Report - notificationtest.com/

Report Overview

Submitted URL
notificationtest.com/
IP
103.212.121.53
ASN
#135222 MilesWeb Internet Services Pvt Ltd
Submitted
2022-12-06 01:11:06
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
30

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
notificationtest.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	352 B	913 B	103.212.121.53
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.218.168.248
www.notificationtest.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	12 kB	590 kB	103.212.121.53
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	66 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-06	medium	notificationtest.com/	Malware
2022-12-06	medium	www.notificationtest.com/	Malware
2022-12-06	medium	www.notificationtest.com/assets/lib/bootstrap/dist/js/bootstrap.bundle.min.js	Malware
2022-12-06	medium	www.notificationtest.com/assets/lib/perfect-scrollbar/js/perfect-scrollbar.jquery.min.js	Malware
2022-12-06	medium	www.notificationtest.com/assets/lib/jquery/jquery.min.js	Malware
2022-12-06	medium	www.notificationtest.com/assets/lib/jquery.nestable/jquery.nestable.js	Malware
2022-12-06	medium	www.notificationtest.com/assets/js/app.js	Malware
2022-12-06	medium	www.notificationtest.com/assets/lib/datetimepicker/js/bootstrap-datetimepicker.min.js	Malware
2022-12-06	medium	www.notificationtest.com/assets/lib/moment.js/min/moment.min.js	Malware
2022-12-06	medium	www.notificationtest.com/assets/lib/jquery-ui/jquery-ui.min.js	Malware
2022-12-06	medium	www.notificationtest.com/assets/lib/bootstrap-slider/bootstrap-slider.min.js	Malware
2022-12-06	medium	www.notificationtest.com/assets/lib/select2/js/select2.min.js	Malware
2022-12-06	medium	www.notificationtest.com/assets/lib/select2/js/select2.full.min.js	Malware
2022-12-06	medium	www.notificationtest.com/assets/lib/roboto/Roboto-Regular.woff2	Malware
2022-12-06	medium	www.notificationtest.com/assets/lib/roboto/Roboto-Bold.woff2	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	www.notificationtest.com/assets/lib/select2/js/select2.full.min.js	75 kB	2023-03-07	2024-02-19
Pretty URL www.notificationtest.com/assets/lib/select2/js/select2.full.min.js IP 103.212.121.53 ASN #135222 MilesWeb Internet Services Pvt Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:50:14 Last Seen2024-02-19 23:18:05 Times Seen163 Hash cd78b47f8f1999fb4d258515099231d0 7e3e2b4cba7cfc0a549a2dbe53a76880dec4e535 15c54892706255193928b41e2016fd55076d15132ac1f7d7c99f83f2ad2042ba Loading...

	www.notificationtest.com/	136 B	2023-03-08	2023-03-08
Pretty URL www.notificationtest.com/ IP 103.212.121.53 ASN #135222 MilesWeb Internet Services Pvt Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:57:58 Last Seen2023-03-08 19:57:58 Times Seen1 Hash 27401cf011f0603a77f722da344ddc48 271e036aedd8728eafabd87ea191949984ce4847 f46df92cc402e81c2e4828ea7c680862aa45055d981714cbc5fe2091f71ab406 Loading...

	www.notificationtest.com/assets/lib/bootstrap/dist/js/bootstrap.bundle.min.js	71 kB	2023-03-07	2024-04-05
Pretty URL www.notificationtest.com/assets/lib/bootstrap/dist/js/bootstrap.bundle.min.js IP 103.212.121.53 ASN #135222 MilesWeb Internet Services Pvt Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:28 Last Seen2024-04-05 10:06:52 Times Seen260 Hash d70c474886678aebe3e9d91965dc8b62 2d938043d2373aff5591c7a4c7c8567692014cc7 928f97f310d8f768c5e3d521e3b1ce2cff156f9cc60c5d09fad772f4a2c43f52 Loading...

	www.notificationtest.com/assets/lib/jquery/jquery.min.js	87 kB	2023-03-07	2024-04-19
Pretty URL www.notificationtest.com/assets/lib/jquery/jquery.min.js IP 103.212.121.53 ASN #135222 MilesWeb Internet Services Pvt Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 10:18:28 Times Seen60849 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	www.notificationtest.com/assets/lib/datetimepicker/js/bootstrap-datetimepicker.min.js	35 kB	2023-03-08	2023-03-08
Pretty URL www.notificationtest.com/assets/lib/datetimepicker/js/bootstrap-datetimepicker.min.js IP 103.212.121.53 ASN #135222 MilesWeb Internet Services Pvt Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:57:58 Last Seen2023-03-08 19:57:58 Times Seen1 Hash 67f0f5a01995c03b098e28946776e74f 6f0b2200f7d5637ea06728a3c4b52b3994af232a aa860a24df78c2e7c5065e3618e6ae62a55aaf2ec4e82bed71836fc4ef2c4cf2 Loading...

	www.notificationtest.com/assets/lib/jquery-ui/jquery-ui.min.js	240 kB	2023-03-07	2024-04-18
Pretty URL www.notificationtest.com/assets/lib/jquery-ui/jquery-ui.min.js IP 103.212.121.53 ASN #135222 MilesWeb Internet Services Pvt Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04:01 Last Seen2024-04-18 22:11:32 Times Seen4522 Hash d935d506ae9c8dd9e0f96706fbb91f65 7f650ee30c6a4d3eea04032039b20ff72997559b c4d8dbe77feb63e5a61bee0bead4e5f66e8fa6a927599bd1b74aced52467273c Loading...

	www.notificationtest.com/assets/lib/bootstrap-slider/bootstrap-slider.min.js	35 kB	2023-03-08	2023-07-21
Pretty URL www.notificationtest.com/assets/lib/bootstrap-slider/bootstrap-slider.min.js IP 103.212.121.53 ASN #135222 MilesWeb Internet Services Pvt Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:57:58 Last Seen2023-07-21 04:32:22 Times Seen41 Hash c23bab7d5f2621acafdc1b7d9df2ce88 1d492ac2adafa033463b7edecfa1426cd70a0cbe b2cc3be3745f33c71b361c28bb6ead9a63e188d86addbb946d11bf45ebed7c6e Loading...

	www.notificationtest.com/assets/lib/select2/js/select2.min.js	67 kB	2023-03-07	2024-04-18
Pretty URL www.notificationtest.com/assets/lib/select2/js/select2.min.js IP 103.212.121.53 ASN #135222 MilesWeb Internet Services Pvt Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:37 Last Seen2024-04-18 09:19:42 Times Seen441 Hash 26abb17f4b7260ea8c912313e2c80fef 42fe805a338908436c5c326dbf7e9aec0c8484c7 140d78b4123cbfeff506d707f57b49a5c35b0a898112975ac14640e813d7455c Loading...

	www.notificationtest.com/assets/lib/perfect-scrollbar/js/perfect-scrollbar.jquery.min.js	25 kB	2023-03-07	2024-04-09
Pretty URL www.notificationtest.com/assets/lib/perfect-scrollbar/js/perfect-scrollbar.jquery.min.js IP 103.212.121.53 ASN #135222 MilesWeb Internet Services Pvt Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24:28 Last Seen2024-04-09 15:09:28 Times Seen110 Hash 54c49b7379376922d0707b604996f1c8 71d4f4a61b8a41c245d0b3389ea080faa5d58b9c 7c42c5874638cb2e68a901afa9a50e30a9c51c6cd693b704d082fc1bc71e6718 Loading...

	www.notificationtest.com/assets/lib/jquery.nestable/jquery.nestable.js	18 kB	2023-03-08	2024-02-03
Pretty URL www.notificationtest.com/assets/lib/jquery.nestable/jquery.nestable.js IP 103.212.121.53 ASN #135222 MilesWeb Internet Services Pvt Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:57:58 Last Seen2024-02-03 00:10:52 Times Seen12 Hash eb5545f81d16e25f8b61c2e0187d55df 915ba78308980a50aa6edc748533bce1d686fe80 e67c2d386988edac7c369554a2fdc2bfcc839618f0fc8e8b9747d7daad28b0ce Loading...

	www.notificationtest.com/assets/js/app.js	84 kB	2023-03-08	2023-03-08
Pretty URL www.notificationtest.com/assets/js/app.js IP 103.212.121.53 ASN #135222 MilesWeb Internet Services Pvt Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:57:58 Last Seen2023-03-08 19:57:58 Times Seen1 Hash 46a4a503acb6b5ead919d2fafab1b573 caf727018ee74844e915395470ba0b276b591a3a 01fb88054d16985d6b6a80a4ae0c24dd9b3a51278c930dfdf35675a600539fa2 Loading...

	www.notificationtest.com/assets/lib/moment.js/min/moment.min.js	51 kB	2023-03-07	2024-03-04
Pretty URL www.notificationtest.com/assets/lib/moment.js/min/moment.min.js IP 103.212.121.53 ASN #135222 MilesWeb Internet Services Pvt Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:29 Last Seen2024-03-04 13:41:27 Times Seen122 Hash 8793f63b81247c95dceb2edd699efbdc 4e6718addc8fda68e1de3113363333c6f4d707b9 cc6f2ff8d5a26719a3362f82bd46276702ad1f316d74ef1c00a508741f3e53d2 Loading...

HTTP Transactions (47)

URL IP Response Size

notificationtest.com/

103.212.121.53

301 Moved Permanently

707 B

URL HTTP/1.1
notificationtest.com/
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 06 Dec 2022 01:10:55 GMT
Content-Type: text/html
Content-Length: 707
location: https://www.notificationtest.com/
x-turbo-charged-by: LiteSpeed

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6651
Expires: Tue, 06 Dec 2022 03:01:46 GMT
Date: Tue, 06 Dec 2022 01:10:55 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5335
Cache-Control: max-age=125359
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:10:55 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 12:00:14 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9142
Expires: Tue, 06 Dec 2022 03:43:17 GMT
Date: Tue, 06 Dec 2022 01:10:55 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 00:18:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3143
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: XGoGfAoFfhVVPquI/GdJuEQFYvTBTiWXw05ZnQZ4gyv7vVhTfp76WcVXFrhv0eXFT2vFwPxNNe4=
x-amz-request-id: 6F66PH3853K6E2E7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 00:46:53 GMT
age: 1442
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 00:11:20 GMT
cache-control: public,max-age=3600
age: 3576
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5318
Cache-Control: max-age=120274
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:10:56 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:35:30 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.218.168.248

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.218.168.248:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: spKAsSQw1GQFL5vDr4knqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hCYl4joHzHQEJi8D6bie3dr1ebw=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
69068898030b8416576c0469c86d488b
fa5d70936d92b84085eeefc2a0de36064a229941
1719683c72a7018a4b61cd24dd658c90a5bc0dbe84ab4a50851fd94c0016f70e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1719683C72A7018A4B61CD24DD658C90A5BC0DBE84AB4A50851FD94C0016F70E"
Last-Modified: Mon, 05 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21587
Expires: Tue, 06 Dec 2022 07:10:43 GMT
Date: Tue, 06 Dec 2022 01:10:56 GMT
Connection: keep-alive

www.notificationtest.com/

103.212.121.53

200 OK

1.4 kB

URL HTTP/2
www.notificationtest.com/
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.4 kB (1394 bytes)
Hash
082331abc58837cc35385a389e713454
4b67856e43be7f8c2c170452aa91b98227bf1376
19cfde4833295ba32ea257a73321f99e092058b9528e0441f1112f5fa68cb317

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:57 GMT
content-type: text/html; charset=UTF-8
content-length: 1394
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/material-design-icons/css/material-design-iconic-font.min.css

103.212.121.53

200 OK

7.0 kB

URL HTTP/2
www.notificationtest.com/assets/lib/material-design-icons/css/material-design-iconic-font.min.css
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (65447)
Size
7.0 kB (6952 bytes)
Hash
346dd22a4b6d015598d3bd159db8e412
10082d242d41f5f260a6604fbb19c0f73efd9d5b
e3eadae2a265afb1dbb15160c649c186cc743ab3862a717aea59c810244d755f

HTTP Headers

GET /assets/lib/material-design-icons/css/material-design-iconic-font.min.css HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:57 GMT
content-type: text/css
content-length: 6952
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:57 GMT
last-modified: Sat, 18 Dec 2021 08:24:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/datetimepicker/css/bootstrap-datetimepicker.min.css

103.212.121.53

200 OK

1.5 kB

URL HTTP/2
www.notificationtest.com/assets/lib/datetimepicker/css/bootstrap-datetimepicker.min.css
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (10590)
Size
1.5 kB (1471 bytes)
Hash
3045468850fc57f6fab65500ec9187be
46009f045b902ddd3ea9e3e10c314bcd33a505a5
708a90052bb6022057913a02d7f0a6d2cfeefea7e81a94b044dfb5c3737dc3b1

HTTP Headers

GET /assets/lib/datetimepicker/css/bootstrap-datetimepicker.min.css HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:57 GMT
content-type: text/css
content-length: 1471
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:57 GMT
last-modified: Sat, 18 Dec 2021 08:24:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/bootstrap-slider/css/bootstrap-slider.min.css

103.212.121.53

200 OK

2.0 kB

URL HTTP/2
www.notificationtest.com/assets/lib/bootstrap-slider/css/bootstrap-slider.min.css
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (7557)
Size
2.0 kB (1981 bytes)
Hash
451659ec5018a472a46a72eea6651415
f4ba841a24a00c80d69909843d07597f666bbdef
68a32827a852bd4ade3eb74a3c05015dd78c3384d06d4136863d3e9a0fc1b32b

HTTP Headers

GET /assets/lib/bootstrap-slider/css/bootstrap-slider.min.css HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:57 GMT
content-type: text/css
content-length: 1981
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:57 GMT
last-modified: Sat, 18 Dec 2021 08:24:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/perfect-scrollbar/css/perfect-scrollbar.min.css

103.212.121.53

200 OK

565 B

URL HTTP/2
www.notificationtest.com/assets/lib/perfect-scrollbar/css/perfect-scrollbar.min.css
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (4596)
Size
565 B (565 bytes)
Hash
63f68f220ec935147c7396c6bcd82c25
ae7ed843614f62b27fc11367a8e70c8c81d9bd03
bf0aaef99961d5bcc58d22824006c63b45ffe571c149876642ea3d41a64ecc9b

HTTP Headers

GET /assets/lib/perfect-scrollbar/css/perfect-scrollbar.min.css HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:57 GMT
content-type: text/css
content-length: 565
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:57 GMT
last-modified: Sat, 18 Dec 2021 08:24:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/css/app.css

103.212.121.53

200 OK

62 kB

URL HTTP/2
www.notificationtest.com/assets/css/app.css
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (65447)
Size
62 kB (61983 bytes)
Hash
8e72c0d51648a4410e2dd1066328a75f
b13bed2b0c0a16ec3d9e2ca31f08b62b68e794c2
dcad78166419f7ebd231e645c02d456ab3d879b58c2fbe4f38d0bfcfb0a70b46

HTTP Headers

GET /assets/css/app.css HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:57 GMT
content-type: text/css
content-length: 61983
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:57 GMT
last-modified: Sat, 18 Dec 2021 08:23:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/summernote/summernote-bs4.css

103.212.121.53

200 OK

2.9 kB

URL HTTP/2
www.notificationtest.com/assets/lib/summernote/summernote-bs4.css
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (15463)
Size
2.9 kB (2914 bytes)
Hash
0506bd26561851f202a1f996f8c51437
311a385461cf92ce0c7903983ea54c29ac050032
93c9dfa4dc0f0a67d7536ac658e7b419656625fcac23e9e61d3849e0b0f921be

HTTP Headers

GET /assets/lib/summernote/summernote-bs4.css HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:57 GMT
content-type: text/css
content-length: 2914
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:57 GMT
last-modified: Sat, 18 Dec 2021 08:24:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/select2/css/select2.min.css

103.212.121.53

200 OK

1.9 kB

URL HTTP/2
www.notificationtest.com/assets/lib/select2/css/select2.min.css
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (15195)
Size
1.9 kB (1850 bytes)
Hash
dbeedfaa9b09974b169859e097e1e771
249f4828d45c9a5262fe36bd0a3a892760d157d2
21849a50cae503a4ff4f9827b2310df0597947cfa7b6183d9f83a719d9f24692

HTTP Headers

GET /assets/lib/select2/css/select2.min.css HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:57 GMT
content-type: text/css
content-length: 1850
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:57 GMT
last-modified: Sat, 18 Dec 2021 08:24:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6542
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 01:10:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6542
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 01:10:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6542
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 01:10:57 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8450e32d-c4fa-4c40-82bc-1c36f479692e.jpeg

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8450e32d-c4fa-4c40-82bc-1c36f479692e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (8978 bytes)
Hash
dd0fdca9dfb3e18fcbb5c89e12922da7
d8acf7053a01df2c503c734d52070ff4802d5a01
61e6235613c8ecda0321ecbe0870419bfa65cf3e44e3b85acd257f78725a6843

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8450e32d-c4fa-4c40-82bc-1c36f479692e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8978
x-amzn-requestid: 59cc852a-eb8c-45ab-a370-a176bffea0ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cqSrJGoaoAMF_jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d97e0-3760c58b6d2b7a6561541201;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 07:04:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7JodQ_7rkuySzNZtj0cThOwMxYT0BLrVbtivk6G_aWwEzbPk_5QcWA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 07:12:14 GMT
age: 64723
etag: "d8acf7053a01df2c503c734d52070ff4802d5a01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11352 bytes)
Hash
7f2c354a00ab51d4a41221b6bf191c10
01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4
7d3c8417e1db0db41ceb8b4bf3f506864392dd1ad29319a06a8a6055f6f2ed12

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11352
x-amzn-requestid: 7c3fc7bb-eb1f-46ec-8e92-b6ffc6261848
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwuF1ToAMFiIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d1-7c53152a279f00595b9886bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:25 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EQorA5VTb0s2BEIWBkdkhDho-bLdLVvu8LnAIQsQqsIjgBLneYqCzg==
via: 1.1 b6d577696b14c86cbfeb5b3459f38c50.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:22 GMT
age: 12155
etag: "01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9354 bytes)
Hash
2e11524d75503e35c404d6c9a12ac540
5626b75f5c2523f1a0fc301839a06a4e2407f106
d5eb74d026014c0a68893bde1107a9a111b1f0af835e28bb740308017ef80b7f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9354
x-amzn-requestid: fb2dad44-2f8c-4f02-bbc5-405e9586e5af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmctYGLdoAMFyDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e55-28b5680933de0ff4208240be;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9DoDl2ynVT-wtTVbAsUO7LoGG8T559DkLEfVf8ALbnAGcjajBq25yQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 03:56:21 GMT
age: 76476
etag: "5626b75f5c2523f1a0fc301839a06a4e2407f106"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11224 bytes)
Hash
b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:09:28 GMT
age: 10889
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8469 bytes)
Hash
2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TKSlCefkyQ7VDufJJOh1D7zhioft93jfOsoXxTD4ncAK5ktxlPvIoA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:52:07 GMT
age: 11930
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (9987 bytes)
Hash
8055d0db573ab34924db3b60ed788bb2
a4aae05e7a929fc7f652f56748d2a2da9c44ac45
f6a9555f112882d4ac284c6dc26ae0f02f6ccf8ee312615e01ebec8242bade1f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 3d4d7dd0-2be0-46c1-a9c0-aa3cce2e8c81
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSvUHhJIAMFZYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c8-63a6960043564aa762caaabe;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cE8n21yLSOS1FFSW_80l4MKNtJ9uJj7SXJS1Xza-lTYruvI2Wvkwlw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:11 GMT
age: 12166
etag: "a4aae05e7a929fc7f652f56748d2a2da9c44ac45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.notificationtest.com/logo-court.png

103.212.121.53

200 OK

65 kB

URL HTTP/2
www.notificationtest.com/logo-court.png
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
PNG image data, 317 x 317, 8-bit/color RGBA, non-interlaced\012- data
Size
65 kB (65430 bytes)
Hash
def564a71ce978f89b34951c814b442d
0766e71447c6073103cf53166c648b5023e41fa6
c3664c01a034c47eb8f96b815da0a7b3d6314c94cd3cb8ad70a6b8151ba37ae1

HTTP Headers

GET /logo-court.png HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:57 GMT
content-type: image/png
content-length: 65430
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:57 GMT
last-modified: Sat, 18 Dec 2021 08:25:46 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/img/avatar.png

103.212.121.53

200 OK

3.0 kB

URL HTTP/2
www.notificationtest.com/assets/img/avatar.png
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
PNG image data, 65 x 64, 8-bit/color RGB, interlaced\012- data
Size
3.0 kB (3046 bytes)
Hash
3df693f5b94ed580ac7df66d94696ff5
17d34489dac632d325d1ead5c938f8bc9fdad1cf
18d45f708b775c20fea4bbb9708708f19279f2a82b95e1fb8337cd10d9e58d9d

HTTP Headers

GET /assets/img/avatar.png HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:58 GMT
content-type: image/png
content-length: 3046
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:57 GMT
last-modified: Sat, 18 Dec 2021 08:23:38 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/bootstrap/dist/js/bootstrap.bundle.min.js

103.212.121.53

200 OK

20 kB

URL HTTP/2
www.notificationtest.com/assets/lib/bootstrap/dist/js/bootstrap.bundle.min.js
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (65297)
Size
20 kB (19833 bytes)
Hash
b0f705ffeedb4845a2088911b416b87d
3b73d82f6f0accb4bc7f38aff17975aff4d2f423
f5932ec9f98421a2572bee8db6c5e084e2a109a0a72588f64ce2a7fa8b9e31a5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/lib/bootstrap/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
content-length: 19833
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:58 GMT
last-modified: Sat, 18 Dec 2021 08:24:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/perfect-scrollbar/js/perfect-scrollbar.jquery.min.js

103.212.121.53

200 OK

6.1 kB

URL HTTP/2
www.notificationtest.com/assets/lib/perfect-scrollbar/js/perfect-scrollbar.jquery.min.js
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (25299)
Size
6.1 kB (6143 bytes)
Hash
913f3b39e69a4dfbf75d233d07c6fa65
987cb48a6f315f864a7d7c3410b6cf64b0be78b9
0f68a1a0d9c0d9a6c487dcfaea01f96fd0c39fdec0f41dedb86154751fcc823b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/lib/perfect-scrollbar/js/perfect-scrollbar.jquery.min.js HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
content-length: 6143
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:58 GMT
last-modified: Sat, 18 Dec 2021 08:24:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/jquery/jquery.min.js

103.212.121.53

200 OK

30 kB

URL HTTP/2
www.notificationtest.com/assets/lib/jquery/jquery.min.js
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (32058)
Size
30 kB (29485 bytes)
Hash
565a9660631a8e6a629374b776b4564e
1ef583810a3b446dbfb2e646c8dd04baada714fc
36b44867606f8e730433691461a559f64238444a406d1c3e078f9336c7314dbe

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/lib/jquery/jquery.min.js HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
content-length: 29485
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:58 GMT
last-modified: Sat, 18 Dec 2021 08:24:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/jquery.nestable/jquery.nestable.js

103.212.121.53

200 OK

3.7 kB

URL HTTP/2
www.notificationtest.com/assets/lib/jquery.nestable/jquery.nestable.js
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text
Size
3.7 kB (3698 bytes)
Hash
817bd20fcdd0e61fc2298348b0a4bc5b
889c1ddce4d8438df6bd0fbf45f84dd1dd0a974a
3e0698ce7f5b457720a4e38cb696e298a2075284c3ec587ac883af5b2dcdf8d9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/lib/jquery.nestable/jquery.nestable.js HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
content-length: 3698
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:58 GMT
last-modified: Sat, 18 Dec 2021 08:24:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/js/app.js

103.212.121.53

200 OK

22 kB

URL HTTP/2
www.notificationtest.com/assets/js/app.js
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (65447)
Size
22 kB (22357 bytes)
Hash
d1d3a34dc21f9849a432e2fbb2fe111a
f3a43dd6849ebe11be785935fe4714c304f1e7de
32fc840313709049abc495bc0de8bf6edf00f190c68eda44390959ac3db03d40

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/app.js HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
content-length: 22357
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:58 GMT
last-modified: Sat, 18 Dec 2021 08:23:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/datetimepicker/js/bootstrap-datetimepicker.min.js

103.212.121.53

200 OK

8.6 kB

URL HTTP/2
www.notificationtest.com/assets/lib/datetimepicker/js/bootstrap-datetimepicker.min.js
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (35163), with no line terminators
Size
8.6 kB (8568 bytes)
Hash
fd03ef1131a209c8c4de889b72bc425c
2c6be793efa50a8e960cd605b9c6be243bb174f4
1c6cb7fd57bfb9181d3f5e610f7a8cdc831a0826bfa23da587b629e11c9aea45

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/lib/datetimepicker/js/bootstrap-datetimepicker.min.js HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
content-length: 8568
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:58 GMT
last-modified: Sat, 18 Dec 2021 08:24:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/moment.js/min/moment.min.js

103.212.121.53

200 OK

16 kB

URL HTTP/2
www.notificationtest.com/assets/lib/moment.js/min/moment.min.js
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (51265), with no line terminators
Size
16 kB (16301 bytes)
Hash
a48caea3e9b4d60aaf457141b0289586
c2012ffc12cdd94a6bf37d2a1f6a3abbcfae8b2f
58f05a84ef47172e074b3d72f97c2ec7087369ac252b7d5b7d66c95f8044334f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/lib/moment.js/min/moment.min.js HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
content-length: 16301
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:58 GMT
last-modified: Sat, 18 Dec 2021 08:24:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/mzadat.png

103.212.121.53

200 OK

33 kB

URL HTTP/2
www.notificationtest.com/mzadat.png
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
PNG image data, 802 x 217, 8-bit/color RGBA, non-interlaced\012- data
Size
33 kB (33394 bytes)
Hash
4cf155c3f6c7e210d72b300cef9aa5d0
65c4e392c51a92c87a0a43a25c8e25af12089261
01fc6c14ce6b8cad2bab8ae49cb362928b008ba0d736755b5f2edbe38c14f101

HTTP Headers

GET /mzadat.png HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:58 GMT
content-type: image/png
content-length: 33394
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:58 GMT
last-modified: Sat, 18 Dec 2021 08:25:46 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/jquery-ui/jquery-ui.min.js

103.212.121.53

200 OK

62 kB

URL HTTP/2
www.notificationtest.com/assets/lib/jquery-ui/jquery-ui.min.js
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (32035)
Size
62 kB (62344 bytes)
Hash
bc51e7943c714d77ce3a0f556c734668
79e621b40d16da5c61a4ddfd264b15c80b8e4a39
ad2f7b0a0db6ff0bc3558e8c73f8a8894d37560a51f430a2aa9e6ba0b33554ea

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/lib/jquery-ui/jquery-ui.min.js HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
content-length: 62344
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:58 GMT
last-modified: Sat, 18 Dec 2021 08:24:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/bootstrap-slider/bootstrap-slider.min.js

103.212.121.53

200 OK

8.1 kB

URL HTTP/2
www.notificationtest.com/assets/lib/bootstrap-slider/bootstrap-slider.min.js
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
ASCII text, with very long lines (32007)
Size
8.1 kB (8092 bytes)
Hash
748c0573a7751c9ffb7bbbef4be396fc
3c00f13f93b6be35bc134de17e249b9a9b9009ac
a12b7b44ae208b4aaa2abb60094cf8ad29f94ffacc6bcf81ddf68ba0ce0c470a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/lib/bootstrap-slider/bootstrap-slider.min.js HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:59 GMT
content-type: application/javascript
content-length: 8092
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:58 GMT
last-modified: Sat, 18 Dec 2021 08:24:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/select2/js/select2.min.js

103.212.121.53

200 OK

18 kB

URL HTTP/2
www.notificationtest.com/assets/lib/select2/js/select2.min.js
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
Unicode text, UTF-8 text, with very long lines (64217), with no line terminators
Size
18 kB (17594 bytes)
Hash
7c34c339ecbb97ca4a15ba80251c7a24
7f1376f00c40e5d1e3a74757aa969351d7e166ed
64d0e2a51b99d48cf82e81477572820bb8821d78bd75067a1a1a220ac4d74522

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/lib/select2/js/select2.min.js HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:59 GMT
content-type: application/javascript
content-length: 17594
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:59 GMT
last-modified: Sat, 18 Dec 2021 08:24:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/select2/js/select2.full.min.js

103.212.121.53

200 OK

20 kB

URL HTTP/2
www.notificationtest.com/assets/lib/select2/js/select2.full.min.js
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
Unicode text, UTF-8 text, with very long lines (64217), with no line terminators
Size
20 kB (19624 bytes)
Hash
2ed1dcb0d54091f3dd4b697e7f1ca525
56d2acf53b61522726033707a6d19a6cacd24507
03d80e8d8fb6a3a15fba6c25af41544ca143f2a64ee7e2b608be3020c17e87f9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/lib/select2/js/select2.full.min.js HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:59 GMT
content-type: application/javascript
content-length: 19624
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:59 GMT
last-modified: Sat, 18 Dec 2021 08:24:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/roboto/Roboto-Regular.woff2

103.212.121.53

200 OK

64 kB

URL HTTP/2
www.notificationtest.com/assets/lib/roboto/Roboto-Regular.woff2
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
Web Open Font Format (Version 2), TrueType, length 64184, version 2.0\012- data
Size
64 kB (64184 bytes)
Hash
b2a6341ae7440130ec4b4b186aff8413
a18bcf95ada923da31f176137b8add02b0ba60f3
fdffd706005defc7e4f5e07cac7cc371c5bb0b0c895e5ec7c16c1ea0baa43f59

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/lib/roboto/Roboto-Regular.woff2 HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.notificationtest.com/assets/css/app.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:59 GMT
content-type: font/woff2
content-length: 64184
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:59 GMT
last-modified: Sat, 18 Dec 2021 08:23:56 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/img/logo.png

103.212.121.53

200 OK

5.4 kB

URL HTTP/2
www.notificationtest.com/assets/img/logo.png
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
5.4 kB (5418 bytes)
Hash
ba49a73c2b595990b89dc276208a098d
30016f2ee2927023a11617aefc81bc21a4f6ff02
b0bb5ff24d16b7c46a960d227de8ab2f5730de640249f36a69c9f7a7cc385324

HTTP Headers

GET /assets/img/logo.png HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/assets/css/app.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:59 GMT
content-type: image/png
content-length: 5418
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:59 GMT
last-modified: Sat, 18 Dec 2021 08:23:36 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/roboto/Roboto-Bold.woff2

103.212.121.53

200 OK

64 kB

URL HTTP/2
www.notificationtest.com/assets/lib/roboto/Roboto-Bold.woff2
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
Web Open Font Format (Version 2), TrueType, length 63596, version 2.0\012- data
Size
64 kB (63596 bytes)
Hash
ab96cca26751239828b8e9c524cca5bb
9074123ec9d4d6a7e21c2bee3f0110ca9a73733d
6a57148ab4e668ab23194912a9d40f0b254a7dc4dd6391c6f039f079b22a3ed4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/lib/roboto/Roboto-Bold.woff2 HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.notificationtest.com/assets/css/app.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:59 GMT
content-type: font/woff2
content-length: 63596
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:59 GMT
last-modified: Sat, 18 Dec 2021 08:23:56 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/lib/material-design-icons/fonts/Material-Design-Iconic-Fontd1f1.woff2?v=2.2.0

103.212.121.53

200 OK

38 kB

URL HTTP/2
www.notificationtest.com/assets/lib/material-design-icons/fonts/Material-Design-Iconic-Fontd1f1.woff2?v=2.2.0
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
Web Open Font Format (Version 2), TrueType, length 38384, version 1.0\012- data
Size
38 kB (38384 bytes)
Hash
a4d31128b633bc0b1cc1f18a34fb3851
6ee4c79372c3fd679706306ede47e4b03cf53d60
e8eea96e29a7c0a72612ab85ca3229979666467a28349642c2176e7189a1a39c

HTTP Headers

GET /assets/lib/material-design-icons/fonts/Material-Design-Iconic-Fontd1f1.woff2?v=2.2.0 HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.notificationtest.com/assets/lib/material-design-icons/css/material-design-iconic-font.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:59 GMT
content-type: font/woff2
content-length: 38384
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:59 GMT
last-modified: Sat, 18 Dec 2021 08:24:18 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.notificationtest.com/assets/img/logo-fav.png

103.212.121.53

200 OK

9.4 kB

URL HTTP/2
www.notificationtest.com/assets/img/logo-fav.png
IP
103.212.121.53:0
ASN
#135222 MilesWeb Internet Services Pvt Ltd

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
9.4 kB (9426 bytes)
Hash
5966dd0169bfdecd0e7423b3667f9dbb
c9f8e8e9c6a5826bbeb6f461577e86ebf88eed66
28efd4a080cddff5f2eee5e84285f20a58abdb514ab3de8c095aedc5636ae1e0

HTTP Headers

GET /assets/img/logo-fav.png HTTP/1.1
Host: www.notificationtest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.notificationtest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:10:59 GMT
content-type: image/png
content-length: 9426
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 01:10:59 GMT
last-modified: Sat, 18 Dec 2021 08:23:36 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations