r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9247
Expires: Tue, 06 Dec 2022 22:27:47 GMT
Date: Tue, 06 Dec 2022 19:53:40 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash f83c5e33ba42e312ee398848bbb711f5
caa1fd23b1fbbe883292ded04404c1cfd861eb09
106d08fba45f1e13f85b4b5abc456594878494238933e54b6a06e21ed8a52bc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 100
Cache-Control: max-age=139158
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 19:53:40 GMT
Etag: "638f19f6-1d7"
Expires: Thu, 08 Dec 2022 10:32:58 GMT
Last-Modified: Tue, 06 Dec 2022 10:31:18 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 19:18:40 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2100
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5455
Expires: Tue, 06 Dec 2022 21:24:35 GMT
Date: Tue, 06 Dec 2022 19:53:40 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IPoFZyKo68sJn0azhua5L9sIqeF57ggYRCZouj+EBIBSOPmwwQGmP58yFJmFIEqeOValSfIPEns=
x-amz-request-id: 8EXTN2Q20DKYXX2C
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 19:47:13 GMT
age: 388
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 19:53:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
dpearlhills.com/
301 Moved Permanently 0 B IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 19:53:40 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://dpearlhills.com/
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 19:08:58 GMT
cache-control: public,max-age=3600
age: 2683
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 0f7dcaa590e32cfd1c075255188d5f06
d4bb4954fefdb3b59560b54adf500e806e252e39
195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 78
Cache-Control: max-age=134067
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 19:53:41 GMT
Etag: "638f062a-1d7"
Expires: Thu, 08 Dec 2022 09:08:08 GMT
Last-Modified: Tue, 06 Dec 2022 09:06:50 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3bb2a41949bbec79c18d99ac4b35ccae
9969b10431b88ac2006a172d03f86441bbe87008
e02479dd0c2f50d94afff11b0e92e58c319383cb6881c28ba3bf5248ad4864b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E02479DD0C2F50D94AFFF11B0E92E58C319383CB6881C28BA3BF5248AD4864B1"
Last-Modified: Mon, 05 Dec 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 07 Dec 2022 01:53:41 GMT
Date: Tue, 06 Dec 2022 19:53:41 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ul0eSa+XMXltzhxM7VpbEw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XBPdwIp6GrnkMl1AYf0vFTl8muw=
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 19:53:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 19:53:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dpearlhills.com/wp-includes/css/classic-themes.min.css?ver=1
200 OK 189 B URL HTTP/2 dpearlhills.com/wp-includes/css/classic-themes.min.css?ver=1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:24:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 189
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21404
Expires: Wed, 07 Dec 2022 01:50:27 GMT
Date: Tue, 06 Dec 2022 19:53:43 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21404
Expires: Wed, 07 Dec 2022 01:50:27 GMT
Date: Tue, 06 Dec 2022 19:53:43 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21404
Expires: Wed, 07 Dec 2022 01:50:27 GMT
Date: Tue, 06 Dec 2022 19:53:43 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21404
Expires: Wed, 07 Dec 2022 01:50:27 GMT
Date: Tue, 06 Dec 2022 19:53:43 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21404
Expires: Wed, 07 Dec 2022 01:50:27 GMT
Date: Tue, 06 Dec 2022 19:53:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:09:28 GMT
age: 78255
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7f2c354a00ab51d4a41221b6bf191c10
01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4
7d3c8417e1db0db41ceb8b4bf3f506864392dd1ad29319a06a8a6055f6f2ed12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11352
x-amzn-requestid: 7c3fc7bb-eb1f-46ec-8e92-b6ffc6261848
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwuF1ToAMFiIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d1-7c53152a279f00595b9886bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:25 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EQorA5VTb0s2BEIWBkdkhDho-bLdLVvu8LnAIQsQqsIjgBLneYqCzg==
via: 1.1 b6d577696b14c86cbfeb5b3459f38c50.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:22 GMT
age: 79521
etag: "01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 38b97436af942d5eb1111ca7043259a0
0234fe32c84c4711f0619714f3ac6d3db1b717d3
a76a7721355abbaecd5c8cb5218e7e4626dc345eb26e7541c71bf4ceaa7ae5d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11175
x-amzn-requestid: 9c93ddca-1247-44af-a364-e617f69ace26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzYEnEoAMFa2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e2-7d38ea383725901524bc2ca0;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fNsYsKfPUM8QaG7-F1tSBDdsNit1BfYpWddNssXwyFO2HgdA0RpjAQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:54:21 GMT
age: 79162
etag: "0234fe32c84c4711f0619714f3ac6d3db1b717d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d72fb8d20c29763234c2817b119d11b
d4924ec714f5157bcb2fddcb5f768188a3dd37dc
e9aa59142e0673ed3f58b36beaca48213c678dbe4655f9c4b64581cb0f6f22f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12830
x-amzn-requestid: 66f5f2fa-8472-4484-bbea-20ece7e98b1f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcsxGDyIAMFX4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e51-146167697890d9312ce3dbac;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WMeay1i2pxnboCB3Qcwb2ray4tnyEzO89tQrHCfGdI3s9kJsMWvzBw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 03:41:05 GMT
age: 58358
etag: "d4924ec714f5157bcb2fddcb5f768188a3dd37dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faeae6973-c3cb-4597-8dcc-f36e4cd35fda.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faeae6973-c3cb-4597-8dcc-f36e4cd35fda.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5529617b0748f2d8c82ef99c1ac116a8
a862b74508113ae72b56b9b3de0c75ba559b9032
376a82ae4a5b80f59fb746be79bca569b03a74c345845c7bbf15189964b0bb96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faeae6973-c3cb-4597-8dcc-f36e4cd35fda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11469
x-amzn-requestid: f60a3f0d-38f7-4f82-bdd5-9e31814ab1d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSuZGAXIAMFwuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c2-5b4b99e779a0aaa71a311a1c;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bWcuXixVA50JUynSO7ar3nWfjsTa5iOteSYq88bWPlQvz__1qfv7Uw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:41:49 GMT
age: 79914
etag: "a862b74508113ae72b56b9b3de0c75ba559b9032"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e1b54923ba506fde6b21c5bfb51ccc8
366aa3ab0790c496ea51bc08d1f2ff3358530d9e
a993ca6dc9a1f854f4542f9221e4f90060825ea863974b5163a9d3e284dc4663
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10594
x-amzn-requestid: eee9f193-eef5-44bf-997a-877fa206749e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSyIHpGoAMF1fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64da-0a9190f7698dbf2f73bb1575;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T28mItwomGU8iDJ18lUF7ZrFuyh_P3ZTwUtA4AC5qZ5C5FQurDMgmQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:54:01 GMT
age: 79182
etag: "366aa3ab0790c496ea51bc08d1f2ff3358530d9e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 19:53:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dpearlhills.com/wp-content/plugins/wpforms/assets/css/wpforms-full.min.css?ver=1.7.4.2
200 OK 7.8 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/wpforms/assets/css/wpforms-full.min.css?ver=1.7.4.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (39912)
Hash a10142190b2c7372b583472b98056816
ea6ba5f7ea57fceb8de05c4455a5ad42b3357d52
44a40d14b74ccdd9fb2d93d62b63009c5e8273352e81b6d55a71937df9ce16ce
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms/assets/css/wpforms-full.min.css?ver=1.7.4.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 17:42:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7755
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
200 OK 5.3 kB URL HTTP/2 dpearlhills.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 May 2022 03:33:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/css/daterangepicker.css?ver=1.5.2
200 OK 1.9 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/css/daterangepicker.css?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash f4b130e005c42a6edb04b9c8cabb9d7e
022af79e7376152e6e0e0aa6f7b8924922ca6334
483466f23f27ea969bbcb8a6196013399cfc30737a151df2cabf14b686118ad6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/css/daterangepicker.css?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1916
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/js/ion.rangeSlider/ion.rangeSlider.min.css?ver=1.5.2
200 OK 3.2 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/js/ion.rangeSlider/ion.rangeSlider.min.css?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (11083), with no line terminators
Hash 380f162bead5917ff22cd422450d1460
f48195b85624d7beb4c66d6797e4fc17699d1e4f
37acc0101bb8f5d6093f213467588a11ce0fa5b7bda280f1ca2fad4d176e7db2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/js/ion.rangeSlider/ion.rangeSlider.min.css?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3173
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/css/select2.min.css?ver=1.5.2
