Report - microsoft-365protection.com/

Report Overview

Submitted URL
microsoft-365protection.com/
IP
204.93.169.73
ASN
#23352 SERVERCENTRAL
Submitted
2022-11-14 17:01:07
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
144

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
microsoft-365protection.com	unknown	2022-11-14T15:41:53Z	2022-12-16T02:11:57Z	34 kB	2.5 MB	204.93.169.73
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	54.148.69.31
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.8 kB	69 kB	34.120.237.76
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	686 B	1.4 kB	142.250.74.3
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	758 B	36 kB	142.250.74.10
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	1.7 kB	4.4 kB	23.36.77.32
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	682 B	1.6 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed
2022-11-14	medium	microsoft-365protection.com	Sinkholed

JavaScript (38)

	URL	Size	First Seen	Last Seen
	microsoft-365protection.com/wp-content/themes/bizberg/assets/bootstrap/js/bootstrap.min.js?ver=0.2	37 kB	2023-03-07	2024-04-20
Pretty URL microsoft-365protection.com/wp-content/themes/bizberg/assets/bootstrap/js/bootstrap.min.js?ver=0.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2024-04-20 07:49:24 Times Seen2933 Hash e7d9a06cf9053c51cd4ad3386da0659a e45bf1054704a1fdfc4ee2713a16bf9283dea995 9a3724b2051a82064c923cbd68343dcb04014adac3ccb8c4d8ac6a31ba2e12cd Loading...

	microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	9.9 kB	2023-03-08	2024-04-20
Pretty URL microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-20 21:34:57 Times Seen3134 Hash dc74c9954b1944928eca0172c3b8c6b3 e9e00e587e0e28491b69563b4e768945ff2e0ed5 d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b Loading...

	microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/juxtapose.js?ver=1.2.1	24 kB	2023-03-09	2024-03-13
Pretty URL microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/juxtapose.js?ver=1.2.1 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:08:39 Last Seen2024-03-13 21:06:52 Times Seen65 Hash efed5240f25f41cd4dfb6e219ec4476b 1fb270f7f817febfe0ab92009bd73ff1b9e78ff1 fdb8cf5c6dbe4018f1679127971826a17d940ea0f5da82f2334cc32231032582 Loading...

	microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-24
Pretty URL microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 06:31:47 Times Seen52645 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/owl.carousel.min.js?ver=2.3.4	44 kB	2023-03-08	2024-04-21
Pretty URL microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/owl.carousel.min.js?ver=2.3.4 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:30:10 Last Seen2024-04-21 08:37:23 Times Seen185 Hash 8a51288159d1d0e507d60cb34b907408 b8e7126888e4d7b0cc8a93689b99de5a23da34cb b4257f1c0bfa190cbd0f2ed3a8a4b02b1e11bfbd73fec2290d7fd6c522445380 Loading...

	microsoft-365protection.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	1.4 kB	2023-03-08	2024-04-21
Pretty URL microsoft-365protection.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:46:08 Last Seen2024-04-21 09:39:37 Times Seen401 Hash 55a0d55f47040dc744b911b048f9a8ab 421099805f8bd235b9e94f36e3eab95d454df74c 8022d018cf850c02b580b4d97b53a03518af6260efc76cb1d7a647b14c2f8813 Loading...

	microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.matchHeight.min.js?ver=0.7.2	3.4 kB	2023-03-08	2024-03-13
Pretty URL microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.matchHeight.min.js?ver=0.7.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:36:52 Last Seen2024-03-13 21:06:51 Times Seen118 Hash 197a6ec11e0bad27417781b1df3a2baf 3170bb11c04ba935f496a45ae62a06088f092847 0b8528530d0f0403897b1747581fa7ce52bc762c3693949ac42d463839c549cb Loading...

	microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.mousewheel.min.js?ver=0.2	2.7 kB	2023-03-07	2023-12-22
Pretty URL microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.mousewheel.min.js?ver=0.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:28:07 Last Seen2023-12-22 09:20:34 Times Seen124 Hash b93c2f4a0158cf710fb33b4a79ef1a48 3ec6344a15197bc451c052c6d5962d876baca08b 27504ee6e928b649f9dbbac39418c1980cec1dcc49044ff85e81dfed24cee7e6 Loading...

	microsoft-365protection.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1	19 kB	2023-03-07	2024-04-23
Pretty URL microsoft-365protection.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-23 19:01:07 Times Seen38028 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	microsoft-365protection.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-24
Pretty URL microsoft-365protection.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-24 06:20:49 Times Seen30959 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	microsoft-365protection.com/wp-content/themes/bizberg/assets/js/theia-sticky-sidebar.js?ver=0.2	16 kB	2023-03-07	2024-01-21
Pretty URL microsoft-365protection.com/wp-content/themes/bizberg/assets/js/theia-sticky-sidebar.js?ver=0.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:21:03 Last Seen2024-01-21 12:03:03 Times Seen90 Hash 57fc6833c91389acb956c8655a2e1094 5d2247f0b2ce97ea7fea15c82b19288fcf2b11e1 12a858bafa70df1cb8457f92b0c7663cff6d9121e2e58606596dd3cb21cd70a9 Loading...

	microsoft-365protection.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8	33 kB	2023-03-08	2024-04-21
Pretty URL microsoft-365protection.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:46:08 Last Seen2024-04-21 09:39:37 Times Seen873 Hash be470f42763699211b6bde600035489e 4ba8055c19103b570b98018e45204e3cab1d141f 9b5283387ec103868d83ebcb8ed6516cf4b29fa6c1490991ce3aff980aadfe02 Loading...

	microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/Chart.min.js?ver=2.9.3	173 kB	2023-03-07	2024-03-27
Pretty URL microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/Chart.min.js?ver=2.9.3 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:26 Last Seen2024-03-27 09:48:49 Times Seen327 Hash b5c2301eb15826bf38c9bdcaa3bbe786 2a9dbc047084b139fd7bee26c1c14b8d1abc8952 478a6a70e615f25b7bb27c4c40efc749b5421513cc76b84014c1febebf608982 Loading...

	microsoft-365protection.com/wp-content/themes/bizberg/assets/js/swiper.js?ver=0.2	313 kB	2023-03-07	2023-12-20
Pretty URL microsoft-365protection.com/wp-content/themes/bizberg/assets/js/swiper.js?ver=0.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:28:07 Last Seen2023-12-20 22:38:15 Times Seen67 Hash 3d29eae52aa25990f50fd7f29043eb80 52e37056061b0a33ee9dcbecdf92ba3454efbd19 05fc0d0dc6f277542770c4f6d8d7a2d0bf19844dfbb83d506cfb1ad291b5abf4 Loading...

	microsoft-365protection.com/	2.2 kB	2023-03-11	2023-03-11
Pretty URL microsoft-365protection.com/ IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:00:14 Last Seen2023-03-11 12:00:14 Times Seen1 Hash 5ba0ed16c4bad8fbb52948349468e0c1 b13f9b3b5aea9ec2dcadef01b5f9c2944dee3d06 f84f312073c3c7a5ad5216891b1fd660766cd22be93d5d4877628aea606d5c91 Loading...

	microsoft-365protection.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.3.2	8.0 kB	2023-03-07	2024-04-18
Pretty URL microsoft-365protection.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.3.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-18 13:36:03 Times Seen327 Hash a889ab4fcd44175db4bf271c83c50d37 dd57bf2e29b28491b610fcb758d8ab53f3c6649d d2f2fe7e10c8a8cf933afea3f0fb4a89cf74262405024cd908e7d59f5f03c16c Loading...

	microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/typed.min.js?ver=2.0.11	12 kB	2023-03-07	2024-04-20
Pretty URL microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/typed.min.js?ver=2.0.11 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:11 Last Seen2024-04-20 22:43:16 Times Seen1129 Hash b05496a9ad4dc2858fd889abed3d1e1a ad8a75bd4743122b5dbf517221506607588ec50b 49b8cd37d709cd17dda686bcd9ba97282e6e320fa8a9b5af540ccf96e6c274d7 Loading...

	microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.counterup.min.js?ver=1.0	1.1 kB	2023-03-09	2024-03-13
Pretty URL microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.counterup.min.js?ver=1.0 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:08:39 Last Seen2024-03-13 21:06:51 Times Seen64 Hash afe73b20780061580a1e9fdf432e5927 c3628d003a4bbd07776cec6c64251c542489405c ad0489545320237ed26cd40dea4e6d303532637d379144b10c1e9f3f87fc20ce Loading...

	microsoft-365protection.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8	5.0 kB	2023-03-08	2024-04-21
Pretty URL microsoft-365protection.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:46:08 Last Seen2024-04-21 09:39:37 Times Seen830 Hash 40b9d7ccf0f819551e24c793b1331410 652f25c5c5ada11d6f98a3a6b0692f89a0cba560 189526e3c25dc1cd28633db393e38d926f86432f000908ed3f55aaef43778cc0 Loading...

	microsoft-365protection.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-24
Pretty URL microsoft-365protection.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-24 05:14:01 Times Seen68576 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/elementor/js/namedical-elementor.js?ver=6.1	10 kB	2023-03-09	2023-12-06
Pretty URL microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/elementor/js/namedical-elementor.js?ver=6.1 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:08:39 Last Seen2023-12-06 02:33:53 Times Seen23 Hash 166737c7f48be67e52464a30130c4d08 f004458827e70a654889eb5a3a3c8821eacd281a f3b6ba95665e48e3b36fe957fb5c8c824adca6cce0fb9219f359e30bd871ca44 Loading...

	microsoft-365protection.com/	141 B	2023-03-09	2023-03-11
Pretty URL microsoft-365protection.com/ IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:08:39 Last Seen2023-03-11 12:00:14 Times Seen1 Hash a2062b4bfab8042609a01a5e35bbb9c6 151c4623f7799f67bf0fd722c9cd21860d46414f 98d45f88366282c1f4a4d8908028a20f99bb7c55de320c4e92d6f579baab7266 Loading...

	microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.slicknav.min.js?ver=0.2	6.2 kB	2023-03-07	2023-12-22
Pretty URL microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.slicknav.min.js?ver=0.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:21:03 Last Seen2023-12-22 09:20:34 Times Seen114 Hash 940e6830dd4b2610e5eaffa67c1fee5b f27e1e570be0d4610f5a5af5638a00d58b897960 16cd062e034e6a5022767dd670caa436486b945cc1362d87e92d2d5373749b01 Loading...

	microsoft-365protection.com/wp-content/themes/bizberg/assets/js/custom.js?ver=0.2	23 kB	2023-03-07	2023-12-06
Pretty URL microsoft-365protection.com/wp-content/themes/bizberg/assets/js/custom.js?ver=0.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:21:03 Last Seen2023-12-06 21:35:05 Times Seen12 Hash 104dd2b9ad19ee021e260c9d419740cb d381968ed10b748c83068175f3dca799a1dffea7 398759e020816dc01175099b0257f366c45825fff9fe34bb69c5fa5dde2e267c Loading...

	microsoft-365protection.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8	40 kB	2023-03-08	2024-04-21
Pretty URL microsoft-365protection.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:46:08 Last Seen2024-04-21 09:39:37 Times Seen1057 Hash 9195e52afe51faf6fa959276ea149ae8 5e18d4c1b5344b36fe9838b381d034a375619636 0e4b2020366cf0e467191b309fe8f9a946228e2834bf2c053ae7cb8facb1d97f Loading...

	microsoft-365protection.com/wp-includes/js/masonry.min.js?ver=4.2.2	24 kB	2023-03-07	2024-04-24
Pretty URL microsoft-365protection.com/wp-includes/js/masonry.min.js?ver=4.2.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-04-24 05:14:02 Times Seen15251 Hash 3b3fc826e58fc554108e4a651c9c7848 76778fd446e2ff2377588a7b4ac4d79f258427c9 e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb Loading...

	microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.magnific-popup.min.js?ver=1.1.0	20 kB	2023-03-07	2024-03-26
Pretty URL microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.magnific-popup.min.js?ver=1.1.0 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:59:14 Last Seen2024-03-26 23:07:08 Times Seen411 Hash 743ccc438e10ebe7e1def696d7b0884d 4e46db99cb1402bc916cfbd6df6af9519165a229 9cd173d2b12a4a3b2295ae2f67bca95a8916fcfbe8d528a85e8528d6baeca9b2 Loading...

	microsoft-365protection.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-04-23
Pretty URL microsoft-365protection.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-23 20:07:07 Times Seen9801 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	microsoft-365protection.com/	2.0 kB	2023-03-09	2023-03-11
Pretty URL microsoft-365protection.com/ IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:08:39 Last Seen2023-03-11 12:00:14 Times Seen1 Hash d480e399b3e22f368213425e4746e30a bff7b223f6c694dfbff7b33ee6d0083cd9241c00 224128621bd50a8c080b674de3a0554e8493e907038b202dc699daae8d695e65 Loading...

	microsoft-365protection.com/wp-content/themes/bizberg/assets/js/prognroll.js?ver=0.2	3.0 kB	2023-03-07	2023-12-20
Pretty URL microsoft-365protection.com/wp-content/themes/bizberg/assets/js/prognroll.js?ver=0.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:28:07 Last Seen2023-12-20 22:38:15 Times Seen106 Hash 5e85d1f211287927cb415e091c599f60 c382c156e063231c5d683a38ccfbac057b1e1e7a cbac22cca8baee307300e84b45230d8366f3a2351295e8defae98774a6ef11ed Loading...

	microsoft-365protection.com/	476 B	2023-03-09	2023-12-03
Pretty URL microsoft-365protection.com/ IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:08:39 Last Seen2023-12-03 17:22:23 Times Seen13 Hash f62542efded356ec64f075166743164e 75c768fd29b93f0029ceaedf3eb0057c13f61d1f 1cc1d8d925cb0c1622b964eeb9230328e1bd747df833115bef8b6791ff1e506d Loading...

	microsoft-365protection.com/	952 B	2023-03-11	2023-03-11
Pretty URL microsoft-365protection.com/ IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:00:14 Last Seen2023-03-11 12:00:14 Times Seen1 Hash 237b87f037e3d17188dca64816b5f7ee 0f6489d7fbfb27845957faf63052c524827b3c0e cb2193ce3cb873bd81d9eae4829bf26a345c1f3866aa44812418dd3dbffc1fa3 Loading...

	microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.waypoints.min.js?ver=4.0.1	9.0 kB	2023-03-07	2024-04-23
Pretty URL microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.waypoints.min.js?ver=4.0.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-23 05:14:55 Times Seen4752 Hash 7d05f92297dede9ecfe3706efb95677a 56bdb149d9baf64474a4c24ae66445769a28254e 368daab67b1a5b2b2802edbbac79a2aa4ba992a2ebf9c67b98ad784d8004018c Loading...

	microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	12 kB	2023-03-08	2024-04-20
Pretty URL microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-20 21:34:57 Times Seen3479 Hash 1f9968a7c7a2a02491393fb9d4103dae 0032c8a6a692e6f072b2cef20828449402fdd57d f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49 Loading...

	microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/isotope.min.js?ver=3.0.6	35 kB	2023-03-07	2024-04-23
Pretty URL microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/isotope.min.js?ver=3.0.6 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-04-23 16:10:17 Times Seen5671 Hash 2afcff647ed260006faa71c8e779e8d4 c4e5994f24ee8c8d2cf2d6602f0b56b9096a2e98 081ae9baaacc857c1c2cb51de6dbd0e1eb811c2761ef01a50df373f2f6eefe22 Loading...

	microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/slick.min.js?ver=1.9.0	44 kB	2023-03-07	2024-04-24
Pretty URL microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/slick.min.js?ver=1.9.0 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30:58 Last Seen2024-04-24 06:49:12 Times Seen7079 Hash 22f75416148991671e580d8f4d2a2387 f5071717b9e5e3fe5d3aef69f9f20acf753bc1f8 357452f2a55c999ddd3afdcbce2c339d41cf7a01613d9d45ff88a753bb82f21d Loading...

	microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.inview.min.js?ver=0.2	1.4 kB	2023-03-07	2024-02-07
Pretty URL microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.inview.min.js?ver=0.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:50 Last Seen2024-02-07 05:48:57 Times Seen173 Hash 5db0816885c5354ee2fbb0b9e55f4170 560f158cf0779d69ef137e74e8a7606c61775169 a55df02343adab5792a719648a70bd0340ed0361115ab4a778fe89ed7886c39a Loading...

	microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.matchHeight-min.js?ver=0.2	3.4 kB	2023-03-07	2023-12-22
Pretty URL microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.matchHeight-min.js?ver=0.2 IP 204.93.169.73 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:28:07 Last Seen2023-12-22 09:20:34 Times Seen117 Hash 59074a841215aa1353459bfa8974821b 8555d8b046c950c3f45b3d275df2ff78198c6b1c 0e26da87a906ba0edd7e53366e350be5939595b9337f5ffd91549e6b7dc0803f Loading...

HTTP Transactions (94)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3479
Expires: Mon, 14 Nov 2022 17:58:54 GMT
Date: Mon, 14 Nov 2022 17:00:55 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
832aecaba9f06ee2d39d4d4bea65f13c
7195d6ffadfdbc6fc8e92c63ae28d4a3038a72dc
a437509314a97065de6c7b9e5e2b4b61f0234b45f5f5bf2649cbdf499577bfd3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2469
Cache-Control: max-age=151891
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 17:00:55 GMT
Etag: "637218f5-1d7"
Expires: Wed, 16 Nov 2022 11:12:26 GMT
Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 14 Nov 2022 16:44:34 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 981
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c88bc06741ab9fb81c2544acfcc34aa2
362cab19cff5aba27f472cc00071d5dfa38192e4
314ba27975f458e13917b2be91c9d5989a3e57c9e94b5a84dd52d0e21d27ae7f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F"
Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2873
Expires: Mon, 14 Nov 2022 17:48:48 GMT
Date: Mon, 14 Nov 2022 17:00:55 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: MivpwGm3+nywZ1fxjLxW7qfQq30KO0UWsiDiNvjYLmJRScARKxFr6PRMri2tP7ziuDYRPKezp8k=
x-amz-request-id: KP8Q53JHF71H6DME
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 14 Nov 2022 16:51:11 GMT
age: 584
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 17:00:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 14 Nov 2022 16:44:48 GMT
cache-control: public,max-age=3600
age: 967
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3200044057cb585f1a435c0efece61c8
8305d5b5891288aa9996b4b4ca6fce2265413194
df45704534a24928e7659a6d8cd1b5ac9ffa9b224b02b34a2d6aed5ef69fd586

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5881
Cache-Control: max-age=150246
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 17:00:56 GMT
Etag: "63720535-1d7"
Expires: Wed, 16 Nov 2022 10:45:02 GMT
Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

54.148.69.31

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.148.69.31:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9Ry0QMnanJKQ3yGdUGAw3Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Iqr9VRfdoMKuVnh+RpMT3xt4/Do=

microsoft-365protection.com/

204.93.169.73

301 Moved Permanently

0 B

URL HTTP/1.1
microsoft-365protection.com/
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 14 Nov 2022 17:00:55 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://microsoft-365protection.com/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
929d046b7cbed155022099e982ba0592
18ff58f5b4d98748552d6604bdcba9c57eb8f412
3c70c27c11afeaea96e782a0e7b7ae9c2f3ed35c94673fcd4361cb7406b078a9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9116
Expires: Mon, 14 Nov 2022 19:32:53 GMT
Date: Mon, 14 Nov 2022 17:00:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
929d046b7cbed155022099e982ba0592
18ff58f5b4d98748552d6604bdcba9c57eb8f412
3c70c27c11afeaea96e782a0e7b7ae9c2f3ed35c94673fcd4361cb7406b078a9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9116
Expires: Mon, 14 Nov 2022 19:32:53 GMT
Date: Mon, 14 Nov 2022 17:00:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
929d046b7cbed155022099e982ba0592
18ff58f5b4d98748552d6604bdcba9c57eb8f412
3c70c27c11afeaea96e782a0e7b7ae9c2f3ed35c94673fcd4361cb7406b078a9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9116
Expires: Mon, 14 Nov 2022 19:32:53 GMT
Date: Mon, 14 Nov 2022 17:00:57 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7494 bytes)
Hash
dfc7286992b2cebdf1ebb58f85576e61
a49a1bf9716e32979810931d04d1f84216d096c1
7c5288d4ae39202e00c7fd482faa10b5610d31edf0bba9fc69fa4fc1f422b837

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7494
x-amzn-requestid: b07e424a-c11e-442f-8636-e0670cb6f864
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bd8heGBtoAMFYQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f0e09-7dcda14e5077563d726752ae;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 03:07:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -7x_52WsOuP18MV9Q9oJFOdpvIm35aZngCAjZvWFau3P3fMY5NkElg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 04:11:16 GMT
age: 46181
etag: "a49a1bf9716e32979810931d04d1f84216d096c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9921 bytes)
Hash
ac5583760066002adcbba078f6dd1be4
39ca30395586cf1a0a0fa739f7279af807f548a3
cb5986e3330858716cd290297a81d77e371b838637fc57eece94810211715a7c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9921
x-amzn-requestid: 933f6aa6-3bec-4f71-aba8-ef9e77942ae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjycgGB-oAMFsDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371644f-47d26359464b62b7276316e6;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: cl4CvcuSz4XqydcANekLjl49PkkKUuMs_EsPwEK0pu_VF57S3szecA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:52:20 GMT
age: 68917
etag: "39ca30395586cf1a0a0fa739f7279af807f548a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11715 bytes)
Hash
cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:45:57 GMT
age: 69300
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F213417cd-cf64-4d28-ae86-bd6f16cecb3b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9322 bytes)
Hash
6f1e763f44800e4de06d69a3b2af74da
35afe48832221fe42de30260b9bcb15867109031
5f234c025d1f586b4364d2ef8c2818d3d4d441691444bb885e89f4c150b3d2a5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F213417cd-cf64-4d28-ae86-bd6f16cecb3b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9322
x-amzn-requestid: 0becd817-a29e-46bf-b9d6-2d18e12f5fe9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyDvE8DoAMFsiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-5b4bf1674c4edf80458cf53f;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dMpz1U6HlmADIQZWvt1WR4D_nqlatl0mYBwg4rI6HDkKFbJCnivOgA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:50:08 GMT
age: 69049
etag: "35afe48832221fe42de30260b9bcb15867109031"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6535 bytes)
Hash
a0db3498954921b58948ad8a4e7fd49f
6b618c3ff6e589f9e01650bd0a619acb70d8004e
fa3baa9e32e455ab2eeefab0c76714bf0ff5f67a5ccd7c10b3f5c21d8138c5cf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6535
x-amzn-requestid: 3333aa65-c0c7-4704-9af1-fb0a49f830fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyDtHbhoAMFSsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-51c3e4513240b7e5662b8e6e;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6dTOcWIKFuo-Thf3zUH_1WY70yFyQkj3w2xPrb6Ntjf8TUFPVG-_lA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:54:01 GMT
age: 68816
etag: "6b618c3ff6e589f9e01650bd0a619acb70d8004e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13f1630e-d21f-4f16-8990-798920b90e02.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (5018 bytes)
Hash
963e34ce83d464bdc36f27599567a6b2
2ec4f95fcc2f343613d6bb659f6b58b541f426e6
027d57074d662088658af176b9f5cbd017b5f8f3606fcb8cea2f143cd7736b7e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13f1630e-d21f-4f16-8990-798920b90e02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5018
x-amzn-requestid: 0b73ffed-ae3a-460d-889e-dc82205fecf8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bHbK2FxoIAMFuMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63660bde-15803aad254e64b72bc0059c;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 07:08:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BA5SbaPNWuc9-0AwNtWXmCKeMh-3t0DipwjmTJqOMY3_rUHt8cC5rg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:55:15 GMT
age: 68742
etag: "2ec4f95fcc2f343613d6bb659f6b58b541f426e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 17:00:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

microsoft-365protection.com/wp-includes/css/classic-themes.min.css?ver=1

204.93.169.73

200 OK

217 B

URL HTTP/2
microsoft-365protection.com/wp-includes/css/classic-themes.min.css?ver=1
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text
Size
217 B (217 bytes)
Hash
95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:39 GMT
accept-ranges: bytes
content-length: 217
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 17:00:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

microsoft-365protection.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1

204.93.169.73

200 OK

95 kB

URL HTTP/2
microsoft-365protection.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (47826)
Size
95 kB (94821 bytes)
Hash
4cdcd4a2c77fccb74825eaf2d6733091
00d4ad404f681af9044bb4cc6ed5e2e9f641cc4a
187af6783dd59cd3b9dd90e77b3daa1509c1c3c18f5ce5d6fe2133f9bc3828df

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:39 GMT
accept-ranges: bytes
content-length: 94821
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1

204.93.169.73

200 OK

19 kB

URL HTTP/2
microsoft-365protection.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (15660)
Size
19 kB (18617 bytes)
Hash
32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:40 GMT
accept-ranges: bytes
content-length: 18617
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4

204.93.169.73

200 OK

2.7 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text
Size
2.7 kB (2731 bytes)
Hash
e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:23 GMT
accept-ranges: bytes
content-length: 2731
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/niche-frame.css?ver=1.0

204.93.169.73

200 OK

9.4 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/niche-frame.css?ver=1.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text
Size
9.4 kB (9361 bytes)
Hash
c5958d6e78d405541f965f43a580f2c3
3dfb142eb9b89608b9031f647b545d71bc6bc28f
7742fcd087cec33a9200b4063bcbad30f1a38c6891b49735df8a935e13694141

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/css/niche-frame.css?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 9361
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0

204.93.169.73

200 OK

31 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (30837)
Size
31 kB (30999 bytes)
Hash
008e0bb5ebfa7bc298a042f95944df25
93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c
c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 30999
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/animate.min.css?ver=3.7.2

204.93.169.73

200 OK

58 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/animate.min.css?ver=3.7.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (57919)
Size
58 kB (58129 bytes)
Hash
bc1a6a99c43f5ccc97d2d350bde13f74
29a6f54569c193ffd6116f03be3eb42359c60eb7
3c770e90f98eb21b0c042fafb49755af93306fbaf42e449524f94fae9fc83295

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/css/animate.min.css?ver=3.7.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 58129
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/themify-icons.min.css?ver=1.0.0

204.93.169.73

200 OK

14 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/themify-icons.min.css?ver=1.0.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (13815)
Size
14 kB (13837 bytes)
Hash
ad7c7f40b29d04995819dd78227a7639
659c59b55e80d33300a37e9e09db6d6931b2696e
15d13067ff0abcb3245c913aa97a630e966060366d40dd7e3bd3d1979b692881

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/css/themify-icons.min.css?ver=1.0.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 13837
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/magnific-popup.min.css?ver=1.0

204.93.169.73

200 OK

5.3 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/magnific-popup.min.css?ver=1.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (5254)
Size
5.3 kB (5279 bytes)
Hash
93a9b128116bbbdb458f9fb370de10e5
a048721c8b527036254da0f55e1dbf9140cbd8fe
30594e52f4572420615094ce1cebfdcf2354b5ddcf878d04b4cd7ac286ced50a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/css/magnific-popup.min.css?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 5279
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/linea.min.css?ver=1.0.0

204.93.169.73

200 OK

40 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/linea.min.css?ver=1.0.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (39952)
Size
40 kB (39974 bytes)
Hash
f708578ba985a553e9b199db6b817b24
66112bf73505e90f45e03e316da79b65e86194d3
3032857e796b528377ed2de02872e410b0b204d282b052502b319e669fa1a0ac

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/css/linea.min.css?ver=1.0.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 39974
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/slick.min.css?ver=1.0

204.93.169.73

200 OK

1.3 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/slick.min.css?ver=1.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (1332)
Size
1.3 kB (1345 bytes)
Hash
e2da9ea13aaf27180b9f6c3e3f9e8f76
dc8701071fd44aee818091bd7670508bde95f021
733adcb8dda250540f9814fd36b4953b5cb1ecb8eb108b1f79483650b32260c5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/css/slick.min.css?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 1345
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/slick-theme.min.css?ver=1.0

204.93.169.73

200 OK

2.4 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/slick-theme.min.css?ver=1.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
Unicode text, UTF-8 text, with very long lines (2390)
Size
2.4 kB (2431 bytes)
Hash
2602ea7db427142d51667a4389063ba2
49a127b7a416d21d9e3b732afe22d8b4085157f3
91093d5e2f1ad49f5b083046ebaa144345905818973cfc008aeda7c962d99c9f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/css/slick-theme.min.css?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 2431
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/owl.carousel.min.css?ver=2.3.4

204.93.169.73

200 OK

3.4 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/owl.carousel.min.css?ver=2.3.4
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (3184)
Size
3.4 kB (3351 bytes)
Hash
b2752a850d44f50036628eeaef3bfcfa
fba46353cf90450ef3d362a123f1e7af3e8c561e
521410e1fc44780061e09adc980275fb5ea277fd5d9e538454214ec4379ff4bc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/css/owl.carousel.min.css?ver=2.3.4 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 3351
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/css/main.css?ver=0.2

204.93.169.73

200 OK

3.9 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/css/main.css?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with CRLF line terminators
Size
3.9 kB (3900 bytes)
Hash
704bd47f9ddd6115fc724c2742b48545
f3e1c1b73ccfb5f03dd2f3dc6ede2b9a91ea0151
85c029ec6a7886c336818ab7279e4d5f28de94d8250aed7391642ee04e932c4d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/css/main.css?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 3900
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/medical-business/style.css?ver=6.1

204.93.169.73

200 OK

5.0 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/medical-business/style.css?ver=6.1
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
Unicode text, UTF-8 text, with very long lines (1165), with CRLF line terminators
Size
5.0 kB (4988 bytes)
Hash
0c2a3e2d2bf6c80d7e1da1024c27d47b
5664d4172dbbfbddff9c8cff4faae4638475342b
305bb78ae49f7e156cb40998dd09a5ff9734b9f1c528354dd40aac3705dde9fd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/medical-business/style.css?ver=6.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:35 GMT
accept-ranges: bytes
content-length: 4988
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/juxtapose.css?ver=1.2.1

204.93.169.73

200 OK

5.7 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/juxtapose.css?ver=1.2.1
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text
Size
5.7 kB (5739 bytes)
Hash
35d553f7fbce304533867600f2ff0176
037d47a629d1604e022420dc8e73c3996d13a005
50b28d8ed0efade9a28a42de1942ccca8828c17878369fda08397cc2d14de86b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/css/juxtapose.css?ver=1.2.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 5739
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/fonts/17e1e45f3af6b4c2a77e41d1a90ebb9d.css

204.93.169.73

200 OK

3.0 kB

URL HTTP/2
microsoft-365protection.com/wp-content/fonts/17e1e45f3af6b4c2a77e41d1a90ebb9d.css
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text
Size
3.0 kB (3024 bytes)
Hash
71609fdc1e14dbece1689f58148fc910
512e790ec05010adbc4d030e9bb74a60198564ef
7c2b4795bdac2712ce1889f6c20b572cbb436de2cffe75e172c969db59ffbf3a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/fonts/17e1e45f3af6b4c2a77e41d1a90ebb9d.css HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:02:03 GMT
accept-ranges: bytes
content-length: 3024
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/uploads/elementor/css/post-28.css?ver=1666642247

204.93.169.73

200 OK

1.1 kB

URL HTTP/2
microsoft-365protection.com/wp-content/uploads/elementor/css/post-28.css?ver=1666642247
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (1118), with no line terminators
Size
1.1 kB (1118 bytes)
Hash
a444f23221797ba9fbf742230734df06
69d079de050adf586d3b9388aa31411eb62b25f4
432734079f6617d974b95ecf368ecdf390d00785abd15b0e32246852ba73370c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-28.css?ver=1666642247 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:49 GMT
accept-ranges: bytes
content-length: 1118
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/css/responsive.css?ver=0.2

204.93.169.73

200 OK

6.6 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/css/responsive.css?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with CRLF line terminators
Size
6.6 kB (6593 bytes)
Hash
951f60b44350e27b1c4e7ed35d731eb8
8fce00f25e7a6246f5e3c614a7b86418eeecebfe
8185ce9574a9732d3c5be430e1c84511822540bd092c0e9352c53c93b2f31530

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/css/responsive.css?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 6593
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/responsive.css?ver=1.0

204.93.169.73

200 OK

9.6 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/responsive.css?ver=1.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text
Size
9.6 kB (9591 bytes)
Hash
39b2869c3380703da4a24b034c377abf
e6552306c56de414775da5eed982d46eb9c3df59
25bec2cfad887fd1a62f6b802a8c12234fb89c6f54ae468518345deba1e1c528

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/css/responsive.css?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 9591
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/uploads/elementor/css/post-35.css?ver=1668434760

204.93.169.73

200 OK

6.2 kB

URL HTTP/2
microsoft-365protection.com/wp-content/uploads/elementor/css/post-35.css?ver=1668434760
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (6234), with no line terminators
Size
6.2 kB (6234 bytes)
Hash
d89eb95249b722d48471b62037943b96
2d69ceefc52cca5237e218a5d2234838503c09ab
c7d2517d4cc6a86eae7ec645ac5bceaa390f574c37caddbe4b6b0eb8617e7f7c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-35.css?ver=1668434760 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:49 GMT
accept-ranges: bytes
content-length: 6234
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/style.css?ver=6.1

204.93.169.73

200 OK

17 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/style.css?ver=6.1
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
Nim source code, ASCII text, with very long lines (537), with CRLF line terminators
Size
17 kB (16685 bytes)
Hash
1ea7e9e9b74d638e919a8491b812f517
9e72719201e514e049cfd3791f2157ba45d3b6e9
8bd620d1478c23fb0a04973196d33208e5b1d97564883a3e70c7c2f034a48b20

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/style.css?ver=6.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:35 GMT
accept-ranges: bytes
content-length: 16685
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.3.2

204.93.169.73

200 OK

3.4 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.3.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (3432)
Size
3.4 kB (3433 bytes)
Hash
9a9ecfe405e38be1cf08b752d3afbda9
8f55bc1619b42231d464bf965c67cfddf6b29df9
b9b869f479a2181cbc0c5d8b6e5bb8bb9cbf81d59a18d056681d8b3de448b1d4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.3.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:27 GMT
accept-ranges: bytes
content-length: 3433
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

204.93.169.73

200 OK

11 kB

URL HTTP/2
microsoft-365protection.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (11126)
Size
11 kB (11224 bytes)
Hash
79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:40 GMT
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

204.93.169.73

200 OK

19 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (19233)
Size
19 kB (19279 bytes)
Hash
d183c598fd582fe997f6782afed84f9b
7799820e0e849e8484543c3360a8d8cc62baa32f
83059e4c1a5c210e5585d96779fe655170817193d43e247c78dffaae7b7ba3a9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 19279
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/bootstrap/js/bootstrap.min.js?ver=0.2

204.93.169.73

200 OK

37 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/bootstrap/js/bootstrap.min.js?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (32034), with CRLF line terminators
Size
37 kB (36822 bytes)
Hash
e7d9a06cf9053c51cd4ad3386da0659a
e45bf1054704a1fdfc4ee2713a16bf9283dea995
9a3724b2051a82064c923cbd68343dcb04014adac3ccb8c4d8ac6a31ba2e12cd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/bootstrap/js/bootstrap.min.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 36822
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.counterup.min.js?ver=1.0

204.93.169.73

200 OK

1.1 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.counterup.min.js?ver=1.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (915)
Size
1.1 kB (1069 bytes)
Hash
afe73b20780061580a1e9fdf432e5927
c3628d003a4bbd07776cec6c64251c542489405c
ad0489545320237ed26cd40dea4e6d303532637d379144b10c1e9f3f87fc20ce

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.counterup.min.js?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 1069
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/css/component.css?ver=0.2

204.93.169.73

200 OK

66 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/css/component.css?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
Unicode text, UTF-8 text, with very long lines (2255), with CRLF line terminators
Size
66 kB (66056 bytes)
Hash
5b35e08e35a6ec6c95ccd6bc3f067b54
abeb19e3d11ab448c7874dd83611517fdcc1cd09
84f66947c961d99d1460bb621ba5baf98e093b8b60a2bdc1c99bdaeecb7beeb3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/css/component.css?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 66056
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4

204.93.169.73

200 OK

5.6 kB

URL HTTP/2
microsoft-365protection.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (5477)
Size
5.6 kB (5629 bytes)
Hash
3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:40 GMT
accept-ranges: bytes
content-length: 5629
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/icons/font-awesome-5/css/all.css?ver=0.2

204.93.169.73

200 OK

74 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/icons/font-awesome-5/css/all.css?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text
Size
74 kB (73577 bytes)
Hash
30bcab9c086559aad11d39876ecebcec
8a4a55db46c5dbfef9c6703fa2d04e89cbfcf633
0cb8cc3fee4275e182236ab19c3aae55274f43aa0ffde9c0510d8d59fcf8e5dc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/icons/font-awesome-5/css/all.css?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 73577
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/

204.93.169.73

200 OK

100 kB

URL HTTP/2
microsoft-365protection.com/
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (18303), with CRLF, LF line terminators
Size
100 kB (100102 bytes)
Hash
71b8485558a539b189d47077fda3104f
bfb7dc67884b0fca533deb4b291a6bb5cb579b57
6ae3abdc9debd172b448a924b62aa05f35f5719a2e5a656f774162c0f2a7c9a1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
link: <https://microsoft-365protection.com/wp-json/>; rel="https://api.w.org/", <https://microsoft-365protection.com/wp-json/wp/v2/pages/35>; rel="alternate"; type="application/json", <https://microsoft-365protection.com/>; rel=shortlink
content-type: text/html; charset=UTF-8
date: Mon, 14 Nov 2022 17:00:57 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

204.93.169.73

200 OK

9.9 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (9937), with no line terminators
Size
9.9 kB (9937 bytes)
Hash
dc74c9954b1944928eca0172c3b8c6b3
e9e00e587e0e28491b69563b4e768945ff2e0ed5
d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:23 GMT
accept-ranges: bytes
content-length: 9937
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

204.93.169.73

200 OK

12 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
HTML document, ASCII text, with very long lines (12310), with no line terminators
Size
12 kB (12310 bytes)
Hash
1f9968a7c7a2a02491393fb9d4103dae
0032c8a6a692e6f072b2cef20828449402fdd57d
f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:23 GMT
accept-ranges: bytes
content-length: 12310
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/juxtapose.js?ver=1.2.1

204.93.169.73

200 OK

24 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/juxtapose.js?ver=1.2.1
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
Algol 68 source text\012- Pascal source, ASCII text
Size
24 kB (23674 bytes)
Hash
efed5240f25f41cd4dfb6e219ec4476b
1fb270f7f817febfe0ab92009bd73ff1b9e78ff1
fdb8cf5c6dbe4018f1679127971826a17d940ea0f5da82f2334cc32231032582

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/js/juxtapose.js?ver=1.2.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 23674
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.inview.min.js?ver=0.2

204.93.169.73

200 OK

1.4 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.inview.min.js?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (1437), with CRLF line terminators
Size
1.4 kB (1439 bytes)
Hash
5db0816885c5354ee2fbb0b9e55f4170
560f158cf0779d69ef137e74e8a7606c61775169
a55df02343adab5792a719648a70bd0340ed0361115ab4a778fe89ed7886c39a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/js/jquery.inview.min.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 1439
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/scripts.js?ver=1.0

204.93.169.73

200 OK

9.9 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/scripts.js?ver=1.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (350)
Size
9.9 kB (9874 bytes)
Hash
ab2da4b687b794e80743d1b5d381a843
59c4f52433a8f563a7485b8bfa2d6364c12c64a1
f1a83c4124032445c2b0efae89c12ce7917ff4bf2bdd5661a0963ab7187db67d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/js/scripts.js?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 9874
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.slicknav.min.js?ver=0.2

204.93.169.73

200 OK

6.2 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.slicknav.min.js?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (6129), with CRLF line terminators
Size
6.2 kB (6232 bytes)
Hash
940e6830dd4b2610e5eaffa67c1fee5b
f27e1e570be0d4610f5a5af5638a00d58b897960
16cd062e034e6a5022767dd670caa436486b945cc1362d87e92d2d5373749b01

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/js/jquery.slicknav.min.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 6232
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/uploads/2022/11/cropped-mslogo35.png

204.93.169.73

200 OK

4.7 kB

URL HTTP/2
microsoft-365protection.com/wp-content/uploads/2022/11/cropped-mslogo35.png
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
PNG image data, 165 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
4.7 kB (4744 bytes)
Hash
0ad957746843159b09bc7d1951a7c7ec
0a360cebd94cc43776b88007adcf0d1fc40bb5fc
7f69c27dc8181c005555790b5724a516300893b4db33469cda1bfdd65b60f001

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/cropped-mslogo35.png HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:37 GMT
accept-ranges: bytes
content-length: 4744
content-type: image/png
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8

204.93.169.73

200 OK

108 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (65497)
Size
108 kB (108428 bytes)
Hash
bb929f65f0502bd9c7188e0f2485caee
ccefd7316236b8db7ab521eda604456492388a59
b370f6233409b571bdb0abef8bdee915f95fd28740fa9a1f28953d1037eeb232

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:25 GMT
accept-ranges: bytes
content-length: 108428
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.matchHeight.min.js?ver=0.7.2

204.93.169.73

200 OK

3.4 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.matchHeight.min.js?ver=0.7.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (3278)
Size
3.4 kB (3375 bytes)
Hash
197a6ec11e0bad27417781b1df3a2baf
3170bb11c04ba935f496a45ae62a06088f092847
0b8528530d0f0403897b1747581fa7ce52bc762c3693949ac42d463839c549cb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.matchHeight.min.js?ver=0.7.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 3375
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.matchHeight-min.js?ver=0.2

204.93.169.73

200 OK

3.4 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.matchHeight-min.js?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (521), with CRLF line terminators
Size
3.4 kB (3393 bytes)
Hash
59074a841215aa1353459bfa8974821b
8555d8b046c950c3f45b3d275df2ff78198c6b1c
0e26da87a906ba0edd7e53366e350be5939595b9337f5ffd91549e6b7dc0803f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/js/jquery.matchHeight-min.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 3393
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/bootstrap/css/bootstrap.min.css?ver=0.2

204.93.169.73

200 OK

122 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/bootstrap/css/bootstrap.min.css?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (65367), with CRLF line terminators
Size
122 kB (122232 bytes)
Hash
ea033b140eccf09e5f8ea8c562cb29c3
85e56e3596c06acd99bb6ac383743dabc8b0de77
51d600c6396ced19a3b4fd1535dada4dafc1f68c0ffc5771b2b0a002e622f476

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/bootstrap/css/bootstrap.min.css?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 122232
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/css/style.css?ver=0.2

204.93.169.73

200 OK

164 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/css/style.css?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with CRLF line terminators
Size
164 kB (163825 bytes)
Hash
37591bf7d76faa36d22c2023edc2561e
19837986e75ffc7bb26ac3a9c1d48b822e0f8d08
af41f8255c4e3fec9bffcf70abe1bd9c4b0f4f2b065537903823cb73707dd147

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/css/style.css?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 163825
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.mousewheel.min.js?ver=0.2

204.93.169.73

200 OK

2.7 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/jquery.mousewheel.min.js?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (2659), with no line terminators
Size
2.7 kB (2659 bytes)
Hash
b93c2f4a0158cf710fb33b4a79ef1a48
3ec6344a15197bc451c052c6d5962d876baca08b
27504ee6e928b649f9dbbac39418c1980cec1dcc49044ff85e81dfed24cee7e6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/js/jquery.mousewheel.min.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 2659
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/js/theia-sticky-sidebar.js?ver=0.2

204.93.169.73

200 OK

16 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/theia-sticky-sidebar.js?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
16 kB (15879 bytes)
Hash
57fc6833c91389acb956c8655a2e1094
5d2247f0b2ce97ea7fea15c82b19288fcf2b11e1
12a858bafa70df1cb8457f92b0c7663cff6d9121e2e58606596dd3cb21cd70a9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/js/theia-sticky-sidebar.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 15879
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/js/prognroll.js?ver=0.2

204.93.169.73

200 OK

3.0 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/prognroll.js?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with CRLF line terminators
Size
3.0 kB (2992 bytes)
Hash
5e85d1f211287927cb415e091c599f60
c382c156e063231c5d683a38ccfbac057b1e1e7a
cbac22cca8baee307300e84b45230d8366f3a2351295e8defae98774a6ef11ed

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/js/prognroll.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 2992
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/elementor/js/namedical-elementor.js?ver=6.1

204.93.169.73

200 OK

10 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/elementor/js/namedical-elementor.js?ver=6.1
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text
Size
10 kB (10121 bytes)
Hash
166737c7f48be67e52464a30130c4d08
f004458827e70a654889eb5a3a3c8821eacd281a
f3b6ba95665e48e3b36fe957fb5c8c824adca6cce0fb9219f359e30bd871ca44

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/elementor/js/namedical-elementor.js?ver=6.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 10121
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8

204.93.169.73

200 OK

5.0 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (4918)
Size
5.0 kB (4957 bytes)
Hash
40b9d7ccf0f819551e24c793b1331410
652f25c5c5ada11d6f98a3a6b0692f89a0cba560
189526e3c25dc1cd28633db393e38d926f86432f000908ed3f55aaef43778cc0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 4957
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.3.2

204.93.169.73

200 OK

8.0 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.3.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (8016), with no line terminators
Size
8.0 kB (8016 bytes)
Hash
a889ab4fcd44175db4bf271c83c50d37
dd57bf2e29b28491b610fcb758d8ab53f3c6649d
d2f2fe7e10c8a8cf933afea3f0fb4a89cf74262405024cd908e7d59f5f03c16c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.3.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:27 GMT
accept-ranges: bytes
content-length: 8016
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

204.93.169.73

200 OK

12 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (12198), with no line terminators
Size
12 kB (12198 bytes)
Hash
3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 12198
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/typed.min.js?ver=2.0.11

204.93.169.73

200 OK

12 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/typed.min.js?ver=2.0.11
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (11506)
Size
12 kB (11749 bytes)
Hash
b05496a9ad4dc2858fd889abed3d1e1a
ad8a75bd4743122b5dbf517221506607588ec50b
49b8cd37d709cd17dda686bcd9ba97282e6e320fa8a9b5af540ccf96e6c274d7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/js/typed.min.js?ver=2.0.11 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 11749
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/isotope.min.js?ver=3.0.6

204.93.169.73

200 OK

35 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/isotope.min.js?ver=3.0.6
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (32019)
Size
35 kB (35445 bytes)
Hash
2afcff647ed260006faa71c8e779e8d4
c4e5994f24ee8c8d2cf2d6602f0b56b9096a2e98
081ae9baaacc857c1c2cb51de6dbd0e1eb811c2761ef01a50df373f2f6eefe22

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/js/isotope.min.js?ver=3.0.6 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 35445
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-includes/js/masonry.min.js?ver=4.2.2

204.93.169.73

200 OK

24 kB

URL HTTP/2
microsoft-365protection.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (23966)
Size
24 kB (24138 bytes)
Hash
3b3fc826e58fc554108e4a651c9c7848
76778fd446e2ff2377588a7b4ac4d79f258427c9
e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:40 GMT
accept-ranges: bytes
content-length: 24138
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.magnific-popup.min.js?ver=1.1.0

204.93.169.73

200 OK

20 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.magnific-popup.min.js?ver=1.1.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (20087)
Size
20 kB (20217 bytes)
Hash
743ccc438e10ebe7e1def696d7b0884d
4e46db99cb1402bc916cfbd6df6af9519165a229
9cd173d2b12a4a3b2295ae2f67bca95a8916fcfbe8d528a85e8528d6baeca9b2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/js/jquery.magnific-popup.min.js?ver=1.1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 20217
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/js/custom.js?ver=0.2

204.93.169.73

200 OK

23 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/custom.js?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with CRLF line terminators
Size
23 kB (22707 bytes)
Hash
104dd2b9ad19ee021e260c9d419740cb
d381968ed10b748c83068175f3dca799a1dffea7
398759e020816dc01175099b0257f366c45825fff9fe34bb69c5fa5dde2e267c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/js/custom.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 22707
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

204.93.169.73

200 OK

21 kB

URL HTTP/2
microsoft-365protection.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
21 kB (21440 bytes)
Hash
034bd11ecaf6fb9240d905245e42e202
ff136c394ed95badfc0107fb98a890dcff642828
ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:40 GMT
accept-ranges: bytes
content-length: 21440
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1

142.250.74.10

200 OK

36 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
36 kB (35456 bytes)
Hash
6e2a4aaf49251199ebb5efa274b57f18
42914534a1a1d5b7670d13fdbb3f261c4cf10244
fb452c5f5ffe9e3e86007624ef2d0bd362ade53d5d5bbe7a24e17e07dd4d4c27

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 14 Nov 2022 17:00:59 GMT
date: Mon, 14 Nov 2022 17:00:59 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/owl.carousel.min.js?ver=2.3.4

204.93.169.73

200 OK

44 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/owl.carousel.min.js?ver=2.3.4
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (31997)
Size
44 kB (44343 bytes)
Hash
8a51288159d1d0e507d60cb34b907408
b8e7126888e4d7b0cc8a93689b99de5a23da34cb
b4257f1c0bfa190cbd0f2ed3a8a4b02b1e11bfbd73fec2290d7fd6c522445380

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/js/owl.carousel.min.js?ver=2.3.4 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 44343
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8

204.93.169.73

200 OK

33 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
Unicode text, UTF-8 text, with very long lines (32889)
Size
33 kB (32929 bytes)
Hash
be470f42763699211b6bde600035489e
4ba8055c19103b570b98018e45204e3cab1d141f
9b5283387ec103868d83ebcb8ed6516cf4b29fa6c1490991ce3aff980aadfe02

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 32929
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8

204.93.169.73

200 OK

40 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (40474)
Size
40 kB (40513 bytes)
Hash
9195e52afe51faf6fa959276ea149ae8
5e18d4c1b5344b36fe9838b381d034a375619636
0e4b2020366cf0e467191b309fe8f9a946228e2834bf2c053ae7cb8facb1d97f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 40513
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/slick.min.js?ver=1.9.0

204.93.169.73

200 OK

44 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/slick.min.js?ver=1.9.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (32026)
Size
44 kB (43881 bytes)
Hash
22f75416148991671e580d8f4d2a2387
f5071717b9e5e3fe5d3aef69f9f20acf753bc1f8
357452f2a55c999ddd3afdcbce2c339d41cf7a01613d9d45ff88a753bb82f21d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/js/slick.min.js?ver=1.9.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 43881
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/js/swiper.js?ver=0.2

204.93.169.73

200 OK

313 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/js/swiper.js?ver=0.2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with CRLF line terminators
Size
313 kB (313417 bytes)
Hash
3d29eae52aa25990f50fd7f29043eb80
52e37056061b0a33ee9dcbecdf92ba3454efbd19
05fc0d0dc6f277542770c4f6d8d7a2d0bf19844dfbb83d506cfb1ad291b5abf4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/js/swiper.js?ver=0.2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 313417
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/uploads/2022/11/12345.png

204.93.169.73

200 OK

12 kB

URL HTTP/2
microsoft-365protection.com/wp-content/uploads/2022/11/12345.png
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
PNG image data, 226 x 102, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12372 bytes)
Hash
b43a803a5fc1cebe9bfa99645184214f
65771a6678e2c8de1cda7c650c4549c43cbd662d
278b6eeb8177d2e9a23f7b31db14f5b9dd1eceaafd4105d75a69a27a079513a1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/12345.png HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:37 GMT
accept-ranges: bytes
content-length: 12372
content-type: image/png
date: Mon, 14 Nov 2022 17:01:00 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/fonts/MontserratRegular.woff2

204.93.169.73

200 OK

12 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/fonts/MontserratRegular.woff2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
Web Open Font Format (Version 2), TrueType, length 11980, version 1.0\012- data
Size
12 kB (11980 bytes)
Hash
1585b3548229c4471d5aca5876630ed9
acf2061b188646cf4b37449a4bd1c92daa8a0ac0
8e5654f0b3054f8f127c11937e99f9ab31f215a9762082c65bfe6cbba0b88cde

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/fonts/MontserratRegular.woff2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://microsoft-365protection.com/wp-content/themes/bizberg/assets/css/main.css?ver=0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 11980
content-type: font/woff2
date: Mon, 14 Nov 2022 17:01:00 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/themes/bizberg/assets/fonts/OpenSansRegular.woff2

204.93.169.73

200 OK

51 kB

URL HTTP/2
microsoft-365protection.com/wp-content/themes/bizberg/assets/fonts/OpenSansRegular.woff2
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
Web Open Font Format (Version 2), TrueType, length 51128, version 1.6554\012- data
Size
51 kB (51128 bytes)
Hash
998ac39abd5001d3265ac3b1b6243bce
bf376c7e48202fa7c3572fb0ddf6303680957467
404ab7517b9ee664f8bf83d4e105d9b1369983f4cbdd5648ce3f766080076d1f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bizberg/assets/fonts/OpenSansRegular.woff2 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://microsoft-365protection.com/wp-content/themes/bizberg/assets/css/main.css?ver=0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:34 GMT
accept-ranges: bytes
content-length: 51128
content-type: font/woff2
date: Mon, 14 Nov 2022 17:01:00 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js

204.93.169.73

200 OK

1.4 kB

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
ASCII text, with very long lines (1320)
Size
1.4 kB (1359 bytes)
Hash
55a0d55f47040dc744b911b048f9a8ab
421099805f8bd235b9e94f36e3eab95d454df74c
8022d018cf850c02b580b4d97b53a03518af6260efc76cb1d7a647b14c2f8813

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:26 GMT
accept-ranges: bytes
content-length: 1359
content-type: application/javascript
date: Mon, 14 Nov 2022 17:01:00 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/uploads/2022/11/background-image-word.jpg

204.93.169.73

200 OK

611 kB

URL HTTP/2
microsoft-365protection.com/wp-content/uploads/2022/11/background-image-word.jpg
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size
611 kB (610999 bytes)
Hash
a9ed1c74a021494a48b8e524dbe1b2d1
4e2c1c046eb70bfc890855c2a3c4c48ee30b76e6
6757b53c0ed4fc376b2f53949c638352a821a19249885db615914ef364550c67

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/background-image-word.jpg HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:37 GMT
accept-ranges: bytes
content-length: 610999
content-type: image/jpeg
date: Mon, 14 Nov 2022 17:01:00 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/uploads/2022/11/microsoft-logo-300x300.jpg

204.93.169.73

200 OK

17 kB

URL HTTP/2
microsoft-365protection.com/wp-content/uploads/2022/11/microsoft-logo-300x300.jpg
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 300x300, components 3\012- data
Size
17 kB (17144 bytes)
Hash
42e4777cb628edc96b6c9b76f1f20178
0470bcdcf808a8747652b9054495f9dc663d5c4c
a8e3c9a7781088b75ca1d2e7c47a21847b1c0e5e9b7a2d8ff0818997148a54ec

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/microsoft-logo-300x300.jpg HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:37 GMT
accept-ranges: bytes
content-length: 17144
content-type: image/jpeg
date: Mon, 14 Nov 2022 17:01:01 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/uploads/2022/11/microsoft-logo-150x150.jpg

204.93.169.73

200 OK

13 kB

URL HTTP/2
microsoft-365protection.com/wp-content/uploads/2022/11/microsoft-logo-150x150.jpg
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 150x150, components 3\012- data
Size
13 kB (13275 bytes)
Hash
3d7df9cd80e712d7d2748806f9739ec1
2e674dce6b0e81360ddaa9e84b8fa78684085222
61b20c871772766cbac76e88b5dbf553c2529b808e03798614d57cc3a031581a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/microsoft-logo-150x150.jpg HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:37 GMT
accept-ranges: bytes
content-length: 13275
content-type: image/jpeg
date: Mon, 14 Nov 2022 17:01:01 GMT
server: Apache
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c41c5f7-45fd-4952-b779-caaaef2b43ff.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11224 bytes)
Hash
179204c4982b4bf381897d3c2c3dea1c
776b482a3c0c61950ffe838decfb1384225f514a
5e66f04013c2a7e2cef32a50c0d409dc2911b31a412aa81346b7d65e16f4a6f6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c41c5f7-45fd-4952-b779-caaaef2b43ff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 4191c827-2bbf-4e08-b16a-aa7bd5616ecb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjydBHMwIAMF63A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63716453-169dcbf913baf8c67bd9f3d5;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:40:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 40ZsYE0GZNGo7Xf6eXk7OFwqq6UpZT3csZPtNGmHpfZrso9fMXTvRQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 22:01:14 GMT
age: 68390
etag: "776b482a3c0c61950ffe838decfb1384225f514a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/Chart.min.js?ver=2.9.3

204.93.169.73

200 OK

0 B

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/js/Chart.min.js?ver=2.9.3
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/js/Chart.min.js?ver=2.9.3 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:31 GMT
accept-ranges: bytes
content-length: 172812
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

204.93.169.73

200 OK

0 B

URL HTTP/2
microsoft-365protection.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:40 GMT
accept-ranges: bytes
content-length: 89684
content-type: application/javascript
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/styles.css?ver=1.0

204.93.169.73

200 OK

0 B

URL HTTP/2
microsoft-365protection.com/wp-content/plugins/medical-addon-for-elementor/assets/css/styles.css?ver=1.0
IP
204.93.169.73:0
ASN
#23352 SERVERCENTRAL

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/medical-addon-for-elementor/assets/css/styles.css?ver=1.0 HTTP/1.1
Host: microsoft-365protection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://microsoft-365protection.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 15:01:30 GMT
accept-ranges: bytes
content-length: 108323
content-type: text/css
date: Mon, 14 Nov 2022 17:00:59 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (38)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations