66.96.162.132200 OK 199 kB URL User Request GET HTTP/1.1 IP 66.96.162.132:443
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (14578)
Size 199 kB (198909 bytes)
Hash f9918a2fd7534e8b22647fe0ab20aed8
ae404b309c137cb75e23b0dd9a28f7e0b796843f
e9979e2c4ba7aae69adffcda92ca3c1cd5128453a46bf6ab071c14b9062d43aa
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:08 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 198909
Connection: keep-alive
Server: Apache
X-Powered-By: PHP/7.4.10
Link: <https://sanddenterprises.org/wp-json/>; rel="https://api.w.org/", <https://sanddenterprises.org/wp-json/wp/v2/pages/32>; rel="alternate"; type="application/json", <https://sanddenterprises.org/>; rel=shortlink
Age: 1
sanddenterprises.org/wp-includes/css/classic-themes.min.css?ver=1
66.96.162.132200 OK 217 B URL GET HTTP/1.1 sanddenterprises.org/wp-includes/css/classic-themes.min.css?ver=1
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:09 GMT
Content-Type: text/css
Content-Length: 217
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 09 Mar 2023 17:28:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "d9-5f67af7f5f8eb"
Expires: Wed, 24 Apr 2024 08:31:09 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give-tributes/assets/css/give-tributes-public.min.css?ver=1.5.7
66.96.162.132200 OK 3.3 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give-tributes/assets/css/give-tributes-public.min.css?ver=1.5.7
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (3315), with no line terminators
Hash 442742f038456df9e4a82c9b3ecc4460
cb7d3e7eb693e6e7c785021b7be124a4fe32d0dc
822fe0f138b7e45155eb04bef7dd9ef579a4286a0c0d3faa0907910c1cad8261
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give-tributes/assets/css/give-tributes-public.min.css?ver=1.5.7 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:09 GMT
Content-Type: text/css
Content-Length: 3315
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 14:16:44 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "cf3-5cf6a5c34cb00"
Expires: Wed, 24 Apr 2024 08:31:09 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give-fee-recovery/assets/css/give-fee-recovery-frontend.min.css?ver=1.7.11
66.96.162.132200 OK 340 B URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give-fee-recovery/assets/css/give-fee-recovery-frontend.min.css?ver=1.7.11
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
Hash a1f743a1e2fbdf96d0f2e5b78bf9f9a8
3b4416b9c25146e1605b332d690aebd09d631cd7
da724c6dc015331c767157507afba00d9c24e7498aefb61aca6cd35ce8972f03
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give-fee-recovery/assets/css/give-fee-recovery-frontend.min.css?ver=1.7.11 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:09 GMT
Content-Type: text/css
Content-Length: 340
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 14:14:56 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "154-5cf6a55d06321"
Expires: Wed, 24 Apr 2024 08:31:09 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give-recurring/assets/css/give-recurring.css?ver=1.10.4
66.96.162.132200 OK 7.0 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give-recurring/assets/css/give-recurring.css?ver=1.10.4
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
Hash 2c43feb983adb525828fe917a13be38d
b4b223eba8974d1916576256de794a9f9e6c3874
628d6b81267329b4fdd4da021447e6e1a3bfde9b3af2b184ffc4b5e5a19b2261
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give-recurring/assets/css/give-recurring.css?ver=1.10.4 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:09 GMT
Content-Type: text/css
Content-Length: 6988
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 14:12:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "1b4c-5cf6a4d8e3cb6"
Expires: Wed, 24 Apr 2024 08:31:09 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give/assets/dist/css/give-donation-summary.css?ver=3.4.2
66.96.162.132200 OK 2.0 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give/assets/dist/css/give-donation-summary.css?ver=3.4.2
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (2040), with no line terminators
Hash bdf0c26f958121e64dc3c666b3f81944
f943b8fe249c81bad0a0f538ad674546c592306b
1e976ce625ed3f3bda9494292f078e7f0c16f233da123fac2dba7be916b96db1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give/assets/dist/css/give-donation-summary.css?ver=3.4.2 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:09 GMT
Content-Type: text/css
Content-Length: 2040
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:45:34 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "7f8-6128b5745a7af"
Expires: Wed, 24 Apr 2024 08:31:09 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give-form-field-manager/assets/css/give-ffm-frontend.min.css?ver=1.4.7
66.96.162.132200 OK 2.5 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give-form-field-manager/assets/css/give-ffm-frontend.min.css?ver=1.4.7
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (2467), with no line terminators
Hash 5f480e4da276a1b3e9c98440971d228f
df6cbd27e8f5bf948fe4bbb19cb03219cb782a73
8be603619ad0a452e57d6a1813bc7340dbabb81ee525a8fa9b342deb04102629
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give-form-field-manager/assets/css/give-ffm-frontend.min.css?ver=1.4.7 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:09 GMT
Content-Type: text/css
Content-Length: 2467
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 14:14:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "9a3-5cf6a53fb1480"
Expires: Wed, 24 Apr 2024 08:31:09 GMT
Age: 0
sanddenterprises.org/wp-content/themes/hello-elementor/style.min.css?ver=2.4.1
66.96.162.132200 OK 6.7 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/themes/hello-elementor/style.min.css?ver=2.4.1
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (5856)
Hash 4c043032bcd9f646ab2bfb2339f8ae43
a31be470013aa35785f5548857f52ad63a9ee74b
c2e0a0df734b5dd7c9f1140f903bda4d949c8f29f64963fb6f8bf84296566656
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.4.1 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:09 GMT
Content-Type: text/css
Content-Length: 6687
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 12:45:46 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "1a1f-5cf6916ee5c10"
Expires: Wed, 24 Apr 2024 08:31:09 GMT
Age: 0
sanddenterprises.org/wp-content/themes/hello-elementor/theme.min.css?ver=2.4.1
66.96.162.132200 OK 15 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/themes/hello-elementor/theme.min.css?ver=2.4.1
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (15164), with no line terminators
Hash b81597c6fbe02f39682910dac2fd4824
ec10802c841c2f251d85e91efa5926eb3324564d
9ee09652280b56db59db015c319a6a6b80e1e161a8a0b703207e1a59b4c4e3a8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.4.1 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:09 GMT
Content-Type: text/css
Content-Length: 15164
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 12:45:46 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "3b3c-5cf6916ee7383"
Expires: Wed, 24 Apr 2024 08:31:09 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give-form-field-manager/assets/css/give-ffm-datepicker.min.css?ver=1.4.7
66.96.162.132200 OK 21 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give-form-field-manager/assets/css/give-ffm-datepicker.min.css?ver=1.4.7
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (21163), with no line terminators
Hash 0af038840da8c811be754df5f7cfe1cc
a19790e5d76a32980820d39d96a5bb71a4f2cb99
1deef4954884d11f184b72fa1ce838147275dfae4ed5a806994dbf458b2e217f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give-form-field-manager/assets/css/give-ffm-datepicker.min.css?ver=1.4.7 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:09 GMT
Content-Type: text/css
Content-Length: 21163
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 14:14:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "52ab-5cf6a53fb1480"
Expires: Wed, 24 Apr 2024 08:31:09 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give/assets/dist/css/give.css?ver=3.4.2
66.96.162.132200 OK 76 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give/assets/dist/css/give.css?ver=3.4.2
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (57886)
Hash 0867107d00e40f17fb88957e3702c3f4
e4316ae30bbeb242f483841f3800389a2ca59ca1
50338bee5cd172d881b12eee82890858feaa42dec7a25654ca813be2691ad973
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give/assets/dist/css/give.css?ver=3.4.2 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:09 GMT
Content-Type: text/css
Content-Length: 76086
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:45:34 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "12936-6128b5745711d"
Expires: Wed, 24 Apr 2024 08:31:09 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6
66.96.162.132200 OK 13 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (12876), with no line terminators
Hash bcad7781b3e74db2565b8424c45232cd
41b0d94434ef667897c06e1184b703064ffceda1
d622534d53d3ac1095af275f0b30274fcd835785577df2dde6d9398e6f7a2c8f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: text/css
Content-Length: 12876
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:17 GMT
ETag: "324c-6128b52ac8d2c"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 1
sanddenterprises.org/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.29.0
66.96.162.132200 OK 20 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.29.0
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (19732)
Hash 45f978120a537b249dfac36306ed5471
9eebc1e6fe55d9737d0e91bdfa3976b344ea2a09
67ac597bed179b5842d996fad80472c6b9514edde408ade8b892161bcf9e9c88
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.29.0 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:09 GMT
Content-Type: text/css
Content-Length: 19778
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:15 GMT
ETag: "4d42-6128b529c5f65"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:09 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.19.4
66.96.162.132200 OK 59 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.19.4
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (59158)
Hash 74bab4578692993514e7f882cc15c218
b6293bcfd851f963edbe859498570c4c0c7eaae4
d87ddf917b7a1449ab45e2b8e3c98354629bdd65b6659c37e6023bbea1ce1386
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.19.4 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: text/css
Content-Length: 59344
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:16 GMT
ETag: "e7d0-6128b529f3eb8"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 1
sanddenterprises.org/wp-includes/js/wp-emoji-release.min.js?ver=6.1.6
66.96.162.132200 OK 22 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/wp-emoji-release.min.js?ver=6.1.6
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (15660)
Hash 8675119c5c74b275c95d8f7381653228
297ecd41d660c69d28f73ecd726ad4c09a9db145
f10965594f2bfb06b11061bbb253d8bfc69a85a5083190fb9eafbddf6d82e0f3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.6 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:09 GMT
Content-Type: application/x-javascript
Content-Length: 22353
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:02:11 GMT
ETag: "5751-5fbb88c5ccec0"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:09 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.19.4
66.96.162.132200 OK 27 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.19.4
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (26516)
Hash c55205bce667f5d812354fd1353e7389
f22de0af271eba636a022c873c94fbcd81b4c89a
c55902832fb84522d02ea1a60a30747403a140d8651fa748f13ba398b0c0df3a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.19.4 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: text/css
Content-Length: 26702
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:16 GMT
ETag: "684e-6128b52a10bd4"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.4.1
66.96.162.132200 OK 60 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.4.1
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (59487)
Hash 6c7d3ca1a71e854998ccfccc05d0aac0
83f25710d6c62e07cf6356925e4937f45039d246
1401796ca5d0811199907c1b6ce254f5e07584af815012995bae2bbab5bb5f60
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.4.1 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: text/css
Content-Length: 59530
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 12:33:52 GMT
ETag: "e88a-5cf68ec538c00"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
66.96.162.132200 OK 669 B URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (483)
Hash 9eb2d3c87feb6bb2ffa63b70532b1477
38f226335a05ab0e30497bc7419eb5e243a9e26c
37bab6cd583982e8eff58501a99d7c5c4d63664c1ca34f9e3b7cf526c5b73ae2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: text/css
Content-Length: 669
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:16 GMT
ETag: "29d-6128b52a09a72"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
66.96.162.132200 OK 675 B URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (489)
Hash 144e43c3b3d8ea5b278c062c202c92f2
3c037057a419245849747b4762d09d88cab66fc1
9cd63b8cea25045c14623c538d26752518a58c0c682795ce6ad3078976c65a37
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: text/css
Content-Length: 675
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:16 GMT
ETag: "2a3-6128b529f7d28"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
66.96.162.132200 OK 93 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash 4f847fce5733111b854b3e90d44f79aa
5b59094666d256b8421f19b2e112d2e3f9f03bef
bc325696622fbda9666dc48586e1f27ea60ac32af112497a2170a38ed91a8533
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 93420
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:03:21 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "16cec-5fbb89088ec40"
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
66.96.162.132200 OK 58 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (57726)
Hash eeb705d0bdccfd645d3bbd46dd1fbab3
066def290f42ed8c00860e573cc880bd46e9ced4
d01a2ba2805c78957e15a2958135de0f3cb88e95159dd0f6c0a032bd76b1b0e9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: text/css
Content-Length: 57912
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:16 GMT
ETag: "e238-6128b52a02912"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
66.96.162.132200 OK 25 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (8220)
Hash 14a54c704f51e91a788c0c38ac761ea7
fbdcdc57b5ef9fc788d601165e36a1119ea1217d
4f5b642aa623263fbd1c85031e2becaa1f0f0ec8cc3a20e11728601cd0f6e240
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 25176
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:03:03 GMT
ETag: "6258-5fbb88f7643c0"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
66.96.162.132200 OK 15 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (11126)
Hash 34691257bf259c02e1e848041f1e014b
e6e182b259da6178ce7640c8b61f3ecfc5d7f241
88a9891d647ebe29abdbd7fa987bc7939c4477b00398e012ffe28b9fff774135
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 14960
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:01:22 GMT
ETag: "3a70-5fbb889712080"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.19.4
66.96.162.132200 OK 119 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.19.4
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type ASCII text, with very long lines (65496)
Size 119 kB (118630 bytes)
Hash 788883fa142b0b5fdb6c795072ac213f
1a80f79f6e097bd2219a701f8eb7088f5be3687b
3c9ef71cb1059c3b6059b62872bb1cb9eaea460b73ecd5431a8b3fe719a131d7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.19.4 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: text/css
Content-Length: 118630
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:12 GMT
ETag: "1cf66-6128b5269b685"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 1
sanddenterprises.org/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2
66.96.162.132200 OK 7.1 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (3255)
Hash 6b0109995a3a83716b35b25f5d094920
4234088121fc50178b933fbfc6f32c3b6e1cebaa
745a0c7417848f2b47f54882ab4a6084e5bd20d8a31de8bb72e31ff76c8a8520
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 7138
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:00:51 GMT
ETag: "1be2-5fbb887981ac0"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.2
66.96.162.132200 OK 14 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.2
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (10580)
Hash 5244f782699e5ada7108336e92db2453
ef0c1b3bbd74d55c4ac0f22c3baadb475e507df8
665f24c1669395cdd1a9d2b8c43db79c9fa24c276050d50994c85a1a54468b45
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.13.2 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 14464
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 09:56:02 GMT
ETag: "3880-5fbb8765e5080"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/clipboard.min.js?ver=2.0.11
66.96.162.132200 OK 13 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/clipboard.min.js?ver=2.0.11
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (9005)
Hash d5267fb2a7f56a98da73d68329746add
f8c01118a8a3a4b77d4c8506bcbc0c09ba65d547
ae402b0491f70579ee77b7f7abba118f7916e08ca6789d4f4c7e6456c521e6b7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/clipboard.min.js?ver=2.0.11 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 12745
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 09:57:30 GMT
ETag: "31c9-5fbb87b9d1680"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.2
66.96.162.132200 OK 40 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.2
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (36579)
Hash bfeea2fe86a1347bd2bcc65261a31b41
fe9236b4a18abca479822767c3a870869ce10101
7e6c4b531fd6c77c03d117045ce703b4ce945382f3e67ccfd7613136184c48b1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.2 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 40467
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 09:58:07 GMT
ETag: "9e13-5fbb87dd1a9c0"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/plupload/plupload.min.js?ver=2.1.9
66.96.162.132200 OK 19 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/plupload/plupload.min.js?ver=2.1.9
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (15636)
Hash 846c020d9000454bb439ff95de3445ae
3cfd2316289f6dd85383a08cff89dcc165686325
eadb2280515ab7a4b81cc854b895019d2f96ce06a0b4e1298f1a44d9ab8c8e75
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/plupload/plupload.min.js?ver=2.1.9 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 19341
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:03:41 GMT
ETag: "4b8d-5fbb891ba1940"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
66.96.162.132200 OK 10 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (6506)
Hash 7cffdd494811a9f19ea9afe5cafd3ed4
73dbdd881cf5df18dfc641564ba750c38dc4b3c5
f7549b0487b3f159b7d260c20ef1e6a16777555aa1090fd4c8f38b9329403d03
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 10211
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:01:58 GMT
ETag: "27e3-5fbb88b967180"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/underscore.min.js?ver=1.13.4
66.96.162.132200 OK 23 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/underscore.min.js?ver=1.13.4
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (18829)
Hash 5579c729f63facc89350f6df5268c7e8
8ad97f1aa83247167d4a49153282c43b3e907177
76a40ef27796a2b875eeed96e580a693a313c6a0aed6adeb632b8db223b2631e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 22569
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:01:37 GMT
ETag: "5829-5fbb88a560240"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
66.96.162.132200 OK 4.2 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (494)
Hash b373b0cdd8e46bd37994fa7213099ac1
436106f97156661063cb15da9bab7ca5f9155277
966cf9cb49aa2ba8dc7f49c75262eadfd16f8b9bd0139b1709fc6a76dcda0111
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 4234
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:02:53 GMT
ETag: "108a-5fbb88eddad40"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
66.96.162.132200 OK 22 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (17850)
Hash 038c8922b09e85dfc96bef57038942a2
faeb686ba57cf189172f76e4d70d4afe7a70bd28
73d86af2fba31bfedecd858ce55bc74d76bd0f0aa586e0ba3ea1db213732c316
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 21559
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:00:08 GMT
ETag: "5437-5fbb88507fa00"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/plupload/moxie.min.js?ver=1.3.5
66.96.162.132200 OK 91 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/plupload/moxie.min.js?ver=1.3.5
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 6f38bf54ca0f62781b19c1dbd9f0d015
487086f1888760433806bd42245dc92e042ee3ba
c76dd7b3927a2b3e8badef54253ffc74c08bdc421672bdea6016bdde0a407df9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/plupload/moxie.min.js?ver=1.3.5 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 91127
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:00:47 GMT
ETag: "163f7-5fbb8875b11c0"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
66.96.162.132200 OK 8.6 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (4906)
Hash 1c9a900c9a16c51682c8679b4fc4d314
7c928cc3efad9f8c6aa363180870edd787446589
afec5a1f31269cea57c242eb015b38130d0fbb5cf8b6c1b12a8b371a364a64c4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 8646
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 09:56:12 GMT
ETag: "21c6-5fbb876f6e700"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
66.96.162.132200 OK 14 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
Hash 39a09c979a16fa358301d103d8bc42b2
82693d746c559493698112ee56440df51854b701
c1274088a2a16aa26cc4c9d80f64b35d2fe687e110ab46e960c5e17a7fb4f477
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 13966
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:01:36 GMT
ETag: "368e-5fbb88a46c000"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
66.96.162.132200 OK 6.2 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (2503)
Hash 3beca2c70a356a55881a5e19096aa148
e1d00a28966cd4dfb625ff21bd06748214598ba6
ba9f880f9481990dfcac01e135d0f90f73a4519e150a5566e7997835924bc890
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 6244
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:00:53 GMT
ETag: "1864-5fbb887b69f40"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-includes/js/plupload/handlers.min.js?ver=6.1.6
66.96.162.132200 OK 16 kB URL GET HTTP/1.1 sanddenterprises.org/wp-includes/js/plupload/handlers.min.js?ver=6.1.6
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (11856)
Hash f9457101f938e898d02ac695ffbb78b0
38b4a584d07d7c37ada31b43f914bd1de71936f2
e911adf8365354d79ae34185c8672a4ea0ab8202ec339acf2ba416669cd9ab46
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/plupload/handlers.min.js?ver=6.1.6 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 15561
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:00:09 GMT
ETag: "3cc9-5fbb885173c40"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give-form-field-manager/assets/js/frontend/give-ffm-frontend.min.js?ver=1.4.7
66.96.162.132200 OK 63 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give-form-field-manager/assets/js/frontend/give-ffm-frontend.min.js?ver=1.4.7
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (54278)
Hash f4a8ecacfbed41eca3f06c93136f161b
c71e2608082c1461b50495b44fbfdaf01eb2cfe1
b72b75b76318efb994d6a48f75e3aaa6ef111579a01562a8dddff974eedda1d2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give-form-field-manager/assets/js/frontend/give-ffm-frontend.min.js?ver=1.4.7 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 62689
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 14:14:26 GMT
ETag: "f4e1-5cf6a53fb1480"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give-tributes/assets/js/give-tributes-common.min.js?ver=1.5.7
66.96.162.132200 OK 11 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give-tributes/assets/js/give-tributes-common.min.js?ver=1.5.7
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (7456)
Hash e02a6098b71ad94d63dcf1b69442e6ec
3d54d751572a1ff7d061ed80196963e2fc8a56cc
6ae2e916b20ebb058468401553da4c4092df785b7c0ceedf197b268a88453a44
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give-tributes/assets/js/give-tributes-common.min.js?ver=1.5.7 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 11161
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 14:16:44 GMT
ETag: "2b99-5cf6a5c34cb00"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give-fee-recovery/assets/js/give-fee-recovery-common.min.js?ver=1.7.11
66.96.162.132200 OK 5.4 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give-fee-recovery/assets/js/give-fee-recovery-common.min.js?ver=1.7.11
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (1731)
Hash 887a6b5a4b62f43d8821ea36641a9e4e
7223d0d10fdece9b735fae13d06e78a6beaa76ec
e463d84cc1de7c93ba9627404bef4506a503dcaf55fccd7f908a2adfbd15eec4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give-fee-recovery/assets/js/give-fee-recovery-common.min.js?ver=1.7.11 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 5436
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 14:14:56 GMT
ETag: "153c-5cf6a55c4d800"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give-fee-recovery/assets/js/give-fee-recovery-public.min.js?ver=1.7.11
66.96.162.132200 OK 8.7 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give-fee-recovery/assets/js/give-fee-recovery-public.min.js?ver=1.7.11
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (4965)
Hash 5524e1d9981e9ca772c2fe47bb004f65
11c78360fc36b0af6034d5dfa0ed4c537e8a0b33
908531f723419e8987b7102a736d8f0a8f8bbe9405ff530298279347b73476fa
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give-fee-recovery/assets/js/give-fee-recovery-public.min.js?ver=1.7.11 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 8670
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 14:14:56 GMT
ETag: "21de-5cf6a55c4d800"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give-recurring/assets/js/give-recurring.js?ver=1.10.4
66.96.162.132200 OK 21 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give-recurring/assets/js/give-recurring.js?ver=1.10.4
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
Hash 49342e60a28778baeb8fa8023866c0ea
443820abf02d1a67a8d98630694a35473e5e3741
422c6e62681d401507ff77f3a518b561aa5b6fa72845ca083c1280e619dac7fd
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give-recurring/assets/js/give-recurring.js?ver=1.10.4 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 21436
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 14:12:38 GMT
ETag: "53bc-5cf6a4d8b2180"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give-tributes/assets/js/give-tributes-public.min.js?ver=1.5.7
66.96.162.132200 OK 4.5 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give-tributes/assets/js/give-tributes-public.min.js?ver=1.5.7
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (759)
Hash e2b808465e1c1dda8c38eaa0bc45b74f
a762d0b365b505ca438388c534ee84dd867a7eb9
fae1a0f937ecbe706636eec5d7befe9e649ac99ebea306cd9fd6e3a3e6a5adb4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give-tributes/assets/js/give-tributes-public.min.js?ver=1.5.7 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 4464
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 14:16:44 GMT
ETag: "1170-5cf6a5c34cb00"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.19.4
66.96.162.132200 OK 15 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.19.4
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (14869)
Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6
678bc6f750f13adb29bbc158eb0d9cd813b736fa
97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.19.4 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 15055
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:16 GMT
ETag: "3acf-6128b52a37bb5"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give/assets/dist/js/give.js?ver=1f58f4922fc61e82
66.96.162.132200 OK 162 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give/assets/dist/js/give.js?ver=1f58f4922fc61e82
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 162 kB (161788 bytes)
Hash 6733f079c1e76bdbd69c962b87dc6927
dc8c5665fa53dbcff28b254c0862a3b5a45ae56a
9e8a959349cf5dcdb4022588dcd90c13f771de2a1289edc0d7cd5b132bcd279a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give/assets/dist/js/give.js?ver=1f58f4922fc61e82 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 161788
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:45:36 GMT
ETag: "277fc-6128b5763e9a0"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/give/assets/dist/js/give-donation-summary.js?ver=3.4.2
66.96.162.132200 OK 5.2 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/give/assets/dist/js/give-donation-summary.js?ver=3.4.2
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (5162), with no line terminators
Hash c5a30e7520998531fb648ce916d152df
62031c99a7bb34b71f19ac4053a6d6d858d89f8a
f02ef2616c0d8103ca4eb35615ff6cf01b16f7611723f7a515401ab4c70bf31f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/give/assets/dist/js/give-donation-summary.js?ver=3.4.2 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 5162
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:45:36 GMT
ETag: "142a-6128b57637876"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
66.96.162.132200 OK 6.8 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (3144)
Hash 5c9d51f104ebeb036a1fc6c330a37ce6
b686647d50e01594af9311263c83d032d5c347e5
3ea4377c19df52bcdd6f8ab6e8e1253a537f2b26f9cd0d599c51f18e43bfc894
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 6849
Connection: keep-alive
Server: Apache
Last-Modified: Mon, 15 May 2023 10:00:11 GMT
ETag: "1ac1-5fbb88535c0c0"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
66.96.162.132200 OK 29 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (25146)
Hash 50111c617d3b943b096909a43ca7be99
dcac7c2c39aee22b1964be31be14670c76435720
ca1eab2c5c5cf64bf160eba78c401af7913883050e94059d3bc1f507ce2578ab
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 28938
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 12:33:52 GMT
ETag: "710a-5cf68ec538c00"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.6
142.250.74.106200 OK 11 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.6
IP 142.250.74.106:443
Requested by https://sanddenterprises.org/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File type gzip compressed data, max compression
Hash f9a862684025ff860928805f83193489
4d8f32430d1ba1944e8d0cecc5cfd6dd7f200e52
ce84219e7e89d47c65debc0472cdf36c07659a2c1d0c1f284554af69cc2f9fe3
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.6 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 04:31:09 GMT
date: Wed, 24 Apr 2024 04:31:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sanddenterprises.org/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.19.4
66.96.162.132200 OK 5.0 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.19.4
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (4957)
Hash ddbc06b72901f5acd16e30cc4797e14f
f6e09b2ecbc00b2395edac487fe1d9f01fd9de56
dc5c23d953f36b20f935cb682d82bff5ab44c7ddce00ed7187330bc2ec5e5a60
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.19.4 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 4997
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:15 GMT
ETag: "1385-6128b52972ca6"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.4.1
66.96.162.132200 OK 24 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.4.1
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (19888)
Hash 6c8635b691f3d030b3f9bac92541e9e0
dfb004cab1667f9e8f047acbb5ab418a469782da
b8684bb44553f93b5b5fa8542999656beaff31e28a7cd73b964336190013c3a6
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.4.1 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 23636
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 12:33:52 GMT
ETag: "5c54-5cf68ec538c00"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.19.4
66.96.162.132200 OK 60 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.19.4
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (60132)
Hash 728871a57decbd88958291fdbd4c1d2d
1257f88875d649a8165ef90e3fd7658eb070f48e
1f686850e2e1e05a883c0b5e32bc85a99a8dafb3d599bd79f95b585ba3a58556
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.19.4 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 60173
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:15 GMT
ETag: "eb0d-6128b52909f81"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.19.4
66.96.162.132200 OK 40 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.19.4
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (40266)
Hash a84c7dd3335b84fb93e1f170badf9172
9f32c3a804ecc3b26905428081e1c7cfd8a752f3
bd6a2cc187e662d9e3c3611f2b08353d237c05aff614342d26d978ab8b504976
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.19.4 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: application/x-javascript
Content-Length: 40306
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:15 GMT
ETag: "9d72-6128b528f89a5"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.4.1
66.96.162.132200 OK 28 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.4.1
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (23767)
Hash 55a29406038b576258d27097784af3a0
700ea8d21d211bb0d5b148f78834a3b270ebde33
1b24cd4cf1072feac1bdca0268f65d692d3247d5cccd0591134da0192c25f4e0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.4.1 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: application/x-javascript
Content-Length: 27515
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 12:33:52 GMT
ETag: "6b7b-5cf68ec538c00"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 33 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:443
Requested by https://sanddenterprises.org/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Hash 057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sanddenterprises.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:38:02 GMT
expires: Fri, 18 Apr 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 525189
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 33 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:443
Requested by https://sanddenterprises.org/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Hash 057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sanddenterprises.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:38:02 GMT
expires: Fri, 18 Apr 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 525189
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://sanddenterprises.org/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sanddenterprises.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 43413
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sanddenterprises.org/wp-content/uploads/2021/10/dark_logo_transparent_background-1024x605.png
66.96.162.132200 OK 112 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/uploads/2021/10/dark_logo_transparent_background-1024x605.png
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type PNG image data, 1024 x 605, 8-bit/color RGBA, non-interlaced
Size 112 kB (111478 bytes)
Hash 4be4bfb2e810cba85f22096b89d0e9a7
44607b2aebb4a5752e0c039cfb3245f6f23a6d33
e41d19806c4e8d12dc4463f6444cfe322b6db66699a22a3352c89f61cb2889bf
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2021/10/dark_logo_transparent_background-1024x605.png HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: image/png
Content-Length: 111478
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 13:01:54 GMT
ETag: "1b376-5cf695094d480"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 33 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:443
Requested by https://sanddenterprises.org/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Hash 057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sanddenterprises.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:38:02 GMT
expires: Fri, 18 Apr 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 525189
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sanddenterprises.org/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
66.96.162.132200 OK 12 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: application/x-javascript
Content-Length: 12198
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:17 GMT
ETag: "2fa6-6128b52aed6c0"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://sanddenterprises.org/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sanddenterprises.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 13:20:56 GMT
expires: Fri, 18 Apr 2025 13:20:56 GMT
cache-control: public, max-age=31536000
age: 486615
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
66.96.162.132200 OK 78 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Length: 78196
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:16 GMT
ETag: "13174-6128b52a77081"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
66.96.162.132200 OK 77 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Length: 76764
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:16 GMT
ETag: "12bdc-6128b52a5bb1c"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 33 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:443
Requested by https://sanddenterprises.org/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Hash 057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sanddenterprises.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:38:02 GMT
expires: Fri, 18 Apr 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 525189
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sanddenterprises.org/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.29.0
66.96.162.132200 OK 97 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.29.0
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 96924, version 1.0
Hash 8192142e6211a46255bed91e8d5717d4
9ecb3fdd5ec6331cb20c17003d3e3e98161c0468
b8e6c0950b169464c66da055d932bc8cf911fd8a937f1d9ca60fd0f0e9f6f083
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.29.0 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.29.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Length: 96924
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:16 GMT
ETag: "17a9c-6128b529d7d74"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/uploads/2021/10/istockphoto-1147384883-612x612-1.jpg
66.96.162.132200 OK 42 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/uploads/2021/10/istockphoto-1147384883-612x612-1.jpg
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=Motivated international multi-ethnic company members aged and young corporate team photographing posing for camera, successful ], progressive, precision 8, 612x408, components 3
Hash 6346d8ad434f24d147c397cdd818f3b4
8a966579b9ea97131c04f1cc7b24b5cee654ab85
e80d6612c5b84631f9517083bfa3cc664a357ec11e1744c9191f0343b4764413
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2021/10/istockphoto-1147384883-612x612-1.jpg HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: image/jpeg
Content-Length: 42032
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 13:02:06 GMT
ETag: "a430-5cf69514c063e"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/uploads/2021/10/dark_logo_white_background-1024x605.jpg
66.96.162.132200 OK 55 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/uploads/2021/10/dark_logo_white_background-1024x605.jpg
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 1024x605, components 3
Hash d5863d284e4f86f7c6d84ff406a9546a
7d5a31b06ea4e77145d8ac6b19a2d2844afaffa0
1f73bdc53fe76db6b96276997e75e2663666437ba4075a8edb295729c3922d4f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2021/10/dark_logo_white_background-1024x605.jpg HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: image/jpeg
Content-Length: 55090
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 13:01:58 GMT
ETag: "d732-5cf6950d1dd80"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
maps.google.com/maps?q=2582%20Maguire%20Road%2C%20Suite%20159%20Ocoee%2C%20Florida%2034761&t=m&z=10&output=embed&iwloc=near
142.250.74.46301 Moved Permanently 0 B URL GET HTTP/2 maps.google.com/maps?q=2582%20Maguire%20Road%2C%20Suite%20159%20Ocoee%2C%20Florida%2034761&t=m&z=10&output=embed&iwloc=near
IP 142.250.74.46:443
Requested by https://sanddenterprises.org/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /maps?q=2582%20Maguire%20Road%2C%20Suite%20159%20Ocoee%2C%20Florida%2034761&t=m&z=10&output=embed&iwloc=near HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
vary: Origin, X-Origin, Referer
date: Wed, 24 Apr 2024 04:31:11 GMT
content-type: text/html
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sanddenterprises.org/wp-content/uploads/2021/10/Pattern-background-300x133-1.gif
66.96.162.132200 OK 13 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/uploads/2021/10/Pattern-background-300x133-1.gif
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type GIF image data, version 89a, 300 x 133
Hash e2c43ff4b3bf10e16defcbcfeb3b6844
5be17eeaf96e907f4c0a7ecbb6d19c3a86f13831
a8e91435cd59d190ffd4845fc0c0982051dc985620a23ad2c8bb6d114f2b4693
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2021/10/Pattern-background-300x133-1.gif HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: image/gif
Content-Length: 12987
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 12:57:34 GMT
ETag: "32bb-5cf6941227750"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/uploads/2021/10/sunset-3340781_1280-1.jpg
66.96.162.132200 OK 176 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/uploads/2021/10/sunset-3340781_1280-1.jpg
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x810, components 3
Size 176 kB (175613 bytes)
Hash a0e9e88460b5a9367ca5f925de536100
fdb047c8d5a1202fcf36a0995523e980330d5a0e
5d8dfbb59323398b608244b384e08323ea3b53b287be51e9da66035c65ed43c7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2021/10/sunset-3340781_1280-1.jpg HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: image/jpeg
Content-Length: 175613
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 13:02:46 GMT
ETag: "2adfd-5cf6953bc8175"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/uploads/2021/10/sunset-1807524_1280-1.jpg
66.96.162.132200 OK 102 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/uploads/2021/10/sunset-1807524_1280-1.jpg
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x785, components 3
Size 102 kB (102064 bytes)
Hash cb438bbc4e45814763fee64a934a1555
7f75a4d81bbd918f49ede297768770a3512e628f
eb61db1eff1f0f9b08d27d1c2adbd5aa79a0de95af68ca7119ee343491059d43
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2021/10/sunset-1807524_1280-1.jpg HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: image/jpeg
Content-Length: 102064
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 13:02:44 GMT
ETag: "18eb0-5cf69539f069e"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/uploads/2021/10/bridge-5010894_1280-1.jpg
66.96.162.132200 OK 422 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/uploads/2021/10/bridge-5010894_1280-1.jpg
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, manufacturer=Canon, model=Canon EOS 7D], baseline, precision 8, 1280x853, components 3
Size 422 kB (422313 bytes)
Hash aff8ca0aed463cbf33825d4501b5389e
13ba090ed56eb2488c7e8f3b31ceef7201596cc2
d439fcd512ab7ee8ccff38a98c944d0bce9ebe6919ec0d7fa5d885b3880e0f3c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2021/10/bridge-5010894_1280-1.jpg HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: image/jpeg
Content-Length: 422313
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 13:01:48 GMT
ETag: "671a9-5cf6950481377"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/uploads/2021/10/closeup-diverse-people-joining-their-hands-1.jpg
66.96.162.132200 OK 407 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/uploads/2021/10/closeup-diverse-people-joining-their-hands-1.jpg
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x563, components 3
Size 407 kB (406553 bytes)
Hash 869046ae11d2dde11fdd7e23c0090882
a662813babdfbbdb6e1dccd7f8f1879c6e644f5c
dc319231a7b75212acfeab94eccd0380951ad36ed2b9cbb8ae6127abe4e380c1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2021/10/closeup-diverse-people-joining-their-hands-1.jpg HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: image/jpeg
Content-Length: 406553
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 12:59:22 GMT
ETag: "63419-5cf6947857e80"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
66.96.162.132200 OK 1.4 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (1320)
Hash 571fe149d88abe85e612ad9bd20fb70b
c0e20515caecc95d6dd7830d2222ea26aef10a3f
02c4864ae484a759fc717d7fa30d8c426f19c5747eb143d0495a15bc2f529494
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: application/x-javascript
Content-Length: 1360
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 29 Feb 2024 20:44:15 GMT
ETag: "550-6128b5295773b"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor-pro/assets/js/nav-menu.fd64b77e7258ee4c6205.bundle.min.js
66.96.162.132200 OK 7.0 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor-pro/assets/js/nav-menu.fd64b77e7258ee4c6205.bundle.min.js
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (3232)
Hash e6f4ba3afee79a26f5a729db66deb885
f0089af554a31a2e2c27c1d6745d92698232ede5
7f00cce31c551cace7180de0c3fa1c928bb6bf745727dd3b23b522cae10f5957
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.fd64b77e7258ee4c6205.bundle.min.js HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: application/x-javascript
Content-Length: 6980
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 12:33:52 GMT
ETag: "1b44-5cf68ec538c00"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/plugins/elementor-pro/assets/js/search-form.e36b4b7c26157bb965fe.bundle.min.js
66.96.162.132200 OK 5.6 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor-pro/assets/js/search-form.e36b4b7c26157bb965fe.bundle.min.js
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (1899)
Hash 87c0fd1bc58edf5cdb55aab671ab0cef
18652fb56c6e4a36b59b7a24e534a6d388055048
27e75cc316c7c07b8f642f1b60d4fee06dd124a66a50fc29a771f80a5c3c7742
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/search-form.e36b4b7c26157bb965fe.bundle.min.js HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: application/x-javascript
Content-Length: 5647
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 12:33:52 GMT
ETag: "160f-5cf68ec538c00"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/uploads/2021/10/cropped-dark_logo_white_background-scaled-1-192x192.jpg
66.96.162.132200 OK 8.3 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/uploads/2021/10/cropped-dark_logo_white_background-scaled-1-192x192.jpg
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 192x192, components 3
Hash 72b38b1d725c4093b9e1b0fe409741ab
1062e5c98b3c40d9cc7ca955f530fd5a33af8456
66c4fa1ab2e65af60f0bd6d7133262e8476e94c9c5a4275444adfc75d6ea5ddc
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2021/10/cropped-dark_logo_white_background-scaled-1-192x192.jpg HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: image/jpeg
Content-Length: 8283
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 30 Oct 2021 11:47:14 GMT
ETag: "205b-5cf90813c3480"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
sanddenterprises.org/wp-content/uploads/2021/10/cropped-dark_logo_white_background-scaled-1-32x32.jpg
66.96.162.132200 OK 1.3 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/uploads/2021/10/cropped-dark_logo_white_background-scaled-1-32x32.jpg
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 32x32, components 3
Hash 91e95a562d1a47b63e220e1d7a33532e
45bed20d19431f3a976c709ceca180ba73f29a92
c7bbba058b05eba1237904ceb859815794295c3eeba4f5d90afc44c875766be5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2021/10/cropped-dark_logo_white_background-scaled-1-32x32.jpg HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:11 GMT
Content-Type: image/jpeg
Content-Length: 1291
Connection: keep-alive
Server: Apache
Last-Modified: Sat, 30 Oct 2021 11:47:14 GMT
ETag: "50b-5cf90813c3480"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:11 GMT
Age: 0
www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
142.250.74.164200 OK 967 B URL GET HTTP/2 www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
IP 142.250.74.164:443
Requested by https://sanddenterprises.org/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73
ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
File type HTML document, ASCII text, with very long lines (1260)
Hash 51e3d5e399f5177e8b63c061f9ea9037
0cee9d3e030b7baaadaf2c2661da50d33412f58a
e29e14c258f577cb92ff6a9defd3640bdad2a236df216574d16c640b097f70f6
GET /maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sanddenterprises.org/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Fri, 01 Jan 1990 00:00:00 GMT
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-LglF5mrnqtvQ7O2AC6SEsA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
pragma: no-cache
vary: Accept-Language, Origin, X-Origin, Referer
cache-control: no-cache, must-revalidate
x-robots-tag: noindex,nofollow
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 04:31:11 GMT
server: scaffolding on HTTPServer2
content-length: 967
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.gstatic.com/maps-api-v3/embed/js/56/8/init_embed.js
216.58.211.3200 OK 62 kB URL GET HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/56/8/init_embed.js
IP 216.58.211.3:443
Requested by https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type JavaScript source, ASCII text, with very long lines (3255)
Hash 1d49332a9ae21a32dccf340992579099
7a190373e111cbc15140f3f346d301f3f310e968
0619bf8b5bb33cf2eb372372e3ffcd9e4d06f2b3cdac25afd923669dfe609092
GET /maps-api-v3/embed/js/56/8/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 61533
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 17:31:02 GMT
expires: Thu, 17 Apr 2025 17:31:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 17:51:51 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 558010
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=weekly&loading=async&language=en_US&callback=onApiLoad
142.250.74.106200 OK 68 kB URL GET HTTP/3 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=weekly&loading=async&language=en_US&callback=onApiLoad
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File type JavaScript source, ASCII text, with very long lines (10168)
Hash e26a80e3eedaac73b6e2578d93977830
08a5e20c1113583329a0435899bd7ea30248f1ab
c18592223b5449fb939c0d68a1d104a73f15c8cb6b7384de87bcc4c20793c63a
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=weekly&loading=async&language=en_US&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
timing-allow-origin: *
cache-control: public, max-age=1800
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 24 Apr 2024 04:31:12 GMT
server: scaffolding on HTTPServer2
content-length: 67494
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.106200 OK 23 B URL GET HTTP/3 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hash 8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 24 Apr 2024 04:31:12 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.google.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/56/8/common.js
142.250.74.106200 OK 57 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/56/8/common.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File type JavaScript source, ASCII text, with very long lines (6747)
Hash 418ecbb83c2df2a704fdec98cba736bf
0b0535ebe27dfcef7437bc75cf33648c61be3dbe
cf0c03bd0efee39705d10989e116ce08d2810c4ed1b578b6451dd26a34beede5
GET /maps-api-v3/api/js/56/8/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 57388
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 17:31:06 GMT
expires: Thu, 17 Apr 2025 17:31:06 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 17:51:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 558006
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/56/8/map.js
142.250.74.106200 OK 24 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/56/8/map.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File type JavaScript source, ASCII text, with very long lines (2395)
Hash 8002e74931babf8e419c3781897ce8a0
23a642ee111b298d73c0440a601c835dcbe27402
42e6fac8ff3f94a3766bf1724d4d5c7d8a0f360425f2c31ee56bd94d5a21bde2
GET /maps-api-v3/api/js/56/8/map.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 23960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 17:30:59 GMT
expires: Thu, 17 Apr 2025 17:30:59 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 17:51:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 558013
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/56/8/util.js
142.250.74.106200 OK 57 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/56/8/util.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File type JavaScript source, ASCII text, with very long lines (562)
Hash 6cc4537f5b0fb2554830940d2ef390c1
deae273e7dca2c26ffb13cd11c32280462fc351e
c2f957bdab42c74b2dfa9f67e6fb1866edb41034f319d84ca185e5c0f1985f58
GET /maps-api-v3/api/js/56/8/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 57059
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 17:31:06 GMT
expires: Thu, 17 Apr 2025 17:31:06 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 17:51:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 558006
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/56/8/overlay.js
142.250.74.106200 OK 1.3 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/56/8/overlay.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File type ASCII text, with very long lines (1205)
Hash 0d5b722bea1627da49781fa9a3cc2803
f57dd6128b3d89d2ce2f4b374232c8ecdd409077
b228d9e50d1d83fec0ce02169c0ca5311fd7ebbff73409c300c45357e3677b23
GET /maps-api-v3/api/js/56/8/overlay.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 1288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 18:56:43 GMT
expires: Wed, 23 Apr 2025 18:56:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 17:51:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 34469
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/56/8/onion.js
142.250.74.106200 OK 9.2 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/56/8/onion.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File type JavaScript source, ASCII text, with very long lines (2924)
Hash e820d691074aea0597bb293257174d9c
fa7dd71199d074334c1a00ed9af866e0fa8ac6cd
52b2a0f543d748836b4f36d457cc86cca324e00c700bce5b6251f717b81bc943
GET /maps-api-v3/api/js/56/8/onion.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 9167
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 17:30:59 GMT
expires: Thu, 17 Apr 2025 17:30:59 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 17:51:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 558013
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/56/8/search_impl.js
142.250.74.106200 OK 1.3 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/56/8/search_impl.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File type ASCII text, with very long lines (1499)
Hash 85a44f3da76925a60c62f7607c2f5a1d
c14254ab180b397d3eb0ad23cde7134b1d1e08a6
6a5fa96340b21ee2114134561e65915a9bd9be9e7e20db02815e4aa9b313e6fc
GET /maps-api-v3/api/js/56/8/search_impl.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 1274
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 17:31:00 GMT
expires: Thu, 17 Apr 2025 17:31:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 17:51:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 558012
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps/api/js/StaticMapService.GetMapImage?1m2&1i71564&2i109270&2e1&3u10&4m2&1u265&2u217&5m5&1e0&5sen-US&6sus&10b1&12b1&client=google-maps-embed&token=35291
142.250.74.106200 OK 27 kB URL GET HTTP/3 maps.googleapis.com/maps/api/js/StaticMapService.GetMapImage?1m2&1i71564&2i109270&2e1&3u10&4m2&1u265&2u217&5m5&1e0&5sen-US&6sus&10b1&12b1&client=google-maps-embed&token=35291
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s2582+Maguire+Road,+Suite+159+Ocoee,+Florida+34761!5e0!6i10
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File type PNG image data, 265 x 217, 8-bit colormap, non-interlaced
Hash 946a7e5f02c0df1f48ec9fb9bfcd42b0
25241a31c21cb6bfd066dc20a74ea52ff2b0311e
6ef188328e1d9628df61e639fd2ef0265dc3b9777a2a1204d75d711c5c2a9cd9
GET /maps/api/js/StaticMapService.GetMapImage?1m2&1i71564&2i109270&2e1&3u10&4m2&1u265&2u217&5m5&1e0&5sen-US&6sus&10b1&12b1&client=google-maps-embed&token=35291 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
date: Wed, 24 Apr 2024 04:31:12 GMT
expires: Thu, 25 Apr 2024 04:31:12 GMT
cache-control: public, max-age=86400
server: scaffolding on HTTPServer2
content-length: 26901
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=65
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
sanddenterprises.org/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.4.1
66.96.162.132200 OK 8.4 kB URL GET HTTP/1.1 sanddenterprises.org/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.4.1
IP 66.96.162.132:443
Requested by https://sanddenterprises.org/
Certificate IssuerLet's Encrypt
Subject*.sanddenterprises.org
Fingerprint56:19:16:CF:8B:5E:E5:1B:C0:CF:D2:F8:08:4B:BA:4E:42:4C:F2:70
ValidityTue, 23 Apr 2024 08:03:58 GMT - Mon, 22 Jul 2024 08:03:57 GMT
File type JavaScript source, ASCII text, with very long lines (8680), with no line terminators
Hash f0bc0a7466dae6d64fc81b6ad32589f2
0c6ba1c2d21b252dcd223f4c96daf46dd4c1af01
052fd791498e44d89b66123f294550ef0193a63049b38089f09a6b63e88103bb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.4.1 HTTP/1.1
Host: sanddenterprises.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanddenterprises.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 04:31:10 GMT
Content-Type: application/x-javascript
Content-Length: 8438
Connection: keep-alive
Server: Apache
Last-Modified: Thu, 28 Oct 2021 12:33:52 GMT
ETag: "20f6-5cf68ec538c00"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Wed, 24 Apr 2024 08:31:10 GMT
Age: 0