200 OK 3.4 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/css/select2.min.css?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15195)
Hash f387c46fd49a211193c3c403af8d2fae
c287d5cd1fc3fffe0f7d5a3e6cc0f4a1cbcb6161
4be02b02625c3b37ddd520572cd03207b63ca458178f32660207eae69adf5153
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/css/select2.min.css?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3367
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/css/babe-modal.css?ver=1.5.2
200 OK 1.8 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/css/babe-modal.css?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash b5e230e9710e6f4cc19b136f7d1eb462
d589e2d2e3b747b27c4ba9d1db0a99780e735399
4b92595712be622645ef6e0ead1bfe461a4b33c9fbd928c93c63b2f5f44bcdf5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/css/babe-modal.css?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1776
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/css/jquery-ui.min.css?ver=1.5.2
200 OK 9.0 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/css/jquery-ui.min.css?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (29117)
Hash 09da74c100c904b8532757759f5f957e
0238a7da4f97b5284bfc7c6a63bb7d5b109c130a
73e53e8d3a93f2151ac38a12d8544883aa24323a18abca903c480f63aed0e3d8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/css/jquery-ui.min.css?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8983
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/fonts/fontawesome-free/css/all.min.css?ver=1.5.2
200 OK 12 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/fonts/fontawesome-free/css/all.min.css?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (56656)
Hash 343c45da71f9d25ca4cf1e89e44dce1d
55b838d2ea45e9c7a30072acf6f429850263e179
58f004b7dc171a0d7abf44edafc53ebcabd4b52d1e385fbf99814db246374b5c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/fonts/fontawesome-free/css/all.min.css?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12311
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
200 OK 4.0 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19082)
Hash 1a51c193793d105fc6aaddfc3bc05349
238e509973276daa145be273af1aba0fbb3801bf
69e8578f795564941f826ab314ab57c83da7fb6ca7d9221c8df5f1e9081ae6e3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3978
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/elementor/css/post-1068.css?ver=1655200456
200 OK 5.9 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/elementor/css/post-1068.css?ver=1655200456
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31961), with no line terminators
Hash 225884a955ad74ab093bb397d4370dde
11395cdcc1bc785e6e90c9b43044672e6824d827
d34a0bb0fae2ab326a1d7e595c592593c37318a4829a9414ec33cfd7a7a3e251
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-1068.css?ver=1655200456 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 14 Jun 2022 09:54:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5860
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.6.5
200 OK 4.4 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.6.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (26516)
Hash fdd462f58aee3f9349eabdefb5ca0b57
bb6e017d5537630516ccb98952593690a8c69864
ca51806fcedbe90dd613c4c28673af8693381806a5cb3b43dce2ea4f43e8b314
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.6.5 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4436
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/tevily-themer/elementor/assets/libs/swiper/swiper.min.css?ver=1.0.0
200 OK 5.1 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/tevily-themer/elementor/assets/libs/swiper/swiper.min.css?ver=1.0.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15306)
Hash ed9b38902b65f40dd28aaefa0a83c25d
5dc4f074872d86ae44ed084509b46a63a36537cc
2f8cc754c6c56e3a0d9f6d356f95819c191f9b61c065e36a842831dedbadf27b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/tevily-themer/elementor/assets/libs/swiper/swiper.min.css?ver=1.0.0 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5145
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.6.5
200 OK 13 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.6.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59158)
Hash e6b67e11736ae36a062b381717f2ea9f
a663a79bc8d42aa58bfea1351cc27e0d0b09c9b2
a07a94d36246d0b3e5b9b18e274e31995d0e23cda955babf5e350e91a879523d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.6.5 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12862
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/js/magnific/magnific-popup.css?ver=6.1.1
200 OK 2.6 kB URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/js/magnific/magnific-popup.css?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash bccffa2e75feb023e0f714372f882382
9bc0d236088e6f8c9d4ff9f90a5a0ce9902fed75
0ca6542eb4b8666db24ac40da86ffd0962e16a71c7c0bf95d86fc66f33ef8fa3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/js/magnific/magnific-popup.css?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2631
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/css/custom_script.css?ver=6.1.1
200 OK 3 B URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/css/custom_script.css?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with no line terminators
Hash ecaa88f7fa0bf610a5a26cf545dcd3aa
57218c316b6921e2cd61027a2387edc31a2d9471
f1945cd6c19e56b3c1c78943ef5ec18116907a4ca1efc40a57d48ab1db7adfc5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/css/custom_script.css?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
content-length: 3
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
200 OK 13 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12577
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/tevily-themer/assets/js/ajax-form.js?ver=6.1.1
200 OK 3.0 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/tevily-themer/assets/js/ajax-form.js?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash fa93e5997028707ec69fdfb94cf57e0b
6d21c5ea5f6489d460485f60dde069168f2f3978
41b6f694907532e31b9b748bb07a99570d04500996b6dadd4d858f5614e5ad9c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/tevily-themer/assets/js/ajax-form.js?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3028
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/elementor/css/post-15.css?ver=1653025614
200 OK 370 B URL HTTP/2 dpearlhills.com/wp-content/uploads/elementor/css/post-15.css?ver=1653025614
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1151), with no line terminators
Hash a76591ad080c79ba974825a715aff215
63732be5499a8dcd67fc0fe6e204c0f1a6b0849e
815582fda50f2228f91fea41f708a5ab7d7fae22397b839f1dc57b3b8eec707e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-15.css?ver=1653025614 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 20 May 2022 05:46:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 370
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/js/jquery.cookie.js?ver=6.1.1
200 OK 1.5 kB URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/js/jquery.cookie.js?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 3318ce36c9d6f986b278acff7edc89ad
a51c4b87756e6a9de6a9c14f4fd6c21a2992a5c7
c758432366e6246417d975dd4e7eaac7c346ba2c8ae1a935e9b4f880a2f6736e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/js/jquery.cookie.js?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1462
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/css/line-awesome/css/line-awesome.min.css?ver=6.1.1
200 OK 16 kB URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/css/line-awesome/css/line-awesome.min.css?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash b6d5eeebbd5fcc54394aa730e9df121f
175bde6f4e3af30bf52722b38a934695101d66d1
5a6bdda34aeb2d85252b1f542abe79938adb0b878c4317a24b5de5c9147fa269
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/css/line-awesome/css/line-awesome.min.css?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16499
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/js/jquery.appear.js?ver=6.1.1
200 OK 1.4 kB URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/js/jquery.appear.js?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 21e70e7f9dda25b941dd6021efcc0dd6
a4d0dba2f961519c9425f569acad4fd2c7b9a6c1
f2d0354ed18633e684a9e931b32266b92e97476634644aa8b1988e9fa369374e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/js/jquery.appear.js?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1357
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/js/scroll/jquery.mCustomScrollbar.min.css?ver=6.1.1
200 OK 6.5 kB URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/js/scroll/jquery.mCustomScrollbar.min.css?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (42839), with no line terminators
Hash 29b10fce7614f1cd2f44ceca4ce5f63e
daa89f034f103f0874dfffbc18f0833126c002e8
6a5cb282e066973ee8ae2b868fcb08f55e420aae842948585154607a9b2c3031
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/js/scroll/jquery.mCustomScrollbar.min.css?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6507
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/css/admin/babe-admin-elementor.css?ver=6.1.1
200 OK 106 B URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/css/admin/babe-admin-elementor.css?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash bcac6afe95ecf8d592fcc85688fc266e
6498d3583d6d0fcc2d5f4138220b4ab0f964fd7c
ebe23969e61b0001f09b9c61c1869850b8cc029038f31d28d247c2aea0a1ab09
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/css/admin/babe-admin-elementor.css?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 106
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/elementor/css/post-865.css?ver=1655133358
200 OK 1.7 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/elementor/css/post-865.css?ver=1655133358
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9105), with no line terminators
Hash 3a135914322b9e48e41b473ea6eadb21
4e0ab5fb6e01a48a097d118b8a1bfb29fb03fb71
d2d00755e7db2963766609013cf331ee25da93c7a5fb98c83bd8d9f9b0c2ed92
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-865.css?ver=1655133358 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 15:15:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1673
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/elementor/css/post-866.css?ver=1655133311
200 OK 2.7 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/elementor/css/post-866.css?ver=1655133311
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14342), with no line terminators
Hash 88706dc04ba8c6849ca9960ed99f0067
c60f53084d5b20d20a1afdaa71102f4262924132
d1bfc30f3b176f87296c69c9ea0acdd084468d9ea3929ca4c60ddcf88ac9ec4a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-866.css?ver=1655133311 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 15:15:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2651
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/style.css?ver=6.1.1
200 OK 590 B URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/style.css?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 4ca48ed1ff46543590216569c5583cd1
304b40950fdc1292a32c992969c8a935c1f4ae05
0b4d636998fec591d53c1fe9bb084c01cc9b00642e836463675a229fcde22ad9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/style.css?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 590
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
200 OK 309 B URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/css/fontawesome/css/all.min.css?ver=6.1.1
200 OK 13 kB URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/css/fontawesome/css/all.min.css?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59119)
Hash b0f8e87e9981af1674b7eaa9c70b9385
0eb6e98f3c168af517091717c2704470ca77e2a5
8f20f3d4b106ffd48712adf2fc7394dce546d73b3d48e3485308f977c621981a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/css/fontawesome/css/all.min.css?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12852
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
200 OK 308 B URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.6 kB URL HTTP/2 dpearlhills.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 14:36:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.6.5
200 OK 4.4 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.6.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14869)
Hash 7bab7ad64ffbd7846dd6819250b93e2e
c924918d540389aff62220088b6761f38a5da272
045250efe67364c953a91f6a60cf407ebb5cfdb2da04e84c3d98e5bab5eca9ba
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.6.5 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4359
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/js/magnific/jquery.magnific-popup.min.js?ver=6.1.1
200 OK 9.6 kB URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/js/magnific/jquery.magnific-popup.min.js?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21014)
Hash 006ebdd6b49adaffd1cb172bb699ba1b
34b1c1356f74b47f38ba4de7596693142c1794c5
82dcb093f13742e059bc47bebfdba4f9cbb517525731b9d7b782ea16947677f8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/js/magnific/jquery.magnific-popup.min.js?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9589
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/js/scroll/jquery.mCustomScrollbar.min.js?ver=6.1.1
200 OK 16 kB URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/js/scroll/jquery.mCustomScrollbar.min.js?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32001)
Hash d84479a2b316f951182acd2baa831069
58634a6f849de81e5311ff2b0e6e1002c7dbc47b
cfe8df42da277a99daa308391b7d67c13f4e651e036cfaf251aff4c0e0787207
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/js/scroll/jquery.mCustomScrollbar.min.js?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15595
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
200 OK 2.1 kB URL HTTP/2 dpearlhills.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 00:23:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2103
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/js/masonry.min.js?ver=4.2.2
200 OK 9.2 kB URL HTTP/2 dpearlhills.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (23966)
Hash 2a730dafa34e6ff81513d31e486cdbdb
1fce17d256f67ae086d74092a03006997d9b0add
7a5fd36a453a3a7471fa93b8169579f9a98e2df7a262c44d28d3de41a0f7ae1c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 00:23:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9216
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
200 OK 1.7 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11736)
Hash e6783b604225016c8c387eb1ab17a64e
c507e90fc2a8b8d37289955a9df13f08c1bc93a4
699d403314e22eae8eeca1ec82f5d1351ec00e6a5f4796c21734cfb44ee6d046
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1652
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
200 OK 724 B URL HTTP/2 dpearlhills.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1626)
Hash e1b8f48388e00a715d3fe1f64ea15476
3ea75fd181dd3630bd8765a2b67f23d6da39edbf
87f4466dda6ad8e1c9aa26ef27e28b3b74ac40327d8daf4a7cf994e5b7893718
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2016 00:25:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 724
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/js/main.js?ver=6.1.1
200 OK 4.4 kB URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/js/main.js?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash e4b4a1f5ee7fbdea06a453bde9ac4045
cc36e4271f26799edcb366e89fd4cf0eacbebb65
ccac9ca4c228b3b38652511899c7ab0afacc79913e227a4ed7b1a8d907563e3b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/js/main.js?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4357
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
200 OK 68 B URL HTTP/2 dpearlhills.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Tue, 17 May 2022 14:27:25 GMT
accept-ranges: bytes
content-length: 68
vary: Accept
content-type: image/png
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6.1
409 Conflict 83 B URL HTTP/2 dpearlhills.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 3f4ef8a54bffe08abfd72fbbe3b259e8
28770087be63936aabfdd9d802739767c8fca454
642f68596c1c285397713d2b1147f77a94a5e2eadcb8b18632133f1f87276639
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4380
Cache-Control: max-age=92660
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 19:53:43 GMT
Etag: "638e539f-118"
Expires: Wed, 07 Dec 2022 21:38:03 GMT
Last-Modified: Mon, 05 Dec 2022 20:25:03 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
dpearlhills.com/wp-content/uploads/2021/09/WhatsApp-Image-2022-06-01-at-4.32.21-PM.jpeg
200 OK 24 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2021/09/WhatsApp-Image-2022-06-01-at-4.32.21-PM.jpeg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x447, components 3\012- data
Hash 740b49b21c12e4fa3316ff8866c97b89
1de791348f169bb20cc2202be49429fd495ac0b2
6182531017a15abfbc0b0b8d9015f2b2d4a4d891ad05c57af84fc3d311b3b8c5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/09/WhatsApp-Image-2022-06-01-at-4.32.21-PM.jpeg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Wed, 01 Jun 2022 11:38:37 GMT
accept-ranges: bytes
content-length: 23955
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2021/09/WhatsApp-Image-2022-06-01-at-4.31.56-PM.jpeg
200 OK 26 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2021/09/WhatsApp-Image-2022-06-01-at-4.31.56-PM.jpeg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 509x339, components 3\012- data
Hash 99b90f110c8259f9055349f10069f87a
310d52878b918ccac31b3e37b0351761749a524e
2dadfa3d36d43cf623b09474f14cdc80238dc2c898a14be7d07e5cb91b92039d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/09/WhatsApp-Image-2022-06-01-at-4.31.56-PM.jpeg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Wed, 01 Jun 2022 11:38:37 GMT
accept-ranges: bytes
content-length: 26134
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/06/woman.png
200 OK 33 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/06/woman.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash f4fafaf122d00f0775aa586b8a061d0b
91a69078a85ce98c7eca919accf79940af6937a4
c90424bfe63db4510d22650888ef0e38534203fe20928d1294c6629f884ab9d2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/06/woman.png HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Sat, 11 Jun 2022 09:03:54 GMT
accept-ranges: bytes
content-length: 33344
vary: Accept
content-type: image/png
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-mousewheel/3.1.13/jquery.mousewheel.min.js
200 OK 1.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-mousewheel/3.1.13/jquery.mousewheel.min.js
IP
File type ASCII text, with very long lines (2609)
Hash f56bc0a6837b34f783f73cd70cd9f2c1
a093b6f45674f1cac3ccc35498eb1a5945f7dde9
0c67ee4dc6af2a5a0b020d3e2e5b049720e516bb4faf6b0b60bd96bf3eba1199
GET /ajax/libs/jquery-mousewheel/3.1.13/jquery.mousewheel.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 19:53:43 GMT
content-type: application/javascript; charset=utf-8
content-length: 1046
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-ad3"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 10285988
expires: Sun, 26 Nov 2023 19:53:43 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YQiqT34Y%2BBqvWgFWI5vBlGyA1Dn2USdI5uByZpzaAUArYgg8IaDGZsh8dTjcTT%2BDeOQ9N8%2FN7oRLCrA0Rz6EoNe0CG1MibfQXK6AU9PI8OGc1xzIzneqYCzlEXb2hrxTV3bNHqAx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 775791c18a25b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 3f4ef8a54bffe08abfd72fbbe3b259e8
28770087be63936aabfdd9d802739767c8fca454
642f68596c1c285397713d2b1147f77a94a5e2eadcb8b18632133f1f87276639
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4380
Cache-Control: max-age=92660
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 19:53:43 GMT
Etag: "638e539f-118"
Expires: Wed, 07 Dec 2022 21:38:03 GMT
Last-Modified: Mon, 05 Dec 2022 20:25:03 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 19:53:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 19:53:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriAWCrCBimCw.woff2
200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriAWCrCBimCw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 18240, version 1.0\012- data
Hash 715796ddd1637e1334588181b0e9cdb5
1246cb17f39f9d54b03540c8cfe6ba11e4084080
e6997f451bbf8012dea5fb3b9f2e974a2f86861364126915097d81096392c800
GET /s/dmsans/v11/rP2Cp2ywxg089UriAWCrCBimCw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dpearlhills.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18240
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 23:18:54 GMT
expires: Fri, 01 Dec 2023 23:18:54 GMT
cache-control: public, max-age=31536000
age: 419689
last-modified: Thu, 21 Apr 2022 16:54:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2
200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 18096, version 1.0\012- data
Hash f29503a1895affee5ed85d0246238af8
f474c6e8a3e4e28fb68cf7fb29bd448cdfeb0278
7164a212fb4df27bf1e006342d1686badcba58f5a5d301772c14cc7adf1d4821
GET /s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dpearlhills.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 22:11:26 GMT
expires: Fri, 01 Dec 2023 22:11:26 GMT
cache-control: public, max-age=31536000
age: 423737
last-modified: Thu, 21 Apr 2022 16:54:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/css/dashicons.min.css?ver=6.1.1
200 OK 54 kB URL HTTP/2 dpearlhills.com/wp-includes/css/dashicons.min.css?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 4f032da8300c67a8b46ad2de91f6be08
0a37c68476fdc32b8f43bbdeb254142cb47ec4cb
3897cddb7d5670a27ce15b4de3aeebc07ced25d9913761b31b42effe8a7ab62a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 04 Mar 2021 02:46:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriAWCrCBamC2QX.woff2
200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriAWCrCBamC2QX.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 10900, version 1.0\012- data
Hash 53577351d2c062d8af0d50032d2e68a6
e4bc2e05b859e0e8ffc0c2b25ece8354b1334d4f
526a6c868664cea5602fed73c8fe5bf5dffa45b3cb410e7e4035fbe53016acda
GET /s/dmsans/v11/rP2Cp2ywxg089UriAWCrCBamC2QX.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dpearlhills.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 05:17:05 GMT
expires: Sat, 02 Dec 2023 05:17:05 GMT
cache-control: public, max-age=31536000
age: 398199
last-modified: Thu, 21 Apr 2022 16:57:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 19:53:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dpearlhills.com/wp-content/uploads/2022/06/man.png
200 OK 36 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/06/man.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash b907dc756c5ac066437b40a2dd900187
48d239ee9c6c09200438f61bb69020295edd98ba
bb84c30aeb56a5726bdad16f3b2384c762cc81161b4931f22cc10190eaef0be9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/06/man.png HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Sat, 11 Jun 2022 09:03:52 GMT
accept-ranges: bytes
content-length: 36097
vary: Accept
content-type: image/png
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/js/util.js?ver=1.5.2
200 OK 2.1 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/js/util.js?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash c4bb05a0d0f5a48fd9486c10ba12f3c9
e0a374da75829d2259c0b82ba026039535493cb1
26fb15c14217bfa30bc9aca46930a31b6cf9ed46b11c7f6ac4e2577019d28720
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/js/util.js?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2070
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/js/jquery.validate.min.js?ver=1.5.2
200 OK 9.3 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/js/jquery.validate.min.js?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (23122)
Hash 31da626c2f4428ec1c974f451d22d557
4fd7b25b2215606923401022811fdd1d9a10b6a3
461cd37584438f563cc2aa62b10f6196e7c41b7d6888ac880f7228d5763feee2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/js/jquery.validate.min.js?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9271
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css
200 OK 2.1 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12953)
Hash 8097d43ff9a436b1e90e60cd6db60b8d
e5c7f856883cbeadf24f4306f21c8135b1901354
eb97227f143664a0f318c65d224744d955ad5adc58dccc80ec82941e7ff800eb
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/widget-icon-box.min.css HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2094
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/elementor/css/post-867.css?ver=1652799245
200 OK 80 B URL HTTP/2 dpearlhills.com/wp-content/uploads/elementor/css/post-867.css?ver=1652799245
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash d37c2ffa13c1d4c2d1a6f134de18e5b9
ca65ec998f91595095f0d63a79aa86dc40b2d7ae
75f1bf4239dea1d4e963572430e78cfb0baf47c01a0a499bb1750e0427cc8230
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-867.css?ver=1652799245 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:54:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 80
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.5
200 OK 3.0 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.5 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2997
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/wpforms/assets/css/flatpickr.min.css?ver=4.6.9
200 OK 4.1 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/wpforms/assets/css/flatpickr.min.css?ver=4.6.9
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11819)
Hash 65badc09467fec13027d9d6f8eabd0aa
3e17ee9c1bd6d6c4130691320a1b8caeeb5a34f5
56ec7c2db0976506f2a47e531087a95637f3e70348743267e8d93b7cdd850ee1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms/assets/css/flatpickr.min.css?ver=4.6.9 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 17:42:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4068
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
200 OK 7.5 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:25 GMT
accept-ranges: bytes
content-length: 7536
content-type: font/woff
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/wpforms/assets/css/jquery.timepicker.css?ver=1.11.5
200 OK 423 B URL HTTP/2 dpearlhills.com/wp-content/plugins/wpforms/assets/css/jquery.timepicker.css?ver=1.11.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 63cd7662643240ec3645f720fb9881d3
73edd2cdba5529b7b7a5165333dc3a6960a6f533
2a8df0a030386dc5ac36b5ce3011b4ca620daa72c53d77e0b27e5a7203811eac
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms/assets/css/jquery.timepicker.css?ver=1.11.5 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 17:42:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 423
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/wpforms/pro/assets/css/vendor/intl-tel-input.min.css?ver=17.0.5
200 OK 7.0 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/wpforms/pro/assets/css/vendor/intl-tel-input.min.css?ver=17.0.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0dd06418381f1788ca4f2bd99fec5596
ca45040830af38acdbad285d3ffe295d6ecddbcc
4dfb631bbb327e6cc39c62767170a5809cc5fb97abfc25bf3d08ff7a025a1cb7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms/pro/assets/css/vendor/intl-tel-input.min.css?ver=17.0.5 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 17:42:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6998
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/js/babe-modal.js?ver=1.5.2
200 OK 316 B URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/js/babe-modal.js?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash c3d4fce07780ed0f7382cb17f9ef92bb
aafade25396db92a42cc4fd72f7562e2bb4981e6
94b32527747afd664a25fd36ea06ff883fb23d90e00ea927d4a082035388da05
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/js/babe-modal.js?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 316
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/js/modal.js?ver=1.5.2
200 OK 6.3 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/js/modal.js?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 8ecd647544ee6fb068f6fe05353c464b
ffb308688f880250c73e0a8a39bc71969aa612dc
9357950f72b678acf6a5b592ba871d96b667fe771ecb08af8da94f390ac18ee3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/js/modal.js?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6344
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.20
200 OK 16 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.20
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash daa6a2165f6d1d6c1cb249ff1fcb0b86
26cc5ff1c1fe1b7fc1fede1b74245e6ae1511998
d7658021c778e1be3de51bba24f5c70b9d5e5d62ac287e4e596b767b8ea2fbd2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.20 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16510
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 492f8947194405a4f33b725bbc16634e
1c26d951b5a6b8927a491107e172aec930a81a72
cb6b4759a51aae5a0c22235ca504a825fd454468233682b7a1631e04c046fe87
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB6B4759A51AAE5A0C22235CA504A825FD454468233682B7A1631E04C046FE87"
Last-Modified: Mon, 05 Dec 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13532
Expires: Tue, 06 Dec 2022 23:39:16 GMT
Date: Tue, 06 Dec 2022 19:53:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dee66af808e54c61a5f5aed2794f2963
ce361eb97c5e50093e5d117bd598e54b4b0b1b42
665c5e92bee958a05edc0fa86d8dba87f5d465468e61addd66239b80033aac86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "665C5E92BEE958A05EDC0FA86D8DBA87F5D465468E61ADDD66239B80033AAC86"
Last-Modified: Mon, 05 Dec 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17879
Expires: Wed, 07 Dec 2022 00:51:43 GMT
Date: Tue, 06 Dec 2022 19:53:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dee66af808e54c61a5f5aed2794f2963
ce361eb97c5e50093e5d117bd598e54b4b0b1b42
665c5e92bee958a05edc0fa86d8dba87f5d465468e61addd66239b80033aac86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "665C5E92BEE958A05EDC0FA86D8DBA87F5D465468E61ADDD66239B80033AAC86"
Last-Modified: Mon, 05 Dec 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14186
Expires: Tue, 06 Dec 2022 23:50:10 GMT
Date: Tue, 06 Dec 2022 19:53:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 492f8947194405a4f33b725bbc16634e
1c26d951b5a6b8927a491107e172aec930a81a72
cb6b4759a51aae5a0c22235ca504a825fd454468233682b7a1631e04c046fe87
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB6B4759A51AAE5A0C22235CA504A825FD454468233682B7A1631E04C046FE87"
Last-Modified: Mon, 05 Dec 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11106
Expires: Tue, 06 Dec 2022 22:58:50 GMT
Date: Tue, 06 Dec 2022 19:53:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dee66af808e54c61a5f5aed2794f2963
ce361eb97c5e50093e5d117bd598e54b4b0b1b42
665c5e92bee958a05edc0fa86d8dba87f5d465468e61addd66239b80033aac86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "665C5E92BEE958A05EDC0FA86D8DBA87F5D465468E61ADDD66239B80033AAC86"
Last-Modified: Mon, 05 Dec 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14892
Expires: Wed, 07 Dec 2022 00:01:56 GMT
Date: Tue, 06 Dec 2022 19:53:44 GMT
Connection: keep-alive
dpearlhills.com/wp-content/plugins/ba-book-everything/js/ion.rangeSlider/ion.rangeSlider.min.js?ver=1.5.2
200 OK 11 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/js/ion.rangeSlider/ion.rangeSlider.min.js?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (41067)
Hash 67b1b6e83b475268c527de70ba4c3d5c
ba95fc4a0aba2e7b9391bab67d68ec74bb6f08b9
447d70794da106e032e71ba6f44e4a7b68449f899f76135818d294837cd3af35
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/js/ion.rangeSlider/ion.rangeSlider.min.js?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10730
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-03-at-2.53.58-PM-580x380.jpeg
200 OK 63 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-03-at-2.53.58-PM-580x380.jpeg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 580x380, components 3\012- data
Hash 6502b60e398fce6050573eab9b6ca95a
3c08ce94dd5a0ea9884c028af975492c8cc2b015
5b05d53b6b7ed136977878b11b7b9634897efa59732896839afedacbfca34f6b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/06/WhatsApp-Image-2022-06-03-at-2.53.58-PM-580x380.jpeg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Fri, 03 Jun 2022 11:06:09 GMT
accept-ranges: bytes
content-length: 62650
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1
409 Conflict 83 B URL HTTP/2 dpearlhills.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/js/daterangepicker.js?ver=1.5.2
200 OK 17 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/js/daterangepicker.js?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1062)
Hash d62c060d5e23fdcbd80d4ece321e4dd4
52d2a3c17fc1ed5514aeda84c673058bf9b9b0db
b1d33989e43a4690e0c8f35b4148b60a8d005d064b527f28b41bbe52402f66f4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/js/daterangepicker.js?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 17177
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/05/istockphoto-1307893051-170667a.jpg
200 OK 85 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/05/istockphoto-1307893051-170667a.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, description=Couple holding hands together at table during romantic dinner in restaurant, closeup\377\341\005\177http://ns.adobe.com/xap/1.0/, orientation=upper-left], baseline, precision 8, 509x339, components 3\012- data
Hash 6ee9695519555b7226ddd17e7118ec96
265715130b01984a799c6a9eaa01b2cc33ef81d0
14b60813b7cb5b066849e87995687d24119d79d7a04d97171e3179ccaf3abe05
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/05/istockphoto-1307893051-170667a.jpg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Tue, 24 May 2022 06:40:19 GMT
accept-ranges: bytes
content-length: 85032
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
gaviaspreview.com/wp/tevily/wp-content/uploads/2021/09/bg-map-2.png
200 OK 8.0 kB URL HTTP/2 gaviaspreview.com/wp/tevily/wp-content/uploads/2021/09/bg-map-2.png
IP
File type PNG image data, 435 x 500, 2-bit colormap, non-interlaced\012- data
Hash 276d8b5e171e9c71cd331ecc1fc7dea7
fcdb453328db8ce3c1084e9d56c7af509938cc22
4e9ede53d24e8efc1ca48c5a14cfcd1b8b95a905d474cda84d963a7934bd8568
GET /wp/tevily/wp-content/uploads/2021/09/bg-map-2.png HTTP/1.1
Host: gaviaspreview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 19:53:44 GMT
content-type: image/png
content-length: 7950
last-modified: Mon, 15 Nov 2021 15:00:41 GMT
etag: "61927619-1f0e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
gaviaspreview.com/wp/tevily/wp-content/uploads/2021/10/bg-plane-bird.png
200 OK 12 kB URL HTTP/2 gaviaspreview.com/wp/tevily/wp-content/uploads/2021/10/bg-plane-bird.png
IP
File type PNG image data, 1563 x 574, 8-bit/color RGBA, non-interlaced\012- data
Hash 9454f9ffc543ab7dbbab29506bd8f9d1
bbfc5f4364bb9d025e8668010929c0d8fdfc8b92
8a5b0a09c5b0f327a26d959c728aae66496995ebb3fb77f563f7353cfcd6f5b6
GET /wp/tevily/wp-content/uploads/2021/10/bg-plane-bird.png HTTP/1.1
Host: gaviaspreview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 19:53:44 GMT
content-type: image/png
content-length: 12430
last-modified: Mon, 15 Nov 2021 15:00:42 GMT
etag: "6192761a-308e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
gaviaspreview.com/wp/tevily/wp-content/uploads/2021/10/bg-line-bird.png
200 OK 6.6 kB URL HTTP/2 gaviaspreview.com/wp/tevily/wp-content/uploads/2021/10/bg-line-bird.png
IP
File type PNG image data, 1493 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash c456354bf243fba14b29f2bc753789ba
982c96f1e80097fc7934718392a0a7418d171153
6b0726d28b8c734e2cfb1aa0cc9b7b3786aefeb0444b1baea7fd3efd6ae5bbc4
GET /wp/tevily/wp-content/uploads/2021/10/bg-line-bird.png HTTP/1.1
Host: gaviaspreview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 19:53:44 GMT
content-type: image/png
content-length: 6618
last-modified: Mon, 15 Nov 2021 15:00:42 GMT
etag: "6192761a-19da"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/05/nathan-dumlao-w5hhoYM_JsU-unsplash-scaled.jpg
200 OK 102 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/05/nathan-dumlao-w5hhoYM_JsU-unsplash-scaled.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1707x2560, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 102 kB (102044 bytes)
Hash 059abffcd762bba32bbbd7f02b4a4274
e710e4dfd8c4a8d0e81811d191420867e7571559
37a8cc86dae2b8d1536be49c84cca481ed3f98c0b0b82a4c5060ef82377398e6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/05/nathan-dumlao-w5hhoYM_JsU-unsplash-scaled.jpg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
vary: Accept
last-modified: Tue, 14 Jun 2022 12:44:25 GMT
accept-ranges: bytes
content-length: 102044
x-wpo-webp: Redirected directly to existing webp
content-type: image/webp
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
200 OK 7.6 kB URL HTTP/2 dpearlhills.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 66c68f2158dcf7d97a02f3719a17aab0
fdb04fb4c632b9fb4275006a4e402cd0d4fa393a
e4b360f0e6ae1afc06f05f958e8696e5ae45257912bc2ab0b9334bd1382a51aa
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:24:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7621
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/tevily-themer/assets/icons/flaticon.css
200 OK 1.2 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/tevily-themer/assets/icons/flaticon.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash f0af4fe6bdbd616896160827827268cf
8e11c1eb3c90353ffb80cddd14b0cd852dbe3c57
d1c1881f52578fb1a5c0bf4e9c5f51eea92cd324e749891fbbff3d45e6beb86a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/tevily-themer/assets/icons/flaticon.css HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1218
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/tevily-themer/assets/js/main.js
200 OK 636 B URL HTTP/2 dpearlhills.com/wp-content/plugins/tevily-themer/assets/js/main.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash edf88ff3756b391a5a836290b21577e2
c609637c5e470ea97c8e52c699830602e0c2116d
ce139a02a687a3e05247d74ddb894be1e5a581a19f6ed870f7ab32b366a9f3d8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/tevily-themer/assets/js/main.js HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 636
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.5
200 OK 5.7 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14238)
Hash d088cec7496c5ceea217ee80c40590d4
7652374dde221ccaeba50089cd3792ed0f2dbb9d
c6564851816af2a6a5fcfed3722aaf08944220429ea98ac352304f0abcc0a5e3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.5 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5676
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/wpforms/assets/js/integrations/elementor/frontend.min.js?ver=1.7.4.2
200 OK 374 B URL HTTP/2 dpearlhills.com/wp-content/plugins/wpforms/assets/js/integrations/elementor/frontend.min.js?ver=1.7.4.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (754), with no line terminators
Hash ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms/assets/js/integrations/elementor/frontend.min.js?ver=1.7.4.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 17:42:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 374
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5
200 OK 2.3 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4921)
Hash 120d8146d60a3ca1dcd51cbeb208b724
d6ba43159517bf2320825099a694ddaa91056e0a
779d4fc0edb5fb5c0aa19fa2bacd36250931081219237e36c38a5a3386fbd9f7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2314
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-01-at-4.27.45-PM-1-580x450.jpeg
200 OK 55 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-01-at-4.27.45-PM-1-580x450.jpeg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 580x450, components 3\012- data
Hash d8fc4a9ecee7cc063460be3965858f91
59ba85171980ccca4218897fb4df392bdb660da0
a73aaaa65ab2c9470dd90cc367348421a1a8788c903b3d27e6402680abccb486
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/06/WhatsApp-Image-2022-06-01-at-4.27.45-PM-1-580x450.jpeg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Wed, 01 Jun 2022 11:28:57 GMT
accept-ranges: bytes
content-length: 54724
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
200 OK 2.7 kB URL HTTP/2 dpearlhills.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6475), with no line terminators
Hash 45bd1d6f7fc3a4069fc6fd400b90c961
903c7e28c7141e9fc1bdb4dfc62d043a97a01e2d
c638a0057b4be0a61cfb65b1860a855a327397e9871f5dde28fa2f138fb394dc
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 May 2022 03:33:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2675
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/wpforms/assets/js/jquery.validate.min.js?ver=1.19.3
200 OK 9.7 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/wpforms/assets/js/jquery.validate.min.js?ver=1.19.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (24292)
Hash 2d29a91f4da2add72ef6d7a71d2a29a6
67a3dfcd09c184128f76d7b3a33507f0ae3d86ee
9fe41ee1c8bbe47173dd9fd6cd6951029df7fb6f90c89513570b1ed95305d3ab
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms/assets/js/jquery.validate.min.js?ver=1.19.3 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 17:42:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9726
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/js/wp-util.min.js?ver=6.1.1
200 OK 758 B URL HTTP/2 dpearlhills.com/wp-includes/js/wp-util.min.js?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1391)
Hash 60bc75e3b14030c62d9fd3a3d317d8a8
6d919bbd05a3984a8e5e67b693e6d5d41cc885f9
e22df84be1a3ffe3b54352a4a39e14adb3fac69f2ce755e4c7babbc243c5bb4b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:24:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 758
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-after.js
200 OK 443 B URL HTTP/2 dpearlhills.com/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-after.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash c1b534926212ccab16a850cedc5b42bd
e60e469c4fd8fefd67efafcc977cc5e73d591667
14ebe3da7346a194507201e557b5bade9ae7688e9af5f7140d0f4a207cc49942
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-after.js HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 443
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2021/09/WhatsApp-Image-2022-06-01-at-4.31.16-PM.jpeg
200 OK 121 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2021/09/WhatsApp-Image-2022-06-01-at-4.31.16-PM.jpeg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1440x1280, components 3\012- data
Size 121 kB (120968 bytes)
Hash bcfa85fbbdc9034df62110e5a264ffec
bb6837d913d9bec6ab345f832108389d037b763e
6fa3e871ed251a4c4bc24897606164940d6ee94763ef6e4ee09ca65888acec59
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/09/WhatsApp-Image-2022-06-01-at-4.31.16-PM.jpeg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Wed, 01 Jun 2022 11:38:39 GMT
accept-ranges: bytes
content-length: 120968
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/wpforms/pro/assets/js/vendor/jquery.intl-tel-input.min.js?ver=17.0.5
200 OK 13 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/wpforms/pro/assets/js/vendor/jquery.intl-tel-input.min.js?ver=17.0.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (27033)
Hash 05177d47b8a0719afa3bb2af8d33bb19
8fe84792f1d8a1793f91af0d5de75f15a86ac12b
3ac71485e9fd13e325fed0c1555c0905d6cacfb23fd372135d534b67c898240a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms/pro/assets/js/vendor/jquery.intl-tel-input.min.js?ver=17.0.5 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 17:42:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13005
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
gaviaspreview.com/wp/tevily/wp-content/uploads/2021/09/bg-map.png
200 OK 62 kB URL HTTP/2 gaviaspreview.com/wp/tevily/wp-content/uploads/2021/09/bg-map.png
IP
File type PNG image data, 1157 x 560, 8-bit colormap, non-interlaced\012- data
Hash 8a636f563dfb11d27c48246bbafd09cb
e48538de54404ae81e6e7afb4d1d61946db3891c
208de17782dcf37b5c074ca74d2e39380dd490b022773985d93842d0b7baedec
GET /wp/tevily/wp-content/uploads/2021/09/bg-map.png HTTP/1.1
Host: gaviaspreview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 19:53:44 GMT
content-type: image/png
content-length: 62040
last-modified: Mon, 15 Nov 2021 15:00:41 GMT
etag: "61927619-f258"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-03-at-2.53.56-PM-580x450.jpeg
200 OK 70 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-03-at-2.53.56-PM-580x450.jpeg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 580x450, components 3\012- data
Hash 58e652a8b4997da7895e95841a5f0342
a0f72f2afdc05a49f3a6f06b5d729c07fa8b2ce8
bf8d57060cac52043370b01843038437e765818aa3281b4dffcb8b900e6eb726
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/06/WhatsApp-Image-2022-06-03-at-2.53.56-PM-580x450.jpeg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Fri, 03 Jun 2022 11:09:27 GMT
accept-ranges: bytes
content-length: 70238
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/05/istockphoto-818843298-170667a.jpg
200 OK 120 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/05/istockphoto-818843298-170667a.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, description=Long exposure of Mysore Palace\377\341\005@http://ns.adobe.com/xap/1.0/, orientation=upper-left], baseline, precision 8, 509x339, components 3\012- data
Size 120 kB (120260 bytes)
Hash cbf78f3500b0f5968cfcd6d6d65a9250
3c07c055d8a0ed0eb5933159cae213ec279bab9d
215fe2056216b2c6d6e63005c835c754f764b82aeb3f44fd0dec50a1c5b94f86
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/05/istockphoto-818843298-170667a.jpg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Tue, 24 May 2022 06:30:32 GMT
accept-ranges: bytes
content-length: 120260
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2021/09/WhatsApp-Image-2022-05-31-at-11.48.06-AM-580x450.jpeg
200 OK 88 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2021/09/WhatsApp-Image-2022-05-31-at-11.48.06-AM-580x450.jpeg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 580x450, components 3\012- data
Hash 361f2abfbd17578d96ddcd9159c6de71
1e93244af4aa9cc0822efade3be505cecd22695c
2e64ed35d5e48babdc9fabdc4d89200978a97386bfec400bde92c335c6b8f836
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/09/WhatsApp-Image-2022-05-31-at-11.48.06-AM-580x450.jpeg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Tue, 31 May 2022 18:10:49 GMT
accept-ranges: bytes
content-length: 88498
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-01-at-4.35.36-PM-580x450.jpeg
200 OK 83 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-01-at-4.35.36-PM-580x450.jpeg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 580x450, components 3\012- data
Hash 0beaf331ef0f5453b9ad0b23fdd38c16
d2a6ecde05e242388e1c183644d08baec29500e6
1101f2bcabc88f7169725a588e02674f2d7a486f1baaf825fce8178d71be9168
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/06/WhatsApp-Image-2022-06-01-at-4.35.36-PM-580x450.jpeg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Wed, 01 Jun 2022 11:23:36 GMT
accept-ranges: bytes
content-length: 83363
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/wpforms/assets/js/jquery.timepicker.min.js?ver=1.11.5
200 OK 6.1 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/wpforms/assets/js/jquery.timepicker.min.js?ver=1.11.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15051)
Hash fe18a9a9c05253111df5fe5e141e1842
be5fed4d373728beb072ebc4b62a5b099a08d186
a00a682d4b94f30c1cb4e2c2f083050a9596568dd23909a25e7c67c0aae4eadf
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms/assets/js/jquery.timepicker.min.js?ver=1.11.5 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 17:42:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6141
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/05/l86420220107105737.webp
200 OK 170 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/05/l86420220107105737.webp
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1440x810, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 170 kB (170222 bytes)
Hash 93ee382466f7f36c1be51f99244c32b5
bd56e8eff8e133e0e2ce0a23013b86600c8c2085
94a645783dbdafee6826d760f9d70f523acc09fe0aee041350a34fc8e3501f2f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/05/l86420220107105737.webp HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 May 2022 06:25:07 GMT
accept-ranges: bytes
content-length: 170222
content-type: image/webp
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/05/istockphoto-911995140-170667a.jpg
200 OK 172 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/05/istockphoto-911995140-170667a.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=Camping tent in a camping in a forest by the Oka river. Russia\377\341\005_http://ns.adobe.com/xap/1.0/], baseline, precision 8, 509x339, components 3\012- data
Size 172 kB (171940 bytes)
Hash 8b7bb37d80b594bae3c5faaade548eb6
aa5e014d33ddc0d44791c031672777aee85bb8a2
9a3e6c3f47cee072d877e62fd59d4679788bbea7302bed6c6d3e5db8a7b146c6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/05/istockphoto-911995140-170667a.jpg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Tue, 24 May 2022 06:48:23 GMT
accept-ranges: bytes
content-length: 171940
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.7
200 OK 2.8 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.7
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6210), with no line terminators
Hash c74a284893e700efac7feda7f8ca29d9
e5f08422e3a5b9ed64676469e2d73ed9600ab3ee
01fb2bcfb32c7eabebccf5d1196cae451bae4f8ab247010f3cd6d86ef8521345
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.7 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2759
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/tevily-themer/elementor/assets/main.js?ver=1.0.0
200 OK 4.9 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/tevily-themer/elementor/assets/main.js?ver=1.0.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (334), with CRLF line terminators
Hash 43049fa2bc33f60451f14c0384958dcc
8e163d4a9353924bed73c48c866b21b47594dd2d
1633442b79ba10e503e9c59b58786808a1d407fd37e1ef8a56f551e00de3a0bb
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/tevily-themer/elementor/assets/main.js?ver=1.0.0 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4910
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-before.js
200 OK 596 B URL HTTP/2 dpearlhills.com/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-before.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 32022e8fb56608a3fcaacd1dbef7009f
87b54b96724c3291af1515b799230fdcf18c4b75
cd505fbe1083d551d86b36140e86048556d35dd975cca36a716cdc2f478327ab
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-before.js HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 596
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/wpforms/assets/js/mailcheck.min.js?ver=1.1.2
200 OK 1.7 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/wpforms/assets/js/mailcheck.min.js?ver=1.1.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type C source, ASCII text, with very long lines (4014), with no line terminators
Hash e03900351327a27c5975d24ae3028d22
080aed207843da5d94183f071d9f1a4d3db86247
10b44bd938b32514dbc9895767b24b3245ccda2c742159ae0fbef561868ad87f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms/assets/js/mailcheck.min.js?ver=1.1.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 17:42:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1736
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/js/underscore.min.js?ver=1.13.4
200 OK 8.3 kB URL HTTP/2 dpearlhills.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18798)
Hash ac9c7baaab74ef2576932d5798161987
fa202113e12b09696788a7024984879bddd29143
c03d52f8f157e9209646e3e696e9845d7d2b3cf3e73c8204f371b7393e738026
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:24:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8305
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/tevily-themer/elementor/assets/libs/typed.min.js?ver=1.0.0
200 OK 4.7 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/tevily-themer/elementor/assets/libs/typed.min.js?ver=1.0.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11549)
Hash 343a47271097139c6131303d6ad08c51
d3ec7a7803e8185ff9a72d62835f4ff3c4c7dbdb
fc400e838a9131ef993c22d77efdf8064b8690112b72fe04a51ee735cecee97d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/tevily-themer/elementor/assets/libs/typed.min.js?ver=1.0.0 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4660
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.5
200 OK 15 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (37702)
Hash dd3e041d90229b361b887c995f3370da
10642ac5a9b6c0312fa28a195e352551cc1ce876
acf939dbf4c34139d77059f1c94e4ad00d0f74b5c8928b3533776293bfe7def2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.5 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14706
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
200 OK 9.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash ce53958235de9ff7f5b8ed2bbec4e817
4f1eb68f7918bc9b7c0ce9a49f5967ca118ca7f8
5b7cb5080d4eb5c1152954ee91b53b1c324fd2b6cd56cc44691fdec780f0757b
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 19:53:43 GMT
date: Tue, 06 Dec 2022 19:53:43 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2021/08/spearlhills-ok-file.png
200 OK 428 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2021/08/spearlhills-ok-file.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image\012- data
Size 428 kB (427568 bytes)
Hash b29be4291f4796353dd9e0d930118d4f
33ca44b06bb37fe98a210d2e2b20a4e7e205c234
74124997df15c512de159345bdc865b1bd67353efe4ff29838668b103c93547c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/08/spearlhills-ok-file.png HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
vary: Accept
last-modified: Tue, 14 Jun 2022 12:44:06 GMT
accept-ranges: bytes
content-length: 427568
x-wpo-webp: Redirected directly to existing webp
content-type: image/webp
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
200 OK 3.7 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3747
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/
200 OK 93 kB IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (20764)
Hash 4ac7bb9cd1bf112011eac215c5adcc31
76bbc79e3d9f6b2957c727fa1486ee2c069a9d56
a190116c42ce94ace7ae42a51cf4c3128e9c4359110d2f0f36c37a65836bfcfc
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://dpearlhills.com/wp-json/>; rel="https://api.w.org/", <https://dpearlhills.com/wp-json/wp/v2/pages/1068>; rel="alternate"; type="application/json", <https://dpearlhills.com/>; rel=shortlink
x-tec-api-version: v1
x-tec-api-root: https://dpearlhills.com/wp-json/tribe/events/v1/
x-tec-api-origin: https://dpearlhills.com
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Tue, 06 Dec 2022 19:53:41 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=DM+Sans:500%2C700%2C400%7CRoboto:400&display=swap
200 OK 12 kB URL HTTP/2 fonts.googleapis.com/css?family=DM+Sans:500%2C700%2C400%7CRoboto:400&display=swap
IP
File type ASCII text, with very long lines (31132)
Hash b78260409881158fdc43451c0a16a009
81e131afb0b9c987d1b3a2d170d1dec3f34d468f
456a61708f5c1dd1bfb08825e19b188d3605c15ef98517155cea9a6440d53201
GET /css?family=DM+Sans:500%2C700%2C400%7CRoboto:400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 19:53:43 GMT
date: Tue, 06 Dec 2022 19:53:43 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/wpforms/assets/js/punycode.min.js?ver=1.0.0
200 OK 901 B URL HTTP/2 dpearlhills.com/wp-content/plugins/wpforms/assets/js/punycode.min.js?ver=1.0.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1713), with no line terminators
Hash 3e33d71d7250e95ae90fbd97b39c7075
b19776ee503d6f29411092ab7caa614e8831c2ef
9e0ab4d1f16b939246bb32425207d6f4861275d7ef03acfb85ecac492a750f47
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms/assets/js/punycode.min.js?ver=1.0.0 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 17:42:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 901
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/06/prasath-g-num9zviIVoE-unsplash-1-scaled-min.webp
200 OK 799 kB URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/06/prasath-g-num9zviIVoE-unsplash-1-scaled-min.webp
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 2560x1920, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 799 kB (799206 bytes)
Hash cd65374085199b989e92211a445bc5c5
75748ca14487b41951ef2555e734232423043d03
5e68c8f61821963deea8a9f572fc3c9dd47ab6d79dcd55747d12851a23f6d156
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/06/prasath-g-num9zviIVoE-unsplash-1-scaled-min.webp HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 14 Jun 2022 09:06:44 GMT
accept-ranges: bytes
content-length: 799206
content-type: image/webp
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/images/down-arrow.svg
200 OK 785 B URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/images/down-arrow.svg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with very long lines (642), with CRLF line terminators
Hash 29ba15e06bc1ef4c8ba8ab7e4bee7dc7
777846f7a6e2abdfc167720b1e788d2808662acd
7b990582b13501a2159018af2500984184b5f4a114321759a4d4b5a887d2b468
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/images/down-arrow.svg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/wp-content/themes/tevily/assets/css/template.css?ver=1.0.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
content-length: 785
content-type: image/svg+xml
date: Tue, 06 Dec 2022 19:53:44 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/css/fontawesome/webfonts/fa-regular-400.woff2
200 OK 13 kB URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/css/fontawesome/webfonts/fa-regular-400.woff2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 13224, version 331.-31196\012- data
Hash b91d376b8d7646d671cd820950d5f7f1
13517529affa39e2585c591acae6dc336b6aa917
e42a88444448ac3d60549cc7c1ff2c8a9cac721034c073d80a14a44e79730cca
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/css/fontawesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dpearlhills.com/wp-content/themes/tevily/assets/css/fontawesome/css/all.min.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
content-length: 13224
content-type: font/woff2
date: Tue, 06 Dec 2022 19:53:44 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/css/line-awesome/fonts/la-regular-400.woff2
200 OK 13 kB URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/css/line-awesome/fonts/la-regular-400.woff2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 12900, version 1.0\012- data
Hash 88d9d9416c58bde56378dc4439e3a144
bebed8d7033a4df35bebba69f1fc261a78a4ee22
51ca2c00a3e30945e52227147fed9e296dde03af3c4d7589e8e95ca5740037db
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/css/line-awesome/fonts/la-regular-400.woff2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dpearlhills.com/wp-content/themes/tevily/assets/css/line-awesome/css/line-awesome.min.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
content-length: 12900
content-type: font/woff2
date: Tue, 06 Dec 2022 19:53:44 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
200 OK 77 kB URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
content-length: 76764
content-type: font/woff2
date: Tue, 06 Dec 2022 19:53:44 GMT
server: Apache
X-Firefox-Spdy: h2
gaviaspreview.com/wp/tevily/wp-content/uploads/2021/11/bg-line-2.png
200 OK 0 B URL HTTP/2 gaviaspreview.com/wp/tevily/wp-content/uploads/2021/11/bg-line-2.png
IP
GET /wp/tevily/wp-content/uploads/2021/11/bg-line-2.png HTTP/1.1
Host: gaviaspreview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 19:53:44 GMT
content-type: image/png
content-length: 133128
last-modified: Mon, 15 Nov 2021 15:00:42 GMT
etag: "6192761a-20808"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/css/line-awesome/fonts/la-solid-900.woff2
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/css/line-awesome/fonts/la-solid-900.woff2
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/css/line-awesome/fonts/la-solid-900.woff2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dpearlhills.com/wp-content/themes/tevily/assets/css/line-awesome/css/line-awesome.min.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
content-length: 96752
content-type: font/woff2
date: Tue, 06 Dec 2022 19:53:44 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/fonts/reey/reey-regular.woff
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/fonts/reey/reey-regular.woff
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/fonts/reey/reey-regular.woff HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dpearlhills.com/wp-content/themes/tevily/assets/css/template.css?ver=1.0.4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
content-length: 80336
content-type: font/woff
date: Tue, 06 Dec 2022 19:53:44 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-01-at-4.53.38-PM.jpeg
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-01-at-4.53.38-PM.jpeg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/06/WhatsApp-Image-2022-06-01-at-4.53.38-PM.jpeg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/wp-content/uploads/elementor/css/post-1068.css?ver=1655200456
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Wed, 01 Jun 2022 11:27:22 GMT
accept-ranges: bytes
content-length: 92345
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:44 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/tevily-themer/elementor/assets/libs/swiper/swiper.min.js?ver=1.0.0
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/plugins/tevily-themer/elementor/assets/libs/swiper/swiper.min.js?ver=1.0.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/tevily-themer/elementor/assets/libs/swiper/swiper.min.js?ver=1.0.0 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/css/babe-style.css?ver=1.5.2
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/css/babe-style.css?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/css/babe-style.css?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/css/booking.css?ver=1.0.4
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/css/booking.css?ver=1.0.4
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/css/booking.css?ver=1.0.4 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dpearlhills.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
content-length: 78196
content-type: font/woff2
date: Tue, 06 Dec 2022 19:53:44 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-01-at-4.24.57-PM.jpeg
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-01-at-4.24.57-PM.jpeg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/06/WhatsApp-Image-2022-06-01-at-4.24.57-PM.jpeg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/wp-content/uploads/elementor/css/post-1068.css?ver=1655200456
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Wed, 01 Jun 2022 11:02:42 GMT
accept-ranges: bytes
content-length: 178066
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:44 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=DM+Sans:wght@400;500;700&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=DM+Sans:wght@400;500;700&display=swap
IP
GET /css2?family=DM+Sans:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 19:53:43 GMT
date: Tue, 06 Dec 2022 19:53:43 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/ba-book-everything/js/select2.full.min.js?ver=1.5.2
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/plugins/ba-book-everything/js/select2.full.min.js?ver=1.5.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ba-book-everything/js/select2.full.min.js?ver=1.5.2 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:47:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/uploads/2022/05/jessica-rockowitz-6c4Uhhe68yQ-unsplash-scaled.jpg
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/uploads/2022/05/jessica-rockowitz-6c4Uhhe68yQ-unsplash-scaled.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/05/jessica-rockowitz-6c4Uhhe68yQ-unsplash-scaled.jpg HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/wp-content/uploads/elementor/css/post-1068.css?ver=1655200456
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Fri, 20 May 2022 05:31:28 GMT
accept-ranges: bytes
content-length: 431056
vary: Accept
content-type: image/jpeg
date: Tue, 06 Dec 2022 19:53:44 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.5
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.5 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:24:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/css/template.css?ver=1.0.4
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/css/template.css?ver=1.0.4
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/css/template.css?ver=1.0.4 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/css/bootstrap.css?ver=1.0.4
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/css/bootstrap.css?ver=1.0.4
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/css/bootstrap.css?ver=1.0.4 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/wpforms/assets/js/flatpickr.min.js?ver=4.6.9
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/plugins/wpforms/assets/js/flatpickr.min.js?ver=4.6.9
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms/assets/js/flatpickr.min.js?ver=4.6.9 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 17:42:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 02:23:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:24:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/themes/tevily/assets/js/bootstrap.min.js?ver=6.1.1
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/themes/tevily/assets/js/bootstrap.min.js?ver=6.1.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/tevily/assets/js/bootstrap.min.js?ver=6.1.1 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:23:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/wpforms/assets/js/jquery.inputmask.min.js?ver=5.0.7-beta.29
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/plugins/wpforms/assets/js/jquery.inputmask.min.js?ver=5.0.7-beta.29
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms/assets/js/jquery.inputmask.min.js?ver=5.0.7-beta.29 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 17:42:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
dpearlhills.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.20
200 OK 0 B URL HTTP/2 dpearlhills.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.20
IP
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.20 HTTP/1.1
Host: dpearlhills.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dpearlhills.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 14:27:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 19:53:43 GMT
server: Apache
X-Firefox-Spdy: h2
162.241.85.29
93.184.220.29
23.33.119.27
104.17.24.14