f93c55bd
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/uploads/2017/07/cropped-infoplay_favicon-32x32.png HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:38 GMT
Content-Type: image/png
Content-Length: 1985
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:35 GMT
ETag: "418aa-7c1-5668d9852376d"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pEGP2gCMbY%2BQ%2Fed1ZLRKHcTNqFOVc7DWsN0bJEP7RTnGsUR7lTQyf6A%2BQHpc02YNNQd56pl404anF%2B8Lag65gUIc5ED3y4IyPLD7MRX4UGPnIWC87cDOlyDyZCjLLFQgPpQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda55c3f74069b-OSL
alt-svc: h2=":443"; ma=60
www.google-analytics.com/analytics.js
142.250.74.78200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.infoplay.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 22 Mar 2023 08:12:29 GMT
expires: Wed, 22 Mar 2023 10:12:29 GMT
cache-control: public, max-age=7200
age: 7089
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j99&a=2071609287&t=pageview&_s=2&dl=http%3A%2F%2Fwww.infoplay.tv%2Fstart%2F&ul=en-us&de=UTF-8&dt=Start%20Infoplay%20%E2%80%93%20Infoplay%20interaktivna%20televizija&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=349714701.1679479843&tid=UA-104895703-1&_gid=683808068.1679479843&z=1364171725
142.250.74.78200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j99&a=2071609287&t=pageview&_s=2&dl=http%3A%2F%2Fwww.infoplay.tv%2Fstart%2F&ul=en-us&de=UTF-8&dt=Start%20Infoplay%20%E2%80%93%20Infoplay%20interaktivna%20televizija&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=349714701.1679479843&tid=UA-104895703-1&_gid=683808068.1679479843&z=1364171725
IP 142.250.74.78:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j99&a=2071609287&t=pageview&_s=2&dl=http%3A%2F%2Fwww.infoplay.tv%2Fstart%2F&ul=en-us&de=UTF-8&dt=Start%20Infoplay%20%E2%80%93%20Infoplay%20interaktivna%20televizija&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=349714701.1679479843&tid=UA-104895703-1&_gid=683808068.1679479843&z=1364171725 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.infoplay.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Wed, 22 Mar 2023 05:06:27 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 18251
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=2071609287&t=pageview&_s=1&dl=http%3A%2F%2Fwww.infoplay.tv%2Fstart%2F&ul=en-us&de=UTF-8&dt=Start%20Infoplay%20%E2%80%93%20Infoplay%20interaktivna%20televizija&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=898477169&gjid=1449256437&cid=349714701.1679479843&tid=UA-104895703-1&_gid=683808068.1679479843&_r=1&_slc=1&z=355572168
142.250.74.78200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=2071609287&t=pageview&_s=1&dl=http%3A%2F%2Fwww.infoplay.tv%2Fstart%2F&ul=en-us&de=UTF-8&dt=Start%20Infoplay%20%E2%80%93%20Infoplay%20interaktivna%20televizija&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=898477169&gjid=1449256437&cid=349714701.1679479843&tid=UA-104895703-1&_gid=683808068.1679479843&_r=1&_slc=1&z=355572168
IP 142.250.74.78:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=2071609287&t=pageview&_s=1&dl=http%3A%2F%2Fwww.infoplay.tv%2Fstart%2F&ul=en-us&de=UTF-8&dt=Start%20Infoplay%20%E2%80%93%20Infoplay%20interaktivna%20televizija&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=898477169&gjid=1449256437&cid=349714701.1679479843&tid=UA-104895703-1&_gid=683808068.1679479843&_r=1&_slc=1&z=355572168 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.infoplay.tv
Connection: keep-alive
Referer: http://www.infoplay.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://www.infoplay.tv
date: Wed, 22 Mar 2023 10:10:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3e968c0f4319273e79821cbabf3bdbdc
99f1127052594878d49370fdcc61b1e4fbb69e61
82ea5f81bec224fa88a6b83c50481d819586b5de2fbb435d522d24ce1250b6cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.infoplay.tv/start/wp-content/uploads/2017/07/cropped-infoplay_favicon-192x192.png
104.21.32.207200 OK 18 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/uploads/2017/07/cropped-infoplay_favicon-192x192.png
IP 104.21.32.207:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 7359077c49423c15c771fdc285eddc71
c82afb3b6189e3f109b968fb350814642a9a3d36
d0d1655defc26b539defe40a4772c077ebb87ece19f47d486cde3e8b168a3c45
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/uploads/2017/07/cropped-infoplay_favicon-192x192.png HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:38 GMT
Content-Type: image/png
Content-Length: 18195
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:35 GMT
