pioneeragritech.com/
208.91.199.152302 Found 216 B IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 25ed17469d69dd8ed498bf6d19c616f4
4fa01568bce45435cea1b90523ade86fa2713dc7
3a0dbf50519c783c59dc22a63fec07a2079161b43f953212aba39fd057085417
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 25 Nov 2022 12:58:05 GMT
Server: Apache
Location: https://www.pioneeragritech.com/
Content-Length: 216
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7007
Expires: Fri, 25 Nov 2022 14:54:52 GMT
Date: Fri, 25 Nov 2022 12:58:05 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1569
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:58:05 GMT
Last-Modified: Fri, 25 Nov 2022 12:31:56 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9419
Expires: Fri, 25 Nov 2022 15:35:04 GMT
Date: Fri, 25 Nov 2022 12:58:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 12:17:26 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2439
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NOqHcoJ9IvCEDSKQoGLIchfAy0UpDv5Fnt2SrEISNKQSazaHtK8MPa2Z5BChhvYFGmxpFH4L5EQ=
x-amz-request-id: 7HC23VBZMKQ9E80K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 12:40:48 GMT
age: 1037
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 12:58:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 12:11:11 GMT
cache-control: public,max-age=3600
age: 2815
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4456
Cache-Control: max-age=163381
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:58:06 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 10:21:07 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8f33360e5f3f58121dbb0c4c5274d6e0
4621cc6e393273688dbcef74ecb714b1ef387c5f
20c3587369169eba591996cc47b6da68e6dee2772855c89c63533bb8a71f147b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "20C3587369169EBA591996CC47B6DA68E6DEE2772855C89C63533BB8A71F147B"
Last-Modified: Thu, 24 Nov 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21584
Expires: Fri, 25 Nov 2022 18:57:50 GMT
Date: Fri, 25 Nov 2022 12:58:06 GMT
Connection: keep-alive
www.pioneeragritech.com/
208.91.199.152200 OK 5.9 kB IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (885)
Hash d9a5d4c7fd4543d7816a925ace09466e
5b52c36c8009d6bf9efecbbbf2666a3732186e1f
477625856b5e66005fede8fdaccb7510fa2ceb54885cf40669c7b5fbb487bb6d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
last-modified: Sun, 06 Feb 2022 04:35:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5938
content-type: text/html
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.89.20.60101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.20.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: a491vmlDyPgycpU/KF4M+A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: C4fOZDEC+X+17Yuw16OpgV2MadI=
www.pioneeragritech.com/css/magnific-popup.css
208.91.199.152200 OK 2.2 kB URL HTTP/2 www.pioneeragritech.com/css/magnific-popup.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash ce20cf26c4d9f37e1cb86b80c297249b
ddc4415debbcbcdb9348f447ea3cc6924d646ab2
e8005afb3a26100bbb5946e02112ca1e3999b4a19d92b363cce47e515fb226a4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/magnific-popup.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:16:30 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2226
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/font-awesome.min.css
208.91.199.152200 OK 7.1 kB URL HTTP/2 www.pioneeragritech.com/css/font-awesome.min.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (30861), with CRLF line terminators
Hash 0858d3ddf25d7c48079208e4233fb112
03ec5e52141a92bcd1e1caab442c4f01e6a8069e
d1d3e2e349da65ff805f328604baad4740675ce7772e7958c515f91a63de8c90
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/font-awesome.min.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:16:34 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 7126
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/animate.min.css
208.91.199.152200 OK 3.1 kB URL HTTP/2 www.pioneeragritech.com/css/animate.min.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (16755), with CRLF line terminators
Hash cc8283d7899b6847f4055aa8a0c7993e
190171231d0cba330849b3330eeafae5c43bf588
ba23d1abb01d51494b4ec82c1f4f13f63a8c83404fe7cd4a46e9314b3c6e19e8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/animate.min.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:16:38 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3057
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/flaticon.css
208.91.199.152200 OK 467 B URL HTTP/2 www.pioneeragritech.com/css/flaticon.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash f046f12397439c3cb8920ec97137d444
18f990d18a650ac6600d5d29af4ee00824b34f5b
1aff59d46151be278673ed85e2dc3782cf3c606d8a6de7f27e9c49c484aee7a4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/flaticon.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:16:34 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 467
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/headline.css
208.91.199.152200 OK 4.0 kB URL HTTP/2 www.pioneeragritech.com/css/headline.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 067f46d1cfdd1d2e442ba41ca7ceb67b
74e351fcfe3c91abce998c5d7036dd201b58d729
9fabe22ad72c4e6c73bb038fbd8835f35ccf1e8280be1aee84e220ceb05b3fc1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/headline.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:16:32 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 4028
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/ionicons.min.css
208.91.199.152200 OK 8.8 kB URL HTTP/2 www.pioneeragritech.com/css/ionicons.min.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (50826), with CRLF line terminators
Hash d1740dd0dde15b0a34358890e5f20909
c24c62cb3767a6dfeac86c83f49964649a3699f2
433aa840d5c5f7a10898429d84055a61a5b8c20c292a3054bb30801190752472
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/ionicons.min.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:16:32 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 8831
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/material-design-iconic-font.min.css
208.91.199.152200 OK 13 kB URL HTTP/2 www.pioneeragritech.com/css/material-design-iconic-font.min.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (65536), with no line terminators
Hash 080f6c428371a41fa7a612c050fead5d
287b09b50e374e8df6dbd3f293fca1d24f756e72
6eb783ee3ff0c5a8b46f5837cab2c8dd2b7b27a58484d0f4280b70b0935d6987
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/material-design-iconic-font.min.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:16:30 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 12914
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/owl.carousel.min.css
208.91.199.152200 OK 975 B URL HTTP/2 www.pioneeragritech.com/css/owl.carousel.min.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2846), with CRLF line terminators
Hash 0d7343c1f47166a7356d5913096b27c6
60d3f6dfbfee5567b276a963bb63e76213ce274e
5a64553c93e5cc6b2643e90a09a727578a317a0ebdc53ec5ac35d98bd76a9377
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/owl.carousel.min.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:16:28 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 975
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/style.css
208.91.199.152200 OK 15 kB URL HTTP/2 www.pioneeragritech.com/css/style.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 1461a32c974622c23fbdda60c33f7302
af2295c1bb468ef1ac2b317424d89d426bdaa673
a5792dfc23bde27611fcf45f470f169da360bb37967336ae5ceea1d80897d361
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/style.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 05 Feb 2022 06:37:48 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 14833
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/meanmenu.css
208.91.199.152200 OK 1.0 kB URL HTTP/2 www.pioneeragritech.com/css/meanmenu.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 0a7c001ceede2090cf3afab322d42742
92b20c8c530303da3b8b9d000ea900ef22500e8f
723276ff53c66b1f3c44f1ab75d5c5d04af0aa75890cb1b8c5a085ed8b9333b6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/meanmenu.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 May 2020 06:02:21 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1014
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/responsive.css
208.91.199.152200 OK 2.4 kB URL HTTP/2 www.pioneeragritech.com/css/responsive.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 2c8fb1af6cc84add1b3e5d39338bf849
f21565cc5000d37be98d8b2b6696a7fbab2d3490
1036be7105f5f7badb256332719e111e778f835992903e09e0d2f06839c6cf29
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/responsive.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 19:48:24 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2430
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/jquery.scrollUp.min.js
208.91.199.152200 OK 972 B URL HTTP/2 www.pioneeragritech.com/js/jquery.scrollUp.min.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (1872), with CRLF line terminators
Hash 108371096c4fa10db63ffb124ca7f199
0edb887b2301b587bcd5373ccd9572c626725d96
437566fcd0ae7c9b66786a07635c0b3d0cf034a5f9a7cc5363855934ba417305
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery.scrollUp.min.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:24:00 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 972
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/Pe-icon-7-stroke.css
208.91.199.152200 OK 1.8 kB URL HTTP/2 www.pioneeragritech.com/css/Pe-icon-7-stroke.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash e37d649b4a1d249b27164c516926fa52
df5e589dd48c1c9acf2edd58d5961fd4f4bb70f0
86d993ed9e359e7f80955db086494382fa66854216584bd3033620c41648cb73
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/Pe-icon-7-stroke.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:16:38 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1786
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/bundle.css
208.91.199.152200 OK 3.3 kB URL HTTP/2 www.pioneeragritech.com/css/bundle.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type assembler source, ASCII text, with CRLF, CR line terminators
Hash 93e3525b48815bb487a88c56cb133239
6a4879c193468875941e89334e92f84e4458649b
0c668d4a66f7c2e65f2e2f44709291e8d91223d9da23f61e8fdd72b01381d2f3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/bundle.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:16:36 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3302
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/vendor/modernizr-2.8.3.min.js
208.91.199.152200 OK 7.1 kB URL HTTP/2 www.pioneeragritech.com/js/vendor/modernizr-2.8.3.min.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (14856), with CRLF line terminators
Hash 107ca420ad879964d4dcd93afb821f4a
e0079c53a2320b1e6f488648df66d1ad8f0b1ee8
cf9395aa13e33e9f2207b38d24b0e2b6ccf3c20415df23ba697067d70ee99dd7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/vendor/modernizr-2.8.3.min.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:24:18 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 7087
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/1.png
208.91.199.152200 OK 156 B URL HTTP/2 www.pioneeragritech.com/img/1.png
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 40 x 42, 4-bit colormap, non-interlaced\012- data
Hash 8dd8eb0ea795fdd0dced2f36a96f6395
f8529e2477355973f849fea29c2ccf17102e37e3
93ae71aa7ba4b6bc4c466c37480e145ec3973c06a7db53280459e964e3e7f2fd
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/1.png HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 19:53:09 GMT
accept-ranges: bytes
content-length: 156
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/png
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/jquery.counterup.min.js
208.91.199.152200 OK 577 B URL HTTP/2 www.pioneeragritech.com/js/jquery.counterup.min.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (917), with CRLF line terminators
Hash 0dd5217dcac58144556939cd15d820b8
d8d7cf7d6426e44861c912cfce5561e919284ea2
842b56cf5b97ee3fbaddb276e3be4e2c59a85514de5bcd39a8d09caad65e366a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery.counterup.min.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:24:06 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 577
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/7.png
208.91.199.152200 OK 199 B URL HTTP/2 www.pioneeragritech.com/img/7.png
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 40 x 42, 8-bit colormap, non-interlaced\012- data
Hash 6692ca11045aeb98dcb3a1e80054907e
d98d5cbb660d7ee397ba074e4185e515d4c5cfd3
db32070aff0ceb5d79d529838ffa6a3a172a2f6ca50803b4e9c40a62d05ec80b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/7.png HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 19:53:06 GMT
accept-ranges: bytes
content-length: 199
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/png
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/imagesloaded.pkgd.min.js
208.91.199.152200 OK 2.0 kB URL HTTP/2 www.pioneeragritech.com/js/imagesloaded.pkgd.min.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5324), with CRLF line terminators
Hash 45739a0bbdefedcabdad5cfc44d13a7c
22cafa467e6e9391d95debbb1ebb3f8f088bbf29
35847fd6422bbdc71b7de67133a5871be1de4d6c6a35c1a1a2eb6bc23841064a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/imagesloaded.pkgd.min.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:24:08 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2012
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/headline.js
208.91.199.152200 OK 1.8 kB URL HTTP/2 www.pioneeragritech.com/js/headline.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash a331ccc3470c1c8e3f8a7d5cf7bf9daa
994da5311d392c88426cc9bad12bb1921ac82b91
e97db3438ef4cba8624a25801ad7e5c3f5690b89ff4562d544d9ce30b52ecd8b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/headline.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:24:10 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1761
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/call.png
208.91.199.152200 OK 1.6 kB URL HTTP/2 www.pioneeragritech.com/img/call.png
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 58 x 58, 8-bit colormap, non-interlaced\012- data
Hash 44a5ad9353fd562ea4e7bd5ab1afa7e1
5b20fe536dd8a1d3266e79df585390077a9c2113
5c41cb48dedc98179be44acd27c949c47eaf6942a9c4b16daa5e0b2aa3b63450
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/call.png HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 19:52:55 GMT
accept-ranges: bytes
content-length: 1560
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/png
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/whatsapp.png
208.91.199.152200 OK 1.8 kB URL HTTP/2 www.pioneeragritech.com/img/whatsapp.png
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 58 x 58, 8-bit colormap, non-interlaced\012- data
Hash 8a329039113ed643d14e57a60062d38d
e7e3d8b84f063c0c991205665af0f8481e3d818c
dfdf0f0ebe3a89da239256b880b86956cfe84a8b7b549a54fabb910d5745f35d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/whatsapp.png HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 19:51:43 GMT
accept-ranges: bytes
content-length: 1759
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/png
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/insta.png
208.91.199.152200 OK 2.9 kB URL HTTP/2 www.pioneeragritech.com/img/insta.png
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 40 x 42, 8-bit/color RGB, non-interlaced\012- data
Hash 9fd2c201939d4b04c798094a34afb230
8c672d342d21b1eead39ee5463ddfeb7231aee4d
ffda5f0a21d3ca9173736a734bfef7135e4e2a153a00bf72d1d5f2ec028b6f49
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/insta.png HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 23 May 2020 11:54:17 GMT
accept-ranges: bytes
content-length: 2903
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/png
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:58:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:58:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Montserrat:300,400,500,600,700|Poppins:300,500,600,700
142.250.74.10200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:300,400,500,600,700|Poppins:300,500,600,700
IP 142.250.74.10:0
Hash 2343b551551dc8de453f91fa87573b6b
9250a1e18bf362362ad9387bc8181e9e944ae0d8
eb46b3d65372584803c8a30bebeae421eaf96bd11bce1fb9850fc0b94742cf22
GET /css?family=Montserrat:300,400,500,600,700|Poppins:300,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 12:58:07 GMT
date: Fri, 25 Nov 2022 12:58:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/popper.min.js
208.91.199.152200 OK 8.9 kB URL HTTP/2 www.pioneeragritech.com/js/popper.min.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (20831), with CRLF line terminators
Hash a9536399b0dc50d8f70cb9f484cf486f
c534c2896adf6c1c08ba41896599c240a13ab2e5
84b1e89aab4d15fcc02625acbed2d287ab072353491f6b14a6c59b75328a52ef
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/popper.min.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:23:52 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 8932
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/logo.png
208.91.199.152200 OK 6.2 kB URL HTTP/2 www.pioneeragritech.com/img/logo.png
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 370 x 82, 8-bit colormap, non-interlaced\012- data
Hash 8e8336ddc1a6a0d42e22814b79ca8b16
b8f3ce7068cd2256a0cdcd95aa4025735cda79e9
a462ded393b13d2aa905f6052f5cb6152351b067abd83172f3a5e6679f1a4fc1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/logo.png HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 19:52:26 GMT
accept-ranges: bytes
content-length: 6229
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/png
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/jquery.magnific-popup.min.js
208.91.199.152200 OK 9.2 kB URL HTTP/2 www.pioneeragritech.com/js/jquery.magnific-popup.min.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (20099), with CRLF line terminators
Hash 6b17922878c06bd5df13b520bfed5189
9eeb2a14dbf50cb847259c036e16911d9c6d1757
d4cbab872c3f00043879d48b5d768a9cc47ea1125d3391777ea74649d540af60
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery.magnific-popup.min.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:24:06 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 9212
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/isotope.pkgd.min.js
208.91.199.152200 OK 13 kB URL HTTP/2 www.pioneeragritech.com/js/isotope.pkgd.min.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32036), with CRLF line terminators
Hash 55933d49f41682603e35338b43d2284e
c014fa7bf131c2c44440165426d2865adf65be16
e877ef64c6e41d5a52fc2c917fe5011e501dcba6566518116a2a40c0040bb12c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/isotope.pkgd.min.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:24:08 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 12858
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/jquery.parallax-1.1.3.js
208.91.199.152200 OK 821 B URL HTTP/2 www.pioneeragritech.com/js/jquery.parallax-1.1.3.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash e9db1fa06b05bd8b1a13ec7feb181b25
fc050ac99df233e00f2871aa325498e354086ebb
1e6a03fa068b5e8f1745d96e1ef13354c7da2d92ddb7c2efbc5c9f4d42f20f3d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery.parallax-1.1.3.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:24:02 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:07 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 821
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/img-5.jpg
208.91.199.152200 OK 14 kB URL HTTP/2 www.pioneeragritech.com/img/img-5.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 350x200, components 3\012- data
Hash 503bdab5f0c9baff07dc1cfad3af8e6c
32e7b147417c1c8342d622c20109089da372dac6
58f52682f21ffe51281d4825f468eb4a0264ba8d1171d7f44bb503f13e743318
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/img-5.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 19:52:39 GMT
accept-ranges: bytes
content-length: 13541
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/bootstrap.min.js
208.91.199.152200 OK 20 kB URL HTTP/2 www.pioneeragritech.com/js/bootstrap.min.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash e72aa9ff74c675536c35b8b216a78d02
54194dfa6864f6ede96b7c6eb5302fc88e768b96
5acf78c8639f2b45463d4900725a5724f1fbbe878c197466160544eaf50b2df0
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/bootstrap.min.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:24:12 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/jost/v14/92zatBhPNqw73oTd4g.woff2
216.58.207.195200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/jost/v14/92zatBhPNqw73oTd4g.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 26304, version 1.0\012- data
Hash 29404b5009a74d47f2a7923da5741fd5
c8c7a68af3f7e4f92d932203efda0c38e4d170ab
0b7e3af1cb23f3b1cc2c3418f3c31ab3bbadeaa2ba5e72f3cb818e4b44c420f4
GET /s/jost/v14/92zatBhPNqw73oTd4g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pioneeragritech.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26304
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 08:22:04 GMT
expires: Thu, 23 Nov 2023 08:22:04 GMT
cache-control: public, max-age=31536000
age: 189363
last-modified: Mon, 11 Jul 2022 20:29:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:58:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.pioneeragritech.com/js/ajax-mail.js
208.91.199.152404 Not Found 355 B URL HTTP/2 www.pioneeragritech.com/js/ajax-mail.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cb50b952a1a41c3358018129e081d511
9b3ce22f173597240fd0c22ff649f3ffb9c6ea99
791b5cb893932898c350d1ec9888ee9c2feaea002431d12e9a1ba29331813be0
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/ajax-mail.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
last-modified: Tue, 15 Mar 2022 22:07:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 355
content-type: text/html
date: Fri, 25 Nov 2022 12:58:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/main.js
208.91.199.152200 OK 1.2 kB URL HTTP/2 www.pioneeragritech.com/js/main.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash ae72a126d861fc769ac445f581da7064
94e6243db961c01d197aa2724956f147abcc0218
7253c23dda2c239c663e85a1ea180e6b446bd1a88e3f164457c5bba024112b2d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/main.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:23:56 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:07 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1202
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/jquery.meanmenu.js
208.91.199.152200 OK 1.9 kB URL HTTP/2 www.pioneeragritech.com/js/jquery.meanmenu.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (1709), with CRLF line terminators
Hash 346a62f0dc23df5b5f0ef7a018cd0696
13b37b38614ef1095ccba0ede098d485dc6e0099
99191e88157b6a23018afc5fe2ec62e6845a950f62e482779198472afb10f4c6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery.meanmenu.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:24:02 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:07 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1945
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/waypoints.min.js
208.91.199.152200 OK 3.1 kB URL HTTP/2 www.pioneeragritech.com/js/waypoints.min.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (7808), with CRLF line terminators
Hash 45fda2fdd11881e12211a82cf8fd012c
5e7cb001e83175dcbc6b52245d9b9f0fe68f1796
5816aaae9224136c044cadc2b769136375c2e74533e3ff6de07feb5e45605550
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/waypoints.min.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:23:52 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:07 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3137
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/plugins.js
208.91.199.152200 OK 11 kB URL HTTP/2 www.pioneeragritech.com/js/plugins.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (22023), with CRLF line terminators
Hash af5e4fd243c0263cd88f146655af1bd2
0ecdf62dc17f5e6b976443ee23574a39dcd86218
d7b8e91908ae1b92720e54bd8bde217c2d050649d9a5662c7196dcd09271a0c8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/plugins.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:23:54 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:07 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 10666
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/img-6.jpg
208.91.199.152200 OK 18 kB URL HTTP/2 www.pioneeragritech.com/img/img-6.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 350x200, components 3\012- data
Hash 82e8427e624e1f754a1dd8222f2e7736
6f830a2ba05657c6fe2dc2c8ea714dd511a5c8df
8e6ee4df68c78ca7bf2da992377e8c2174bd8d05e611084c82fae1934cce6ecd
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/img-6.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Feb 2021 07:15:30 GMT
accept-ranges: bytes
content-length: 18411
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/img-7.jpg
208.91.199.152200 OK 19 kB URL HTTP/2 www.pioneeragritech.com/img/img-7.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 350x200, components 3\012- data
Hash dda512945435794dbcaf28758bb66879
c2b266aa9d030279db7795522d7fa29d3d4df1e9
a405f28d959e377d9aeda361e4d51adf001057c1439e0ff4fdf6845981ffcf04
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/img-7.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Feb 2021 07:15:30 GMT
accept-ranges: bytes
content-length: 18902
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/owl.carousel.min.js
208.91.199.152200 OK 15 kB URL HTTP/2 www.pioneeragritech.com/js/owl.carousel.min.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32000), with CRLF line terminators
Hash e613a3eb201a517ecdaf742aa007ff3e
cffd594ec6486a881864e9481a63a0c92eb8562e
fec1d85ab75dcc751f76d0c16f5c1b2065784516f43901265aacfc8022581ebc
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/owl.carousel.min.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:23:56 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:07 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 15331
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/img-4.jpg
208.91.199.152200 OK 18 kB URL HTTP/2 www.pioneeragritech.com/img/img-4.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 350x200, components 3\012- data
Hash e304d17e7f42494a26167aa1c2dcc7ea
07954b4f5770f9b8a2ce1b5864a351ca12249a6a
740a6599dc2b0662f6c3a27435d182048d355d9d198f6d8810314159f793f093
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/img-4.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Feb 2021 07:15:27 GMT
accept-ranges: bytes
content-length: 18142
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/img-8.jpg
208.91.199.152200 OK 18 kB URL HTTP/2 www.pioneeragritech.com/img/img-8.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 350x200, components 3\012- data
Hash 7f119c43ad99b844aebb7ddc28788e75
0808a430194ed7de7d58497d55807bac69e3458b
8431c26a3470f3c524a4eb8e5a64b95c8b4e3cff07311c73a8e492f502781ec5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/img-8.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Feb 2021 07:14:52 GMT
accept-ranges: bytes
content-length: 18131
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/img-1.jpg
208.91.199.152200 OK 19 kB URL HTTP/2 www.pioneeragritech.com/img/img-1.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 350x200, components 3\012- data
Hash 317cf41ba36dbafd6478a6b1e309ec4d
88397d0acd8eb7e91ee98911785088923e640104
8a092fe327bc2a1b344abb23a0ab27e9125503e976f6f6645f02dae74783cedf
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/img-1.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Feb 2021 07:17:34 GMT
accept-ranges: bytes
content-length: 19443
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/img-2.jpg
208.91.199.152200 OK 20 kB URL HTTP/2 www.pioneeragritech.com/img/img-2.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 350x200, components 3\012- data
Hash af910123797e8d0c5147d0c32cbb7654
5f24a4875cbb7bd53fe98081f626ca04fd3f4293
ddd9d87bf6922913ab99e1f760198e297514ee7c3d9109ba2df0c68deb652325
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/img-2.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Feb 2021 07:14:54 GMT
accept-ranges: bytes
content-length: 19714
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pioneeragritech.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 73069
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/img-3.jpg
208.91.199.152200 OK 20 kB URL HTTP/2 www.pioneeragritech.com/img/img-3.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 350x200, components 3\012- data
Hash 73cc6fe6f85d0be03fda212fcbd0b3a6
a3121a73d13ded6e9792a193cb8febc133aa0390
680cd08dfed9db672c7b07d926b7b06a6d9709f41cb17e09ad571a73571af9ed
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/img-3.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Feb 2021 07:15:27 GMT
accept-ranges: bytes
content-length: 19733
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16324, version 1.0\012- data
Hash f43fa5b4f6366eae0039e4e49db645de
d7fec074ba8b6e69bec4a995ea722d3d1513ad43
0aa6a7045a55ddcb25bbee4d1edcb864081cf59f7fc9bdc1ada22a32ed4ad3ad
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pioneeragritech.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 08:33:30 GMT
expires: Thu, 23 Nov 2023 08:33:30 GMT
cache-control: public, max-age=31536000
age: 188677
last-modified: Tue, 19 Apr 2022 18:08:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/about-us-pic.jpg
208.91.199.152200 OK 31 kB URL HTTP/2 www.pioneeragritech.com/img/about-us-pic.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 555x360, components 3\012- data
Hash e19f5dc2c4dc12a9588ed6cb6e9a036e
5f9cb0efb859f507b916c4f59cb183c927e15654
79daef821cf97bb69319c66ce1915a548c709bbd8f089a5f6fff0bdcafd2394c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/about-us-pic.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 19:53:00 GMT
accept-ranges: bytes
content-length: 31394
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/s3.jpg
208.91.199.152200 OK 196 kB URL HTTP/2 www.pioneeragritech.com/img/s3.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1400x472, components 3\012- data
Size 196 kB (195596 bytes)
Hash d1aa4dc638352aa6d21fc0279d209fb8
49b2c552d29986f50359bd68a20f23409633bfdb
4dfcaca1b4fb7ba80651cbda12aa8988bda66dd7e8879f6aeec3441b12fb5daa
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/s3.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 19:51:57 GMT
accept-ranges: bytes
content-length: 195596
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/s1.jpg
208.91.199.152200 OK 242 kB URL HTTP/2 www.pioneeragritech.com/img/s1.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1400x472, components 3\012- data
Size 242 kB (242239 bytes)
Hash 7db36ebe5881f528ed504f73b53a133c
e6fbf57791ae9edcc20a88d8e6ee98ebb5c8024f
8268cc6b83c99e33d2e435a5f8fbf5c6f8e99a54908fdb9091a53e96a308c1d7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/s1.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 19:52:00 GMT
accept-ranges: bytes
content-length: 242239
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/fonts/fontawesome-webfont3e6e.woff2?v=4.7.0
208.91.199.152200 OK 77 kB URL HTTP/2 www.pioneeragritech.com/fonts/fontawesome-webfont3e6e.woff2?v=4.7.0
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /fonts/fontawesome-webfont3e6e.woff2?v=4.7.0 HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.pioneeragritech.com/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:16:52 GMT
accept-ranges: bytes
content-length: 77160
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:07 GMT
content-type: font/woff2
date: Fri, 25 Nov 2022 12:58:07 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6832
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 12:58:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6832
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 12:58:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6832
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 12:58:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6832
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 12:58:08 GMT
Connection: keep-alive
www.pioneeragritech.com/js/ajax-mail.js
208.91.199.152404 Not Found 355 B URL HTTP/2 www.pioneeragritech.com/js/ajax-mail.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cb50b952a1a41c3358018129e081d511
9b3ce22f173597240fd0c22ff649f3ffb9c6ea99
791b5cb893932898c350d1ec9888ee9c2feaea002431d12e9a1ba29331813be0
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/ajax-mail.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
last-modified: Tue, 15 Mar 2022 22:07:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 355
content-type: text/html
date: Fri, 25 Nov 2022 12:58:07 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 8f679d7f-2ea5-4e47-b78d-79af59435a62
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFPHYHkAIAMFpBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637ec562-26108a785e910dc3355d58f1;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 01:14:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NKwpIdw2RZNZNh69AF5GNvunA_QfRGClvzcRP3zYwn7c8BLBlt097g==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 07:46:20 GMT
age: 18708
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 04:23:00 GMT
age: 30908
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b6ee13d43732f7c764a49500d092865
5d15fd672e968d59b541e4d5d0d01cd5e69f4075
fc3623d527147e1c6aab399251ed8d527e6eefdee6ad7183f00df2613498bfe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8006
x-amzn-requestid: 78aab013-df11-464b-a1c7-ee41b7e77b40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-AHSrIAMFvKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38c-4d795f410a57fc2c21d7075d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NntLZ3wUdcX9kEo-afFLU0TPKgqAlSK3bToNh2mmoqoyLBJINNk7ow==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:39 GMT
age: 54209
etag: "5d15fd672e968d59b541e4d5d0d01cd5e69f4075"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eb94ecb5881a7e49d964e4287d11e7a4
4b131a189db1b615e2519a28cad83d78297ab67f
f3693e29eb7b72361093434142e3f18969c1a0b02350fab430fa29c7c127bd1a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11401
x-amzn-requestid: 3bc374eb-7d70-4b95-94a7-2ad06cae4726
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtHcmoAMFxgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-333793987245ff9e741b9aed;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kkI9Vh2vZeJPwz2JVL5MErsBBwk8-2Jo49yc0sFqv5pxIyBi6azFIw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:00:34 GMT
age: 53854
etag: "4b131a189db1b615e2519a28cad83d78297ab67f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8784bb7a8b88736a6016f712e3183bf3
b0ddc1555d2506177adcdcea77864d75f1245d07
8e331713b0ad0b5670dd33dfdadde665e076a40ddb80905d4df89876d49803d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11743
x-amzn-requestid: 9ab0aba7-5cd1-4f6c-8984-dc221e1cbf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICD-F7joAMFqmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3b2-152ba5f1495a44447356cdab;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oWSNdsrz59sJC2znLnFqa_Zm3T14_d6j-rjzDQe4yV22Dy2Qc4Swaw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:45 GMT
age: 54203
etag: "b0ddc1555d2506177adcdcea77864d75f1245d07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:47:53 GMT
age: 54615
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670dda5fda45a89db08867e9109f65b7
2a64bc381f8e795fe7a46a98c3e8add2f1ade404
7c2085a52a32eab3f4ab73c4ab3718cf1e7d67502e83001ce45d2857b37a0755
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4766
Cache-Control: max-age=149270
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:58:08 GMT
Etag: "63804d58-1d7"
Expires: Sun, 27 Nov 2022 06:25:58 GMT
Last-Modified: Fri, 25 Nov 2022 05:06:32 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.pioneeragritech.com/img/fav-icon.png
208.91.199.152200 OK 556 B URL HTTP/2 www.pioneeragritech.com/img/fav-icon.png
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash a5a160c9f265102e022e4b7032b2e5e1
8735dd9b19207a6ddc671027db6a0d335884afd6
4a5f4abc8ae3cb08a1c6332c02e7014e8b471bff5b9f779b478a0a6583423d45
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/fav-icon.png HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 19:52:53 GMT
accept-ranges: bytes
content-length: 556
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:08 GMT
content-type: image/png
date: Fri, 25 Nov 2022 12:58:08 GMT
server: Apache
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: nrUb41CGQvJ4WqfZ9XOSF+6xhpRSyufFoF4k/2HwT6TL93CsoxfoNDpDNb38+HKVEUsTEsuUGDoo4N++7TspXg==
content-length: 27340
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 12:58:08 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670dda5fda45a89db08867e9109f65b7
2a64bc381f8e795fe7a46a98c3e8add2f1ade404
7c2085a52a32eab3f4ab73c4ab3718cf1e7d67502e83001ce45d2857b37a0755
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4766
Cache-Control: max-age=149270
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:58:08 GMT
Etag: "63804d58-1d7"
Expires: Sun, 27 Nov 2022 06:25:58 GMT
Last-Modified: Fri, 25 Nov 2022 05:06:32 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.pioneeragritech.com/apple-touch-icon.png
208.91.199.152404 Not Found 355 B URL HTTP/2 www.pioneeragritech.com/apple-touch-icon.png
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cb50b952a1a41c3358018129e081d511
9b3ce22f173597240fd0c22ff649f3ffb9c6ea99
791b5cb893932898c350d1ec9888ee9c2feaea002431d12e9a1ba29331813be0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /apple-touch-icon.png HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
last-modified: Tue, 15 Mar 2022 22:07:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 355
content-type: text/html
date: Fri, 25 Nov 2022 12:58:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=184903010054673&ev=PageView&dl=https%3A%2F%2Fwww.pioneeragritech.com%2F&rl=&if=false&ts=1669381087969&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669381087968.2085474848&it=1669381087687&coo=false&rqm=GET
157.240.200.35200 OK 86 kB URL HTTP/2 www.facebook.com/tr/?id=184903010054673&ev=PageView&dl=https%3A%2F%2Fwww.pioneeragritech.com%2F&rl=&if=false&ts=1669381087969&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669381087968.2085474848&it=1669381087687&coo=false&rqm=GET
IP 157.240.200.35:0
File type gzip compressed data, from Unix\012- data
Hash 684999ebe8e1c5ecb034284aabae6ce7
f8ff5316183087deece31ed71f8a3707d6debd2b
1e6bad932a583f1cc71866a35026eeee8887134157078970074f113400b0ace1
GET /tr/?id=184903010054673&ev=PageView&dl=https%3A%2F%2Fwww.pioneeragritech.com%2F&rl=&if=false&ts=1669381087969&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669381087968.2085474848&it=1669381087687&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 25 Nov 2022 12:58:08 GMT
X-Firefox-Spdy: h2
www.pioneeragritech.com/js/vendor/jquery-1.12.0.min.js
208.91.199.152200 OK 0 B URL HTTP/2 www.pioneeragritech.com/js/vendor/jquery-1.12.0.min.js
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/vendor/jquery-1.12.0.min.js HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:24:20 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/s4.jpg
208.91.199.152200 OK 0 B URL HTTP/2 www.pioneeragritech.com/img/s4.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/s4.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 19:51:57 GMT
accept-ranges: bytes
content-length: 198935
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Jost:wght@300;400;500;600;700&family=Open+Sans+Condensed:wght@300;700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Jost:wght@300;400;500;600;700&family=Open+Sans+Condensed:wght@300;700&display=swap
IP 142.250.74.10:0
GET /css2?family=Jost:wght@300;400;500;600;700&family=Open+Sans+Condensed:wght@300;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 12:58:07 GMT
date: Fri, 25 Nov 2022 12:58:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pioneeragritech.com/img/s2.jpg
208.91.199.152200 OK 0 B URL HTTP/2 www.pioneeragritech.com/img/s2.jpg
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/s2.jpg HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Feb 2021 07:25:42 GMT
accept-ranges: bytes
content-length: 87090
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 12:58:06 GMT
content-type: image/jpeg
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.pioneeragritech.com/css/bootstrap.min.css
208.91.199.152200 OK 0 B URL HTTP/2 www.pioneeragritech.com/css/bootstrap.min.css
IP 208.91.199.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/bootstrap.min.css HTTP/1.1
Host: www.pioneeragritech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pioneeragritech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 May 2020 14:16:38 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 25 Dec 2022 12:58:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 25 Nov 2022 12:58:06 GMT
server: Apache
X-Firefox-Spdy: h2