Report - maintdesigns.com/

Report Overview

Submitted URL
maintdesigns.com/
IP
209.182.199.172
ASN
#54641 IMH-IAD
Submitted
2022-12-04 12:43:24
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
174

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	4.2 kB	142.250.74.131
maintdesigns.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	25 kB	4.8 MB	209.182.199.172
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.33.119.27
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.149.149.164
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	155 kB	216.58.207.227
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	61 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	595 B	3.3 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-04	medium	maintdesigns.com/	Phishing
2022-12-04	medium	maintdesigns.com/	Phishing
2022-12-04	medium	maintdesigns.com/plugins/revolution/js/jquery.themepunch.revolution.min.js	Phishing
2022-12-04	medium	maintdesigns.com/plugins/revolution/js/jquery.themepunch.tools.min.js	Phishing
2022-12-04	medium	maintdesigns.com/js/bootstrap.min.js	Phishing
2022-12-04	medium	maintdesigns.com/js/jquery.js	Phishing
2022-12-04	medium	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.actions.min.js	Phishing
2022-12-04	medium	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.carousel.min.js	Phishing
2022-12-04	medium	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.layeranimation.min.js	Phishing
2022-12-04	medium	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.kenburn.min.js	Phishing
2022-12-04	medium	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.migration.min.js	Phishing
2022-12-04	medium	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.navigation.min.js	Phishing
2022-12-04	medium	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.parallax.min.js	Phishing
2022-12-04	medium	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.slideanims.min.js	Phishing
2022-12-04	medium	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.video.min.js	Phishing
2022-12-04	medium	maintdesigns.com/js/main-slider-script.js	Phishing
2022-12-04	medium	maintdesigns.com/js/owl.js	Phishing
2022-12-04	medium	maintdesigns.com/js/wow.js	Phishing
2022-12-04	medium	maintdesigns.com/js/appear.js	Phishing
2022-12-04	medium	maintdesigns.com/js/script.js	Phishing
2022-12-04	medium	maintdesigns.com/js/color-settings.js	Phishing
2022-12-04	medium	maintdesigns.com/js/jquery.fancybox.js	Phishing
2022-12-04	medium	maintdesigns.com/fonts/flaticon.woff	Phishing
2022-12-04	medium	maintdesigns.com/fonts/fontawesome-webfont914c.woff2?v=4.6.1	Phishing
2022-12-04	medium	maintdesigns.com/images/icons/preloader.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed
2022-12-04	medium	maintdesigns.com	Sinkholed

JavaScript (18)

	URL	Size	First Seen	Last Seen
	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.actions.min.js	8.3 kB	2023-03-07	2024-05-08
Pretty URL maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.actions.min.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:16 Last Seen2024-05-08 14:47:13 Times Seen364 Hash 90131555d6a196c1562a38bf8899bbe8 f50367c2d0c711c703aff1d5550fa947c2ce1f14 9bb2c6711f94d39796fe68fb53fa36d22b02b6b7de3759ea55176149f6023c03 Loading...

	maintdesigns.com/js/main-slider-script.js	6.2 kB	2023-03-08	2023-03-08
Pretty URL maintdesigns.com/js/main-slider-script.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:59:56 Last Seen2023-03-08 15:59:56 Times Seen1 Hash c980ab554e0fe7f4c34329abf6e90129 4e390816e29040ac39f071e343e19aff8478232c 858d6f6d681d8a9c0553b4f1a2b04eee3ed4529450578de7fd88c8058bf91cd3 Loading...

	maintdesigns.com/js/owl.js	85 kB	2023-03-07	2024-05-10
Pretty URL maintdesigns.com/js/owl.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:42 Last Seen2024-05-10 05:47:55 Times Seen1765 Hash 54428880ec8df798ac3d666f5113c7ff 9e43e74b8677f39e87f1b11be4d536c618b14bb3 0402874ff311f284b18af9e4c453ee5bf0916a3b7335f0be52dcb54a1a31338b Loading...

	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.carousel.min.js	7.6 kB	2023-03-07	2024-05-10
Pretty URL maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.carousel.min.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2024-05-10 10:29:45 Times Seen492 Hash 54aac3fc68b283e8ad22894408ae47a2 8164c126f5b57e1ebf04b7440cce2e3aae7e5ba9 6180c6c38c4e3b9ac75b0c51215dcf0d6aa5b62757be3d993df8a28ca17a8820 Loading...

	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.slideanims.min.js	29 kB	2023-03-07	2024-05-08
Pretty URL maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.slideanims.min.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:16 Last Seen2024-05-08 14:47:15 Times Seen653 Hash 8cc105dfeffdc03367dcbe7ea3ef264a 9aa2e656e163d9a3ea622b4897974884583e4cac 80a9123891e91ebbb1c06a2d2c79533155a8f17c51ac09013efa57bc007f303a Loading...

	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.migration.min.js	26 kB	2023-03-07	2024-05-08
Pretty URL maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.migration.min.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:16 Last Seen2024-05-08 14:47:14 Times Seen755 Hash 020c9da0283aebff8fb8ea67e3331868 d192e2e9538833c8f18f279e04cb1801450dd215 6eec26458665f2ff755d8d9d752baf709166660fb8e5389c9fbe939df23ea2f1 Loading...

	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.parallax.min.js	11 kB	2023-03-07	2024-05-08
Pretty URL maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.parallax.min.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:16 Last Seen2024-05-08 14:47:15 Times Seen428 Hash aaf7e95e34f292b1a098887db6cf9ee3 e00d5e9a3dca546921b83d15a0cb7a9261467027 149d1060d155832cca22142423c095866d6b03277f372ebc1967ecdf579a435b Loading...

	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.video.min.js	24 kB	2023-03-07	2024-05-08
Pretty URL maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.video.min.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:53:39 Last Seen2024-05-08 14:47:14 Times Seen188 Hash 02bf3ed4a0eaebfb8eccd78d58acb3c1 d24d3cf3002ad0f2d1aa3d17b9d330e8bb343712 8c31c97858196d93a06ad02300c31b25acbb40b1b6e63c11c77ac6644f0cff01 Loading...

	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.kenburn.min.js	3.8 kB	2023-03-07	2024-05-08
Pretty URL maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.kenburn.min.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:16 Last Seen2024-05-08 14:47:14 Times Seen276 Hash 2384ef0e1aa89244caa1e4821ee50bee 7416c32035abca45b2d02062193d8a1a99b9e028 40d3265afb721403e925443bc7fc2b1acd13150f5bc06f6018669a06a4c59ce4 Loading...

	maintdesigns.com/plugins/revolution/js/jquery.themepunch.tools.min.js	111 kB	2023-03-07	2024-05-10
Pretty URL maintdesigns.com/plugins/revolution/js/jquery.themepunch.tools.min.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:49 Last Seen2024-05-10 09:43:41 Times Seen3377 Hash a748a9e56b2c639013c770506f1fd529 537edd9b364ac005df2d1c57be873945b2fecdf6 6eabb193731278713f4208ea84b8c7334c3dfc98f01cb074778280e1df536e62 Loading...

	maintdesigns.com/js/bootstrap.min.js	37 kB	2023-03-07	2024-05-10
Pretty URL maintdesigns.com/js/bootstrap.min.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-05-10 15:57:57 Times Seen55695 Hash 5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef Loading...

	maintdesigns.com/js/wow.js	6.3 kB	2023-03-07	2024-05-10
Pretty URL maintdesigns.com/js/wow.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:41 Last Seen2024-05-10 11:49:25 Times Seen2058 Hash 11ac4d7173a68c50169addca2ef1b827 621284d032a248c41753e995680fc30089bd374c dd90fdb6538987fe7975bd43803b1c7d8d62912a371c788caec32d016e09dca8 Loading...

	maintdesigns.com/js/script.js	14 kB	2023-03-08	2023-03-08
Pretty URL maintdesigns.com/js/script.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:50:38 Last Seen2023-03-08 15:59:56 Times Seen1 Hash 618d6d84a9dbe08265adaff1823589a7 18b45efbbdc7a339981885d7eb9708c2eacf5298 638ec9f35ba027035d47e3a57bf8fa6ea620e298b40bd8a42bbd7ed0114394f8 Loading...

	unknown	0 B	2023-03-07	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-10 16:10:03 Times Seen37510967 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	maintdesigns.com/js/appear.js	4.4 kB	2023-03-07	2024-05-10
Pretty URL maintdesigns.com/js/appear.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:41 Last Seen2024-05-10 11:49:25 Times Seen1869 Hash 5a457d262e3c32d25c003ca412ee7fe6 b08e23c986259073419a7068fcd36296a91b1ae4 46fb2235bcf84086a9b939ae509ecacc01bb31c68ba94e6473e31d8adebec3eb Loading...

	maintdesigns.com/js/color-settings.js	514 B	2023-03-07	2024-01-07
Pretty URL maintdesigns.com/js/color-settings.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:19 Last Seen2024-01-07 03:30:10 Times Seen25 Hash 31e3e13f1589cdc719e253c57372f18f 9a1eaa29faefb2d99fd1041b3aa9c869ca942d4c 5cceab7daef92d7f650807f1068e3afc9e67850b87832e45e72a3c6c1e9390ed Loading...

	maintdesigns.com/js/jquery.js	97 kB	2023-03-07	2024-05-10
Pretty URL maintdesigns.com/js/jquery.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12:12 Last Seen2024-05-10 14:55:53 Times Seen2326 Hash 618538b4ab9639d444e962729a927f15 dacc1f76630a9708add066819b1aabf8dce01056 27d92130c0321dad5a03760fd5ac98a3d04ed4c94d88418fe6d50da1f7fc5cbe Loading...

	maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.layeranimation.min.js	56 kB	2023-03-07	2024-05-08
Pretty URL maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.layeranimation.min.js IP 209.182.199.172 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:16 Last Seen2024-05-08 14:47:14 Times Seen603 Hash c8447797a143c1450fc568df80d84644 5a53d554a8bb9ed2806ca5c334908b23c9ad4bb0 6867ff7eec8e29d555e5bfcadc9e19f04d1e3a34de99255647f9ca573536b7ef Loading...

HTTP Transactions (92)

URL IP Response Size

maintdesigns.com/

209.182.199.172

301 Moved Permanently

233 B

URL HTTP/1.1
maintdesigns.com/
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
233 B (233 bytes)
Hash
1814127f55a7dee48b19b32d8c4d3211
ec9320d4e0b8c2bfd613f55be47ef0f160bd36a3
ef3481238c918aaa102a3b9849c80a4d75de87f24b26817199894c3a2cf1839a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sun, 04 Dec 2022 12:43:11 GMT
Server: Apache
Location: https://maintdesigns.com/
Content-Length: 233
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5220
Expires: Sun, 04 Dec 2022 14:10:12 GMT
Date: Sun, 04 Dec 2022 12:43:12 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6086
Cache-Control: max-age=170971
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 12:43:12 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 12:12:43 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6311
Expires: Sun, 04 Dec 2022 14:28:23 GMT
Date: Sun, 04 Dec 2022 12:43:12 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 12:20:07 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1385
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Qy7pe8J1pg6vDAWBkURNPHrh3vQ2m5YxcyX2/i8vXgt+iMFAhhKM4/l1ZSZX48NM4Lpgcbxlby8=
x-amz-request-id: S4GXYH2RKFZN9JMD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 11:47:32 GMT
age: 3340
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 12:43:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 12:08:58 GMT
cache-control: public,max-age=3600
age: 2054
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

maintdesigns.com/

209.182.199.172

200 OK

54 kB

URL HTTP/1.1
maintdesigns.com/
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2039), with CRLF line terminators
Size
54 kB (54116 bytes)
Hash
0902406d12056d54f6556a8a757521cf
10835f6f53301824c7a2af20f6b76b0e206c2a94
447d2b835644b40a954812d3fa33a45cdd97908242e6b3147719f10e98e99e7f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:12 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6054
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 12:43:12 GMT
Etag: "638b11ab-1d7"
Last-Modified: Sun, 04 Dec 2022 11:02:18 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

maintdesigns.com/css/bootstrap.css

209.182.199.172

200 OK

121 kB

URL HTTP/1.1
maintdesigns.com/css/bootstrap.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (65371)
Size
121 kB (121204 bytes)
Hash
f9eb120216b82dc985ae4ab5c1199506
6b5e9579bd04f6970878bda6c3df1e202eacbcfd
225162601e3c34983338a7a8a51618c7f4b34478563be87dae04a12e636c353c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/bootstrap.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:12 GMT
Server: Apache
Last-Modified: Tue, 26 Jul 2016 04:53:28 GMT
Accept-Ranges: bytes
Content-Length: 121204
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/css/color-switcher-design.css

209.182.199.172

200 OK

3.1 kB

URL HTTP/1.1
maintdesigns.com/css/color-switcher-design.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with CRLF line terminators
Size
3.1 kB (3056 bytes)
Hash
2ae6dff466865ed6fd45de0b7f766e93
1f513e03e6f9c01615687adeb493a966ec8d850d
e9c937320a9e7191b38c0d1f9458561de5e2046f92d264118736833699925b8c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/color-switcher-design.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 00:55:18 GMT
Accept-Ranges: bytes
Content-Length: 3056
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/plugins/revolution/css/settings.css

209.182.199.172

200 OK

30 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/css/settings.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (29702), with CRLF line terminators
Size
30 kB (30073 bytes)
Hash
b383572083cc0393e823910bf4edd4d5
1a0f9c7317a6aba6c73d71de91518efd69598429
c892a032973583a8e50b3a898671237c0971596cb7bddcdd0f8dd1e1c70f8572

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/css/settings.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:12 GMT
Server: Apache
Last-Modified: Sun, 31 May 2020 18:41:22 GMT
Accept-Ranges: bytes
Content-Length: 30073
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/css/responsive.css

209.182.199.172

200 OK

26 kB

URL HTTP/1.1
maintdesigns.com/css/responsive.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with CRLF line terminators
Size
26 kB (25594 bytes)
Hash
13d7442178f632b346308cb2c4aefb19
883b9838de3f6d1b45a8dc24df2dd3b44a03cd36
a1f2d09c24aab6e693d22db8b8c4a3f8fe986f88dd229e05bd2e951b578689d9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/responsive.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:12 GMT
Server: Apache
Last-Modified: Sun, 31 May 2020 18:44:53 GMT
Accept-Ranges: bytes
Content-Length: 25594
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

push.services.mozilla.com/

54.149.149.164

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.149.164:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mgSSc0Uu99fPKahgPAYaHg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ne6QCz8TAhAAXwbSIIpPZuqZnsI=

maintdesigns.com/plugins/revolution/css/navigation.css

209.182.199.172

200 OK

60 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/css/navigation.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text
Size
60 kB (59576 bytes)
Hash
c8f8666090883e07c43c886896157556
0a8f9fe0f46c959954bd69173062d8b042a2db70
c9c5f901eeef711f631164c4cd4108b433cf07adfa16cf1d544bc6f8505bf128

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/css/navigation.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:12 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:16 GMT
Accept-Ranges: bytes
Content-Length: 59576
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/css/color-themes/default-theme.css

209.182.199.172

200 OK

8.1 kB

URL HTTP/1.1
maintdesigns.com/css/color-themes/default-theme.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with CRLF line terminators
Size
8.1 kB (8072 bytes)
Hash
2c36b13d48a127532bed9d75cbe35d3b
f8959e93c7323fe7e04e149e58d1ddc4bb23acb8
83831586b4998d3277f702d2b2d863413f024f8fe87c223a7d0d09393c1018fc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/color-themes/default-theme.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 18:03:54 GMT
Accept-Ranges: bytes
Content-Length: 8072
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/plugins/revolution/js/jquery.themepunch.revolution.min.js

209.182.199.172

200 OK

65 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/js/jquery.themepunch.revolution.min.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (64561), with CRLF line terminators
Size
65 kB (64896 bytes)
Hash
edd0a8f07cc892d86518ad62642dcab0
e8ddc925c3ebaa77f120932e1acf3b680e84df51
5bf19de4a1e69b7b3cce947da22702f074c0963192bf9eb3ea9210ac07c52f67

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:16 GMT
Accept-Ranges: bytes
Content-Length: 64896
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/plugins/revolution/js/jquery.themepunch.tools.min.js

209.182.199.172

200 OK

111 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/js/jquery.themepunch.tools.min.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (27287), with CRLF line terminators
Size
111 kB (110563 bytes)
Hash
a748a9e56b2c639013c770506f1fd529
537edd9b364ac005df2d1c57be873945b2fecdf6
6eabb193731278713f4208ea84b8c7334c3dfc98f01cb074778280e1df536e62

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/js/jquery.themepunch.tools.min.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:16 GMT
Accept-Ranges: bytes
Content-Length: 110563
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/js/bootstrap.min.js

209.182.199.172

200 OK

37 kB

URL HTTP/1.1
maintdesigns.com/js/bootstrap.min.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (32033)
Size
37 kB (37045 bytes)
Hash
5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/bootstrap.min.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Tue, 26 Jul 2016 04:53:30 GMT
Accept-Ranges: bytes
Content-Length: 37045
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/js/jquery.js

209.182.199.172

200 OK

97 kB

URL HTTP/1.1
maintdesigns.com/js/jquery.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (32077), with CRLF line terminators
Size
97 kB (97168 bytes)
Hash
618538b4ab9639d444e962729a927f15
dacc1f76630a9708add066819b1aabf8dce01056
27d92130c0321dad5a03760fd5ac98a3d04ed4c94d88418fe6d50da1f7fc5cbe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/jquery.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Wed, 05 Oct 2016 09:44:00 GMT
Accept-Ranges: bytes
Content-Length: 97168
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.actions.min.js

209.182.199.172

200 OK

8.3 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.actions.min.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (8049), with CRLF line terminators
Size
8.3 kB (8287 bytes)
Hash
90131555d6a196c1562a38bf8899bbe8
f50367c2d0c711c703aff1d5550fa947c2ce1f14
9bb2c6711f94d39796fe68fb53fa36d22b02b6b7de3759ea55176149f6023c03

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/js/extensions/revolution.extension.actions.min.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:18 GMT
Accept-Ranges: bytes
Content-Length: 8287
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.carousel.min.js

209.182.199.172

200 OK

7.6 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.carousel.min.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (7370), with CRLF line terminators
Size
7.6 kB (7607 bytes)
Hash
54aac3fc68b283e8ad22894408ae47a2
8164c126f5b57e1ebf04b7440cce2e3aae7e5ba9
6180c6c38c4e3b9ac75b0c51215dcf0d6aa5b62757be3d993df8a28ca17a8820

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/js/extensions/revolution.extension.carousel.min.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:18 GMT
Accept-Ranges: bytes
Content-Length: 7607
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.layeranimation.min.js

209.182.199.172

200 OK

56 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.layeranimation.min.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (55747), with CRLF line terminators
Size
56 kB (56000 bytes)
Hash
c8447797a143c1450fc568df80d84644
5a53d554a8bb9ed2806ca5c334908b23c9ad4bb0
6867ff7eec8e29d555e5bfcadc9e19f04d1e3a34de99255647f9ca573536b7ef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/js/extensions/revolution.extension.layeranimation.min.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:18 GMT
Accept-Ranges: bytes
Content-Length: 56000
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.kenburn.min.js

209.182.199.172

200 OK

3.8 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.kenburn.min.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (3515), with CRLF line terminators
Size
3.8 kB (3754 bytes)
Hash
2384ef0e1aa89244caa1e4821ee50bee
7416c32035abca45b2d02062193d8a1a99b9e028
40d3265afb721403e925443bc7fc2b1acd13150f5bc06f6018669a06a4c59ce4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/js/extensions/revolution.extension.kenburn.min.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:18 GMT
Accept-Ranges: bytes
Content-Length: 3754
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/css/style.css

209.182.199.172

200 OK

168 kB

URL HTTP/1.1
maintdesigns.com/css/style.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with CRLF line terminators
Size
168 kB (168184 bytes)
Hash
f3cab0fb034144fb94fb60d96a9e7507
0e5492e62e5c27ae5d1be6bb80c17cd4b37fbb6e
6288cd14c7ce3a84d3367e685c1a0c139a67a0390fc4b50b674466017cea9811

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/style.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:12 GMT
Server: Apache
Last-Modified: Thu, 21 May 2020 12:23:06 GMT
Accept-Ranges: bytes
Content-Length: 168184
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.migration.min.js

209.182.199.172

200 OK

26 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.migration.min.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (25862), with CRLF line terminators
Size
26 kB (26101 bytes)
Hash
020c9da0283aebff8fb8ea67e3331868
d192e2e9538833c8f18f279e04cb1801450dd215
6eec26458665f2ff755d8d9d752baf709166660fb8e5389c9fbe939df23ea2f1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/js/extensions/revolution.extension.migration.min.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:18 GMT
Accept-Ranges: bytes
Content-Length: 26101
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.navigation.min.js

209.182.199.172

200 OK

26 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.navigation.min.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (25862), with CRLF line terminators
Size
26 kB (26101 bytes)
Hash
020c9da0283aebff8fb8ea67e3331868
d192e2e9538833c8f18f279e04cb1801450dd215
6eec26458665f2ff755d8d9d752baf709166660fb8e5389c9fbe939df23ea2f1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/js/extensions/revolution.extension.navigation.min.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:18 GMT
Accept-Ranges: bytes
Content-Length: 26101
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.parallax.min.js

209.182.199.172

200 OK

11 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.parallax.min.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (10692), with CRLF line terminators
Size
11 kB (10931 bytes)
Hash
aaf7e95e34f292b1a098887db6cf9ee3
e00d5e9a3dca546921b83d15a0cb7a9261467027
149d1060d155832cca22142423c095866d6b03277f372ebc1967ecdf579a435b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/js/extensions/revolution.extension.parallax.min.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:18 GMT
Accept-Ranges: bytes
Content-Length: 10931
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.slideanims.min.js

209.182.199.172

200 OK

29 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.slideanims.min.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (29149), with CRLF line terminators
Size
29 kB (29401 bytes)
Hash
8cc105dfeffdc03367dcbe7ea3ef264a
9aa2e656e163d9a3ea622b4897974884583e4cac
80a9123891e91ebbb1c06a2d2c79533155a8f17c51ac09013efa57bc007f303a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/js/extensions/revolution.extension.slideanims.min.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:18 GMT
Accept-Ranges: bytes
Content-Length: 29401
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 12:43:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.video.min.js

209.182.199.172

200 OK

24 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/js/extensions/revolution.extension.video.min.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (23965), with CRLF line terminators
Size
24 kB (24211 bytes)
Hash
02bf3ed4a0eaebfb8eccd78d58acb3c1
d24d3cf3002ad0f2d1aa3d17b9d330e8bb343712
8c31c97858196d93a06ad02300c31b25acbb40b1b6e63c11c77ac6644f0cff01

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/js/extensions/revolution.extension.video.min.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:18 GMT
Accept-Ranges: bytes
Content-Length: 24211
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/js/main-slider-script.js

209.182.199.172

200 OK

6.2 kB

URL HTTP/1.1
maintdesigns.com/js/main-slider-script.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with CRLF line terminators
Size
6.2 kB (6197 bytes)
Hash
c980ab554e0fe7f4c34329abf6e90129
4e390816e29040ac39f071e343e19aff8478232c
858d6f6d681d8a9c0553b4f1a2b04eee3ed4529450578de7fd88c8058bf91cd3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/main-slider-script.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Thu, 01 Feb 2018 00:05:10 GMT
Accept-Ranges: bytes
Content-Length: 6197
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/js/owl.js

209.182.199.172

200 OK

85 kB

URL HTTP/1.1
maintdesigns.com/js/owl.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (360)
Size
85 kB (85303 bytes)
Hash
54428880ec8df798ac3d666f5113c7ff
9e43e74b8677f39e87f1b11be4d536c618b14bb3
0402874ff311f284b18af9e4c453ee5bf0916a3b7335f0be52dcb54a1a31338b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/owl.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2016 02:16:22 GMT
Accept-Ranges: bytes
Content-Length: 85303
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

fonts.googleapis.com/css?family=Lora:400,400i,700,700i|Montserrat:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i|Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i|Playfair+Display:400,400i,700,700i,900,900i

142.250.74.106

200 OK

2.6 kB

URL HTTP/2
fonts.googleapis.com/css?family=Lora:400,400i,700,700i|Montserrat:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i|Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i|Playfair+Display:400,400i,700,700i,900,900i
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
2.6 kB (2565 bytes)
Hash
cbd54c8641a5f198ded53223301cc40a
81b8e252de3b15b402340699bab4ad6068204af7
d4cb877f26254c2796519b6b3e43800e47cb11d1848385ccc5b078a958f1c585

HTTP Headers

GET /css?family=Lora:400,400i,700,700i|Montserrat:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i|Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i|Playfair+Display:400,400i,700,700i,900,900i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Dec 2022 12:43:13 GMT
date: Sun, 04 Dec 2022 12:43:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maintdesigns.com/js/wow.js

209.182.199.172

200 OK

6.3 kB

URL HTTP/1.1
maintdesigns.com/js/wow.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (6269), with CRLF line terminators
Size
6.3 kB (6300 bytes)
Hash
11ac4d7173a68c50169addca2ef1b827
621284d032a248c41753e995680fc30089bd374c
dd90fdb6538987fe7975bd43803b1c7d8d62912a371c788caec32d016e09dca8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/wow.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Sun, 17 May 2015 11:30:06 GMT
Accept-Ranges: bytes
Content-Length: 6300
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/js/appear.js

209.182.199.172

200 OK

4.4 kB

URL HTTP/1.1
maintdesigns.com/js/appear.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with CRLF line terminators
Size
4.4 kB (4379 bytes)
Hash
5a457d262e3c32d25c003ca412ee7fe6
b08e23c986259073419a7068fcd36296a91b1ae4
46fb2235bcf84086a9b939ae509ecacc01bb31c68ba94e6473e31d8adebec3eb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/appear.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 09 Feb 2015 08:56:36 GMT
Accept-Ranges: bytes
Content-Length: 4379
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/js/script.js

209.182.199.172

200 OK

14 kB

URL HTTP/1.1
maintdesigns.com/js/script.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (442), with CRLF line terminators
Size
14 kB (14068 bytes)
Hash
618d6d84a9dbe08265adaff1823589a7
18b45efbbdc7a339981885d7eb9708c2eacf5298
638ec9f35ba027035d47e3a57bf8fa6ea620e298b40bd8a42bbd7ed0114394f8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/script.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Thu, 01 Feb 2018 00:37:12 GMT
Accept-Ranges: bytes
Content-Length: 14068
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/js/color-settings.js