ETag: "418b2-4713-5668d9852c40d"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1T7GFCeysuyHo5rFnRNDA00Z8Y1x8UTVKufQzOLNEnJfqJ%2BO1HPMJQyg%2FrinxZSSqwmJpG%2FvxkrgHz%2Fbw139%2F2cs2BrBQf%2BWNHtfuj3jl0IXepABh9tJZFJFgCqpZrzzul4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda55c3c5cb524-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash ff476bde43022243f6c3f9dddd9360d3
7862bf4ba04f1218f10f85bbddbe2a11aeeeece6
6e8b017b6722c1f95b920e14876ef42e2a38556bbad3b9f4b1b1879634ced74a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-104895703-1&cid=349714701.1679479843&jid=898477169&gjid=1449256437&_gid=683808068.1679479843&_u=IEBAAEAAAAAAACAAI~&z=1492157597
64.233.162.154200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-104895703-1&cid=349714701.1679479843&jid=898477169&gjid=1449256437&_gid=683808068.1679479843&_u=IEBAAEAAAAAAACAAI~&z=1492157597
IP 64.233.162.154:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-104895703-1&cid=349714701.1679479843&jid=898477169&gjid=1449256437&_gid=683808068.1679479843&_u=IEBAAEAAAAAAACAAI~&z=1492157597 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.infoplay.tv
Connection: keep-alive
Referer: http://www.infoplay.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.infoplay.tv
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 22 Mar 2023 10:10:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash ff476bde43022243f6c3f9dddd9360d3
7862bf4ba04f1218f10f85bbddbe2a11aeeeece6
6e8b017b6722c1f95b920e14876ef42e2a38556bbad3b9f4b1b1879634ced74a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 10:10:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.infoplay.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 17 Mar 2023 02:06:11 GMT
expires: Sat, 16 Mar 2024 02:06:11 GMT
cache-control: public, max-age=31536000
age: 461072
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dd98384-60d9-42a6-b5f1-eaad9ae4a705.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dd98384-60d9-42a6-b5f1-eaad9ae4a705.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c7bec9da082108d1d2229b92a525707
7cc176d48fe8f315713a466fdc5ca1a7779947e3
c2f882dbd21a0cb1815b0defc9415317ad0007f4d30de6ece6a927f670ef1a3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dd98384-60d9-42a6-b5f1-eaad9ae4a705.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9643
x-amzn-requestid: d51fabf3-6dab-4cbd-a496-2533f197fa2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJptRFX1oAMFdsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2321-28422e2f0f9470bd348ea7ea;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:29 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Nk-E2rtgs61BJCIBxmHa0CDV3UfWqR-tI0T4L_VuzTgC6fhYy_jZlw==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:59:57 GMT
age: 43846
etag: "7cc176d48fe8f315713a466fdc5ca1a7779947e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.infoplay.tv/start/wp-content/uploads/2018/01/Flajer-A5-INFOPLAY-RGB.jpg
104.21.32.207200 OK 464 kB URL HTTP/1.1 www.infoplay.tv/start/wp-content/uploads/2018/01/Flajer-A5-INFOPLAY-RGB.jpg
IP 104.21.32.207:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1772, bps=0, PhotometricIntepretation=CMYK, orientation=upper-left, width=2504], baseline, precision 8, 1200x849, components 3\012- data
Size 464 kB (464343 bytes)
Hash b6a6350ed28f68263389a8318fbb2199
e1954d7c24bb3786c0ac545a5c90f6d48b9cc26e
a253a77a08ed86fca74f94548ef8e4a25e5e25a672f1fb753b3f70981ccb58ec
Analyzer Verdict Alert quad9 Sinkholed
GET /start/wp-content/uploads/2018/01/Flajer-A5-INFOPLAY-RGB.jpg HTTP/1.1
Host: www.infoplay.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.infoplay.tv/start/
Cookie: time=3/22/2023, 10:10:36 AM; _ga=GA1.2.349714701.1679479843; _gid=GA1.2.683808068.1679479843; _gat=1; cp-impression-added-forcp_id_94066=true
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 10:10:43 GMT
Content-Type: image/jpeg
Content-Length: 464343
Connection: keep-alive
Last-Modified: Sun, 04 Mar 2018 03:13:35 GMT
ETag: "4183f-715d7-5668d984d45cd"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ESjtVXKzhZQY5MkeNxIbAjbM1YG7q5dYSDznEhlJIcF1%2Byp4qN%2B30QwfQBDD9pYcqeXsIbuwAiod%2F40N24yzH%2BgcDvW6m7TlzhSZdW%2BBcUyqqNt05TaDg0htYarHLHDTXE4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abda57cfe04069b-OSL
alt-svc: h2=":443"; ma=60
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800&ver=4.8.21
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800&ver=4.8.21
IP 216.58.207.202:0
GET /css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800&ver=4.8.21 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.infoplay.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 22 Mar 2023 10:10:37 GMT
date: Wed, 22 Mar 2023 10:10:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Droid+Serif%3A400%2C700&ver=4.8.21
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Droid+Serif%3A400%2C700&ver=4.8.21
IP 216.58.207.202:0
GET /css?family=Droid+Serif%3A400%2C700&ver=4.8.21 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.infoplay.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 22 Mar 2023 10:10:37 GMT
date: Wed, 22 Mar 2023 10:10:37 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=4.8.21
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=4.8.21
IP 216.58.207.202:0
GET /css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=4.8.21 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.infoplay.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 22 Mar 2023 10:10:37 GMT
date: Wed, 22 Mar 2023 10:10:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic|Roboto+Slab:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic|Roboto+Slab:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic
IP 216.58.207.202:0
GET /css?family=Roboto:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic|Roboto+Slab:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.infoplay.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 22 Mar 2023 10:10:37 GMT
date: Wed, 22 Mar 2023 10:10:37 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=ABeeZee|Abel|Abril+Fatface|Aguafina+Script|Aladin|Alegreya+SC|Alegreya+Sans|Alex+Brush|Alfa+Slab+One|Alice|Amarante|Amatic+SC|Amita|Architects+Daughter|Arizonia|Arvo|Average+Sans|Bad+Script|Berkshire+Swash|Bevan|Bigshot+One|Bitter|Black+Ops+One|Bowlby+One|Cabin|Cabin+Condensed|Cabin+Sketch|Cherry+Cream+Soda|Codystar|Coming+Soon|Cookie|Cutive+Mono|Duru+Sans|Emilys+Candy|Fjalla+One|Freckle+Face|Fredericka+the+Great|Gabriela|Grand+Hotel|Great+Vibes|Habibi|Happy+Monkey|Julius+Sans+One|Just+Another+Hand|Kaushan+Script|Lato|Libre+Baskerville|Lobster|Lobster+Two|Londrina+Sketch|Maven+Pro|Montserrat|Neuton|Open+Sans|Oregano|Oswald|Pacifico|Plaster|Playball|Pontano+Sans|Quicksand|Raleway|Roboto|Roboto+Condensed|Roboto+Mono|Roboto+Slab|Sacramento|Source+Sans+Pro|Tenor+Sans|Varela+Round|Lato|Open%20Sans|Libre%20Baskerville|Montserrat|Neuton|Raleway|Roboto|Sacramento|Varela%20Round|Pacifico|Bitter
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=ABeeZee|Abel|Abril+Fatface|Aguafina+Script|Aladin|Alegreya+SC|Alegreya+Sans|Alex+Brush|Alfa+Slab+One|Alice|Amarante|Amatic+SC|Amita|Architects+Daughter|Arizonia|Arvo|Average+Sans|Bad+Script|Berkshire+Swash|Bevan|Bigshot+One|Bitter|Black+Ops+One|Bowlby+One|Cabin|Cabin+Condensed|Cabin+Sketch|Cherry+Cream+Soda|Codystar|Coming+Soon|Cookie|Cutive+Mono|Duru+Sans|Emilys+Candy|Fjalla+One|Freckle+Face|Fredericka+the+Great|Gabriela|Grand+Hotel|Great+Vibes|Habibi|Happy+Monkey|Julius+Sans+One|Just+Another+Hand|Kaushan+Script|Lato|Libre+Baskerville|Lobster|Lobster+Two|Londrina+Sketch|Maven+Pro|Montserrat|Neuton|Open+Sans|Oregano|Oswald|Pacifico|Plaster|Playball|Pontano+Sans|Quicksand|Raleway|Roboto|Roboto+Condensed|Roboto+Mono|Roboto+Slab|Sacramento|Source+Sans+Pro|Tenor+Sans|Varela+Round|Lato|Open%20Sans|Libre%20Baskerville|Montserrat|Neuton|Raleway|Roboto|Sacramento|Varela%20Round|Pacifico|Bitter
IP 216.58.207.202:0
GET /css?family=ABeeZee|Abel|Abril+Fatface|Aguafina+Script|Aladin|Alegreya+SC|Alegreya+Sans|Alex+Brush|Alfa+Slab+One|Alice|Amarante|Amatic+SC|Amita|Architects+Daughter|Arizonia|Arvo|Average+Sans|Bad+Script|Berkshire+Swash|Bevan|Bigshot+One|Bitter|Black+Ops+One|Bowlby+One|Cabin|Cabin+Condensed|Cabin+Sketch|Cherry+Cream+Soda|Codystar|Coming+Soon|Cookie|Cutive+Mono|Duru+Sans|Emilys+Candy|Fjalla+One|Freckle+Face|Fredericka+the+Great|Gabriela|Grand+Hotel|Great+Vibes|Habibi|Happy+Monkey|Julius+Sans+One|Just+Another+Hand|Kaushan+Script|Lato|Libre+Baskerville|Lobster|Lobster+Two|Londrina+Sketch|Maven+Pro|Montserrat|Neuton|Open+Sans|Oregano|Oswald|Pacifico|Plaster|Playball|Pontano+Sans|Quicksand|Raleway|Roboto|Roboto+Condensed|Roboto+Mono|Roboto+Slab|Sacramento|Source+Sans+Pro|Tenor+Sans|Varela+Round|Lato|Open%20Sans|Libre%20Baskerville|Montserrat|Neuton|Raleway|Roboto|Sacramento|Varela%20Round|Pacifico|Bitter HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.infoplay.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 22 Mar 2023 10:10:37 GMT
date: Wed, 22 Mar 2023 10:10:37 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2