r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 30c30d01178fc74ac5266ee64c3ee85b
c0c2af8a864c00aa85a8775d55f85ab107150a3b
c15644f69fbfeb99074c7e9711dfc9452ee164fa78eb981b6bae4fb7e3585f2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C15644F69FBFEB99074C7E9711DFC9452EE164FA78EB981B6BAE4FB7E3585F2A"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12064
Expires: Fri, 18 Nov 2022 10:02:05 GMT
Date: Fri, 18 Nov 2022 06:41:01 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash be1be806b5dca7facbb45a6c3db44652
7ae9380a2f3eca959fe6ff6b3832a17cffd12cf4
1f3338058f8e9cae5c9fdd733c74564312726b01c6efdcd628d851d0c99876b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4824
Cache-Control: max-age=105046
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:01 GMT
Etag: "63760d7b-1d7"
Expires: Sat, 19 Nov 2022 11:51:47 GMT
Last-Modified: Thu, 17 Nov 2022 10:31:23 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15734
Expires: Fri, 18 Nov 2022 11:03:15 GMT
Date: Fri, 18 Nov 2022 06:41:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 05:44:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3375
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: li0Ou2IWZP5TqIe5VTxpBrzZ4TDTuy2Gmk3ZMiMpE4nFNPY/YAdeqBp7ZOwPeKPMQA8+A12v3cw=
x-amz-request-id: S4JQDV5TFVBTEAVT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 06:15:29 GMT
age: 1532
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 06:41:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.9.0/slick.min.css
104.17.24.14200 OK 394 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.9.0/slick.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (1327)
Hash 50d05d35119a9bd8cf777402bb4789a0
fd03f42f191f21580b72dc3e474e9b7503a82555
a8daf82dae80ef2b347046c449acf73de160cc273a70cb74ed4cb71597a69bfc
GET /ajax/libs/slick-carousel/1.9.0/slick.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mplpuritytesting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:41:01 GMT
content-type: text/css; charset=utf-8
content-length: 394
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fd5-559"
last-modified: Mon, 04 May 2020 16:16:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2556856
expires: Wed, 08 Nov 2023 06:41:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L3SVZgMODeKHeB6jaErHDDMR35ygnjNDfc6VKbnuvSQi%2F6PRgf06UZiKiF3krcMALtAAqwZntIFk4WGSf8MUTFJhsVdPL4FtUTkFrRNs5coqqEvZElWgVpDB5f0KZKnB9kR97Xqx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76beb7d34e96b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.9.0/slick-theme.min.css
104.17.24.14200 OK 657 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.9.0/slick-theme.min.css
IP 104.17.24.14:0
File type Unicode text, UTF-8 text, with very long lines (2332)
Hash fd6ea20505bda56b5e5dc52377385e34
2ea20bfa73d60ccbac3fae7c731c48cbdba4fa5d
b51b3aae99c2bb2b2b32b51d9df350de73b3992bb126339bfa8ab1407cfc881c
GET /ajax/libs/slick-carousel/1.9.0/slick-theme.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mplpuritytesting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:41:01 GMT
content-type: text/css; charset=utf-8
content-length: 657
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fd5-956"
last-modified: Mon, 04 May 2020 16:16:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 135486
expires: Wed, 08 Nov 2023 06:41:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qvYhC3N7Rh63bCumxtMsn0KxjQEf64LEjCFIaE7haBID0SX0kIpWba0BCiy69SGaM3bNQxhyIwTE9ZWinkHMZDV2UjDh1IpxH9yWgdkuqwWd4I%2FrJiXBIB6BXyLb8t3c3m6h7KtI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76beb7d35ea2b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-207890440-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-207890440-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 47cd3a311f00ac05803f637199db6141
9a48d69c88e890eaef9ef40ef99b2ed438aa2063
f581db8eb0f6ee4526296792f66ece7a36a874f832ae75169c0fdbf2e030748d
GET /gtag/js?id=UA-207890440-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mplpuritytesting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Nov 2022 06:41:02 GMT
expires: Fri, 18 Nov 2022 06:41:02 GMT
cache-control: private, max-age=900
last-modified: Fri, 18 Nov 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43679
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mplpuritytesting.com/css/font-awesome.min.css
216.10.248.111200 OK 7.1 kB URL HTTP/1.1 mplpuritytesting.com/css/font-awesome.min.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (30861)
Hash 5035fadc46ccb6830038f796315f1c5d
6a411c58194159cb76b34bbab796f23371716a31
c7dc9cc6cd68208b505c17295512889ae0a77aeb1e9989b2ec2076456f3d7291
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/font-awesome.min.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7121
Keep-Alive: timeout=5, max=75
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mplpuritytesting.com/
216.10.248.111200 OK 13 kB IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2134), with CRLF line terminators
Hash 1a2b90051e54ea2311f602cbffde0000
be514250342d594369793057e0aecab2cf64f500
cb29e9ccf5259fbf6efe38f9194190f4e81cbc563aa86dfb093d92fd929cbe24
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13402
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 05:44:49 GMT
cache-control: public,max-age=3600
age: 3373
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c10055ce87434f700ff8b20e3be1f919
477b3c9f1da0c464282bb54572737e76b6e346da
4d78eb296876122e5ff40fcd7667adf1bf8a4b1ee4c8203c88a63ce8d7910a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3115
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Last-Modified: Fri, 18 Nov 2022 05:49:07 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
mplpuritytesting.com/vendors/flat-icon/flaticon.css
216.10.248.111200 OK 464 B URL HTTP/1.1 mplpuritytesting.com/vendors/flat-icon/flaticon.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 82739f8e363d42e0ef26d2b7dd38e4ed
6f0d91f950083277cff0f1419543884e7cc101e6
39cd8c67c0d49072863323b07b79bc75956237047382973eb90297cd4f643616
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/flat-icon/flaticon.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 464
Keep-Alive: timeout=5, max=75
Content-Type: text/css
mplpuritytesting.com/vendors/revolution/css/settings.css
216.10.248.111200 OK 9.1 kB URL HTTP/1.1 mplpuritytesting.com/vendors/revolution/css/settings.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (29278), with CRLF line terminators
Hash b1e060375b51788a75c3c2a8d5bcefd2
4aa11ae50bb14adbb3bc6fda840afcd42de2d538
ff70764c15770ab93c158ca5d19841e908e1b51716b570b3b5deb9b9788cf25a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/revolution/css/settings.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9089
Keep-Alive: timeout=5, max=75
Content-Type: text/css
mplpuritytesting.com/vendors/linearicons/style.css
216.10.248.111200 OK 1.6 kB URL HTTP/1.1 mplpuritytesting.com/vendors/linearicons/style.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash a92661342b41e9f0059a69c69b4f1156
a3c996f0de892b10f2753949b7b2aa61ec94caf9
76d13128c12ad524b37585db197bd787302ad3ef4bb9082a5ac1815a1ad1970d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/linearicons/style.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1616
Keep-Alive: timeout=5, max=75
Content-Type: text/css
mplpuritytesting.com/vendors/revolution/css/layers.css
216.10.248.111200 OK 20 kB URL HTTP/1.1 mplpuritytesting.com/vendors/revolution/css/layers.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 0af0fcf8226227d2b960f4f13edeccff
aed42ca574d23836cd40b657fa50388504cd4d5a
f27e679c74c9e3d1136441968a5e07a6d26c7416187fc4b67d999be61b0be817
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/revolution/css/layers.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
mplpuritytesting.com/vendors/animate-css/animate.css
216.10.248.111200 OK 7.1 kB URL HTTP/1.1 mplpuritytesting.com/vendors/animate-css/animate.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 2e3e181ba09aeef1598179afb032952b
0628d62595a6ba3ebcd6140bbaad6e171bd82240
a6ba0f79e8f4e59774bbd380cbfa624208b960c7cb11a8d76bc4f9b8566a8c1c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/animate-css/animate.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7114
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
mplpuritytesting.com/vendors/owl-carousel/owl.carousel.min.css
216.10.248.111200 OK 971 B URL HTTP/1.1 mplpuritytesting.com/vendors/owl-carousel/owl.carousel.min.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2847)
Hash 6defccb5cf691de80ff78eface00011c
06a6a148ef6e90dbdd0d769e117cb04d247f4ff0
c92b73e2a6407e0cedae60f7bf2dc10f73df1621b624cfa88bd9a6f0cd55c3dc
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/owl-carousel/owl.carousel.min.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 971
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
mplpuritytesting.com/vendors/magnifc-popup/magnific-popup.css
216.10.248.111200 OK 2.2 kB URL HTTP/1.1 mplpuritytesting.com/vendors/magnifc-popup/magnific-popup.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 5691b07253c4a30382130c2da4be8343
4c12d34016c7061965c996599c4086683958e0f1
095326e797678e4aa4be8217bf991180f7b79cdcce552897123ffa68981a0747
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/magnifc-popup/magnific-popup.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2190
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
mplpuritytesting.com/css/bootstrap.min.css
216.10.248.111200 OK 32 kB URL HTTP/1.1 mplpuritytesting.com/css/bootstrap.min.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (65325)
Hash b15ea99facb10c090c3766543bfdab45
60e0218946b91a20e12f17586363d78b3ae29ec6
5e59453ae6be16c892f899834d8eaa27fb45a099712294302c71eb00629eaad9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/bootstrap.min.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
mplpuritytesting.com/vendors/nice-select/css/nice-select.css
216.10.248.111200 OK 1.3 kB URL HTTP/1.1 mplpuritytesting.com/vendors/nice-select/css/nice-select.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash cdbbfcd68b6c121ac6dc87ff5762ba56
9e953f8ef38f4d194a9424e46c6603e59612bcb2
50873d394f0ca8ac4ba1dc0d2881db7f02679dc44cecfbb7c0827e5064ce441a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/nice-select/css/nice-select.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1268
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
mplpuritytesting.com/vendors/revolution/css/navigation.css
216.10.248.111200 OK 18 kB URL HTTP/1.1 mplpuritytesting.com/vendors/revolution/css/navigation.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 8d20a0793c390cd79e01e76b2aac65c5
89c55833c1f24336be89b19ed80b2272eb858c53
dddd4aa5772d53aaf65331359945c4dff16fe09c577a52bcf05ac048bcd74b51
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/revolution/css/navigation.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
push.services.mozilla.com/
54.187.71.185101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.71.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LuN6FhoJFnO08ypKq5o3SQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: o9Dofbd12OraPGdgjN/ZBmKEABo=
mplpuritytesting.com/css/responsive.css
216.10.248.111200 OK 5.4 kB URL HTTP/1.1 mplpuritytesting.com/css/responsive.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (19535), with no line terminators
Hash 92844682f198f5669613d93110f65fe8
815e087421df769d6e0653a163b4e93bd1c83c14
333db201a2f3253e3f635ebde8e3d5d520c4d7c318cc5b10073f16b319e2695f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/responsive.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5392
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
mplpuritytesting.com/css/new-style.css
216.10.248.111200 OK 290 B URL HTTP/1.1 mplpuritytesting.com/css/new-style.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 7f31259d4c686dea75499023fef76a9e
4113d937af229be17969d5f8aad1899b93af0f38
5790caabbfff5c9ff3387488e168042c40dc77acad715994f4ae2af900e6b77f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/new-style.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 290
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
mplpuritytesting.com/js/jquery-3.2.1.min.js
216.10.248.111200 OK 38 kB URL HTTP/1.1 mplpuritytesting.com/js/jquery-3.2.1.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32058)
Hash 158ed1f63711a0812b7c2b396cbaa6e7
1a6fe374f9c4963adc88db33dd128d324fceb9f2
811e8097bc41bb848b417ed7626ec9f8f8d8b682c664f8f2890ed4b57371e60b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery-3.2.1.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
mplpuritytesting.com/js/popper.min.js
216.10.248.111200 OK 8.2 kB URL HTTP/1.1 mplpuritytesting.com/js/popper.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (19015)
Hash 65bb6603cd02f2ddaee7aceb4ad45900
8b6cb6f6adfbd115b96b929ff1c7e863ebe08ad1
e57fefa45f83431baee371ea4eb76883c1425343ea79883bef37f2050ec0af64
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/popper.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8178
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
mplpuritytesting.com/css/new-custom.css
216.10.248.111200 OK 40 kB URL HTTP/1.1 mplpuritytesting.com/css/new-custom.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (65536), with no line terminators
Hash e29e2b1e38ec879ae0554c244335d0ce
0f31608151da5721f7b7b0a00dcc14882f3fb6f4
e4dcb8e410e98692e22537814e82a92cacdd70ecbaa55828946aaa03b33f12d2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/new-custom.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
mplpuritytesting.com/css/style.css
216.10.248.111200 OK 28 kB URL HTTP/1.1 mplpuritytesting.com/css/style.css
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (65536), with no line terminators
Hash fdc67254fb7bab5bd42353c97ba09474
cdf81768d61c98583efcaedca5ee7c4a8b080917
6872f06930dad716064fa6ec523b09dda5ddd7f2a20a61527e966a3c4f554be5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/style.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
mplpuritytesting.com/js/bootstrap.min.js
216.10.248.111200 OK 20 kB URL HTTP/1.1 mplpuritytesting.com/js/bootstrap.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (48664)
Hash 41c54b1bd6691f6bb34afdc5e4272b52
b4333fd2b2c3ba7b2c38af182b3daf4231d69df8
43d6b75b97bf0636c69ea8c48e16dafefe3c602428b22fb4f11384eae7234b2d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/bootstrap.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.revolution.min.js
216.10.248.111200 OK 23 kB URL HTTP/1.1 mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.revolution.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32108), with CRLF line terminators
Hash 2c9aa1ca316dec68533965df66496b34
9d913b7a37d742af5abc8d2d81d26d9fa4050664
50531a63547b561cc142aa5877eefba3d3f4b8605e4525f69e1517b7097d00d9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/revolution/js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.actions.min.js
216.10.248.111200 OK 3.1 kB URL HTTP/1.1 mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.actions.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (8665), with CRLF line terminators
Hash b511a285a0885b6b51f601f2d6aaefd5
6a1bcb7f28971e485f9dd53222dca8b87f06d188
c35c7b9ee2e92488aa0f2f57dc00d7b5e7ef4b9fd329c31a895d3d5c6b15d1dd
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/revolution/js/extensions/revolution.extension.actions.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3085
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Lora:400,400i,700|Montserrat:300,400,500,600,700|Open+Sans:300,400,400i,600,600i,700|Playfair+Display:400,400i,700,900|Lato
142.250.74.10200 OK 2.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Lora:400,400i,700|Montserrat:300,400,500,600,700|Open+Sans:300,400,400i,600,600i,700|Playfair+Display:400,400i,700,900|Lato
IP 142.250.74.10:0
Hash 2a070831d71d937b1b54cf5ddf4be318
0ee1608d09759f48aa95f3cb5f063963753c4544
08ca6e0b9f213b8e6886925f45b3b27e84e7b18c577253a9954f4196d408d382
GET /css?family=Lora:400,400i,700|Montserrat:300,400,500,600,700|Open+Sans:300,400,400i,600,600i,700|Playfair+Display:400,400i,700,900|Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mplpuritytesting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 06:41:02 GMT
date: Fri, 18 Nov 2022 06:41:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.video.min.js
216.10.248.111200 OK 8.7 kB URL HTTP/1.1 mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.video.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (23621), with CRLF line terminators
Hash ccb67b3bf69d2afe8d073fc9d63a409f
99cce8b3d1c137da24c780e11d3f987f015a8e31
bbe713f6fb462b3896e27cbebea8271f1e78dfc54ce375673a66de1105d6f47d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/revolution/js/extensions/revolution.extension.video.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8742
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.layeranimation.min.js
216.10.248.111200 OK 17 kB URL HTTP/1.1 mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.layeranimation.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32005), with CRLF line terminators
Hash ed89d39c792ecba16442d9e325a3bbde
a0ed70bcba7bc08e591efd1bb60127995e2013ca
9e084b0d7376eabdeb14f74a7d36304f0ae9f6078b42376d288749538679552c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/revolution/js/extensions/revolution.extension.layeranimation.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16571
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.slideanims.min.js
216.10.248.111200 OK 8.3 kB URL HTTP/1.1 mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.slideanims.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (28168), with CRLF line terminators
Hash 6b1880b6836107f72a1206d22473388c
bcf4f935fc12470bb85c19ad345292d2d5d4d25a
e3fd7b116d4e64df781e04eadbfbf9acead3dcfe14a9165b352e6a65c843fb4d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/revolution/js/extensions/revolution.extension.slideanims.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8251
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.navigation.min.js
216.10.248.111200 OK 9.0 kB URL HTTP/1.1 mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.navigation.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (25832), with CRLF line terminators
Hash 63652e4591ee90c2b9613f0048f47de5
95ee8a968328dfa6a0651ce3c0e3c765c800f41e
f8a981fc822f2b57e4d998f36316219808bd5609f50a5a1369d9367c05cff034
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/revolution/js/extensions/revolution.extension.navigation.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8965
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
mplpuritytesting.com/vendors/owl-carousel/owl.carousel.min.js
216.10.248.111200 OK 15 kB URL HTTP/1.1 mplpuritytesting.com/vendors/owl-carousel/owl.carousel.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32000)
Hash f3be1764bc1ce2c0562ba864362b834b
5b5d080b0b33dc04bcb52e7cb766ff5e814fcdc9
72c97e2253c5617d7a9f872a8cdca78389d604739d67334aa32acfeaef396559
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/owl-carousel/owl.carousel.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15325
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mplpuritytesting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 05:42:51 GMT
expires: Fri, 17 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 89891
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mplpuritytesting.com/vendors/magnifc-popup/jquery.magnific-popup.min.js
216.10.248.111200 OK 9.2 kB URL HTTP/1.1 mplpuritytesting.com/vendors/magnifc-popup/jquery.magnific-popup.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (20087)
Hash 7a10ae63b238729dc4da7f7bd8986219
654c47168dca0ec7080f6c57e8c4482b57f879d4
b782185399b361358f7c409d6f23f22d45f695dcbb63876c35752c7b1de72db3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/magnifc-popup/jquery.magnific-popup.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9204
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.195200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mplpuritytesting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Nov 2022 18:59:14 GMT
expires: Tue, 14 Nov 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 301309
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mplpuritytesting.com/vendors/datetime-picker/js/moment.min.js
216.10.248.111200 OK 20 kB URL HTTP/1.1 mplpuritytesting.com/vendors/datetime-picker/js/moment.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (51599), with no line terminators
Hash 2c67c8986c919d61e98009638f608fc8
bc33f53cc7a9b30dbe6965f8fa0fb41285dd5ae1
8916d10914ffd128fc7270046caa0238f07c5b0636e119769e3af9bdf0597eac
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/datetime-picker/js/moment.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
mplpuritytesting.com/vendors/datetime-picker/js/bootstrap-datetimepicker.min.js
216.10.248.111200 OK 12 kB URL HTTP/1.1 mplpuritytesting.com/vendors/datetime-picker/js/bootstrap-datetimepicker.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (38264), with no line terminators
Hash 9552acbeabd92bdde89b90f810a91baa
93a34c6e1d2f18b85a11c671b8b32e58cc9416d6
fcce28874965d2d8d1a4af48118e629be81a3d06942aa0178664997f5319e6eb
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/datetime-picker/js/bootstrap-datetimepicker.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11736
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/playfairdisplay/v30/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTXtHA-Q.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTXtHA-Q.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 19852, version 1.0\012- data
Hash f4a1077e8106963f1d754da5103edbe6
c30a6d4441765a61f6b7445956af40bc41cd638a
459b011d89674ed8eed21da90a4ed610aad37ffd6f70460b31ad7da5ee2963cd
GET /s/playfairdisplay/v30/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTXtHA-Q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mplpuritytesting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 08:33:32 GMT
expires: Thu, 16 Nov 2023 08:33:32 GMT
cache-control: public, max-age=31536000
age: 166051
last-modified: Mon, 18 Jul 2022 19:09:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
216.58.207.195200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Hash 60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mplpuritytesting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 15:03:06 GMT
expires: Wed, 15 Nov 2023 15:03:06 GMT
cache-control: public, max-age=31536000
age: 229077
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mplpuritytesting.com/vendors/nice-select/js/jquery.nice-select.min.js
216.10.248.111200 OK 1.1 kB URL HTTP/1.1 mplpuritytesting.com/vendors/nice-select/js/jquery.nice-select.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (2822)
Hash bf69aabbddef7b33374d88823a21d5e8
977d3cf2dd7a6a521d9c6bbf3fd2dff99b45f0dd
d394bab6d9739773f85bab494296b0554369598ad00751dba75696aed7945ab5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/nice-select/js/jquery.nice-select.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1078
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.tools.min.js
216.10.248.111200 OK 46 kB URL HTTP/1.1 mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.tools.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (27184), with CRLF line terminators
Hash 6b48593fde8ca72734af8c266b0c5763
f2226ec03156c4c41357922937a244d6e179e871
3cf8268ba3d4f4e2d0b98b6932e34937f83a9ca48fa3ee106d576b7fbd92f300
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/revolution/js/jquery.themepunch.tools.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
mplpuritytesting.com/js/theme.js
216.10.248.111200 OK 1.5 kB URL HTTP/1.1 mplpuritytesting.com/js/theme.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5937), with no line terminators
Hash aa4ac5bdac4d07799396bd5ce38c83f9
af42f301cdadb61e440972447d77d8ec589fdc2c
7d21177534ccd8ebade307626b6e78632128e9332782a0e306d57f1e6e4bf9b5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/theme.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1527
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
mplpuritytesting.com/vendors/lightbox/simpleLightbox.min.js
216.10.248.111200 OK 2.1 kB URL HTTP/1.1 mplpuritytesting.com/vendors/lightbox/simpleLightbox.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (5526), with no line terminators
Hash 3377fb75ecf1f19659a465294120633d
4ab3b7a1e669df5ebeda344899126f0e34a11ca2
622ff4844b3a019af1ea5006fb1b229e2846d46223b6de6d4fc98005a54c717f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/lightbox/simpleLightbox.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2112
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
mplpuritytesting.com/img/menu-draw-five.png
216.10.248.111200 OK 3.9 kB URL HTTP/1.1 mplpuritytesting.com/img/menu-draw-five.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 1920 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash ad55408c84a07bfa3afa5720d443d838
1f3053907c439e0b69ec345144b2464cc4562d81
48686d7749787251cbf60fae01fca79134d539edb543dac6762279a50c29cf0b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/menu-draw-five.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/css/style.css
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 3905
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/png
mplpuritytesting.com/fonts/fontawesome-webfont3e6e.woff2?v=4.7.0
216.10.248.111200 OK 77 kB URL HTTP/1.1 mplpuritytesting.com/fonts/fontawesome-webfont3e6e.woff2?v=4.7.0
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /fonts/fontawesome-webfont3e6e.woff2?v=4.7.0 HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://mplpuritytesting.com/css/font-awesome.min.css
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: font/woff2
mplpuritytesting.com/testing/Food/Foodtest1.jpg
216.10.248.111200 OK 71 kB URL HTTP/1.1 mplpuritytesting.com/testing/Food/Foodtest1.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x573, components 3\012- data
Hash f178ba4b31011b7172dc3cf12f104114
8d1a1a41f97ba00c96879d923c33a3e31030837b
2475ca2cd670755bde0a926e09074df4cc5d34b5a6314e2f78ae630a087550e2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/Food/Foodtest1.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 71444
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/Fruits-and-Vegetables/vegtest2.jpg
216.10.248.111200 OK 42 kB URL HTTP/1.1 mplpuritytesting.com/testing/Fruits-and-Vegetables/vegtest2.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x800, components 3\012- data
Hash c1a2e3f84b1b291e97a6cbfa0eaa76d9
54a8b4d79014eab443007c45ad015e3fa134bcc1
6e59f1d5cfaad263411a172f41cac7f3eb6f181714b695763c9ddb3642c85b46
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/Fruits-and-Vegetables/vegtest2.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 41778
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/about_us.jpg
216.10.248.111200 OK 26 kB URL HTTP/1.1 mplpuritytesting.com/testing/about_us.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x260, components 3\012- data
Hash 0f2992138e5da4eeb4e24de6846290cc
f7e9f1aad96a367f7a9108c1a7a1a998b2201a82
24c100723d2405322fc2a66f2c1a1e544c57973160cea23426ff75ff58d24f13
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/about_us.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 25772
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/beverages/bevtest1.jpg
216.10.248.111200 OK 66 kB URL HTTP/1.1 mplpuritytesting.com/testing/beverages/bevtest1.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 900x600, components 3\012- data
Hash eaae07257e2a4d2f0db22bf29b967fda
16921f2c2ac3f30bfdf7b70bb8a609f77a26db23
7acd200c3bf41ceac41f2da962f57e13f77e65710d30dcad74a212461219e7d3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/beverages/bevtest1.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 65636
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/Grains/graintest2.jpg
216.10.248.111200 OK 21 kB URL HTTP/1.1 mplpuritytesting.com/testing/Grains/graintest2.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x300, components 3\012- data
Hash 104ab78317a04526ebe87a8341404853
a855cab0dcb304cfd98cfb886e631091deb3cd64
406fcec5f255c0aff4c2de9a5d87b0c88530c3f4be2c44a487fa22d1ab57f1f8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/Grains/graintest2.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 21167
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/vendors/jquery-ui/jquery-ui.min.js
216.10.248.111200 OK 92 kB URL HTTP/1.1 mplpuritytesting.com/vendors/jquery-ui/jquery-ui.min.js
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (33326)
Hash 0bb34f506041f6fb63d921c958e7a244
aed025c30a22d22cb8dbff82c898caf8db87abe2
c6c9593cde10c89e5d53a64620bd4bfac7807ae357cfcfae1351e80da56aaa05
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /vendors/jquery-ui/jquery-ui.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
mplpuritytesting.com/testing/Metal/metaltest3.jpg
216.10.248.111200 OK 40 kB URL HTTP/1.1 mplpuritytesting.com/testing/Metal/metaltest3.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 716x487, components 3\012- data
Hash 99ba33750d968c2c08072f69c1576b71
0233fd9fd54d247096f2eecbc6bfb4d89ac53b4c
ad0aeb0818c03ae92561308291e8c4817370a587941d00c6a968a517c2bf3d44
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/Metal/metaltest3.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 40540
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/img/imperial-img.png
216.10.248.111200 OK 11 kB URL HTTP/1.1 mplpuritytesting.com/img/imperial-img.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 193 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 6cef0e46966e530b608f5d46ada7ce97
bf386ca564f5925fdbf7c38d7289011d21515729
ccae40e39e27af30f5113a5730e0740d1b790b5daf2433a458d1bb4ae993f7ab
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/imperial-img.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 10667
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/png
mplpuritytesting.com/testing/chemical/chemtest1.jpeg
216.10.248.111200 OK 95 kB URL HTTP/1.1 mplpuritytesting.com/testing/chemical/chemtest1.jpeg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 2560x1440, components 3\012- data
Hash f6f24deca0b22e0e079676f923fd8b5e
cd921ed9873c35cbe0001980ed9d613703b30584
b4c8aee18a09ade2e72cee6f8681926a0499fe561c73c925a5104624383b7f68
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/chemical/chemtest1.jpeg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 94552
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/Watertesting/watertest1.jpeg
216.10.248.111200 OK 51 kB URL HTTP/1.1 mplpuritytesting.com/testing/Watertesting/watertest1.jpeg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x853, components 3\012- data
Hash 7c1487d9fb778a348ac91b07fcbb5c2e
3abd66a2da410eaafb7273d12ec402aaee3dba25
86750e77dd876fd513c9b8ce2c07d5edb37052c827433332aef15a7379a063ac
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/Watertesting/watertest1.jpeg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 50778
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/milk-and-Diary/milktest1.jpg
216.10.248.111200 OK 45 kB URL HTTP/1.1 mplpuritytesting.com/testing/milk-and-Diary/milktest1.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1470x445, components 3\012- data
Hash 045acf7c3ff6cf7195e986fe630a2bd8
545330a45aabfb87d2aaa5efce6a08ac9005c86c
a3a54275008e458d7bb957897b81c161914953187a3316725bb3ccf9fdd3993b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/milk-and-Diary/milktest1.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 45090
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/chemical/chemtest2.jfif
216.10.248.111200 OK 136 kB URL HTTP/1.1 mplpuritytesting.com/testing/chemical/chemtest2.jfif
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2048x1365, components 3\012- data
Size 136 kB (135481 bytes)
Hash 8586973e05549803e5a3bd3bb0892564
bffb74cdb790b159b0d10459fb266e0adbeb1c77
ada278c642f666854618ede60f8ba6b5da5af3a2807c06f73c58f9c17cdf304c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/chemical/chemtest2.jfif HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 135481
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15031
Expires: Fri, 18 Nov 2022 10:51:34 GMT
Date: Fri, 18 Nov 2022 06:41:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15031
Expires: Fri, 18 Nov 2022 10:51:34 GMT
Date: Fri, 18 Nov 2022 06:41:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15031
Expires: Fri, 18 Nov 2022 10:51:34 GMT
Date: Fri, 18 Nov 2022 06:41:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15031
Expires: Fri, 18 Nov 2022 10:51:34 GMT
Date: Fri, 18 Nov 2022 06:41:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93b326374b3808d0af42e295643cdc14
dd691328acf190c745465208f18a41a75878df18
224ac3995e2e78ee5fcc6c5c3d5fb1f4b0ceca1c42b7a1a493c756aa199bf75f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5198
x-amzn-requestid: ba4e00c8-a996-41f3-b15a-1e304907ca2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9UpH1ioAMF6ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ea-2f9f794c4de03f8b212e072f;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LPflGHjoeNg1X5EszKAaziaZsKFf5hT6LeNPpZQriZ5H1z7Zhh86Ow==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:57 GMT
age: 31506
etag: "dd691328acf190c745465208f18a41a75878df18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55801be30fc7e7d24ba2418d00ce4ca2
31935f7d11269f0f4177a48d2c166e09fec1f377
05e58892cab261aca3abe7e29ff482b51f5f7e4261b8579e7b9f85487f53eeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7539
x-amzn-requestid: 96d0ad29-0b25-4e4b-93ea-da9fde83aa8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9V5E2boAMFbiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8f2-33f7f4592f8574486987e233;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: r1X3PUyrso5VkyphYHqBQdYo6lmmIvTQdA_kPA5I-lds8qn9RtEIpw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:38 GMT
etag: "31935f7d11269f0f4177a48d2c166e09fec1f377"
content-type: image/jpeg
age: 30925
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZLWa-RphwZqiAmeqffmEE8Mmfsfs9ZYz0bmANBEc5Ru1--VKDL4Fsw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 15:59:54 GMT
age: 52869
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qpoQa1Lhe-h27dGooXDCtujesSTg7Tb0Ov-PNLnUP0288ZofwHxkhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:40 GMT
age: 31703
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4998f097d23ee5f19cae27d5b938e5fc
4369c8ebe61b9944e639bb2731feb51c5a758fe7
5691c66766c9578e9c4aa71240608653821162c668abc63ee40e553ede2450e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6339
x-amzn-requestid: 0be5dee5-272d-4577-ba55-5cdb7935ea60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-MCExBoAMFz6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa4c-15fd613336aa6fcb165d0b26;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NYs-Nf0PzWqhXP5nkvanTjhJ6vfwRIU--YD06RFIGPEuwDCu6fvEPg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:40 GMT
age: 31703
etag: "4369c8ebe61b9944e639bb2731feb51c5a758fe7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP 34.120.237.76:0
File type Web Open Font Format, CFF, length 1380, version 1.0\012- data
Hash 5e9b5dda990fa32a5533b23b74a77d7a
2d1b665774000f8298aa56978f57edefe181eb44
7b643dc09fdf07adc55fe0a95e0862711f1f5a993cf61f92fe19d314e33d7a57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:50:49 GMT
age: 31814
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mplpuritytesting.com/testing/Metal/metaltest1.jpg
216.10.248.111200 OK 41 kB URL HTTP/1.1 mplpuritytesting.com/testing/Metal/metaltest1.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x368, components 3\012- data
Hash 2a5b1b99ed04ede4c4a711d793ea85b3
73f23df579dc68192e52b63e992d255375b8de9f
59229df12ee872f053ccb8a28f240b78f876871c71203fa6992013897519b10c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/Metal/metaltest1.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 41024
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/Fruits-and-Vegetables/vegtest1.jpg
216.10.248.111200 OK 170 kB URL HTTP/1.1 mplpuritytesting.com/testing/Fruits-and-Vegetables/vegtest1.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1274, components 3\012- data
Size 170 kB (170044 bytes)
Hash 93355a6d756a1e4adcf72e79a7c02565
bb4b1a7a77229101d646bb394ada872588a81006
23d58a64a71a57c6310fc64cd9d530bff21a32d3417d91c89c2011090a38e0a1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/Fruits-and-Vegetables/vegtest1.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 170044
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/Grains/graintest1.jpeg
216.10.248.111200 OK 65 kB URL HTTP/1.1 mplpuritytesting.com/testing/Grains/graintest1.jpeg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x1024, components 3\012- data
Hash 2f55d13be7778c3cdb1c5fcc28eee938
d8ef75bcac7d831708c032fac0c4d0295cc14d4f
04089a97af94a227a56c6de2ba0a880edcb9ae2cd913b496844bf8467c058c7b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/Grains/graintest1.jpeg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 65311
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/milk-and-Diary/milktest2.jpg
216.10.248.111200 OK 19 kB URL HTTP/1.1 mplpuritytesting.com/testing/milk-and-Diary/milktest2.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash eefef90e00c587f256f0f405d7496a45
d91dfff31d482927fa0621edf8f7983c23052ee3
351c47dcd3e2fc692ac081ed397870bf4285a44db2e8b667a10c2866c8265d27
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/milk-and-Diary/milktest2.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 19160
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/beverages/brevages-ban.jpg
216.10.248.111200 OK 164 kB URL HTTP/1.1 mplpuritytesting.com/testing/beverages/brevages-ban.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size 164 kB (164306 bytes)
Hash 4b635bc78338b1ed91adc828a5d77a3a
0c923af35946c711af2ce9f087b598e230fd92cc
777d6ff56ab7462a21939009309a7b88d5fe21708d8b4bf6efde2fe969818add
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/beverages/brevages-ban.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 164306
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/processed-foods/protest3.jpg
216.10.248.111200 OK 58 kB URL HTTP/1.1 mplpuritytesting.com/testing/processed-foods/protest3.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 409x235, components 3\012- data
Hash 24ca3d4c546649779de04c7b12b1f7f0
aa8e615be980cb3de2edfb2304073ebfb835629e
a8041ec9ae8c362bf2160372ae98b8e707c4edb06bc54b459bd2fc8caa3f3ea8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/processed-foods/protest3.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 58382
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/Watertesting/Watertest3.jpg
216.10.248.111200 OK 26 kB URL HTTP/1.1 mplpuritytesting.com/testing/Watertesting/Watertest3.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x333, components 3\012- data
Hash 6f1f01a7777d9e2b8f0819b807a7f604
a7fa0fd8ae44f1fe43dccbcab71b57112aa79845
6518d9f44193330397cef1db9507075d2692c96329a1554a37ca344e40b80dad
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/Watertesting/Watertest3.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 25872
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/Oil/oiltest1.jpg
216.10.248.111200 OK 28 kB URL HTTP/1.1 mplpuritytesting.com/testing/Oil/oiltest1.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x333, components 3\012- data
Hash 6d48f66eba42befe3b081593c0e7373d
6c06a11093b94fae7aced2458caeed05d639341d
97177f3319ce68c78a2ecc977366f69b4943dc346343c249125f74923a802891
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/Oil/oiltest1.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 27989
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/img/lab-pouring.jpg
216.10.248.111200 OK 195 kB URL HTTP/1.1 mplpuritytesting.com/img/lab-pouring.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 5184x2869, components 3\012- data
Size 195 kB (194577 bytes)
Hash 0c83f21cd1f43f7908ff321a42757aaa
c7d749021e152a9f295400552c70a8a619e28188
53c67d598d7a7d62d9feda1c4b716e7bbe2cef9970a6552f0658246e1553f873
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/lab-pouring.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/css/style.css
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 194577
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/testing/Oil/oiltest4.jpg
216.10.248.111200 OK 147 kB URL HTTP/1.1 mplpuritytesting.com/testing/Oil/oiltest4.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size 147 kB (147332 bytes)
Hash ae7d97c570e0ac0b00f8e961a2a40b58
bf8e66bc694fa2e616f5673f0c6baae0f41f63ad
1b26da5cdde2907a9de5d752baab9fa7f126b73ca483f2f9b88cea11faa85eb1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/Oil/oiltest4.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 147332
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/img/client-slider/Western-Railway.jpg
216.10.248.111200 OK 51 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Western-Railway.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 220x220, segment length 16, baseline, precision 8, 599x299, components 3\012- data
Hash 783fae91c35ba8d5b1bd051391a7ed9c
d4de3168f03e2a4bf7b847a6ee831bcb6371892c
874452ca49b8c2d4b01a7b71d5cc8c36583747f0336e4369ee16e0551acdcad0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Western-Railway.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 51150
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/img/client-slider/Indian-Oil-Corporation.png
216.10.248.111200 OK 28 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Indian-Oil-Corporation.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 598 x 313, 8-bit/color RGBA, non-interlaced\012- data
Hash a820ece11a662804890b8187ff1942d1
bed0153e2a7c028b9acb2ab64a984c68392c382b
744553f37b4d60e703d1542c4a79d437102561275b804dc68f500dece5c07a85
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Indian-Oil-Corporation.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 28235
Keep-Alive: timeout=5, max=60
Connection: Keep-Alive
Content-Type: image/png
mplpuritytesting.com/img/client-slider/Larsen-Toubro.jpg
216.10.248.111200 OK 17 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Larsen-Toubro.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 630x390, components 3\012- data
Hash fd44d9b9f4d304fa089b8ba3a0be8a44
577d41be05e7b1ae1eff6d7a02afc9b5579531e4
bfa23ab6dbe0a8bafac120a206ebc3f4e99f65d2e65ac8cddb0484e753893c41
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Larsen-Toubro.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 17045
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/img/client-slider/Nilkamal-Plastics.png
216.10.248.111200 OK 22 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Nilkamal-Plastics.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 735 x 343, 8-bit/color RGBA, non-interlaced\012- data
Hash 91d453724db1acc5e5a7c254e06fcc12
b33f9b9136db67cd6476ad1564de0a029f19584a
64093247c5166f8716a4484c1960e2967a5178abd3cee02d79449065ef3ba80d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Nilkamal-Plastics.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 21679
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/png
mplpuritytesting.com/img/client-slider/Jones-Lang-LaSalle.png
216.10.248.111200 OK 16 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Jones-Lang-LaSalle.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 757 x 304, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ac315a230e859652fc7ee9c05c97c04
abb54c926a42d65adedff1c4694b6572f505877c
c7489eaf258e4e7c8f2e50ad21db8686042b755c1b6bec9cd05e9c77926a7ef3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Jones-Lang-LaSalle.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 16380
Keep-Alive: timeout=5, max=59
Connection: Keep-Alive
Content-Type: image/png
mplpuritytesting.com/img/client-slider/Altantium-Technologies.png
216.10.248.111200 OK 11 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Altantium-Technologies.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 583 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash ceae7f2f7cb7aebc3d91acc1e4d0b4ab
1df70c83fba97c5c69aef407d02645762e3b5c81
0e6fa196e53fa19adde993d00b554cc32c5360bd840aa4960f7ff6c66ca89548
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Altantium-Technologies.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 10909
Keep-Alive: timeout=5, max=58
Connection: Keep-Alive
Content-Type: image/png
mplpuritytesting.com/img/client-slider/HDFC-Bank.jpg
216.10.248.111200 OK 24 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/HDFC-Bank.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 220x220, segment length 16, baseline, precision 8, 464x271, components 3\012- data
Hash 5588780cfdf1e79f28baa1454bc6ad64
bd494da9b2bb5097304a1ef161fe9a6425cb6bce
2833698d0177a3686484c5ef653b51949dad71b45afbb1fc7f0eb23a791684b7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/HDFC-Bank.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 23551
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/img/client-slider/Niva-Bupa.png
216.10.248.111200 OK 40 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Niva-Bupa.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 495 x 278, 8-bit/color RGB, non-interlaced\012- data
Hash 9f78c86a21db356cba15eb79127c0571
acb3c810bb486acd73b186ff5c878e4db97d9d81
e427979f9aa97ff79734ef11e98afb4acd5a59ca2834126d89a44e335516d11d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Niva-Bupa.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 40135
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/png
mplpuritytesting.com/img/client-slider/Bharat-Petroleum.png
216.10.248.111200 OK 19 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Bharat-Petroleum.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 495 x 365, 8-bit/color RGBA, non-interlaced\012- data
Hash 9d43b080bb8b5edf4d3883289d47c43f
8dc5f4f3423e12add30a0d5011c969ee8590bdc3
4adb010eb017b6732baaa84031bb553a211793b1b48f042158fb70701968826f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Bharat-Petroleum.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 19384
Keep-Alive: timeout=5, max=57
Connection: Keep-Alive
Content-Type: image/png
mplpuritytesting.com/testing/TestingBusiness/tb5.jpg
216.10.248.111200 OK 2.7 MB URL HTTP/1.1 mplpuritytesting.com/testing/TestingBusiness/tb5.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 9344x7200, components 3\012- data
Size 2.7 MB (2712756 bytes)
Hash d5e2257ee4fd11f105fdfe92e2c0509e
068ad4a759e65e3a2dd5231d951a8ec13dc60555
84c01b114cf9f763f53fbdbf2e9bea257cdf4b1d52ebf80afd3acb0facaacaff
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/TestingBusiness/tb5.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 2712756
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/img/client-slider/Alcazar-Hospitality.png
216.10.248.111200 OK 3.3 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Alcazar-Hospitality.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 224 x 224, 8-bit colormap, non-interlaced\012- data
Hash 1d85d00abfc21d73c1f14f3068ec0a2c
b73c1b78187fe5336c6e26ea09bd1032a17c70f7
b86f839454cc0c8449c440a2ee92adc9aff8bfde415f18565ccf718f866238fa
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Alcazar-Hospitality.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 3273
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/png
mplpuritytesting.com/img/client-slider/Reliance-Retail-Limited.png
216.10.248.111200 OK 11 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Reliance-Retail-Limited.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash f4202ca7edcd6c496c6f1dbf7d580151
8b384a1e0643968e4070fe5ef3e9a25a73378b80
8599292379bf688bd063857bb1e50c2d94b4c84b8a46a20be4cd98e8f933ff51
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Reliance-Retail-Limited.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 10584
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: image/png
mplpuritytesting.com/img/client-slider/Matrimony.com.jpg
216.10.248.111200 OK 42 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Matrimony.com.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 220x220, segment length 16, baseline, precision 8, 789x245, components 3\012- data
Hash 0c23a9a7bf9a8308b94dbb2147bef9a8
578e35e17303458696ec5999ce1dfa3ab9d492db
bef5d085a3cf1fb2e6677234705906f2fc51983d7f1482bdc42901f1dbc0d2d7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Matrimony.com.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 41478
Keep-Alive: timeout=5, max=56
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/img/client-slider/Reliance-Footprint.jpg
216.10.248.111200 OK 17 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Reliance-Footprint.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 400x282, components 3\012- data
Hash 1f29a58098886fb71ac72954a2eefd78
d1d97c5507f016417fb63c4fed41ec10aacee6bb
1c349e796887b1eb080a4b0d0ec8e941d2257a554cc5fcb86dba2a1250741a94
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Reliance-Footprint.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 16653
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/img/client-slider/Shapoorji-Pallonji.png
216.10.248.111200 OK 9.0 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Shapoorji-Pallonji.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 300 x 168, 8-bit colormap, non-interlaced\012- data
Hash f2c8db1f1c73b763dbb2c20f5fce3708
cf9fa4703b31a32d2d022b8287728f715e02599f
2c01e635d1d63c1dc326f367a8d5c5a116e76ef809091cd0bc7edb2dbc4cfeb5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Shapoorji-Pallonji.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 8981
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Content-Type: image/png
mplpuritytesting.com/img/client-slider/Sai-Service.png
216.10.248.111200 OK 4.7 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Sai-Service.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 225 x 225, 8-bit colormap, non-interlaced\012- data
Hash 1a09c4f538e6bd258b3148a79a5e60ad
4f05af946797b6b301adda2f81c4492c86c954d2
3836b48e1785c3c623c44efeddb112579e8e4f2a7a2cb7e7e7949238e045b0ba
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Sai-Service.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 4728
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/png
mplpuritytesting.com/img/client-slider/World-Trade-Center-Mumbai.jpg
216.10.248.111200 OK 7.4 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/World-Trade-Center-Mumbai.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 225x225, components 3\012- data
Hash 48bad4e2501de79e74c9e1946d3690d6
9955a914b5cf6210dc49c81b17a0d858d0967ee0
959032d343ed9b83bcfb7ca657e9c1321c3f38bacd7b8da24c53912796aa5764
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/World-Trade-Center-Mumbai.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 7416
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/img/client-slider/N.L.-Dalmia-Educational-Society.jpg
216.10.248.111200 OK 49 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/N.L.-Dalmia-Educational-Society.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 220x220, segment length 16, baseline, precision 8, 771x472, components 3\012- data
Hash f87dc0074d740a6635710e022f428df7
320116687033ce0dfeebffb1133ee52e3665b4ae
a966105a0ef091f39057a61b7ab4b277b650160db4ab2a1e3f81beb6c2877d80
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/N.L.-Dalmia-Educational-Society.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:06 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 49139
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/img/client-slider/Tata-Consulting-Engineers-Limited.jpg
216.10.248.111200 OK 37 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Tata-Consulting-Engineers-Limited.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 220x220, segment length 16, baseline, precision 8, 615x360, components 3\012- data
Hash 289fc6ee64e0c677f68513a26447b851
5b9f454a9942e1e2b0c7bcf478004915ecea9c3b
59f41810d2b054d04d94c526164c4963dec57f1a9c4d63b7861ed013ad37677a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Tata-Consulting-Engineers-Limited.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 36866
Keep-Alive: timeout=5, max=55
Connection: Keep-Alive
Content-Type: image/jpeg
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mplpuritytesting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 18 Nov 2022 04:41:09 GMT
expires: Fri, 18 Nov 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 7197
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mplpuritytesting.com/testing/TestingBusiness/tb7.jpg
216.10.248.111200 OK 2.0 MB URL HTTP/1.1 mplpuritytesting.com/testing/TestingBusiness/tb7.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 7807x5207, components 3\012- data
Size 2.0 MB (1993667 bytes)
Hash 356d58e45f5d7dda3e8a3d69269a342b
ae3fbeb01c299e36f1b7128970b5473a3b3ffb01
7e1abb212ca62d41b49bf03f282a375787ca13a45771ae57912553b8c60fa8c0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/TestingBusiness/tb7.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 1993667
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/jpeg
mplpuritytesting.com/img/client-slider/Reserve-Bank-of-India.png
216.10.248.111200 OK 320 kB URL HTTP/1.1 mplpuritytesting.com/img/client-slider/Reserve-Bank-of-India.png
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 603 x 612, 8-bit/color RGBA, non-interlaced\012- data
Size 320 kB (319891 bytes)
Hash 38108bbccad585f62035a0329a31dfa8
05cf9af916e828ac3a2784292ce3552c6a501b88
38166da6720830e640559579c407ad447b6339f940333727d7adbdd47331fc51
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /img/client-slider/Reserve-Bank-of-India.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 319891
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08ef698a-56d7-4f19-be41-17c1eca0ce7b.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08ef698a-56d7-4f19-be41-17c1eca0ce7b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6672a5b26995975d4c7a589daf121490
b48bffb7c716db7c05dc2e74ffbc49f89e7f4c24
8d23d01e100d958dc1ae0f8f3cd39c2bc40c19c75a560c4df5ba9ce1de247615
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08ef698a-56d7-4f19-be41-17c1eca0ce7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8644
x-amzn-requestid: 989e9461-ddcc-4a41-8d88-d86dfa891899
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9UqERtoAMFUow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ea-40b5695c1a052c3a0bd03458;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: j-FsOPbQyKGUzW06HOBWpRb-VIB6dSNf2Dja2ZwtbQaOFs6aJ7MXqw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:43 GMT
age: 31527
etag: "b48bffb7c716db7c05dc2e74ffbc49f89e7f4c24"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mplpuritytesting.com/testing/spices/sps3.jpg
216.10.248.111200 OK 0 B URL HTTP/1.1 mplpuritytesting.com/testing/spices/sps3.jpg
IP 216.10.248.111:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /testing/spices/sps3.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 7296578
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg