r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3479
Expires: Mon, 14 Nov 2022 17:58:54 GMT
Date: Mon, 14 Nov 2022 17:00:55 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 832aecaba9f06ee2d39d4d4bea65f13c
7195d6ffadfdbc6fc8e92c63ae28d4a3038a72dc
a437509314a97065de6c7b9e5e2b4b61f0234b45f5f5bf2649cbdf499577bfd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2469
Cache-Control: max-age=151891
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 17:00:55 GMT
Etag: "637218f5-1d7"
Expires: Wed, 16 Nov 2022 11:12:26 GMT
Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 14 Nov 2022 16:44:34 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 981
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c88bc06741ab9fb81c2544acfcc34aa2
362cab19cff5aba27f472cc00071d5dfa38192e4
314ba27975f458e13917b2be91c9d5989a3e57c9e94b5a84dd52d0e21d27ae7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F"
Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2873
Expires: Mon, 14 Nov 2022 17:48:48 GMT
Date: Mon, 14 Nov 2022 17:00:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: MivpwGm3+nywZ1fxjLxW7qfQq30KO0UWsiDiNvjYLmJRScARKxFr6PRMri2tP7ziuDYRPKezp8k=
x-amz-request-id: KP8Q53JHF71H6DME
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 14 Nov 2022 16:51:11 GMT
age: 584
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 17:00:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 14 Nov 2022 16:44:48 GMT
cache-control: public,max-age=3600
age: 967
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3200044057cb585f1a435c0efece61c8
8305d5b5891288aa9996b4b4ca6fce2265413194
df45704534a24928e7659a6d8cd1b5ac9ffa9b224b02b34a2d6aed5ef69fd586
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5881
Cache-Control: max-age=150246
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 17:00:56 GMT
Etag: "63720535-1d7"
Expires: Wed, 16 Nov 2022 10:45:02 GMT
Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.69.31101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.69.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9Ry0QMnanJKQ3yGdUGAw3Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Iqr9VRfdoMKuVnh+RpMT3xt4/Do=
microsoft-365protection.com/
204.93.169.73301 Moved Permanently 0 B URL HTTP/1.1 microsoft-365protection.com/
IP 204.93.169.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 14 Nov 2022 17:00:55 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://microsoft-365protection.com/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 929d046b7cbed155022099e982ba0592
18ff58f5b4d98748552d6604bdcba9c57eb8f412
3c70c27c11afeaea96e782a0e7b7ae9c2f3ed35c94673fcd4361cb7406b078a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9116
Expires: Mon, 14 Nov 2022 19:32:53 GMT
Date: Mon, 14 Nov 2022 17:00:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 929d046b7cbed155022099e982ba0592
18ff58f5b4d98748552d6604bdcba9c57eb8f412
3c70c27c11afeaea96e782a0e7b7ae9c2f3ed35c94673fcd4361cb7406b078a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9116
Expires: Mon, 14 Nov 2022 19:32:53 GMT
Date: Mon, 14 Nov 2022 17:00:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 929d046b7cbed155022099e982ba0592
18ff58f5b4d98748552d6604bdcba9c57eb8f412
3c70c27c11afeaea96e782a0e7b7ae9c2f3ed35c94673fcd4361cb7406b078a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9116
Expires: Mon, 14 Nov 2022 19:32:53 GMT
Date: Mon, 14 Nov 2022 17:00:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfc7286992b2cebdf1ebb58f85576e61
a49a1bf9716e32979810931d04d1f84216d096c1
7c5288d4ae39202e00c7fd482faa10b5610d31edf0bba9fc69fa4fc1f422b837
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7494
x-amzn-requestid: b07e424a-c11e-442f-8636-e0670cb6f864
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bd8heGBtoAMFYQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f0e09-7dcda14e5077563d726752ae;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 03:07:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -7x_52WsOuP18MV9Q9oJFOdpvIm35aZngCAjZvWFau3P3fMY5NkElg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 04:11:16 GMT
age: 46181
etag: "a49a1bf9716e32979810931d04d1f84216d096c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac5583760066002adcbba078f6dd1be4
39ca30395586cf1a0a0fa739f7279af807f548a3
cb5986e3330858716cd290297a81d77e371b838637fc57eece94810211715a7c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9921
x-amzn-requestid: 933f6aa6-3bec-4f71-aba8-ef9e77942ae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjycgGB-oAMFsDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371644f-47d26359464b62b7276316e6;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: cl4CvcuSz4XqydcANekLjl49PkkKUuMs_EsPwEK0pu_VF57S3szecA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:52:20 GMT
age: 68917
etag: "39ca30395586cf1a0a0fa739f7279af807f548a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:45:57 GMT
age: 69300
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F213417cd-cf64-4d28-ae86-bd6f16cecb3b.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F213417cd-cf64-4d28-ae86-bd6f16cecb3b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6f1e763f44800e4de06d69a3b2af74da
35afe48832221fe42de30260b9bcb15867109031
5f234c025d1f586b4364d2ef8c2818d3d4d441691444bb885e89f4c150b3d2a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F213417cd-cf64-4d28-ae86-bd6f16cecb3b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9322
x-amzn-requestid: 0becd817-a29e-46bf-b9d6-2d18e12f5fe9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyDvE8DoAMFsiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-5b4bf1674c4edf80458cf53f;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dMpz1U6HlmADIQZWvt1WR4D_nqlatl0mYBwg4rI6HDkKFbJCnivOgA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:50:08 GMT
age: 69049
etag: "35afe48832221fe42de30260b9bcb15867109031"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a0db3498954921b58948ad8a4e7fd49f
6b618c3ff6e589f9e01650bd0a619acb70d8004e
fa3baa9e32e455ab2eeefab0c76714bf0ff5f67a5ccd7c10b3f5c21d8138c5cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6535
x-amzn-requestid: 3333aa65-c0c7-4704-9af1-fb0a49f830fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyDtHbhoAMFSsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-51c3e4513240b7e5662b8e6e;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6dTOcWIKFuo-Thf3zUH_1WY70yFyQkj3w2xPrb6Ntjf8TUFPVG-_lA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:54:01 GMT
age: 68816
etag: "6b618c3ff6e589f9e01650bd0a619acb70d8004e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13f1630e-d21f-4f16-8990-798920b90e02.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13f1630e-d21f-4f16-8990-798920b90e02.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 963e34ce83d464bdc36f27599567a6b2
2ec4f95fcc2f343613d6bb659f6b58b541f426e6
027d57074d662088658af176b9f5cbd017b5f8f3606fcb8cea2f143cd7736b7e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13f1630e-d21f-4f16-8990-798920b90e02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5018
x-amzn-requestid: 0b73ffed-ae3a-460d-889e-dc82205fecf8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bHbK2FxoIAMFuMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63660bde-15803aad254e64b72bc0059c;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 07:08:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BA5SbaPNWuc9-0AwNtWXmCKeMh-3t0DipwjmTJqOMY3_rUHt8cC5rg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:55:15 GMT
age: 68742
etag: "2ec4f95fcc2f343613d6bb659f6b58b541f426e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 17:00:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
microsoft-365protection.com/wp-includes/css/classic-themes.min.css?ver=1
204.93.169.73200 OK 217 B URL HTTP/2 microsoft-365protection.com/wp-includes/css/classic-themes.min.css?ver=1
IP 204.93.169.73:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:39 GMT
accept-ranges: bytes
content-length: 217
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 17:00:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
microsoft-365protection.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1
204.93.169.73200 OK 95 kB URL HTTP/2 microsoft-365protection.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP 204.93.169.73:0
File type ASCII text, with very long lines (47826)
Hash 4cdcd4a2c77fccb74825eaf2d6733091
00d4ad404f681af9044bb4cc6ed5e2e9f641cc4a
187af6783dd59cd3b9dd90e77b3daa1509c1c3c18f5ce5d6fe2133f9bc3828df
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:39 GMT
accept-ranges: bytes
content-length: 94821
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1
204.93.169.73200 OK 19 kB URL HTTP/2 microsoft-365protection.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1
IP 204.93.169.73:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:40 GMT
accept-ranges: bytes
content-length: 18617
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
204.93.169.73200 OK 2.7 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 204.93.169.73:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:23 GMT
accept-ranges: bytes
content-length: 2731
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/niche-frame.css?ver=1.0
204.93.169.73200 OK 9.4 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/niche-frame.css?ver=1.0
IP 204.93.169.73:0
Hash c5958d6e78d405541f965f43a580f2c3
3dfb142eb9b89608b9031f647b545d71bc6bc28f
7742fcd087cec33a9200b4063bcbad30f1a38c6891b49735df8a935e13694141
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/css/niche-frame.css?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 9361
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
204.93.169.73200 OK 31 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 204.93.169.73:0
File type ASCII text, with very long lines (30837)
Hash 008e0bb5ebfa7bc298a042f95944df25
93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c
c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 30999
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/animate.min.css?ver=3.7.2
204.93.169.73200 OK 58 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/animate.min.css?ver=3.7.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (57919)
Hash bc1a6a99c43f5ccc97d2d350bde13f74
29a6f54569c193ffd6116f03be3eb42359c60eb7
3c770e90f98eb21b0c042fafb49755af93306fbaf42e449524f94fae9fc83295
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/css/animate.min.css?ver=3.7.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 58129
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/themify-icons.min.css?ver=1.0.0
204.93.169.73200 OK 14 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/themify-icons.min.css?ver=1.0.0
IP 204.93.169.73:0
File type ASCII text, with very long lines (13815)
Hash ad7c7f40b29d04995819dd78227a7639
659c59b55e80d33300a37e9e09db6d6931b2696e
15d13067ff0abcb3245c913aa97a630e966060366d40dd7e3bd3d1979b692881
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/css/themify-icons.min.css?ver=1.0.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 13837
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/magnific-popup.min.css?ver=1.0
204.93.169.73200 OK 5.3 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/magnific-popup.min.css?ver=1.0
IP 204.93.169.73:0
File type ASCII text, with very long lines (5254)
Hash 93a9b128116bbbdb458f9fb370de10e5
a048721c8b527036254da0f55e1dbf9140cbd8fe
30594e52f4572420615094ce1cebfdcf2354b5ddcf878d04b4cd7ac286ced50a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/css/magnific-popup.min.css?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 5279
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/linea.min.css?ver=1.0.0
204.93.169.73200 OK 40 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/linea.min.css?ver=1.0.0
IP 204.93.169.73:0
File type ASCII text, with very long lines (39952)
Hash f708578ba985a553e9b199db6b817b24
66112bf73505e90f45e03e316da79b65e86194d3
3032857e796b528377ed2de02872e410b0b204d282b052502b319e669fa1a0ac
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/css/linea.min.css?ver=1.0.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 39974
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/slick.min.css?ver=1.0
204.93.169.73200 OK 1.3 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/slick.min.css?ver=1.0
IP 204.93.169.73:0
File type ASCII text, with very long lines (1332)
Hash e2da9ea13aaf27180b9f6c3e3f9e8f76
dc8701071fd44aee818091bd7670508bde95f021
733adcb8dda250540f9814fd36b4953b5cb1ecb8eb108b1f79483650b32260c5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/css/slick.min.css?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 1345
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/slick-theme.min.css?ver=1.0
204.93.169.73200 OK 2.4 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/slick-theme.min.css?ver=1.0
IP 204.93.169.73:0
File type Unicode text, UTF-8 text, with very long lines (2390)
Hash 2602ea7db427142d51667a4389063ba2
49a127b7a416d21d9e3b732afe22d8b4085157f3
91093d5e2f1ad49f5b083046ebaa144345905818973cfc008aeda7c962d99c9f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/css/slick-theme.min.css?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 2431
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/owl.carousel.min.css?ver=2.3.4
204.93.169.73200 OK 3.4 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/owl.carousel.min.css?ver=2.3.4
IP 204.93.169.73:0
File type ASCII text, with very long lines (3184)
Hash b2752a850d44f50036628eeaef3bfcfa
fba46353cf90450ef3d362a123f1e7af3e8c561e
521410e1fc44780061e09adc980275fb5ea277fd5d9e538454214ec4379ff4bc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/css/owl.carousel.min.css?ver=2.3.4 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 3351
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/css/main.css?ver=0.2
204.93.169.73200 OK 3.9 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/css/main.css?ver=0.2
IP 204.93.169.73:0
File type ASCII text, with CRLF line terminators
Hash 704bd47f9ddd6115fc724c2742b48545
f3e1c1b73ccfb5f03dd2f3dc6ede2b9a91ea0151
85c029ec6a7886c336818ab7279e4d5f28de94d8250aed7391642ee04e932c4d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/css/main.css?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 3900
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/medical-business/style.css?ver=6.1
204.93.169.73200 OK 5.0 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/medical-business/style.css?ver=6.1
IP 204.93.169.73:0
File type Unicode text, UTF-8 text, with very long lines (1165), with CRLF line terminators
Hash 0c2a3e2d2bf6c80d7e1da1024c27d47b
5664d4172dbbfbddff9c8cff4faae4638475342b
305bb78ae49f7e156cb40998dd09a5ff9734b9f1c528354dd40aac3705dde9fd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/medical-business/style.css?ver=6.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:35 GMT
accept-ranges: bytes
content-length: 4988
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/juxtapose.css?ver=1.2.1
204.93.169.73200 OK 5.7 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/juxtapose.css?ver=1.2.1
IP 204.93.169.73:0
Hash 35d553f7fbce304533867600f2ff0176
037d47a629d1604e022420dc8e73c3996d13a005
50b28d8ed0efade9a28a42de1942ccca8828c17878369fda08397cc2d14de86b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/css/juxtapose.css?ver=1.2.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 5739
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/fonts/17e1e45f3af6b4c2a77e41d1a90ebb9d.css
204.93.169.73200 OK 3.0 kB URL HTTP/2 microsoft-365protection.com/wp-content/fonts/17e1e45f3af6b4c2a77e41d1a90ebb9d.css
IP 204.93.169.73:0
Hash 71609fdc1e14dbece1689f58148fc910
512e790ec05010adbc4d030e9bb74a60198564ef
7c2b4795bdac2712ce1889f6c20b572cbb436de2cffe75e172c969db59ffbf3a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/fonts/17e1e45f3af6b4c2a77e41d1a90ebb9d.css HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:02:03 GMT
accept-ranges: bytes
content-length: 3024
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/uploads/elementor/css/post-28.css?ver=1666642247
204.93.169.73200 OK 1.1 kB URL HTTP/2 microsoft-365protection.com/wp-content/uploads/elementor/css/post-28.css?ver=1666642247
IP 204.93.169.73:0
File type ASCII text, with very long lines (1118), with no line terminators
Hash a444f23221797ba9fbf742230734df06
69d079de050adf586d3b9388aa31411eb62b25f4
432734079f6617d974b95ecf368ecdf390d00785abd15b0e32246852ba73370c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-28.css?ver=1666642247 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:49 GMT
accept-ranges: bytes
content-length: 1118
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/css/responsive.css?ver=0.2
204.93.169.73200 OK 6.6 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/css/responsive.css?ver=0.2
IP 204.93.169.73:0
File type ASCII text, with CRLF line terminators
Hash 951f60b44350e27b1c4e7ed35d731eb8
8fce00f25e7a6246f5e3c614a7b86418eeecebfe
8185ce9574a9732d3c5be430e1c84511822540bd092c0e9352c53c93b2f31530
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/css/responsive.css?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 6593
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/responsive.css?ver=1.0
204.93.169.73200 OK 9.6 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/responsive.css?ver=1.0
IP 204.93.169.73:0
Hash 39b2869c3380703da4a24b034c377abf
e6552306c56de414775da5eed982d46eb9c3df59
25bec2cfad887fd1a62f6b802a8c12234fb89c6f54ae468518345deba1e1c528
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/css/responsive.css?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 9591
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/uploads/elementor/css/post-35.css?ver=1668434760
204.93.169.73200 OK 6.2 kB URL HTTP/2 microsoft-365protection.com/wp-content/uploads/elementor/css/post-35.css?ver=1668434760
IP 204.93.169.73:0
File type ASCII text, with very long lines (6234), with no line terminators
Hash d89eb95249b722d48471b62037943b96
2d69ceefc52cca5237e218a5d2234838503c09ab
c7d2517d4cc6a86eae7ec645ac5bceaa390f574c37caddbe4b6b0eb8617e7f7c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-35.css?ver=1668434760 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:49 GMT
accept-ranges: bytes
content-length: 6234
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/style.css?ver=6.1
204.93.169.73200 OK 17 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/style.css?ver=6.1
IP 204.93.169.73:0
File type Nim source code, ASCII text, with very long lines (537), with CRLF line terminators
Hash 1ea7e9e9b74d638e919a8491b812f517
9e72719201e514e049cfd3791f2157ba45d3b6e9
8bd620d1478c23fb0a04973196d33208e5b1d97564883a3e70c7c2f034a48b20
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/style.css?ver=6.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:35 GMT
accept-ranges: bytes
content-length: 16685
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.3.2
204.93.169.73200 OK 3.4 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.3.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (3432)
Hash 9a9ecfe405e38be1cf08b752d3afbda9
8f55bc1619b42231d464bf965c67cfddf6b29df9
b9b869f479a2181cbc0c5d8b6e5bb8bb9cbf81d59a18d056681d8b3de448b1d4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.3.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:27 GMT
accept-ranges: bytes
content-length: 3433
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
204.93.169.73200 OK 11 kB URL HTTP/2 microsoft-365protection.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:40 GMT
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
204.93.169.73200 OK 19 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 204.93.169.73:0
File type ASCII text, with very long lines (19233)
Hash d183c598fd582fe997f6782afed84f9b
7799820e0e849e8484543c3360a8d8cc62baa32f
83059e4c1a5c210e5585d96779fe655170817193d43e247c78dffaae7b7ba3a9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 19279
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/bootstrap/js/bootstrap.min.js?ver=0.2
204.93.169.73200 OK 37 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/bootstrap/js/bootstrap.min.js?ver=0.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (32034), with CRLF line terminators
Hash e7d9a06cf9053c51cd4ad3386da0659a
e45bf1054704a1fdfc4ee2713a16bf9283dea995
9a3724b2051a82064c923cbd68343dcb04014adac3ccb8c4d8ac6a31ba2e12cd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/bootstrap/js/bootstrap.min.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 36822
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.counterup.min.js?ver=1.0
204.93.169.73200 OK 1.1 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.counterup.min.js?ver=1.0
IP 204.93.169.73:0
File type ASCII text, with very long lines (915)
Hash afe73b20780061580a1e9fdf432e5927
c3628d003a4bbd07776cec6c64251c542489405c
ad0489545320237ed26cd40dea4e6d303532637d379144b10c1e9f3f87fc20ce
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.counterup.min.js?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 1069
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/css/component.css?ver=0.2
204.93.169.73200 OK 66 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/css/component.css?ver=0.2
IP 204.93.169.73:0
File type Unicode text, UTF-8 text, with very long lines (2255), with CRLF line terminators
Hash 5b35e08e35a6ec6c95ccd6bc3f067b54
abeb19e3d11ab448c7874dd83611517fdcc1cd09
84f66947c961d99d1460bb621ba5baf98e093b8b60a2bdc1c99bdaeecb7beeb3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/css/component.css?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 66056
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
204.93.169.73200 OK 5.6 kB URL HTTP/2 microsoft-365protection.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 204.93.169.73:0
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:40 GMT
accept-ranges: bytes
content-length: 5629
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/icons/font-awesome-5/css/all.css?ver=0.2
204.93.169.73200 OK 74 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/icons/font-awesome-5/css/all.css?ver=0.2
IP 204.93.169.73:0
Hash 30bcab9c086559aad11d39876ecebcec
8a4a55db46c5dbfef9c6703fa2d04e89cbfcf633
0cb8cc3fee4275e182236ab19c3aae55274f43aa0ffde9c0510d8d59fcf8e5dc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/icons/font-awesome-5/css/all.css?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 73577
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/
204.93.169.73200 OK 100 kB URL HTTP/2 microsoft-365protection.com/
IP 204.93.169.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (18303), with CRLF, LF line terminators
Size 100 kB (100102 bytes)
Hash 71b8485558a539b189d47077fda3104f
bfb7dc67884b0fca533deb4b291a6bb5cb579b57
6ae3abdc9debd172b448a924b62aa05f35f5719a2e5a656f774162c0f2a7c9a1
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
link: <https://microsoft-365protection.com/wp-json/>; rel="https://api.w.org/", <https://microsoft-365protection.com/wp-json/wp/v2/pages/35>; rel="alternate"; type="application/json", <https://microsoft-365protection.com/>; rel=shortlink
content-type: text/html; charset=UTF-8
date: Mon, 14 Nov 2022 17:00:57 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
204.93.169.73200 OK 9.9 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 204.93.169.73:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash dc74c9954b1944928eca0172c3b8c6b3
e9e00e587e0e28491b69563b4e768945ff2e0ed5
d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:23 GMT
accept-ranges: bytes
content-length: 9937
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
204.93.169.73200 OK 12 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 204.93.169.73:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 1f9968a7c7a2a02491393fb9d4103dae
0032c8a6a692e6f072b2cef20828449402fdd57d
f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:23 GMT
accept-ranges: bytes
content-length: 12310
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/juxtapose.js?ver=1.2.1
204.93.169.73200 OK 24 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/juxtapose.js?ver=1.2.1
IP 204.93.169.73:0
File type Algol 68 source text\012- Pascal source, ASCII text
Hash efed5240f25f41cd4dfb6e219ec4476b
1fb270f7f817febfe0ab92009bd73ff1b9e78ff1
fdb8cf5c6dbe4018f1679127971826a17d940ea0f5da82f2334cc32231032582
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/js/juxtapose.js?ver=1.2.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 23674
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.inview.min.js?ver=0.2
204.93.169.73200 OK 1.4 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.inview.min.js?ver=0.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (1437), with CRLF line terminators
Hash 5db0816885c5354ee2fbb0b9e55f4170
560f158cf0779d69ef137e74e8a7606c61775169
a55df02343adab5792a719648a70bd0340ed0361115ab4a778fe89ed7886c39a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/js/jquery.inview.min.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 1439
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/scripts.js?ver=1.0
204.93.169.73200 OK 9.9 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/scripts.js?ver=1.0
IP 204.93.169.73:0
File type ASCII text, with very long lines (350)
Hash ab2da4b687b794e80743d1b5d381a843
59c4f52433a8f563a7485b8bfa2d6364c12c64a1
f1a83c4124032445c2b0efae89c12ce7917ff4bf2bdd5661a0963ab7187db67d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/js/scripts.js?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 9874
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.slicknav.min.js?ver=0.2
204.93.169.73200 OK 6.2 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.slicknav.min.js?ver=0.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (6129), with CRLF line terminators
Hash 940e6830dd4b2610e5eaffa67c1fee5b
f27e1e570be0d4610f5a5af5638a00d58b897960
16cd062e034e6a5022767dd670caa436486b945cc1362d87e92d2d5373749b01
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/js/jquery.slicknav.min.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 6232
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/uploads/2022/11/cropped-mslogo35.png
204.93.169.73200 OK 4.7 kB URL HTTP/2 microsoft-365protection.com/wp-content/uploads/2022/11/cropped-mslogo35.png
IP 204.93.169.73:0
File type PNG image data, 165 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ad957746843159b09bc7d1951a7c7ec
0a360cebd94cc43776b88007adcf0d1fc40bb5fc
7f69c27dc8181c005555790b5724a516300893b4db33469cda1bfdd65b60f001
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/11/cropped-mslogo35.png HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:37 GMT
accept-ranges: bytes
content-length: 4744
content-type: image/png
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
204.93.169.73200 OK 108 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
IP 204.93.169.73:0
File type ASCII text, with very long lines (65497)
Size 108 kB (108428 bytes)
Hash bb929f65f0502bd9c7188e0f2485caee
ccefd7316236b8db7ab521eda604456492388a59
b370f6233409b571bdb0abef8bdee915f95fd28740fa9a1f28953d1037eeb232
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:25 GMT
accept-ranges: bytes
content-length: 108428
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.matchHeight.min.js?ver=0.7.2
204.93.169.73200 OK 3.4 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.matchHeight.min.js?ver=0.7.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (3278)
Hash 197a6ec11e0bad27417781b1df3a2baf
3170bb11c04ba935f496a45ae62a06088f092847
0b8528530d0f0403897b1747581fa7ce52bc762c3693949ac42d463839c549cb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.matchHeight.min.js?ver=0.7.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 3375
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.matchHeight-min.js?ver=0.2
204.93.169.73200 OK 3.4 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.matchHeight-min.js?ver=0.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (521), with CRLF line terminators
Hash 59074a841215aa1353459bfa8974821b
8555d8b046c950c3f45b3d275df2ff78198c6b1c
0e26da87a906ba0edd7e53366e350be5939595b9337f5ffd91549e6b7dc0803f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/js/jquery.matchHeight-min.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 3393
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/bootstrap/css/bootstrap.min.css?ver=0.2
204.93.169.73200 OK 122 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/bootstrap/css/bootstrap.min.css?ver=0.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (65367), with CRLF line terminators
Size 122 kB (122232 bytes)
Hash ea033b140eccf09e5f8ea8c562cb29c3
85e56e3596c06acd99bb6ac383743dabc8b0de77
51d600c6396ced19a3b4fd1535dada4dafc1f68c0ffc5771b2b0a002e622f476
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/bootstrap/css/bootstrap.min.css?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 122232
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/css/style.css?ver=0.2
204.93.169.73200 OK 164 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/css/style.css?ver=0.2
IP 204.93.169.73:0
File type ASCII text, with CRLF line terminators
Size 164 kB (163825 bytes)
Hash 37591bf7d76faa36d22c2023edc2561e
19837986e75ffc7bb26ac3a9c1d48b822e0f8d08
af41f8255c4e3fec9bffcf70abe1bd9c4b0f4f2b065537903823cb73707dd147
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/css/style.css?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 163825
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.mousewheel.min.js?ver=0.2
204.93.169.73200 OK 2.7 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.mousewheel.min.js?ver=0.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (2659), with no line terminators
Hash b93c2f4a0158cf710fb33b4a79ef1a48
3ec6344a15197bc451c052c6d5962d876baca08b
27504ee6e928b649f9dbbac39418c1980cec1dcc49044ff85e81dfed24cee7e6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/js/jquery.mousewheel.min.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 2659
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/theia-sticky-sidebar.js?ver=0.2
204.93.169.73200 OK 16 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/js/theia-sticky-sidebar.js?ver=0.2
IP 204.93.169.73:0
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 57fc6833c91389acb956c8655a2e1094
5d2247f0b2ce97ea7fea15c82b19288fcf2b11e1
12a858bafa70df1cb8457f92b0c7663cff6d9121e2e58606596dd3cb21cd70a9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/js/theia-sticky-sidebar.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 15879
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/prognroll.js?ver=0.2
204.93.169.73200 OK 3.0 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/js/prognroll.js?ver=0.2
IP 204.93.169.73:0
File type ASCII text, with CRLF line terminators
Hash 5e85d1f211287927cb415e091c599f60
c382c156e063231c5d683a38ccfbac057b1e1e7a
cbac22cca8baee307300e84b45230d8366f3a2351295e8defae98774a6ef11ed
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/js/prognroll.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 2992
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/elementor/js/namedical-elementor.js?ver=6.1
204.93.169.73200 OK 10 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/elementor/js/namedical-elementor.js?ver=6.1
IP 204.93.169.73:0
Hash 166737c7f48be67e52464a30130c4d08
f004458827e70a654889eb5a3a3c8821eacd281a
f3b6ba95665e48e3b36fe957fb5c8c824adca6cce0fb9219f359e30bd871ca44
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/elementor/js/namedical-elementor.js?ver=6.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 10121
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
204.93.169.73200 OK 5.0 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
IP 204.93.169.73:0
File type ASCII text, with very long lines (4918)
Hash 40b9d7ccf0f819551e24c793b1331410
652f25c5c5ada11d6f98a3a6b0692f89a0cba560
189526e3c25dc1cd28633db393e38d926f86432f000908ed3f55aaef43778cc0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 4957
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.3.2
204.93.169.73200 OK 8.0 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.3.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (8016), with no line terminators
Hash a889ab4fcd44175db4bf271c83c50d37
dd57bf2e29b28491b610fcb758d8ab53f3c6649d
d2f2fe7e10c8a8cf933afea3f0fb4a89cf74262405024cd908e7d59f5f03c16c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.3.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:27 GMT
accept-ranges: bytes
content-length: 8016
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
204.93.169.73200 OK 12 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 12198
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/typed.min.js?ver=2.0.11
204.93.169.73200 OK 12 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/typed.min.js?ver=2.0.11
IP 204.93.169.73:0
File type ASCII text, with very long lines (11506)
Hash b05496a9ad4dc2858fd889abed3d1e1a
ad8a75bd4743122b5dbf517221506607588ec50b
49b8cd37d709cd17dda686bcd9ba97282e6e320fa8a9b5af540ccf96e6c274d7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/js/typed.min.js?ver=2.0.11 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 11749
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/isotope.min.js?ver=3.0.6
204.93.169.73200 OK 35 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/isotope.min.js?ver=3.0.6
IP 204.93.169.73:0
File type ASCII text, with very long lines (32019)
Hash 2afcff647ed260006faa71c8e779e8d4
c4e5994f24ee8c8d2cf2d6602f0b56b9096a2e98
081ae9baaacc857c1c2cb51de6dbd0e1eb811c2761ef01a50df373f2f6eefe22
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/js/isotope.min.js?ver=3.0.6 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 35445
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-includes/js/masonry.min.js?ver=4.2.2
204.93.169.73200 OK 24 kB URL HTTP/2 microsoft-365protection.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP 204.93.169.73:0
File type ASCII text, with very long lines (23966)
Hash 3b3fc826e58fc554108e4a651c9c7848
76778fd446e2ff2377588a7b4ac4d79f258427c9
e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:40 GMT
accept-ranges: bytes
content-length: 24138
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.magnific-popup.min.js?ver=1.1.0
204.93.169.73200 OK 20 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.magnific-popup.min.js?ver=1.1.0
IP 204.93.169.73:0
File type ASCII text, with very long lines (20087)
Hash 743ccc438e10ebe7e1def696d7b0884d
4e46db99cb1402bc916cfbd6df6af9519165a229
9cd173d2b12a4a3b2295ae2f67bca95a8916fcfbe8d528a85e8528d6baeca9b2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.magnific-popup.min.js?ver=1.1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 20217
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/custom.js?ver=0.2
204.93.169.73200 OK 23 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/js/custom.js?ver=0.2
IP 204.93.169.73:0
File type ASCII text, with CRLF line terminators
Hash 104dd2b9ad19ee021e260c9d419740cb
d381968ed10b748c83068175f3dca799a1dffea7
398759e020816dc01175099b0257f366c45825fff9fe34bb69c5fa5dde2e267c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/js/custom.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 22707
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
204.93.169.73200 OK 21 kB URL HTTP/2 microsoft-365protection.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 204.93.169.73:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 034bd11ecaf6fb9240d905245e42e202
ff136c394ed95badfc0107fb98a890dcff642828
ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:40 GMT
accept-ranges: bytes
content-length: 21440
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1
142.250.74.10200 OK 36 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1
IP 142.250.74.10:0
Hash 6e2a4aaf49251199ebb5efa274b57f18
42914534a1a1d5b7670d13fdbb3f261c4cf10244
fb452c5f5ffe9e3e86007624ef2d0bd362ade53d5d5bbe7a24e17e07dd4d4c27
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 14 Nov 2022 17:00:59 GMT
date: Mon, 14 Nov 2022 17:00:59 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/owl.carousel.min.js?ver=2.3.4
204.93.169.73200 OK 44 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/owl.carousel.min.js?ver=2.3.4
IP 204.93.169.73:0
File type ASCII text, with very long lines (31997)
Hash 8a51288159d1d0e507d60cb34b907408
b8e7126888e4d7b0cc8a93689b99de5a23da34cb
b4257f1c0bfa190cbd0f2ed3a8a4b02b1e11bfbd73fec2290d7fd6c522445380
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/js/owl.carousel.min.js?ver=2.3.4 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 44343
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
204.93.169.73200 OK 33 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
IP 204.93.169.73:0
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash be470f42763699211b6bde600035489e
4ba8055c19103b570b98018e45204e3cab1d141f
9b5283387ec103868d83ebcb8ed6516cf4b29fa6c1490991ce3aff980aadfe02
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 32929
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
204.93.169.73200 OK 40 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
IP 204.93.169.73:0
File type ASCII text, with very long lines (40474)
Hash 9195e52afe51faf6fa959276ea149ae8
5e18d4c1b5344b36fe9838b381d034a375619636
0e4b2020366cf0e467191b309fe8f9a946228e2834bf2c053ae7cb8facb1d97f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 40513
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/slick.min.js?ver=1.9.0
204.93.169.73200 OK 44 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/slick.min.js?ver=1.9.0
IP 204.93.169.73:0
File type ASCII text, with very long lines (32026)
Hash 22f75416148991671e580d8f4d2a2387
f5071717b9e5e3fe5d3aef69f9f20acf753bc1f8
357452f2a55c999ddd3afdcbce2c339d41cf7a01613d9d45ff88a753bb82f21d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/js/slick.min.js?ver=1.9.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 43881
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/swiper.js?ver=0.2
204.93.169.73200 OK 313 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/js/swiper.js?ver=0.2
IP 204.93.169.73:0
File type ASCII text, with CRLF line terminators
Size 313 kB (313417 bytes)
Hash 3d29eae52aa25990f50fd7f29043eb80
52e37056061b0a33ee9dcbecdf92ba3454efbd19
05fc0d0dc6f277542770c4f6d8d7a2d0bf19844dfbb83d506cfb1ad291b5abf4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/js/swiper.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 313417
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/uploads/2022/11/12345.png
204.93.169.73200 OK 12 kB URL HTTP/2 microsoft-365protection.com/wp-content/uploads/2022/11/12345.png
IP 204.93.169.73:0
File type PNG image data, 226 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash b43a803a5fc1cebe9bfa99645184214f
65771a6678e2c8de1cda7c650c4549c43cbd662d
278b6eeb8177d2e9a23f7b31db14f5b9dd1eceaafd4105d75a69a27a079513a1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/11/12345.png HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:37 GMT
accept-ranges: bytes
content-length: 12372
content-type: image/png
date: Mon, 14 Nov 2022 17:01:00 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/fonts/MontserratRegular.woff2
204.93.169.73200 OK 12 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/fonts/MontserratRegular.woff2
IP 204.93.169.73:0
File type Web Open Font Format (Version 2), TrueType, length 11980, version 1.0\012- data
Hash 1585b3548229c4471d5aca5876630ed9
acf2061b188646cf4b37449a4bd1c92daa8a0ac0
8e5654f0b3054f8f127c11937e99f9ab31f215a9762082c65bfe6cbba0b88cde
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/fonts/MontserratRegular.woff2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://microsoft-365protection.com/wp-content/themes/bizberg/assets/css/main.css?ver=0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 11980
content-type: font/woff2
date: Mon, 14 Nov 2022 17:01:00 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/themes/bizberg/assets/fonts/OpenSansRegular.woff2
204.93.169.73200 OK 51 kB URL HTTP/2 microsoft-365protection.com/wp-content/themes/bizberg/assets/fonts/OpenSansRegular.woff2
IP 204.93.169.73:0
File type Web Open Font Format (Version 2), TrueType, length 51128, version 1.6554\012- data
Hash 998ac39abd5001d3265ac3b1b6243bce
bf376c7e48202fa7c3572fb0ddf6303680957467
404ab7517b9ee664f8bf83d4e105d9b1369983f4cbdd5648ce3f766080076d1f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bizberg/assets/fonts/OpenSansRegular.woff2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://microsoft-365protection.com/wp-content/themes/bizberg/assets/css/main.css?ver=0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 51128
content-type: font/woff2
date: Mon, 14 Nov 2022 17:01:00 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
204.93.169.73200 OK 1.4 kB URL HTTP/2 microsoft-365protection.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 204.93.169.73:0
File type ASCII text, with very long lines (1320)
Hash 55a0d55f47040dc744b911b048f9a8ab
421099805f8bd235b9e94f36e3eab95d454df74c
8022d018cf850c02b580b4d97b53a03518af6260efc76cb1d7a647b14c2f8813
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 1359
content-type: application/javascript
date: Mon, 14 Nov 2022 17:01:00 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/uploads/2022/11/background-image-word.jpg
204.93.169.73200 OK 611 kB URL HTTP/2 microsoft-365protection.com/wp-content/uploads/2022/11/background-image-word.jpg
IP 204.93.169.73:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size 611 kB (610999 bytes)
Hash a9ed1c74a021494a48b8e524dbe1b2d1
4e2c1c046eb70bfc890855c2a3c4c48ee30b76e6
6757b53c0ed4fc376b2f53949c638352a821a19249885db615914ef364550c67
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/11/background-image-word.jpg HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:37 GMT
accept-ranges: bytes
content-length: 610999
content-type: image/jpeg
date: Mon, 14 Nov 2022 17:01:00 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/uploads/2022/11/microsoft-logo-300x300.jpg
204.93.169.73200 OK 17 kB URL HTTP/2 microsoft-365protection.com/wp-content/uploads/2022/11/microsoft-logo-300x300.jpg
IP 204.93.169.73:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 300x300, components 3\012- data
Hash 42e4777cb628edc96b6c9b76f1f20178
0470bcdcf808a8747652b9054495f9dc663d5c4c
a8e3c9a7781088b75ca1d2e7c47a21847b1c0e5e9b7a2d8ff0818997148a54ec
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/11/microsoft-logo-300x300.jpg HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:37 GMT
accept-ranges: bytes
content-length: 17144
content-type: image/jpeg
date: Mon, 14 Nov 2022 17:01:01 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/uploads/2022/11/microsoft-logo-150x150.jpg
204.93.169.73200 OK 13 kB URL HTTP/2 microsoft-365protection.com/wp-content/uploads/2022/11/microsoft-logo-150x150.jpg
IP 204.93.169.73:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 150x150, components 3\012- data
Hash 3d7df9cd80e712d7d2748806f9739ec1
2e674dce6b0e81360ddaa9e84b8fa78684085222
61b20c871772766cbac76e88b5dbf553c2529b808e03798614d57cc3a031581a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/11/microsoft-logo-150x150.jpg HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:37 GMT
accept-ranges: bytes
content-length: 13275
content-type: image/jpeg
date: Mon, 14 Nov 2022 17:01:01 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c41c5f7-45fd-4952-b779-caaaef2b43ff.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c41c5f7-45fd-4952-b779-caaaef2b43ff.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 179204c4982b4bf381897d3c2c3dea1c
776b482a3c0c61950ffe838decfb1384225f514a
5e66f04013c2a7e2cef32a50c0d409dc2911b31a412aa81346b7d65e16f4a6f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c41c5f7-45fd-4952-b779-caaaef2b43ff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 4191c827-2bbf-4e08-b16a-aa7bd5616ecb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjydBHMwIAMF63A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63716453-169dcbf913baf8c67bd9f3d5;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:40:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 40ZsYE0GZNGo7Xf6eXk7OFwqq6UpZT3csZPtNGmHpfZrso9fMXTvRQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 22:01:14 GMT
age: 68390
etag: "776b482a3c0c61950ffe838decfb1384225f514a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/Chart.min.js?ver=2.9.3
204.93.169.73200 OK 0 B URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/Chart.min.js?ver=2.9.3
IP 204.93.169.73:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/js/Chart.min.js?ver=2.9.3 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 172812
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
204.93.169.73200 OK 0 B URL HTTP/2 microsoft-365protection.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 204.93.169.73:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:40 GMT
accept-ranges: bytes
content-length: 89684
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/styles.css?ver=1.0
204.93.169.73200 OK 0 B URL HTTP/2 microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/styles.css?ver=1.0
IP 204.93.169.73:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/medical-addon-for-elementor/assets/css/styles.css?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 108323
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2