r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c7a8ba48383a0e56baca8c8c41b81a04
b04c1f1e730a71f17ff639c9db697c532d4e5421
7860552382285e6eddddc5226c6f6400caa3f6fc3cb4b8a2d550c6fc653f78bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7860552382285E6EDDDDC5226C6F6400CAA3F6FC3CB4B8A2D550C6FC653F78BB"
Last-Modified: Sun, 06 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14303
Expires: Tue, 08 Nov 2022 04:15:23 GMT
Date: Tue, 08 Nov 2022 00:17:00 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 9fd081ea88e8b8563986b3e558496d21
60700393dce5eb42c0db0d5feef340f4832e3c65
d92555957857423ed02f0d0435739bcd40a996591c73f40315564b372f6e2395
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2758
Cache-Control: max-age=126016
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 00:17:00 GMT
Etag: "6368de76-1d7"
Expires: Wed, 09 Nov 2022 11:17:16 GMT
Last-Modified: Mon, 07 Nov 2022 10:31:18 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d8c32b2fb818533a5b3fe5c69157bde9
93594fd3fc50d9d444c28660eabba1edbe4f0588
df8b8ce7a83d11fbe075c8780103c509654f288b5d757d64b696d861a11f3c7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF8B8CE7A83D11FBE075C8780103C509654F288B5D757D64B696D861A11F3C7F"
Last-Modified: Sun, 06 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9132
Expires: Tue, 08 Nov 2022 02:49:12 GMT
Date: Tue, 08 Nov 2022 00:17:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QcXolx+MTaLefxza5pMhip6iJzOMuj4v71uI8HqMRVBzwy76z3TiazHhD4Kqs50FWcv4lc90S2U=
x-amz-request-id: FHKEK6QPGHPT0303
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 07 Nov 2022 23:48:15 GMT
age: 1725
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 08 Nov 2022 00:17:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash e6f4643306be10417c47176a6e67306f
940a13818904add9e1cacd12610f37ba1efd7bc5
67e51095b5da59b3eeda8a28c81789e69064a0a19a93347c2fcb05fd4b21e6d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5898
Cache-Control: max-age=124084
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 00:17:00 GMT
Etag: "6368caa6-1d7"
Expires: Wed, 09 Nov 2022 10:45:04 GMT
Last-Modified: Mon, 07 Nov 2022 09:06:46 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xKB00D2yfwMbwRlAVto7wQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: g2wAuiY8SEkh7uUzO5pPXc+LP+A=
lbdvs.org/iddbhle/
200 OK 45 kB IP
ASN #56110 Everdata Technologies Pvt Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3372), with CRLF, LF line terminators
Hash ccdfff3f42486485c67eebdfd8ed0549
5923d15d139fc58e3c55f97928a3c76c96bdcb89
1f40989a198cdaeca7cdf798ed4dfd12395d573f10bdbed50fbe0f54b0784fef
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /iddbhle/ HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:00 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Cache-Control: max-age=172800
Expires: Thu, 10 Nov 2022 00:17:00 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 45399
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7343258e6f5f3d759790fe5bef5237d2
906e0ea1d1811dff042b3d1cfa5154cc3359eacf
54971e7e741086dae921cfede53a446696b5c0254015d76b39a716f50eb78b18
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54971E7E741086DAE921CFEDE53A446696B5C0254015D76B39A716F50EB78B18"
Last-Modified: Mon, 07 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21538
Expires: Tue, 08 Nov 2022 06:15:59 GMT
Date: Tue, 08 Nov 2022 00:17:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7343258e6f5f3d759790fe5bef5237d2
906e0ea1d1811dff042b3d1cfa5154cc3359eacf
54971e7e741086dae921cfede53a446696b5c0254015d76b39a716f50eb78b18
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54971E7E741086DAE921CFEDE53A446696B5C0254015D76B39A716F50EB78B18"
Last-Modified: Mon, 07 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 08 Nov 2022 06:17:01 GMT
Date: Tue, 08 Nov 2022 00:17:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7343258e6f5f3d759790fe5bef5237d2
906e0ea1d1811dff042b3d1cfa5154cc3359eacf
54971e7e741086dae921cfede53a446696b5c0254015d76b39a716f50eb78b18
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54971E7E741086DAE921CFEDE53A446696B5C0254015D76B39A716F50EB78B18"
Last-Modified: Mon, 07 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21598
Expires: Tue, 08 Nov 2022 06:16:59 GMT
Date: Tue, 08 Nov 2022 00:17:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aa84c5dec2313871297a1acd930488e5
090ad8453a867cfd5c8b20307e412c56bd2dfae9
dc7cc018906aba636c2f7e4aa1bf12995a3207c035176e705a919a6113777d43
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DC7CC018906ABA636C2F7E4AA1BF12995A3207C035176E705A919A6113777D43"
Last-Modified: Mon, 07 Nov 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 08 Nov 2022 06:17:01 GMT
Date: Tue, 08 Nov 2022 00:17:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aa84c5dec2313871297a1acd930488e5
090ad8453a867cfd5c8b20307e412c56bd2dfae9
dc7cc018906aba636c2f7e4aa1bf12995a3207c035176e705a919a6113777d43
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DC7CC018906ABA636C2F7E4AA1BF12995A3207C035176E705A919A6113777D43"
Last-Modified: Mon, 07 Nov 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21556
Expires: Tue, 08 Nov 2022 06:16:17 GMT
Date: Tue, 08 Nov 2022 00:17:01 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 96791bd486db22c41012d25318835bdf
b32c813f16b84a6b2660bd527843da5e368af8eb
61a4589c35910af9f8d20ff0c7eca296a77a336ab00730573fe9ce7cf2cc72c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 00:17:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
IP
File type ASCII text, with very long lines (32061)
Hash b90b3d2618cce9d766152cd3092b5c27
496339457cd00caab8118e2e1f30ea18dc05b9f4
b7b155aa8c6b5db28f9a6b41e88c96e9462c196c700add426f8ef32c9ce1ed41
GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 01:11:46 GMT
expires: Tue, 07 Nov 2023 01:11:46 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 83115
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 96791bd486db22c41012d25318835bdf
b32c813f16b84a6b2660bd527843da5e368af8eb
61a4589c35910af9f8d20ff0c7eca296a77a336ab00730573fe9ce7cf2cc72c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 00:17:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
200 OK 344 B IP
ASN #20940 Akamai International B.V.
Hash 5d91edb5d9b3d610d78849f9f6a5747e
25a582b7c9a9fc030caa1d88de426e49fecd848f
2288a126c5b1e2f31a5f6482b7366a8ba03d11529e31b2a0f7d63a861280c47f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "2288A126C5B1E2F31A5F6482B7366A8BA03D11529E31B2A0F7D63A861280C47F"
Last-Modified: Sat, 05 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13691
Expires: Tue, 08 Nov 2022 04:05:13 GMT
Date: Tue, 08 Nov 2022 00:17:02 GMT
Connection: keep-alive
lbdvs.org/iddbhle/assets/intlTelInput.css
200 OK 3.2 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/intlTelInput.css
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type ASCII text, with very long lines (21662), with no line terminators
Hash 537e39e4d941e36c1f8204426c1eb9a4
34a6e46ac92793da793b59da11d30cfd15e6d9eb
568352f05774f63644ca303ba4d6f25467c8f3a1955d85923c342e1e439d5fc3
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/intlTelInput.css HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:15:20 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 08 Dec 2022 00:17:02 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3192
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
lbdvs.org/iddbhle/assets/efxlp.css
200 OK 743 B URL HTTP/1.1 lbdvs.org/iddbhle/assets/efxlp.css
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type ASCII text, with CRLF line terminators
Hash 27b4ea84f2e0e4dbb2557a3da1bae844
a493c331e62f76f3cc94580c7dab96a922505a49
d27c5f1f55a18c96b761e2a0874804d828232a51ddb273133bb7d0829a425539
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/efxlp.css HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:15:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 08 Dec 2022 00:17:02 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 743
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18200
Expires: Tue, 08 Nov 2022 05:20:22 GMT
Date: Tue, 08 Nov 2022 00:17:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18200
Expires: Tue, 08 Nov 2022 05:20:22 GMT
Date: Tue, 08 Nov 2022 00:17:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18200
Expires: Tue, 08 Nov 2022 05:20:22 GMT
Date: Tue, 08 Nov 2022 00:17:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: C7GYpM3mXSf0hVyGO9Zzlxa3IHXHdyPlXsvr3i0GoQnaPZF6lO-OwA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 06:28:00 GMT
age: 64142
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc81ac79a-f46e-4270-95ba-987bb2a21858.webp
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc81ac79a-f46e-4270-95ba-987bb2a21858.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b02d208e82ce7f18bbcad23db84c13bd
fd6ae9b18a53d830c61867ef639021a2bd61ff15
d189bd1214befff7a0c39901568d93486f1c6e9ee235e5a7bc315ba6ed1e32df
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc81ac79a-f46e-4270-95ba-987bb2a21858.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7864
x-amzn-requestid: 0b7a7b57-cd8b-43a7-889a-f59c551f490e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQALMEexIAMFubQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697a47-5edc6198447f52d5598c21e6;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:36:07 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Xz3ruR-uLdn7hAsSoz2ie5wUQwLU3FwfDgGyNKH18wFn5F9U1MtuQA==
via: 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 21:39:56 GMT
age: 9426
etag: "fd6ae9b18a53d830c61867ef639021a2bd61ff15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3564993-11e9-4914-840f-9a1b924c950a.jpeg
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3564993-11e9-4914-840f-9a1b924c950a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7884b85a4b30e918a0b44f73a301a78b
f7ae1b83a0199b76dd0d31a21db4072b867e4f37
9576f9ad95c958887de953dee72b267cd0ed7293ed62fb540df76a2d49fac035
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3564993-11e9-4914-840f-9a1b924c950a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4527
x-amzn-requestid: c3be9447-c43a-48d6-9aef-c0999742886c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQA1GFN5IAMFaRw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697b53-3bb315de52dcf6114da9ad05;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:40:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _nFA59k8ERwiA6Ct_pZJs0WkFuagosyyiOkeQc1PuWMcno-Lpz4UfA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 21:42:39 GMT
etag: "f7ae1b83a0199b76dd0d31a21db4072b867e4f37"
content-type: image/jpeg
age: 9263
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd21b731d-5fcc-42b8-ba5c-4292558c1d65.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd21b731d-5fcc-42b8-ba5c-4292558c1d65.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 37802736d42529da1237e5d89e253928
6f246d25b36dc880489f3af2ae8767a0f5f2542b
b21622ee7e858a4508096480ec3ffba824e96d469b0fcfa0f6daaabad296fd40
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd21b731d-5fcc-42b8-ba5c-4292558c1d65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12165
x-amzn-requestid: 7baae03c-2e22-477c-9c14-d21a26469b47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQAvEFHdIAMF_XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697b2d-2edb1d9722872b1166a5b085;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:39:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1QlljbC_YBobvvYSxTH2jH4a4kZAK8Am-k6CNxJrLIm1TY1gbfP1gg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 21:42:40 GMT
age: 9262
etag: "6f246d25b36dc880489f3af2ae8767a0f5f2542b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02ba851a-86f3-43b7-8371-24e96a151dec.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02ba851a-86f3-43b7-8371-24e96a151dec.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 36a5fcfdd58558031f15af5d13ebe21f
8bb15829bec5bbded9b864e73d8fbf1059cd4afc
544bb499e28cc9d1e0bffccacf74411bbe7186959d9f1ba54edbd167935b9055
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02ba851a-86f3-43b7-8371-24e96a151dec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7442
x-amzn-requestid: f8fedc67-c5ed-41b5-a384-6d45596197fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bKusfEbxoAMF67Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63675e4f-1459fdf653f4ee6f3dda084f;Sampled=0
x-amzn-remapped-date: Sun, 06 Nov 2022 07:12:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8Sq8nD9sNRWeMedFxLrUEnILqEPv0Fr09OAkze6_Polg99dAXI4eiw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 07:45:01 GMT
age: 59521
etag: "8bb15829bec5bbded9b864e73d8fbf1059cd4afc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92bcf73f-5c71-47c9-824d-b8fa1f9af018.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92bcf73f-5c71-47c9-824d-b8fa1f9af018.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ff4c1be0934222258267f7595f2ecde
5d51855ed7cc6f8cac53eef1730212eb70b28036
49ce70117f2b108ebcff7f8e0ac14b2583eaf6b36a10baff097b35b728ba44d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92bcf73f-5c71-47c9-824d-b8fa1f9af018.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10781
x-amzn-requestid: c5063271-8b84-41d7-899c-958c135541c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQAwTF2cIAMF0DQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697b34-6b6018d826efae3e3738a7d9;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:40:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yfT-BN4Codmr6J5v6xIIIpOG5EaHI1xnOqineRxdeQ3VJ_MmujMZew==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 21:42:38 GMT
age: 9264
etag: "5d51855ed7cc6f8cac53eef1730212eb70b28036"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lbdvs.org/iddbhle/scripts/intlTelInput_localf9e3.js?v=1.1
200 OK 8.4 kB URL HTTP/1.1 lbdvs.org/iddbhle/scripts/intlTelInput_localf9e3.js?v=1.1
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type Unicode text, UTF-8 text, with very long lines (18823), with no line terminators
Hash 60088b31a3a3a8bc4bb3b285138e32ae
8f51a62ce4aceb0f683cfbc8f4c89de208c769d9
87d26a0d793193984f2bd80298c0cdffaf0e71858126d8d6c7c29d4aeb649a05
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /iddbhle/scripts/intlTelInput_localf9e3.js?v=1.1 HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:17:17 GMT
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Thu, 10 Nov 2022 00:17:02 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8412
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
lbdvs.org/iddbhle/assets/style.css
200 OK 40 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/style.css
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5a2eb0714637b2f3465666c1165ec0c1
e75a5eeb70a52b5171986b78baf09daf3117f2b3
d0fb2b8078fd4f90fd83622f1c21ac28023bf534ee768cdbfd709782f8d3fc1d
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/style.css HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:17:03 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 08 Dec 2022 00:17:02 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
lbdvs.org/iddbhle/assets/main-4cc2d8d5f1.css
200 OK 42 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/main-4cc2d8d5f1.css
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type ASCII text, with very long lines (57441), with CRLF line terminators
Hash d6222d27081df0b1688472459461959a
7232a777e50905decefa658d40fc0b66ae3780f8
7b835d0b5df31d0e102f73fdbb854e46a9841266e93b8a3815b4495c3cb37e88
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/main-4cc2d8d5f1.css HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:15:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 08 Dec 2022 00:17:02 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 42211
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
lbdvs.org/iddbhle/assets/style1.css
200 OK 54 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/style1.css
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type ASCII text, with very long lines (17052), with CRLF line terminators
Hash 8ca8f2c80e20efe84a2027547dc4cf6d
9d6d94e609afb3da9ba28add0530e42063badda8
e073058e2a41596d6c24e374e519e7a971a8eff7dd368392b4c0e0d097298c8b
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/style1.css HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:17:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 08 Dec 2022 00:17:02 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
lbdvs.org/iddbhle/scripts/jphonefd29.js?v=3.5
200 OK 435 B URL HTTP/1.1 lbdvs.org/iddbhle/scripts/jphonefd29.js?v=3.5
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type CSV text\012- , ASCII text, with CRLF line terminators
Hash a4f1882825ed07c41c098e806a9f733b
e33b05e45ebd094904bfc8eb1e2eba7077c52452
7bc2a176e464664b5a04e4df7d99f3d0a6b60a5429d2ad8b77e478740e614d5d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /iddbhle/scripts/jphonefd29.js?v=3.5 HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:17:18 GMT
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Thu, 10 Nov 2022 00:17:02 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 435
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
lbdvs.org/iddbhle/scripts/jquery.min.js
200 OK 30 kB URL HTTP/1.1 lbdvs.org/iddbhle/scripts/jquery.min.js
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type ASCII text, with very long lines (32065), with CRLF line terminators
Hash fb6d7a7eb1d6c06d314ed0c63c7295ea
7d9d354b1d37909a3588cfe4eb3f290769e99e72
980c97264fdc547205cf436cbf77f12af6d924543f662b2d8ff6230aafda195b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /iddbhle/scripts/jquery.min.js HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:17:21 GMT
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Thu, 10 Nov 2022 00:17:02 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 29830
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
lbdvs.org/iddbhle/scripts/appeef3.js?v=0.3
200 OK 202 B URL HTTP/1.1 lbdvs.org/iddbhle/scripts/appeef3.js?v=0.3
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type ASCII text, with very long lines (309), with no line terminators
Hash f2b2f27bcf48b50efb8985e7699dad36
759f5c9550d9b70e7d37439e57ade4ffbaac8528
6613b181fc8d340b86fbd5ec4d9d6e6db89ea1d295f2b12251d1e79b37563868
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /iddbhle/scripts/appeef3.js?v=0.3 HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:17:16 GMT
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Thu, 10 Nov 2022 00:17:02 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 202
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
lbdvs.org/iddbhle/scripts/utilsf9e3.js?v=1.1
200 OK 48 kB URL HTTP/1.1 lbdvs.org/iddbhle/scripts/utilsf9e3.js?v=1.1
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type ASCII text, with very long lines (62670), with CRLF line terminators
Hash 0906cfc8513767b8d39683de1943b3cd
11c3f5a64099b5bd4241a3177aa876b1be581bcb
4d65c64974af9487a2999f3b6c15524445323df8302320583856e2e8d26ce14d
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/scripts/utilsf9e3.js?v=1.1 HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:17:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Thu, 10 Nov 2022 00:17:02 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 48069
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
lbdvs.org/iddbhle/assets/brand-logo-57502e4ec6.svg
200 OK 349 B URL HTTP/1.1 lbdvs.org/iddbhle/assets/brand-logo-57502e4ec6.svg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 217f9159058457ba5d6ea9ea197f3473
82f7ff2e34d65a5ca5f9df2d1b1994449efbe779
0c82777723a484f13a8c7871518dc4b2e1099316c0a0b5721aabfd235317668e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /iddbhle/assets/brand-logo-57502e4ec6.svg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbdvs.org/iddbhle/assets/main-4cc2d8d5f1.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:15:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Thu, 10 Nov 2022 00:17:02 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 349
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
lbdvs.org/iddbhle/assets/withdraw.png
200 OK 103 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/withdraw.png
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type PNG image data, 582 x 265, 8-bit/color RGBA, non-interlaced\012- data
Size 103 kB (102924 bytes)
Hash d46264c8fac614cb6791ee72015c66d0
de37c0ae95d5422654e37d116c2d251d17a55d5d
09819381dad8c804d4667d74fce81e1131985af1b49b262578a1c861eee33e4b
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/withdraw.png HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:17:10 GMT
Accept-Ranges: bytes
Content-Length: 102924
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:02 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
lbdvs.org/iddbhle/assets/bitcoin_prime_bill.jpg
200 OK 22 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/bitcoin_prime_bill.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=Adobe Photoshop CS6 Windows, datetime=2021-10-13T10:46:54+05:30], baseline, precision 8, 800x500, components 3\012- data
Hash 4ddd3f6b9439362dbe3cc5612a810e86
44606532dff609b3ee8b807c0b872de4d8a9e26a
0b3b51152d01510885e13f555b29fd33148b034485b87d3941ba2c8559aef9d9
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/bitcoin_prime_bill.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:14:49 GMT
Accept-Ranges: bytes
Content-Length: 21496
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:02 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/bitcoin_prime_img1.jpg
200 OK 87 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/bitcoin_prime_img1.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=Adobe Photoshop CS6 Windows, datetime=2021-10-13T10:47:01+05:30], baseline, precision 8, 1920x1080, components 3\012- data
Hash e68589e0f88a27c487ed82c4cf4b4203
5a23963f26678e3be7dcfd8f6b9fdd703561a20e
a2f48505f64aade38fd13d12667777586528e5ff712caa658cdc8992529bf0fc
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/bitcoin_prime_img1.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:14:51 GMT
Accept-Ranges: bytes
Content-Length: 86928
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/a_034.jpg
200 OK 3.0 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/a_034.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 115x86, components 3\012- data
Hash f238476f5e8a89efa7924ae38a302407
fa0db734537bfd0b81641cfec7ea90fd2b92aaf0
a424e17360619e0f3182f14485e2d86fbdcbadc89421da12d03dce1df435fb90
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/a_034.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:12:00 GMT
Accept-Ranges: bytes
Content-Length: 3026
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/quantumaileadform.jpg
200 OK 56 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/quantumaileadform.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 570x498, components 3\012- data
Hash 5d358910586d59129a239537fcfe4e34
3d92174cdb06ab847cdc15a32be1d71df335b551
cd49a3ed59f141219b8666318c0b7fb6b3e4a3e1e8163269734728924049c1e8
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/quantumaileadform.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:15:30 GMT
Accept-Ranges: bytes
Content-Length: 55891
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:02 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/side.png
200 OK 2.5 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/side.png
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type PNG image data, 310 x 93, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d25ba639b633654bb86a3fd75d8d755
7d1c118322ac6e125e471a718afdb4ad0c26dbed
dbdab68d4a3b806eefde55da7588c5517341f88e900b9e81b8c37a9510c62c52
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/side.png HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:16:51 GMT
Accept-Ranges: bytes
Content-Length: 2454
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:02 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
lbdvs.org/iddbhle/assets/a_033.jpg
200 OK 3.2 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/a_033.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 115x86, components 3\012- data
Hash b6aade277d538f6d6587d821a4bd8e55
09d0b0dc73dfc1f5d9aaaa68aed21971edf7d2ce
49491aabb9472551ae57602899208aabc137bc3a28a5b8b26ca1e346d3d504b5
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/a_033.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:11:58 GMT
Accept-Ranges: bytes
Content-Length: 3172
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/a_089.jpg
200 OK 3.2 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/a_089.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 72x72, segment length 16, progressive, precision 8, 115x86, components 3\012- data
Hash 2166699e9b92ec17721fe71b26b246f9
8a985f515024f81be82a40a54b6329076ec4bee7
f4e1261228cb85e9989f585bce6f78e7652275fc30ade3348df5bbab6a59ab2a
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/a_089.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:14:29 GMT
Accept-Ranges: bytes
Content-Length: 3214
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/a_088.jpg
200 OK 2.9 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/a_088.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 115x86, components 3\012- data
Hash 16b2e304143557ab85d62766adb4e6e1
ad7a7a415c5317f17d11eeff201710972ef5d985
f113e341317bc1277684e65e75124a70cf7d32b3f8dc2e0ffa046b1db3ad0208
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/a_088.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:14:27 GMT
Accept-Ranges: bytes
Content-Length: 2915
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/a_005.jpg
200 OK 2.7 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/a_005.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 115x86, components 3\012- data
Hash e85e8fbda4e9db1eba0c2950c0067d8e
4ac08ea7cfac9ba3c3e4d51f8f5636292a47fb55
27060b437454623d53c4bd03adbe4fa90f39ec02fd06bc6e209455d3a73de6a4
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/a_005.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:10:57 GMT
Accept-Ranges: bytes
Content-Length: 2713
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/bitcoin_prime_img3.jpg
200 OK 99 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/bitcoin_prime_img3.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=720, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=1280], baseline, precision 8, 1280x720, components 3\012- data
Hash f6b9aeb00efa84f7bb133d714679e863
a7dd3e43cbefd9834bec3de2a86a4e9d0de36278
4f5448cb8c08b335372fc5885cde03d6b63c99b5e05308ddc475250e72df5177
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/bitcoin_prime_img3.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:14:58 GMT
Accept-Ranges: bytes
Content-Length: 99003
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/a_053.jpg
200 OK 2.8 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/a_053.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 115x86, components 3\012- data
Hash f9c5b7f4f929fa058749b6f858bdbf0c
3c122e78b2d80488ca3d670818cec5430926ae7b
7649c981d8ffd5daafac2eff7deddc511079a42510eaec1ceaf52b4543027cc4
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/a_053.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:12:56 GMT
Accept-Ranges: bytes
Content-Length: 2775
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/a_084.jpg
200 OK 2.3 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/a_084.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 115x86, components 3\012- data
Hash 743098ea449f73dc85ce22e9676db7fb
4a302070039709e754311250a597b310bd129309
73f8d0882bf7a3a1b9076b08919f2040b1e44ee8dc569373301d6e353f533dbb
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/a_084.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:14:20 GMT
Accept-Ranges: bytes
Content-Length: 2311
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/a_085.jpg
200 OK 1.7 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/a_085.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 115x86, components 3\012- data
Hash 5854a691a6ba5ede03cf5350e340649c
acfbe4483945baa7bba971a9eb67e35e7eb42f61
dba553311431dd3802829e266f543c6d276905bc2a7e49f1a988857784655d20
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/a_085.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:14:22 GMT
Accept-Ranges: bytes
Content-Length: 1695
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/a_093.jpg
200 OK 3.3 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/a_093.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 115x86, components 3\012- data
Hash 3d03212b15e3c16234fe80811eba2861
ccb3de5680acf809daaee0c96d0ef21d6acedf06
f561d4eddfe55c079d57c58c26310461761495bd7102e6506fb6b1c000f1b668
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/a_093.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:14:35 GMT
Accept-Ranges: bytes
Content-Length: 3272
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/a_032.jpg
200 OK 3.1 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/a_032.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 115x86, components 3\012- data
Hash 2fa70cd4daa4b5a9c4518b91c31f3b3d
f636b0539c1d34820ada74c0a0c47a930bba3825
d54df4f5d110db2150020d9b10424f43489176cb1de81fce1e9550cfb7152d42
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/a_032.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:11:55 GMT
Accept-Ranges: bytes
Content-Length: 3091
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/assets/bitcoin_prime_img2.jpg
200 OK 453 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/bitcoin_prime_img2.jpg
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1199x675, components 3\012- data
Size 453 kB (452577 bytes)
Hash 877801ab31c1f078f4c7d1cac808cd11
18de126a8e27766fcd38779c06030ecad83331a2
49e7aec0f62260eaf01c37244aeba178d4df2f34c124e715921fd5bf1277f95b
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/bitcoin_prime_img2.jpg HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:02 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:14:56 GMT
Accept-Ranges: bytes
Content-Length: 452577
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:02 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
lbdvs.org/iddbhle/ipgeo.php
200 OK 104 B URL HTTP/1.1 lbdvs.org/iddbhle/ipgeo.php
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type JSON data\012- , ASCII text, with no line terminators
Hash d4c8704e3219463788ff819f769ce677
328939f40c818c468ae8619c4ba5d330071a29f3
a5b1b96181840358805015e1d5998718bdda77c68bb4e951f2b4120199ffa812
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /iddbhle/ipgeo.php HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://lbdvs.org
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Cache-Control: max-age=172800
Expires: Thu, 10 Nov 2022 00:17:03 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 104
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
lbdvs.org/iddbhle/assets/favicon-6252d997a1.png
200 OK 2.0 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/favicon-6252d997a1.png
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 6252d997a14cd24a117ee8ce44e01cf0
e103ac08a94103ee6266a185e77f99426cb749c8
7361c3c3ac3b252db53331d8bcf4cea57c006b4744827e3e114d9d4296bc1748
Analyzer Verdict Alert quad9 Sinkholed
GET /iddbhle/assets/favicon-6252d997a1.png HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:04 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:15:12 GMT
Accept-Ranges: bytes
Content-Length: 1974
Cache-Control: max-age=31536000
Expires: Wed, 08 Nov 2023 00:17:04 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
lbdvs.org/iddbhle/assets/FlamaSemicond-Black-6cf7d54458.woff2
200 OK 15 kB URL HTTP/1.1 lbdvs.org/iddbhle/assets/FlamaSemicond-Black-6cf7d54458.woff2
IP
ASN #56110 Everdata Technologies Pvt Ltd
File type Web Open Font Format (Version 2), CFF, length 35816, version 1.0\012- data
Hash efe5627dde45c35c39ce1d14310c3b63
c38d11c0f6b15ab12733f4a967d1bfea13cabc6d
74b798dac45d93aed363f66eacb00f1a360f0c5932b8730634f5f1ef6cd6e9f2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /iddbhle/assets/FlamaSemicond-Black-6cf7d54458.woff2 HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://lbdvs.org
Connection: keep-alive
Referer: https://lbdvs.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:15:15 GMT
Accept-Ranges: bytes
Content-Length: 35816
Cache-Control: max-age=172800
Expires: Thu, 10 Nov 2022 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
lbdvs.org/iddbhle/assets/Flama-Basic-38a942a4fb.woff2
200 OK 0 B URL HTTP/1.1 lbdvs.org/iddbhle/assets/Flama-Basic-38a942a4fb.woff2
IP
ASN #56110 Everdata Technologies Pvt Ltd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /iddbhle/assets/Flama-Basic-38a942a4fb.woff2 HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://lbdvs.org
Connection: keep-alive
Referer: https://lbdvs.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:15:13 GMT
Accept-Ranges: bytes
Content-Length: 33528
Cache-Control: max-age=172800
Expires: Thu, 10 Nov 2022 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
lbdvs.org/iddbhle/assets/FlamaSemicond-Bold-8199bf9ba9.woff2
200 OK 0 B URL HTTP/1.1 lbdvs.org/iddbhle/assets/FlamaSemicond-Bold-8199bf9ba9.woff2
IP
ASN #56110 Everdata Technologies Pvt Ltd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /iddbhle/assets/FlamaSemicond-Bold-8199bf9ba9.woff2 HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://lbdvs.org
Connection: keep-alive
Referer: https://lbdvs.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
Last-Modified: Sun, 23 Oct 2022 19:15:16 GMT
Accept-Ranges: bytes
Content-Length: 35656
Cache-Control: max-age=172800
Expires: Thu, 10 Nov 2022 00:17:03 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
cdn.plusheroes.com/v1/lib.min.js
530 No Reason Phrase 0 B URL HTTP/2 cdn.plusheroes.com/v1/lib.min.js
IP
GET /v1/lib.min.js HTTP/1.1
Host: cdn.plusheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 530 No Reason Phrase
date: Tue, 08 Nov 2022 00:17:02 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cf-ray: 766a1f93fb8db4ee-OSL
server: cloudflare
X-Firefox-Spdy: h2
cdn.plusheroes.com/v1/lib.min.js
530 No Reason Phrase 0 B URL HTTP/2 cdn.plusheroes.com/v1/lib.min.js
IP
GET /v1/lib.min.js HTTP/1.1
Host: cdn.plusheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lbdvs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 530 No Reason Phrase
date: Tue, 08 Nov 2022 00:17:02 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cf-ray: 766a1f977d8db4ee-OSL
server: cloudflare
X-Firefox-Spdy: h2
lbdvs.org/iddbhle/fonts/FlamaPro-Basic-91c9c285f4.woff
404 Not Found 0 B URL HTTP/1.1 lbdvs.org/iddbhle/fonts/FlamaPro-Basic-91c9c285f4.woff
IP
ASN #56110 Everdata Technologies Pvt Ltd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /iddbhle/fonts/FlamaPro-Basic-91c9c285f4.woff HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://lbdvs.org
Connection: keep-alive
Referer: https://lbdvs.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://lbdvs.org/wp-json/>; rel="https://api.w.org/"
Set-Cookie: aiovg_rand_seed=2777891995; expires=Wed, 09-Nov-2022 00:17:05 GMT; Max-Age=86400; path=/
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
lbdvs.org/iddbhle/fonts/FlamaProSemicond-Black-dfaca22687.woff
404 Not Found 0 B URL HTTP/1.1 lbdvs.org/iddbhle/fonts/FlamaProSemicond-Black-dfaca22687.woff
IP
ASN #56110 Everdata Technologies Pvt Ltd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /iddbhle/fonts/FlamaProSemicond-Black-dfaca22687.woff HTTP/1.1
Host: lbdvs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://lbdvs.org
Connection: keep-alive
Referer: https://lbdvs.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Tue, 08 Nov 2022 00:17:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://lbdvs.org/wp-json/>; rel="https://api.w.org/"
Set-Cookie: aiovg_rand_seed=4202762608; expires=Wed, 09-Nov-2022 00:17:05 GMT; Max-Age=86400; path=/
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
202.0.103.100
104.21.85.246
23.36.76.226
34.117.237.239
93.184.220.29