209.182.199.172

200 OK

514 B

URL HTTP/1.1
maintdesigns.com/js/color-settings.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with CRLF line terminators
Size
514 B (514 bytes)
Hash
31e3e13f1589cdc719e253c57372f18f
9a1eaa29faefb2d99fd1041b3aa9c869ca942d4c
5cceab7daef92d7f650807f1068e3afc9e67850b87832e45e72a3c6c1e9390ed

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/color-settings.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Tue, 13 Jun 2017 04:50:44 GMT
Accept-Ranges: bytes
Content-Length: 514
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/js/jquery.fancybox.js

209.182.199.172

200 OK

154 kB

URL HTTP/1.1
maintdesigns.com/js/jquery.fancybox.js
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
Unicode text, UTF-8 text
Size
154 kB (154104 bytes)
Hash
6e11711058a9459a94d5a19b26a78135
76792d5913afe035b6ccbac585b0b5e70b33aa76
7b99eee1db728472aaa8452017a0d755f488e8d647cc0f62baf45f8ff65b95ba

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/jquery.fancybox.js HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Tue, 28 Nov 2017 12:38:18 GMT
Accept-Ranges: bytes
Content-Length: 154104
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

maintdesigns.com/css/font-awesome.css

209.182.199.172

200 OK

37 kB

URL HTTP/1.1
maintdesigns.com/css/font-awesome.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
troff or preprocessor input, ASCII text, with very long lines (392), with CRLF line terminators
Size
37 kB (37040 bytes)
Hash
fbf46ccf9982509179995beca108839a
2c96728676aa0b884f5e289e6275446b7bab2861
9e7bf26a43adf6378896f379ddb18917c64280a711eaba127f7aaeef8bdb8277

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/font-awesome.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Sun, 28 Aug 2016 11:22:54 GMT
Accept-Ranges: bytes
Content-Length: 37040
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/css/animate.css

209.182.199.172

200 OK

79 kB

URL HTTP/1.1
maintdesigns.com/css/animate.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with CRLF line terminators
Size
79 kB (79169 bytes)
Hash
57fb9e2cfb317959f7824f4fbe950dbe
378aaa5cd626d05d5a45f21a5629bbb5c09bf534
75a917eda5c7d388adaa10a684b5468d51dd043ed1c517bec76b4ae0a6a4995d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/animate.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Fri, 08 Apr 2016 09:36:48 GMT
Accept-Ranges: bytes
Content-Length: 79169
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/css/hover.css

209.182.199.172

200 OK

133 kB

URL HTTP/1.1
maintdesigns.com/css/hover.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with CRLF line terminators
Size
133 kB (132601 bytes)
Hash
8caf7b60470c36c1f1f4038eed4af6ef
52bbfe22f9eb161156eb0c71362d75968153a903
2ccbbea25b06596a234bcb2ff5b95b8a72fe806ec160e8390776fe71f5cbec30

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/hover.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Mon, 09 Mar 2015 13:40:08 GMT
Accept-Ranges: bytes
Content-Length: 132601
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/css/owl.css

209.182.199.172

200 OK

4.1 kB

URL HTTP/1.1
maintdesigns.com/css/owl.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text
Size
4.1 kB (4113 bytes)
Hash
8cce5cff1cf4c0f193725107333e74b9
bb8769505395bb8d99650037d12777e38d458b1e
5e6e6883ff303e60d4090e48582e918dd5849170df78b30fbf7f30015a47ace8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/owl.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2016 02:16:22 GMT
Accept-Ranges: bytes
Content-Length: 4113
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/css/jquery-ui.css

209.182.199.172

200 OK

37 kB

URL HTTP/1.1
maintdesigns.com/css/jquery-ui.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (2363), with CRLF line terminators
Size
37 kB (37294 bytes)
Hash
5ff1fedb0058e2bbbd98c00f9326606e
a0e930935e14867f78660e9c4e287861c740f42c
9337888b70fbe1dc8b120a6cc0652b68da7a25429d62ee4be66ae0d4aafd01ce

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/jquery-ui.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Sat, 27 May 2017 01:14:36 GMT
Accept-Ranges: bytes
Content-Length: 37294
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/css/jquery.bootstrap-touchspin.css

209.182.199.172

200 OK

772 B

URL HTTP/1.1
maintdesigns.com/css/jquery.bootstrap-touchspin.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text
Size
772 B (772 bytes)
Hash
c82a1dde47ad0956ce4a8a71761cc87e
2b59a1bc66421246f642c1b866a4fea07210075b
ea40d450aba1b968363c725912b035222155046a64acc60f14829a3e53e2006c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/jquery.bootstrap-touchspin.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Sat, 13 Feb 2016 02:41:28 GMT
Accept-Ranges: bytes
Content-Length: 772
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/css/jquery.fancybox.min.css

209.182.199.172

200 OK

14 kB

URL HTTP/1.1
maintdesigns.com/css/jquery.fancybox.min.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
Unicode text, UTF-8 text, with very long lines (13734), with no line terminators
Size
14 kB (13735 bytes)
Hash
35d290afd71a6053d8195ea13170b4e9
a64676403bb5c23f9800963b0b8f0475b532601f
e467f75601e845da217ae845b688b227a19fbf1e8fc776a42a4905869496d2e2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/jquery.fancybox.min.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Tue, 28 Nov 2017 12:38:18 GMT
Accept-Ranges: bytes
Content-Length: 13735
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/css/jquery.mCustomScrollbar.min.css

209.182.199.172

200 OK

43 kB

URL HTTP/1.1
maintdesigns.com/css/jquery.mCustomScrollbar.min.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (42893), with no line terminators
Size
43 kB (42893 bytes)
Hash
68a8399b13ef55b1ea2885c57066a6a0
a657db5ca7dc6c89723b3c12d4a9d25091054700
cac7b3d0d97b8ba88e0d79ea85b4aef23130641a2e0dd8cb3bfb80e16484aaae

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/jquery.mCustomScrollbar.min.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Wed, 17 Jan 2018 01:35:28 GMT
Accept-Ranges: bytes
Content-Length: 42893
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css

maintdesigns.com/Admin/upload/1eco%20(4).jpg

209.182.199.172

200 OK

91 kB

URL HTTP/1.1
maintdesigns.com/Admin/upload/1eco%20(4).jpg
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=810, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], baseline, precision 8, 670x420, components 3\012- data
Size
91 kB (91419 bytes)
Hash
9e9fffc6de2e0633233ce33618ebd5cc
a6b7a26e7f869cacf980fca0728da22e56927a6b
a05f35a106d6039f021ed0383c64584d51a8ff914114e7c65860e5a91e7d2a7d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /Admin/upload/1eco%20(4).jpg HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Wed, 27 May 2020 15:17:37 GMT
Accept-Ranges: bytes
Content-Length: 91419
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

maintdesigns.com/images/clients/2.png

209.182.199.172

200 OK

12 kB

URL HTTP/1.1
maintdesigns.com/images/clients/2.png
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
PNG image data, 210 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (11925 bytes)
Hash
07e04faa7c9555a017fe1eeaaba9ca61
9f0452dc5a01cb0b479f734f11bde06f65c99e26
b90a387bebe45ffabb4a74429190dea83adc73cba883d86e9e52d463ad30b846

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/clients/2.png HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 19:18:02 GMT
Accept-Ranges: bytes
Content-Length: 11925
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

maintdesigns.com/images/clients/5.png

209.182.199.172

200 OK

26 kB

URL HTTP/1.1
maintdesigns.com/images/clients/5.png
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
PNG image data, 210 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (26411 bytes)
Hash
e90eaa585108429af590e72bdd723954
4e46dae96f1638f8695c4425af5bf507d1e09d06
8de4614c47fbaab074c0610d285672813521679405ee6f900428ea39833d9a0e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/clients/5.png HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 19:11:46 GMT
Accept-Ranges: bytes
Content-Length: 26411
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

maintdesigns.com/images/clients/1.png

209.182.199.172

200 OK

9.4 kB

URL HTTP/1.1
maintdesigns.com/images/clients/1.png
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
PNG image data, 210 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
9.4 kB (9375 bytes)
Hash
c18fde80f440b4f73f27400ae954b20f
ea5302fc4274289f14aac170fd68001b285e611c
829253e2f0690acbcedbecbb00880c7680818189cb9a8c2adbce0873d828e851

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/clients/1.png HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 19:07:16 GMT
Accept-Ranges: bytes
Content-Length: 9375
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 12:43:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 12:43:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://maintdesigns.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:30:11 GMT
expires: Sat, 02 Dec 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 195183
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 12:43:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 12:43:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://maintdesigns.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:41 GMT
expires: Tue, 28 Nov 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 496233
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/playfairdisplay/v30/nuFkD-vYSZviVYUb_rj3ij__anPXDTnogkk7.woff2

216.58.207.227

200 OK

36 kB

URL HTTP/2
fonts.gstatic.com/s/playfairdisplay/v30/nuFkD-vYSZviVYUb_rj3ij__anPXDTnogkk7.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 36104, version 1.0\012- data
Size
36 kB (36104 bytes)
Hash
32938cccb9665d3b8afe8689b88a9ea3
5834c8e5bf4a8daf23f518a5ccb2e8b8391f6190
b574669ac419e9857b34bd603555cc632152f8122f6b154d049e13cc0a167b35

HTTP Headers

GET /s/playfairdisplay/v30/nuFkD-vYSZviVYUb_rj3ij__anPXDTnogkk7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://maintdesigns.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 36104
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 22:25:56 GMT
expires: Tue, 28 Nov 2023 22:25:56 GMT
cache-control: public, max-age=31536000
age: 483438
last-modified: Mon, 18 Jul 2022 19:13:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maintdesigns.com/Admin/upload/1admin%20po%20(3).jpg

209.182.199.172

200 OK

304 kB

URL HTTP/1.1
maintdesigns.com/Admin/upload/1admin%20po%20(3).jpg
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1597, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2376], baseline, precision 8, 670x420, components 3\012- data
Size
304 kB (304062 bytes)
Hash
2c136cb9db35b743f30f5670f130ef67
09ab186e06fc56a8402e970333391aa032d3b011
bf320f94f32a3b147077b4b8204aafc77ff1c6964e8494252742b1b99f905efc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /Admin/upload/1admin%20po%20(3).jpg HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Sun, 29 Mar 2020 19:52:06 GMT
Accept-Ranges: bytes
Content-Length: 304062
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

maintdesigns.com/Admin/upload/IMG-20190111-WA0020.jpg

209.182.199.172

200 OK

234 kB

URL HTTP/1.1
maintdesigns.com/Admin/upload/IMG-20190111-WA0020.jpg
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=810, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 670x420, components 3\012- data
Size
234 kB (233964 bytes)
Hash
ba17f290c23f63825aeb3dcec87404e5
76ba7c60c401bacdd41d7c4e79318ed678422d3c
92199e33ced459415fda1fb7421658461a57ede136c6bd2ee87fcd3b6d9ed1aa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /Admin/upload/IMG-20190111-WA0020.jpg HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:13 GMT
Server: Apache
Last-Modified: Sun, 29 Mar 2020 18:19:28 GMT
Accept-Ranges: bytes
Content-Length: 233964
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 12:43:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maintdesigns.com/fonts/flaticon.woff

209.182.199.172

200 OK

30 kB

URL HTTP/1.1
maintdesigns.com/fonts/flaticon.woff
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format, TrueType, length 29884, version 0.0\012- data
Size
30 kB (29884 bytes)
Hash
3ba2a321a288db2ad7026cbdb4624e04
39679bc58530ec3b55e57bffa79723d7da096628
a5c43294af375bf44477b762f91737f23f2173f1d1b39a568513fe276d43db3e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /fonts/flaticon.woff HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://maintdesigns.com/css/flaticon.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Mon, 08 Jan 2018 23:43:52 GMT
Accept-Ranges: bytes
Content-Length: 29884
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff

maintdesigns.com/fonts/fontawesome-webfont914c.woff2?v=4.6.1

209.182.199.172

200 OK

71 kB

URL HTTP/1.1
maintdesigns.com/fonts/fontawesome-webfont914c.woff2?v=4.6.1
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format (Version 2), TrueType, length 70728, version 4.393\012- data
Size
71 kB (70728 bytes)
Hash
926c93d201fe51c8f351e858468980c3
977357f82830f57fbdac2492dd421e5dcce44a1a
d3ebb498192527b985939ae62cc4e5eb5c108efc1896184126b45d866868e73d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /fonts/fontawesome-webfont914c.woff2?v=4.6.1 HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://maintdesigns.com/css/font-awesome.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Wed, 27 Apr 2016 04:21:36 GMT
Accept-Ranges: bytes
Content-Length: 70728
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2

maintdesigns.com/images/logo.png

209.182.199.172

200 OK

79 kB

URL HTTP/1.1
maintdesigns.com/images/logo.png
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
PNG image data, 100 x 99, 8-bit/color RGBA, non-interlaced\012- data
Size
79 kB (78972 bytes)
Hash
80b873ddba066e12ca1a4e81030456db
6ede15a57f647374479556f6b3421cd040081951
1637b952307db7c231ec25a951d4271688ae23a7ad98e760b8c396071a655eba

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 00:58:22 GMT
Accept-Ranges: bytes
Content-Length: 78972
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png

fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2

216.58.207.227

200 OK

39 kB

URL HTTP/2
fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 39056, version 1.0\012- data
Size
39 kB (39056 bytes)
Hash
ab20a3cbee44939ad33cb2d162484f23
f4df3e71cc8aebd85b6207d4ac35c76c602c2779
0a1dc89a4a29593bd35cc4811bfedd9765eeca4a9ef57323eec2cff14c9f9c5b

HTTP Headers

GET /s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://maintdesigns.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 19:30:51 GMT
expires: Tue, 28 Nov 2023 19:30:51 GMT
cache-control: public, max-age=31536000
age: 493943
last-modified: Mon, 15 Aug 2022 18:05:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maintdesigns.com/images/main-slider/interior-design-3.jpg

209.182.199.172

200 OK

228 kB

URL HTTP/1.1
maintdesigns.com/images/main-slider/interior-design-3.jpg
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2020:02:25 21:00:29], baseline, precision 8, 1780x929, components 3\012- data
Size
228 kB (228195 bytes)
Hash
8720742b4b52358d0f442be09783d0af
ab987897d3c951159eca5a25aa54a73af6e01c39
bb267995ef7f430faf7bf301ce1a21e829d63ddf59a8864a4499738f55005843

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/main-slider/interior-design-3.jpg HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 03:00:32 GMT
Accept-Ranges: bytes
Content-Length: 228195
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

maintdesigns.com/Admin/upload/16896df18-c9f9-435d-b43d-16ea981b7a78.jpg

209.182.199.172

200 OK

72 kB

URL HTTP/1.1
maintdesigns.com/Admin/upload/16896df18-c9f9-435d-b43d-16ea981b7a78.jpg
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=810, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 670x420, components 3\012- data
Size
72 kB (72072 bytes)
Hash
48736931d254b306460d5f42bfaef496
834c040966cfb47aff992f7db586d3f0c825e600
baba1e8d2c87faaee33e9ca95982ec1391f8a8052c902889a17e518b59e39c28

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /Admin/upload/16896df18-c9f9-435d-b43d-16ea981b7a78.jpg HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Sat, 06 Jun 2020 13:50:55 GMT
Accept-Ranges: bytes
Content-Length: 72072
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

maintdesigns.com/images/iris-logo.png

209.182.199.172

200 OK

1.9 kB

URL HTTP/1.1
maintdesigns.com/images/iris-logo.png
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
PNG image data, 26 x 22, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1858 bytes)
Hash
88e65eeece1ba2b441475db878e8914a
44a160612326541068d848d4ddf253ef87e0e8a5
0a6217336f88665d23db57d5a26290285da6e52a0ee142991ea5043371866206

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/iris-logo.png HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 03:14:06 GMT
Accept-Ranges: bytes
Content-Length: 1858
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

maintdesigns.com/images/main-slider/interior-design-1.jpg

209.182.199.172

200 OK

375 kB

URL HTTP/1.1
maintdesigns.com/images/main-slider/interior-design-1.jpg
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1780x929, components 3\012- data
Size
375 kB (374602 bytes)
Hash
dd142d5f03f82ec97c83676882bfc11d
ac48020695923c0bac8fdeb5989db270eeaf1ccd
2ad9b8a7e963bb266541d032819633a6fe35c7a66e693332c4eabcce808e1638

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/main-slider/interior-design-1.jpg HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 04:07:08 GMT
Accept-Ranges: bytes
Content-Length: 374602
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg

maintdesigns.com/images/main-slider/interior-design-2.jpg

209.182.199.172

200 OK

437 kB

URL HTTP/1.1
maintdesigns.com/images/main-slider/interior-design-2.jpg
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1780x929, components 3\012- data
Size
437 kB (436881 bytes)
Hash
d401a78d76f77de947e11027f714877f
9b634fb95a0048fe20ce1968fdb51c5e0d0547c5
7e95b99d606fb752b7016e1c2806806e63b7e48088a32ce38d886976cb2b5b80

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/main-slider/interior-design-2.jpg HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 04:07:16 GMT
Accept-Ranges: bytes
Content-Length: 436881
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

maintdesigns.com/images/icons/preloader.svg

209.182.199.172

200 OK

1.2 kB

URL HTTP/1.1
maintdesigns.com/images/icons/preloader.svg
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Size
1.2 kB (1151 bytes)
Hash
c11baaffb20340485e7e78e7ad42898c
7e9de93ea757733ee4a64cf5651ffbab3354cb60
c6b3cafe0755796b821e5cef90f748ff75a7f7d30de7e33021c1a9a5a837a20d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /images/icons/preloader.svg HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 00:55:18 GMT
Accept-Ranges: bytes
Content-Length: 1151
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/svg+xml

maintdesigns.com/images/clients/3.png

209.182.199.172

200 OK

19 kB

URL HTTP/1.1
maintdesigns.com/images/clients/3.png
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
PNG image data, 210 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
19 kB (19396 bytes)
Hash
7770ec1810aa2c473219307e496d3a68
010044d24e04e2a6650eac8733ad99826997fb5d
1b9c633d9cc81db5f92208974f9c320281f1092fa813a5b4db9259c5ed275a9d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/clients/3.png HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 19:10:16 GMT
Accept-Ranges: bytes
Content-Length: 19396
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

maintdesigns.com/images/resource/MA-intdesigns.jpg

209.182.199.172

200 OK

435 kB

URL HTTP/1.1
maintdesigns.com/images/resource/MA-intdesigns.jpg
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2020:03:27 12:47:41], baseline, precision 8, 1080x810, components 3\012- data
Size
435 kB (434851 bytes)
Hash
9968c8f546fae93e2455b0d5eb7716b3
55435c3a441743df81cdd13f4e6be5133ed31e4f
c9ecdb308df71e4444406a43f94f2009ff642f257f55050ff8d8ceff4aed1a13

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/resource/MA-intdesigns.jpg HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Fri, 27 Mar 2020 17:47:44 GMT
Accept-Ranges: bytes
Content-Length: 434851
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

maintdesigns.com/images/resource/pattern-1.png

209.182.199.172

200 OK

77 kB

URL HTTP/1.1
maintdesigns.com/images/resource/pattern-1.png
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
PNG image data, 338 x 477, 8-bit/color RGBA, non-interlaced\012- data
Size
77 kB (76564 bytes)
Hash
ef6a5094b5bdde6330f30b3596e20bc5
eb72938e86de0d06dda75b1ca170cee23300d6e8
1a45036989112e2c3fb4df234a069fa1ffd64a3c0181f3a91470ce890ba8858b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/resource/pattern-1.png HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Wed, 31 Jan 2018 07:12:34 GMT
Accept-Ranges: bytes
Content-Length: 76564
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

maintdesigns.com/images/clients/4.png

209.182.199.172

200 OK

11 kB

URL HTTP/1.1
maintdesigns.com/images/clients/4.png
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
PNG image data, 210 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (11271 bytes)
Hash
f80e0c12cda6d9ce7473f910ee56d978
f95d7fdd233b2439628a338c3b4d461b066d717b
0ca780ea676f9f67d43fe4259766da83daf26c0a3b1bd17aaa4c48f8dcfb3efa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/clients/4.png HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 19:17:50 GMT
Accept-Ranges: bytes
Content-Length: 11271
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png

maintdesigns.com/images/clients/6.png

209.182.199.172

200 OK

7.6 kB

URL HTTP/1.1
maintdesigns.com/images/clients/6.png
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
PNG image data, 210 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
7.6 kB (7641 bytes)
Hash
240f6bcc78d2f0d6cfc010f03e47e092
40627f653f43b1bc3ff5a1d6992b6e3b4b4a8e33
561a07c2f552fc5162f543b23222ea74823c156a708c449cdda3abd7a38a8094

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/clients/6.png HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 19:17:34 GMT
Accept-Ranges: bytes
Content-Length: 7641
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

maintdesigns.com/plugins/revolution/fonts/revicons/revicons90c6.woff?5510888

209.182.199.172

200 OK

7.5 kB

URL HTTP/1.1
maintdesigns.com/plugins/revolution/fonts/revicons/revicons90c6.woff?5510888
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Size
7.5 kB (7536 bytes)
Hash
04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/fonts/revicons/revicons90c6.woff?5510888 HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://maintdesigns.com/plugins/revolution/css/settings.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:16 GMT
Accept-Ranges: bytes
Content-Length: 7536
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff

maintdesigns.com/images/resource/pattern-2.png

209.182.199.172

200 OK

349 kB

URL HTTP/1.1
maintdesigns.com/images/resource/pattern-2.png
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
PNG image data, 415 x 576, 8-bit/color RGBA, non-interlaced\012- data
Size
349 kB (348788 bytes)
Hash
577fd83d515cfcc3d73c3dd484052b3b
1c859c8e8d57d354ff3f562967884e2798caa333
64424946d5b7914fbda902edcef5afdf450e29b0c869b141b0ef36f25ee8f999

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/resource/pattern-2.png HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Sun, 01 Mar 2020 17:48:02 GMT
Accept-Ranges: bytes
Content-Length: 348788
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14358
Expires: Sun, 04 Dec 2022 16:42:32 GMT
Date: Sun, 04 Dec 2022 12:43:14 GMT
Connection: keep-alive

maintdesigns.com/images/background/1.jpg

209.182.199.172

200 OK

353 kB

URL HTTP/1.1
maintdesigns.com/images/background/1.jpg
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x750, components 3\012- data
Size
353 kB (353200 bytes)
Hash
1bbb3aa31a11d9a744c2b403d09e5c70
f598dd0f30688bd963e628f4e40942667b68dac4
294bf63341cc375f1baa1d545f23ff983a7f552e7e5eccd601de28cf7e98dfb2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/background/1.jpg HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Wed, 10 Jan 2018 02:38:38 GMT
Accept-Ranges: bytes
Content-Length: 353200
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14358
Expires: Sun, 04 Dec 2022 16:42:32 GMT
Date: Sun, 04 Dec 2022 12:43:14 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14358
Expires: Sun, 04 Dec 2022 16:42:32 GMT
Date: Sun, 04 Dec 2022 12:43:14 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14358
Expires: Sun, 04 Dec 2022 16:42:32 GMT
Date: Sun, 04 Dec 2022 12:43:14 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10431 bytes)
Hash
2636f91bb8fa4d9bb7bef114c248a9ae
8637105f41058bc0d2b259d462b560881928adb6
3d93fd8fcf1af31d00ccbd453142dbea5f2b91d7f58373095943ed40a31ed1f7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10431
x-amzn-requestid: f79ab5e7-8c1b-4827-a531-aaa19c1d80aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsCGEwxIAMF34g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc073-6358d2950955884c470c0a89;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PQ7xh995cd1UVi3z42EVZGjQjHLLvtAP5BBC-xLEEGr4mEiXS6fC-w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:47:06 GMT
age: 53768
etag: "8637105f41058bc0d2b259d462b560881928adb6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (8989 bytes)
Hash
a6e7b32ac999cf3c899a234c621fa91a
fc5d4f3163ebb9faf85968cbb1d194e8e68418be
f12db3aed126006fee00649aba0b3eaae900de200b85b9523866a90b5494f18e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8989
x-amzn-requestid: abce0b01-f70c-42ad-b242-5a24735fe4c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltl4Gk2oAMFSWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc2f2-1cccffff5199dffe70264a95;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:43:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PFl7VUrzRkMFNnTiIw_cbGCyrEFn43eUSlZfT0nUhUmjjyXT7JfjMA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:50:01 GMT
age: 53593
etag: "fc5d4f3163ebb9faf85968cbb1d194e8e68418be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (16143 bytes)
Hash
14dcca2a9c4792d835ee709bcd947402
1d702df3a64258628f4124eafd580695f2d350af
da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 16143
x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGyLGqmoAMFnaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KHd4ajJWl-8TDH5HGbkuJXI4NL6I83IwSUBKzfq85cxpyRH_LGl6OA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 05:55:20 GMT
age: 24474
etag: "1d702df3a64258628f4124eafd580695f2d350af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5681 bytes)
Hash
43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vNP2rQwmWTntetjJyjonO8N_YOBqvQuZUm42BWX7c1GoX7jASOIpCg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:49:42 GMT
age: 53612
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8315 bytes)
Hash
db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JuY0xcLDiERwrVhq33d4PP64liDqFfk9bc9xX1H62o0tOwrt1ek7Pg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:42:39 GMT
age: 54035
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.7 kB (4666 bytes)
Hash
c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z5uqgjB-Bsl0U55a8aFi37cpJ65Vnbjm6bJ2GnMpaO7RXsMZsOCbPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:44:01 GMT
age: 53953
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

maintdesigns.com/images/favicon.ico

209.182.199.172

200 OK

1.2 kB

URL HTTP/1.1
maintdesigns.com/images/favicon.ico
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
cc39a00873849c2834ef4893af9bea21
9421ebd2ba010337e610012ad5dc4048f25a25ab
5b26b6689cdc886c311001e54b15b31195d4230185374d76fd6afe0685a2604d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/favicon.ico HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:14 GMT
Server: Apache
Last-Modified: Mon, 03 Feb 2020 00:56:26 GMT
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/x-icon

maintdesigns.com/plugins/revolution/css/layers.css

209.182.199.172

200 OK

0 B

URL HTTP/1.1
maintdesigns.com/plugins/revolution/css/layers.css
IP
209.182.199.172:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /plugins/revolution/css/layers.css HTTP/1.1
Host: maintdesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maintdesigns.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 12:43:12 GMT
Server: Apache
Last-Modified: Mon, 17 Jul 2017 03:50:16 GMT
Accept-Ranges: bytes
Content-Length: 146597
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations