Report - mplpuritytesting.com/

Report Overview

Submitted URL
mplpuritytesting.com/
IP
216.10.248.111
ASN
#394695 PUBLIC-DOMAIN-REGISTRY
Submitted
2022-11-18 06:41:14
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
362

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	389 B	44 kB	142.250.74.168
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	54.187.71.185
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	2.0 kB	152 kB	216.58.207.195
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.8 kB	60 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.0 kB	5.3 kB	23.36.76.226
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	682 B	1.5 kB	93.184.220.29
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	3.1 kB	6.3 kB	142.250.74.35
mplpuritytesting.com	unknown	2021-09-04T10:54:37Z	2023-03-07T13:27:26Z	26 kB	7.6 MB	216.10.248.111
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-10T13:35:34Z	376 B	21 kB	142.250.74.174
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-10T08:04:05Z	842 B	3.1 kB	104.17.24.14
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	508 B	2.7 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-18	medium	mplpuritytesting.com/	Malware
2022-11-18	medium	mplpuritytesting.com/js/jquery-3.2.1.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/js/popper.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/js/bootstrap.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.revolution.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.actions.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.video.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.layeranimation.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.slideanims.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.navigation.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/owl-carousel/owl.carousel.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/magnifc-popup/jquery.magnific-popup.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/datetime-picker/js/moment.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/datetime-picker/js/bootstrap-datetimepicker.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/nice-select/js/jquery.nice-select.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.tools.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/js/theme.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/lightbox/simpleLightbox.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/vendors/jquery-ui/jquery-ui.min.js	Malware
2022-11-18	medium	mplpuritytesting.com/testing/chemical/chemtest1.jpeg	Malware
2022-11-18	medium	mplpuritytesting.com/testing/Watertesting/watertest1.jpeg	Malware
2022-11-18	medium	mplpuritytesting.com/testing/chemical/chemtest2.jfif	Malware
2022-11-18	medium	mplpuritytesting.com/testing/Grains/graintest1.jpeg	Malware

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed
2022-11-18	medium	mplpuritytesting.com	Sinkholed

JavaScript (24)

	URL	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=UA-207890440-1	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-207890440-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:51:02 Last Seen2023-03-11 13:51:02 Times Seen1 Hash da549de41e9a53dff588d61ee2aa2993 0809140192e447decf22a58f181bb9d510157146 b59eb589a217c0deea09c12adfc6d991828277496c7d073a20c11df7202a00b1 Loading...

	cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.8.1/slick.min.js	43 kB	2023-03-07	2024-05-05
Pretty URL cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.8.1/slick.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:34 Last Seen2024-05-05 00:03:21 Times Seen34783 Hash d5a61c749e44e47159af8a6579dda121 3b41b3bc956685015a347a2238e71db29dfa0dbb 0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740 Loading...

	mplpuritytesting.com/js/popper.min.js	19 kB	2023-03-07	2024-05-04
Pretty URL mplpuritytesting.com/js/popper.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-05-04 20:22:07 Times Seen113445 Hash 70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Loading...

	mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.video.min.js	24 kB	2023-03-07	2024-04-09
Pretty URL mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.video.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:33:38 Last Seen2024-04-09 23:55:50 Times Seen88 Hash bb64e971706ed830a25ae85f6958d3f3 dc87239611afb8c8815441f0044b105e4aa73c9e 12a1b0ebd1d51696246a62e740f5d71e97b7db2b0dbdbc1dcaa859b62f883369 Loading...

	mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.layeranimation.min.js	50 kB	2023-03-07	2024-04-09
Pretty URL mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.layeranimation.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:58 Last Seen2024-04-09 23:55:50 Times Seen225 Hash 2984cd848201aee5b321e9bf7fc6f514 2b4d94877ab5a3befdb2510478d444317aaf7453 7a7499032e51e8bcb6d0e57b5dead5349bd0abd519ee79e1538cc64f9d9030cf Loading...

	mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.navigation.min.js	26 kB	2023-03-07	2024-04-04
Pretty URL mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.navigation.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:58 Last Seen2024-04-04 19:33:33 Times Seen288 Hash adb7b96105b60b1bb1b77d1ae0659504 ce42314dcb27947b3d5577ebc44dfc7fdca14d8e 37cb4ed8291c673401c21aa0248f8a29e6b49a5c81de1ff5a5e9970d91808627 Loading...

	mplpuritytesting.com/vendors/owl-carousel/owl.carousel.min.js	43 kB	2023-03-07	2024-05-04
Pretty URL mplpuritytesting.com/vendors/owl-carousel/owl.carousel.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-05-04 23:07:34 Times Seen8193 Hash b7b9c97cd68ec336d01a79d5be48c58d 1a99890b57c9859a622337ed0b2f989d6e30cc0e b394d33b2a7ec654a6b037ebfda6618341b3f897a362be624c923c2711b54a43 Loading...

	mplpuritytesting.com/vendors/datetime-picker/js/moment.min.js	52 kB	2023-03-07	2024-04-26
Pretty URL mplpuritytesting.com/vendors/datetime-picker/js/moment.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:40 Last Seen2024-04-26 14:22:14 Times Seen383 Hash 5ff1de69e6fd137a6dd511205ea7c49e 91a29a02cca99f32598f7b5764c610ab3cc89fba 001564a706fd2bd3f1b9bbd1ac732493ac2659c207504f5e0713592d7610f389 Loading...

	mplpuritytesting.com/vendors/lightbox/simpleLightbox.min.js	5.5 kB	2023-03-07	2024-04-16
Pretty URL mplpuritytesting.com/vendors/lightbox/simpleLightbox.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:21 Last Seen2024-04-16 22:06:44 Times Seen86 Hash 669cef19df834719bf2a3d0d755a2c2b da1d556e3d603926a8711816ba64ff68c851d160 f8ca71efa8f9823626b975330f1cd7dde8163230fba36ba1ccf8bf9182ea46cb Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-04
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-04 19:13:00 Times Seen1637 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	mplpuritytesting.com/	2.8 kB	2023-03-08	2023-03-11
Pretty URL mplpuritytesting.com/ IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:49:53 Last Seen2023-03-11 13:51:02 Times Seen1 Hash 9641036a7ef1372153dc22fddb16da6c e18a3364957a35623b53b50e404733f75eb7e93c e544a18ca15325e0e761b977b4972a28107f636964486a9c9115d97a108ae2c1 Loading...

	mplpuritytesting.com/	1.4 kB	2023-03-08	2023-03-11
Pretty URL mplpuritytesting.com/ IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:49:53 Last Seen2023-03-11 13:51:02 Times Seen1 Hash f0617be433f252b626c6a1697cb8bfff e9448c7b00a4f0c4a269a6f0d6a01d2bfb5b0837 8cec669925445d6694211124c9fb0b8adc69b512e7c1b4ce9020fbbdc814c9ea Loading...

	mplpuritytesting.com/js/jquery-3.2.1.min.js	87 kB	2023-03-07	2024-05-05
Pretty URL mplpuritytesting.com/js/jquery-3.2.1.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-05 01:56:37 Times Seen64618 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	mplpuritytesting.com/js/bootstrap.min.js	49 kB	2023-03-07	2024-05-04
Pretty URL mplpuritytesting.com/js/bootstrap.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-05-04 20:22:07 Times Seen138672 Hash 14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b Loading...

	mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.actions.min.js	8.9 kB	2023-03-07	2024-04-04
Pretty URL mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.actions.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:48 Last Seen2024-04-04 19:33:32 Times Seen91 Hash e7290f8698d4a9b191be23fa8c4d38d1 fb350ed56852cae5f988befb598e06402ad6006d 3cd73ec04943a47c75c4e6a4b60f6597cf10144ce1877ca17229fcb4830e6f8e Loading...

	mplpuritytesting.com/	155 B	2023-03-08	2023-03-11
Pretty URL mplpuritytesting.com/ IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:49:53 Last Seen2023-03-11 13:51:02 Times Seen1 Hash abcae5834639e5c40a7c893980435ec7 09e6ddf786c53d9f8a9960c655c3e8373a1b6524 9386a6ca07892144f45cd1eacaa41f06cdb2dad01decce4b141dfc2dab8695c1 Loading...

	mplpuritytesting.com/vendors/datetime-picker/js/bootstrap-datetimepicker.min.js	38 kB	2023-03-07	2024-04-23
Pretty URL mplpuritytesting.com/vendors/datetime-picker/js/bootstrap-datetimepicker.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:44:55 Last Seen2024-04-23 18:26:49 Times Seen76 Hash 4fd48cb285dcbe6949bc162f93b573f7 cb4b8e0cc44f26d2f34ad9e15b9795ec754eec40 32408380fc27ddc5d1d2a8713e7b484c97138f9ee69daf6f393f8aa8d9433dfa Loading...

	mplpuritytesting.com/vendors/jquery-ui/jquery-ui.min.js	254 kB	2023-03-11	2023-03-11
Pretty URL mplpuritytesting.com/vendors/jquery-ui/jquery-ui.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:51:03 Last Seen2023-03-11 13:51:03 Times Seen1 Hash 16c3fcbc857aeb0303c8f665f6ee5606 cff232057af333906302b5c5a9cf7015e9f7aa38 bf3d164733348ebaf2af7e4bd529925753b6021b4dce306853ad0c8d78727774 Loading...

	mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.revolution.min.js	63 kB	2023-03-07	2024-04-04
Pretty URL mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.revolution.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:42 Last Seen2024-04-04 19:33:32 Times Seen110 Hash cb68b552656ec0718cfe2692f65df9ff e8ccbadce248ba21fddeab07e07149c4481f48dc 23d49684fb60053d365b5e3a949b245c2dd413a265050bad5bcb7d74d69eecbc Loading...

	mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.slideanims.min.js	28 kB	2023-03-07	2024-05-03
Pretty URL mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.slideanims.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:58 Last Seen2024-05-03 04:14:58 Times Seen369 Hash 4c8034d4830f59a65ef5921055a81840 d55e6bd293ef939f32a440ca534ecfcf9185dad4 f0c949d41d22c4659526d0f6a2189cf5c3372a9fe521a83ec266e06fecedd862 Loading...

	mplpuritytesting.com/vendors/magnifc-popup/jquery.magnific-popup.min.js	20 kB	2023-03-07	2024-05-05
Pretty URL mplpuritytesting.com/vendors/magnifc-popup/jquery.magnific-popup.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-05 03:28:21 Times Seen19829 Hash ba6cf724c8bb1cf5b084e79ff230626e f455c5f153f872e52265f87a644ff89fe14a6fb6 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Loading...

	mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.tools.min.js	108 kB	2023-03-07	2024-05-03
Pretty URL mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.tools.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:58 Last Seen2024-05-03 04:14:58 Times Seen6268 Hash e6b48b6ba78ddfe39bef9b6bf147543e 8950b7ef02baf1ea3a6bde99a613a5224216ab18 9a56320bb8bfb81dc997a1120c77ec017cffab4db5ba5482afb29129e0690540 Loading...

	mplpuritytesting.com/js/theme.js	5.9 kB	2023-03-11	2023-03-11
Pretty URL mplpuritytesting.com/js/theme.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:51:03 Last Seen2023-03-11 13:51:03 Times Seen1 Hash e9b3a56461c69406895bee483900c39a 11ad596e39a3ec890d8c40aa28b9b1b87cd977bb 9c8c173492933accc2ee0caf63dba30801de0b077dc548bae68bcdc50872fe18 Loading...

	mplpuritytesting.com/vendors/nice-select/js/jquery.nice-select.min.js	2.9 kB	2023-03-07	2024-05-04
Pretty URL mplpuritytesting.com/vendors/nice-select/js/jquery.nice-select.min.js IP 216.10.248.111 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:39 Last Seen2024-05-04 23:07:32 Times Seen2218 Hash d13462ec489f9f0c309a811f85feb3d6 d9545f8b139eae5b387de1a60a84abe949c7e88f 66bdef0724e5306421bcc7e0910e41b5645228119ad9096ca4a6099e48d94e6a Loading...

HTTP Transactions (117)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
30c30d01178fc74ac5266ee64c3ee85b
c0c2af8a864c00aa85a8775d55f85ab107150a3b
c15644f69fbfeb99074c7e9711dfc9452ee164fa78eb981b6bae4fb7e3585f2a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C15644F69FBFEB99074C7E9711DFC9452EE164FA78EB981B6BAE4FB7E3585F2A"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12064
Expires: Fri, 18 Nov 2022 10:02:05 GMT
Date: Fri, 18 Nov 2022 06:41:01 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
be1be806b5dca7facbb45a6c3db44652
7ae9380a2f3eca959fe6ff6b3832a17cffd12cf4
1f3338058f8e9cae5c9fdd733c74564312726b01c6efdcd628d851d0c99876b0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4824
Cache-Control: max-age=105046
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:01 GMT
Etag: "63760d7b-1d7"
Expires: Sat, 19 Nov 2022 11:51:47 GMT
Last-Modified: Thu, 17 Nov 2022 10:31:23 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15734
Expires: Fri, 18 Nov 2022 11:03:15 GMT
Date: Fri, 18 Nov 2022 06:41:01 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 05:44:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3375
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: li0Ou2IWZP5TqIe5VTxpBrzZ4TDTuy2Gmk3ZMiMpE4nFNPY/YAdeqBp7ZOwPeKPMQA8+A12v3cw=
x-amz-request-id: S4JQDV5TFVBTEAVT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 06:15:29 GMT
age: 1532
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 06:41:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.9.0/slick.min.css

104.17.24.14

200 OK

394 B

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.9.0/slick.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1327)
Size
394 B (394 bytes)
Hash
50d05d35119a9bd8cf777402bb4789a0
fd03f42f191f21580b72dc3e474e9b7503a82555
a8daf82dae80ef2b347046c449acf73de160cc273a70cb74ed4cb71597a69bfc

HTTP Headers

GET /ajax/libs/slick-carousel/1.9.0/slick.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mplpuritytesting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:41:01 GMT
content-type: text/css; charset=utf-8
content-length: 394
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fd5-559"
last-modified: Mon, 04 May 2020 16:16:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2556856
expires: Wed, 08 Nov 2023 06:41:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L3SVZgMODeKHeB6jaErHDDMR35ygnjNDfc6VKbnuvSQi%2F6PRgf06UZiKiF3krcMALtAAqwZntIFk4WGSf8MUTFJhsVdPL4FtUTkFrRNs5coqqEvZElWgVpDB5f0KZKnB9kR97Xqx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76beb7d34e96b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.9.0/slick-theme.min.css

104.17.24.14

200 OK

657 B

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.9.0/slick-theme.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (2332)
Size
657 B (657 bytes)
Hash
fd6ea20505bda56b5e5dc52377385e34
2ea20bfa73d60ccbac3fae7c731c48cbdba4fa5d
b51b3aae99c2bb2b2b32b51d9df350de73b3992bb126339bfa8ab1407cfc881c

HTTP Headers

GET /ajax/libs/slick-carousel/1.9.0/slick-theme.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mplpuritytesting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:41:01 GMT
content-type: text/css; charset=utf-8
content-length: 657
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fd5-956"
last-modified: Mon, 04 May 2020 16:16:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 135486
expires: Wed, 08 Nov 2023 06:41:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qvYhC3N7Rh63bCumxtMsn0KxjQEf64LEjCFIaE7haBID0SX0kIpWba0BCiy69SGaM3bNQxhyIwTE9ZWinkHMZDV2UjDh1IpxH9yWgdkuqwWd4I%2FrJiXBIB6BXyLb8t3c3m6h7KtI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76beb7d35ea2b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-207890440-1

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-207890440-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43679 bytes)
Hash
47cd3a311f00ac05803f637199db6141
9a48d69c88e890eaef9ef40ef99b2ed438aa2063
f581db8eb0f6ee4526296792f66ece7a36a874f832ae75169c0fdbf2e030748d

HTTP Headers

GET /gtag/js?id=UA-207890440-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mplpuritytesting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Nov 2022 06:41:02 GMT
expires: Fri, 18 Nov 2022 06:41:02 GMT
cache-control: private, max-age=900
last-modified: Fri, 18 Nov 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43679
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mplpuritytesting.com/css/font-awesome.min.css

216.10.248.111

200 OK

7.1 kB

URL HTTP/1.1
mplpuritytesting.com/css/font-awesome.min.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (30861)
Size
7.1 kB (7121 bytes)
Hash
5035fadc46ccb6830038f796315f1c5d
6a411c58194159cb76b34bbab796f23371716a31
c7dc9cc6cd68208b505c17295512889ae0a77aeb1e9989b2ec2076456f3d7291

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /css/font-awesome.min.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7121
Keep-Alive: timeout=5, max=75
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

mplpuritytesting.com/

216.10.248.111

200 OK

13 kB

URL HTTP/1.1
mplpuritytesting.com/
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2134), with CRLF line terminators
Size
13 kB (13402 bytes)
Hash
1a2b90051e54ea2311f602cbffde0000
be514250342d594369793057e0aecab2cf64f500
cb29e9ccf5259fbf6efe38f9194190f4e81cbc563aa86dfb093d92fd929cbe24

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13402
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 05:44:49 GMT
cache-control: public,max-age=3600
age: 3373
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c10055ce87434f700ff8b20e3be1f919
477b3c9f1da0c464282bb54572737e76b6e346da
4d78eb296876122e5ff40fcd7667adf1bf8a4b1ee4c8203c88a63ce8d7910a57

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3115
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Last-Modified: Fri, 18 Nov 2022 05:49:07 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

mplpuritytesting.com/vendors/flat-icon/flaticon.css

216.10.248.111

200 OK

464 B

URL HTTP/1.1
mplpuritytesting.com/vendors/flat-icon/flaticon.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
464 B (464 bytes)
Hash
82739f8e363d42e0ef26d2b7dd38e4ed
6f0d91f950083277cff0f1419543884e7cc101e6
39cd8c67c0d49072863323b07b79bc75956237047382973eb90297cd4f643616

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/flat-icon/flaticon.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 464
Keep-Alive: timeout=5, max=75
Content-Type: text/css

mplpuritytesting.com/vendors/revolution/css/settings.css

216.10.248.111

200 OK

9.1 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/revolution/css/settings.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (29278), with CRLF line terminators
Size
9.1 kB (9089 bytes)
Hash
b1e060375b51788a75c3c2a8d5bcefd2
4aa11ae50bb14adbb3bc6fda840afcd42de2d538
ff70764c15770ab93c158ca5d19841e908e1b51716b570b3b5deb9b9788cf25a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/revolution/css/settings.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9089
Keep-Alive: timeout=5, max=75
Content-Type: text/css

mplpuritytesting.com/vendors/linearicons/style.css

216.10.248.111

200 OK

1.6 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/linearicons/style.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
1.6 kB (1616 bytes)
Hash
a92661342b41e9f0059a69c69b4f1156
a3c996f0de892b10f2753949b7b2aa61ec94caf9
76d13128c12ad524b37585db197bd787302ad3ef4bb9082a5ac1815a1ad1970d

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/linearicons/style.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1616
Keep-Alive: timeout=5, max=75
Content-Type: text/css

mplpuritytesting.com/vendors/revolution/css/layers.css

216.10.248.111

200 OK

20 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/revolution/css/layers.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with CRLF line terminators
Size
20 kB (20317 bytes)
Hash
0af0fcf8226227d2b960f4f13edeccff
aed42ca574d23836cd40b657fa50388504cd4d5a
f27e679c74c9e3d1136441968a5e07a6d26c7416187fc4b67d999be61b0be817

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/revolution/css/layers.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css

mplpuritytesting.com/vendors/animate-css/animate.css

216.10.248.111

200 OK

7.1 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/animate-css/animate.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
7.1 kB (7114 bytes)
Hash
2e3e181ba09aeef1598179afb032952b
0628d62595a6ba3ebcd6140bbaad6e171bd82240
a6ba0f79e8f4e59774bbd380cbfa624208b960c7cb11a8d76bc4f9b8566a8c1c

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/animate-css/animate.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7114
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

mplpuritytesting.com/vendors/owl-carousel/owl.carousel.min.css

216.10.248.111

200 OK

971 B

URL HTTP/1.1
mplpuritytesting.com/vendors/owl-carousel/owl.carousel.min.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (2847)
Size
971 B (971 bytes)
Hash
6defccb5cf691de80ff78eface00011c
06a6a148ef6e90dbdd0d769e117cb04d247f4ff0
c92b73e2a6407e0cedae60f7bf2dc10f73df1621b624cfa88bd9a6f0cd55c3dc

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/owl-carousel/owl.carousel.min.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 971
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

mplpuritytesting.com/vendors/magnifc-popup/magnific-popup.css

216.10.248.111

200 OK

2.2 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/magnifc-popup/magnific-popup.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
2.2 kB (2190 bytes)
Hash
5691b07253c4a30382130c2da4be8343
4c12d34016c7061965c996599c4086683958e0f1
095326e797678e4aa4be8217bf991180f7b79cdcce552897123ffa68981a0747

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/magnifc-popup/magnific-popup.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2190
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

mplpuritytesting.com/css/bootstrap.min.css

216.10.248.111

200 OK

32 kB

URL HTTP/1.1
mplpuritytesting.com/css/bootstrap.min.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (65325)
Size
32 kB (32057 bytes)
Hash
b15ea99facb10c090c3766543bfdab45
60e0218946b91a20e12f17586363d78b3ae29ec6
5e59453ae6be16c892f899834d8eaa27fb45a099712294302c71eb00629eaad9

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /css/bootstrap.min.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css

mplpuritytesting.com/vendors/nice-select/css/nice-select.css

216.10.248.111

200 OK

1.3 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/nice-select/css/nice-select.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
1.3 kB (1268 bytes)
Hash
cdbbfcd68b6c121ac6dc87ff5762ba56
9e953f8ef38f4d194a9424e46c6603e59612bcb2
50873d394f0ca8ac4ba1dc0d2881db7f02679dc44cecfbb7c0827e5064ce441a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/nice-select/css/nice-select.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1268
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css

mplpuritytesting.com/vendors/revolution/css/navigation.css

216.10.248.111

200 OK

18 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/revolution/css/navigation.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
18 kB (18341 bytes)
Hash
8d20a0793c390cd79e01e76b2aac65c5
89c55833c1f24336be89b19ed80b2272eb858c53
dddd4aa5772d53aaf65331359945c4dff16fe09c577a52bcf05ac048bcd74b51

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/revolution/css/navigation.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css

push.services.mozilla.com/

54.187.71.185

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.187.71.185:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LuN6FhoJFnO08ypKq5o3SQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: o9Dofbd12OraPGdgjN/ZBmKEABo=

mplpuritytesting.com/css/responsive.css

216.10.248.111

200 OK

5.4 kB

URL HTTP/1.1
mplpuritytesting.com/css/responsive.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (19535), with no line terminators
Size
5.4 kB (5392 bytes)
Hash
92844682f198f5669613d93110f65fe8
815e087421df769d6e0653a163b4e93bd1c83c14
333db201a2f3253e3f635ebde8e3d5d520c4d7c318cc5b10073f16b319e2695f

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /css/responsive.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5392
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

mplpuritytesting.com/css/new-style.css

216.10.248.111

200 OK

290 B

URL HTTP/1.1
mplpuritytesting.com/css/new-style.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with CRLF line terminators
Size
290 B (290 bytes)
Hash
7f31259d4c686dea75499023fef76a9e
4113d937af229be17969d5f8aad1899b93af0f38
5790caabbfff5c9ff3387488e168042c40dc77acad715994f4ae2af900e6b77f

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /css/new-style.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 290
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css

mplpuritytesting.com/js/jquery-3.2.1.min.js

216.10.248.111

200 OK

38 kB

URL HTTP/1.1
mplpuritytesting.com/js/jquery-3.2.1.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (32058)
Size
38 kB (38018 bytes)
Hash
158ed1f63711a0812b7c2b396cbaa6e7
1a6fe374f9c4963adc88db33dd128d324fceb9f2
811e8097bc41bb848b417ed7626ec9f8f8d8b682c664f8f2890ed4b57371e60b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /js/jquery-3.2.1.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

mplpuritytesting.com/js/popper.min.js

216.10.248.111

200 OK

8.2 kB

URL HTTP/1.1
mplpuritytesting.com/js/popper.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (19015)
Size
8.2 kB (8178 bytes)
Hash
65bb6603cd02f2ddaee7aceb4ad45900
8b6cb6f6adfbd115b96b929ff1c7e863ebe08ad1
e57fefa45f83431baee371ea4eb76883c1425343ea79883bef37f2050ec0af64

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /js/popper.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8178
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript

mplpuritytesting.com/css/new-custom.css

216.10.248.111

200 OK

40 kB

URL HTTP/1.1
mplpuritytesting.com/css/new-custom.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
40 kB (39765 bytes)
Hash
e29e2b1e38ec879ae0554c244335d0ce
0f31608151da5721f7b7b0a00dcc14882f3fb6f4
e4dcb8e410e98692e22537814e82a92cacdd70ecbaa55828946aaa03b33f12d2

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /css/new-custom.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css

mplpuritytesting.com/css/style.css

216.10.248.111

200 OK

28 kB

URL HTTP/1.1
mplpuritytesting.com/css/style.css
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
28 kB (28142 bytes)
Hash
fdc67254fb7bab5bd42353c97ba09474
cdf81768d61c98583efcaedca5ee7c4a8b080917
6872f06930dad716064fa6ec523b09dda5ddd7f2a20a61527e966a3c4f554be5

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /css/style.css HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css

mplpuritytesting.com/js/bootstrap.min.js

216.10.248.111

200 OK

20 kB

URL HTTP/1.1
mplpuritytesting.com/js/bootstrap.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (48664)
Size
20 kB (20062 bytes)
Hash
41c54b1bd6691f6bb34afdc5e4272b52
b4333fd2b2c3ba7b2c38af182b3daf4231d69df8
43d6b75b97bf0636c69ea8c48e16dafefe3c602428b22fb4f11384eae7234b2d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /js/bootstrap.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.revolution.min.js

216.10.248.111

200 OK

23 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.revolution.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (32108), with CRLF line terminators
Size
23 kB (23360 bytes)
Hash
2c9aa1ca316dec68533965df66496b34
9d913b7a37d742af5abc8d2d81d26d9fa4050664
50531a63547b561cc142aa5877eefba3d3f4b8605e4525f69e1517b7097d00d9

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/revolution/js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.actions.min.js

216.10.248.111

200 OK

3.1 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.actions.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (8665), with CRLF line terminators
Size
3.1 kB (3085 bytes)
Hash
b511a285a0885b6b51f601f2d6aaefd5
6a1bcb7f28971e485f9dd53222dca8b87f06d188
c35c7b9ee2e92488aa0f2f57dc00d7b5e7ef4b9fd329c31a895d3d5c6b15d1dd

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/revolution/js/extensions/revolution.extension.actions.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3085
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Lora:400,400i,700|Montserrat:300,400,500,600,700|Open+Sans:300,400,400i,600,600i,700|Playfair+Display:400,400i,700,900|Lato

142.250.74.10

200 OK

2.0 kB

URL HTTP/2
fonts.googleapis.com/css?family=Lora:400,400i,700|Montserrat:300,400,500,600,700|Open+Sans:300,400,400i,600,600i,700|Playfair+Display:400,400i,700,900|Lato
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
2.0 kB (1976 bytes)
Hash
2a070831d71d937b1b54cf5ddf4be318
0ee1608d09759f48aa95f3cb5f063963753c4544
08ca6e0b9f213b8e6886925f45b3b27e84e7b18c577253a9954f4196d408d382

HTTP Headers

GET /css?family=Lora:400,400i,700|Montserrat:300,400,500,600,700|Open+Sans:300,400,400i,600,600i,700|Playfair+Display:400,400i,700,900|Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mplpuritytesting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 06:41:02 GMT
date: Fri, 18 Nov 2022 06:41:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.video.min.js

216.10.248.111

200 OK

8.7 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.video.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (23621), with CRLF line terminators
Size
8.7 kB (8742 bytes)
Hash
ccb67b3bf69d2afe8d073fc9d63a409f
99cce8b3d1c137da24c780e11d3f987f015a8e31
bbe713f6fb462b3896e27cbebea8271f1e78dfc54ce375673a66de1105d6f47d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/revolution/js/extensions/revolution.extension.video.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8742
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript

mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.layeranimation.min.js

216.10.248.111

200 OK

17 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.layeranimation.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (32005), with CRLF line terminators
Size
17 kB (16571 bytes)
Hash
ed89d39c792ecba16442d9e325a3bbde
a0ed70bcba7bc08e591efd1bb60127995e2013ca
9e084b0d7376eabdeb14f74a7d36304f0ae9f6078b42376d288749538679552c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/revolution/js/extensions/revolution.extension.layeranimation.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16571
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript

mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.slideanims.min.js

216.10.248.111

200 OK

8.3 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.slideanims.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (28168), with CRLF line terminators
Size
8.3 kB (8251 bytes)
Hash
6b1880b6836107f72a1206d22473388c
bcf4f935fc12470bb85c19ad345292d2d5d4d25a
e3fd7b116d4e64df781e04eadbfbf9acead3dcfe14a9165b352e6a65c843fb4d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/revolution/js/extensions/revolution.extension.slideanims.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8251
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript

mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.navigation.min.js

216.10.248.111

200 OK

9.0 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/revolution/js/extensions/revolution.extension.navigation.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (25832), with CRLF line terminators
Size
9.0 kB (8965 bytes)
Hash
63652e4591ee90c2b9613f0048f47de5
95ee8a968328dfa6a0651ce3c0e3c765c800f41e
f8a981fc822f2b57e4d998f36316219808bd5609f50a5a1369d9367c05cff034

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/revolution/js/extensions/revolution.extension.navigation.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8965
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript

mplpuritytesting.com/vendors/owl-carousel/owl.carousel.min.js

216.10.248.111

200 OK

15 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/owl-carousel/owl.carousel.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (32000)
Size
15 kB (15325 bytes)
Hash
f3be1764bc1ce2c0562ba864362b834b
5b5d080b0b33dc04bcb52e7cb766ff5e814fcdc9
72c97e2253c5617d7a9f872a8cdca78389d604739d67334aa32acfeaef396559

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/owl-carousel/owl.carousel.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15325
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.195

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mplpuritytesting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 05:42:51 GMT
expires: Fri, 17 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 89891
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mplpuritytesting.com/vendors/magnifc-popup/jquery.magnific-popup.min.js

216.10.248.111

200 OK

9.2 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/magnifc-popup/jquery.magnific-popup.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (20087)
Size
9.2 kB (9204 bytes)
Hash
7a10ae63b238729dc4da7f7bd8986219
654c47168dca0ec7080f6c57e8c4482b57f879d4
b782185399b361358f7c409d6f23f22d45f695dcbb63876c35752c7b1de72db3

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/magnifc-popup/jquery.magnific-popup.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9204
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

216.58.207.195

200 OK

48 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Size
48 kB (47952 bytes)
Hash
17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd

HTTP Headers

GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mplpuritytesting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Nov 2022 18:59:14 GMT
expires: Tue, 14 Nov 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 301309
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mplpuritytesting.com/vendors/datetime-picker/js/moment.min.js

216.10.248.111

200 OK

20 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/datetime-picker/js/moment.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (51599), with no line terminators
Size
20 kB (19910 bytes)
Hash
2c67c8986c919d61e98009638f608fc8
bc33f53cc7a9b30dbe6965f8fa0fb41285dd5ae1
8916d10914ffd128fc7270046caa0238f07c5b0636e119769e3af9bdf0597eac

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/datetime-picker/js/moment.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

mplpuritytesting.com/vendors/datetime-picker/js/bootstrap-datetimepicker.min.js

216.10.248.111

200 OK

12 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/datetime-picker/js/bootstrap-datetimepicker.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with very long lines (38264), with no line terminators
Size
12 kB (11736 bytes)
Hash
9552acbeabd92bdde89b90f810a91baa
93a34c6e1d2f18b85a11c671b8b32e58cc9416d6
fcce28874965d2d8d1a4af48118e629be81a3d06942aa0178664997f5319e6eb

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/datetime-picker/js/bootstrap-datetimepicker.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11736
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript

fonts.gstatic.com/s/playfairdisplay/v30/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTXtHA-Q.woff2

216.58.207.195

200 OK

20 kB

URL HTTP/2
fonts.gstatic.com/s/playfairdisplay/v30/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTXtHA-Q.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 19852, version 1.0\012- data
Size
20 kB (19852 bytes)
Hash
f4a1077e8106963f1d754da5103edbe6
c30a6d4441765a61f6b7445956af40bc41cd638a
459b011d89674ed8eed21da90a4ed610aad37ffd6f70460b31ad7da5ee2963cd

HTTP Headers

GET /s/playfairdisplay/v30/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTXtHA-Q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mplpuritytesting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 08:33:32 GMT
expires: Thu, 16 Nov 2023 08:33:32 GMT
cache-control: public, max-age=31536000
age: 166051
last-modified: Mon, 18 Jul 2022 19:09:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2

216.58.207.195

200 OK

36 kB

URL HTTP/2
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Size
36 kB (35764 bytes)
Hash
60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8

HTTP Headers

GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mplpuritytesting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 15:03:06 GMT
expires: Wed, 15 Nov 2023 15:03:06 GMT
cache-control: public, max-age=31536000
age: 229077
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mplpuritytesting.com/vendors/nice-select/js/jquery.nice-select.min.js

216.10.248.111

200 OK

1.1 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/nice-select/js/jquery.nice-select.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (2822)
Size
1.1 kB (1078 bytes)
Hash
bf69aabbddef7b33374d88823a21d5e8
977d3cf2dd7a6a521d9c6bbf3fd2dff99b45f0dd
d394bab6d9739773f85bab494296b0554369598ad00751dba75696aed7945ab5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/nice-select/js/jquery.nice-select.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1078
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:41:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.tools.min.js

216.10.248.111

200 OK

46 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/revolution/js/jquery.themepunch.tools.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (27184), with CRLF line terminators
Size
46 kB (46423 bytes)
Hash
6b48593fde8ca72734af8c266b0c5763
f2226ec03156c4c41357922937a244d6e179e871
3cf8268ba3d4f4e2d0b98b6932e34937f83a9ca48fa3ee106d576b7fbd92f300

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/revolution/js/jquery.themepunch.tools.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

mplpuritytesting.com/js/theme.js

216.10.248.111

200 OK

1.5 kB

URL HTTP/1.1
mplpuritytesting.com/js/theme.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (5937), with no line terminators
Size
1.5 kB (1527 bytes)
Hash
aa4ac5bdac4d07799396bd5ce38c83f9
af42f301cdadb61e440972447d77d8ec589fdc2c
7d21177534ccd8ebade307626b6e78632128e9332782a0e306d57f1e6e4bf9b5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /js/theme.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1527
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript

mplpuritytesting.com/vendors/lightbox/simpleLightbox.min.js

216.10.248.111

200 OK

2.1 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/lightbox/simpleLightbox.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (5526), with no line terminators
Size
2.1 kB (2112 bytes)
Hash
3377fb75ecf1f19659a465294120633d
4ab3b7a1e669df5ebeda344899126f0e34a11ca2
622ff4844b3a019af1ea5006fb1b229e2846d46223b6de6d4fc98005a54c717f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/lightbox/simpleLightbox.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2112
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript

mplpuritytesting.com/img/menu-draw-five.png

216.10.248.111

200 OK

3.9 kB

URL HTTP/1.1
mplpuritytesting.com/img/menu-draw-five.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 1920 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3905 bytes)
Hash
ad55408c84a07bfa3afa5720d443d838
1f3053907c439e0b69ec345144b2464cc4562d81
48686d7749787251cbf60fae01fca79134d539edb543dac6762279a50c29cf0b

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/menu-draw-five.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/css/style.css

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 3905
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/png

mplpuritytesting.com/fonts/fontawesome-webfont3e6e.woff2?v=4.7.0

216.10.248.111

200 OK

77 kB

URL HTTP/1.1
mplpuritytesting.com/fonts/fontawesome-webfont3e6e.woff2?v=4.7.0
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /fonts/fontawesome-webfont3e6e.woff2?v=4.7.0 HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://mplpuritytesting.com/css/font-awesome.min.css

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: font/woff2

mplpuritytesting.com/testing/Food/Foodtest1.jpg

216.10.248.111

200 OK

71 kB

URL HTTP/1.1
mplpuritytesting.com/testing/Food/Foodtest1.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x573, components 3\012- data
Size
71 kB (71444 bytes)
Hash
f178ba4b31011b7172dc3cf12f104114
8d1a1a41f97ba00c96879d923c33a3e31030837b
2475ca2cd670755bde0a926e09074df4cc5d34b5a6314e2f78ae630a087550e2

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/Food/Foodtest1.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 71444
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/Fruits-and-Vegetables/vegtest2.jpg

216.10.248.111

200 OK

42 kB

URL HTTP/1.1
mplpuritytesting.com/testing/Fruits-and-Vegetables/vegtest2.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x800, components 3\012- data
Size
42 kB (41778 bytes)
Hash
c1a2e3f84b1b291e97a6cbfa0eaa76d9
54a8b4d79014eab443007c45ad015e3fa134bcc1
6e59f1d5cfaad263411a172f41cac7f3eb6f181714b695763c9ddb3642c85b46

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/Fruits-and-Vegetables/vegtest2.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 41778
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/about_us.jpg

216.10.248.111

200 OK

26 kB

URL HTTP/1.1
mplpuritytesting.com/testing/about_us.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x260, components 3\012- data
Size
26 kB (25772 bytes)
Hash
0f2992138e5da4eeb4e24de6846290cc
f7e9f1aad96a367f7a9108c1a7a1a998b2201a82
24c100723d2405322fc2a66f2c1a1e544c57973160cea23426ff75ff58d24f13

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/about_us.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 25772
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/beverages/bevtest1.jpg

216.10.248.111

200 OK

66 kB

URL HTTP/1.1
mplpuritytesting.com/testing/beverages/bevtest1.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 900x600, components 3\012- data
Size
66 kB (65636 bytes)
Hash
eaae07257e2a4d2f0db22bf29b967fda
16921f2c2ac3f30bfdf7b70bb8a609f77a26db23
7acd200c3bf41ceac41f2da962f57e13f77e65710d30dcad74a212461219e7d3

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/beverages/bevtest1.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 65636
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/Grains/graintest2.jpg

216.10.248.111

200 OK

21 kB

URL HTTP/1.1
mplpuritytesting.com/testing/Grains/graintest2.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x300, components 3\012- data
Size
21 kB (21167 bytes)
Hash
104ab78317a04526ebe87a8341404853
a855cab0dcb304cfd98cfb886e631091deb3cd64
406fcec5f255c0aff4c2de9a5d87b0c88530c3f4be2c44a487fa22d1ab57f1f8

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/Grains/graintest2.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 21167
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/vendors/jquery-ui/jquery-ui.min.js

216.10.248.111

200 OK

92 kB

URL HTTP/1.1
mplpuritytesting.com/vendors/jquery-ui/jquery-ui.min.js
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (33326)
Size
92 kB (91528 bytes)
Hash
0bb34f506041f6fb63d921c958e7a244
aed025c30a22d22cb8dbff82c898caf8db87abe2
c6c9593cde10c89e5d53a64620bd4bfac7807ae357cfcfae1351e80da56aaa05

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /vendors/jquery-ui/jquery-ui.min.js HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

mplpuritytesting.com/testing/Metal/metaltest3.jpg

216.10.248.111

200 OK

40 kB

URL HTTP/1.1
mplpuritytesting.com/testing/Metal/metaltest3.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 716x487, components 3\012- data
Size
40 kB (40540 bytes)
Hash
99ba33750d968c2c08072f69c1576b71
0233fd9fd54d247096f2eecbc6bfb4d89ac53b4c
ad0aeb0818c03ae92561308291e8c4817370a587941d00c6a968a517c2bf3d44

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/Metal/metaltest3.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 40540
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/img/imperial-img.png

216.10.248.111

200 OK

11 kB

URL HTTP/1.1
mplpuritytesting.com/img/imperial-img.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 193 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10667 bytes)
Hash
6cef0e46966e530b608f5d46ada7ce97
bf386ca564f5925fdbf7c38d7289011d21515729
ccae40e39e27af30f5113a5730e0740d1b790b5daf2433a458d1bb4ae993f7ab

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/imperial-img.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 10667
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/png

mplpuritytesting.com/testing/chemical/chemtest1.jpeg

216.10.248.111

200 OK

95 kB

URL HTTP/1.1
mplpuritytesting.com/testing/chemical/chemtest1.jpeg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 2560x1440, components 3\012- data
Size
95 kB (94552 bytes)
Hash
f6f24deca0b22e0e079676f923fd8b5e
cd921ed9873c35cbe0001980ed9d613703b30584
b4c8aee18a09ade2e72cee6f8681926a0499fe561c73c925a5104624383b7f68

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/chemical/chemtest1.jpeg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 94552
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/Watertesting/watertest1.jpeg

216.10.248.111

200 OK

51 kB

URL HTTP/1.1
mplpuritytesting.com/testing/Watertesting/watertest1.jpeg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x853, components 3\012- data
Size
51 kB (50778 bytes)
Hash
7c1487d9fb778a348ac91b07fcbb5c2e
3abd66a2da410eaafb7273d12ec402aaee3dba25
86750e77dd876fd513c9b8ce2c07d5edb37052c827433332aef15a7379a063ac

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/Watertesting/watertest1.jpeg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 50778
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/milk-and-Diary/milktest1.jpg

216.10.248.111

200 OK

45 kB

URL HTTP/1.1
mplpuritytesting.com/testing/milk-and-Diary/milktest1.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1470x445, components 3\012- data
Size
45 kB (45090 bytes)
Hash
045acf7c3ff6cf7195e986fe630a2bd8
545330a45aabfb87d2aaa5efce6a08ac9005c86c
a3a54275008e458d7bb957897b81c161914953187a3316725bb3ccf9fdd3993b

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/milk-and-Diary/milktest1.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 45090
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/chemical/chemtest2.jfif

216.10.248.111

200 OK

136 kB

URL HTTP/1.1
mplpuritytesting.com/testing/chemical/chemtest2.jfif
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2048x1365, components 3\012- data
Size
136 kB (135481 bytes)
Hash
8586973e05549803e5a3bd3bb0892564
bffb74cdb790b159b0d10459fb266e0adbeb1c77
ada278c642f666854618ede60f8ba6b5da5af3a2807c06f73c58f9c17cdf304c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/chemical/chemtest2.jfif HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 135481
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15031
Expires: Fri, 18 Nov 2022 10:51:34 GMT
Date: Fri, 18 Nov 2022 06:41:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15031
Expires: Fri, 18 Nov 2022 10:51:34 GMT
Date: Fri, 18 Nov 2022 06:41:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15031
Expires: Fri, 18 Nov 2022 10:51:34 GMT
Date: Fri, 18 Nov 2022 06:41:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15031
Expires: Fri, 18 Nov 2022 10:51:34 GMT
Date: Fri, 18 Nov 2022 06:41:03 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5198 bytes)
Hash
93b326374b3808d0af42e295643cdc14
dd691328acf190c745465208f18a41a75878df18
224ac3995e2e78ee5fcc6c5c3d5fb1f4b0ceca1c42b7a1a493c756aa199bf75f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5198
x-amzn-requestid: ba4e00c8-a996-41f3-b15a-1e304907ca2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9UpH1ioAMF6ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ea-2f9f794c4de03f8b212e072f;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LPflGHjoeNg1X5EszKAaziaZsKFf5hT6LeNPpZQriZ5H1z7Zhh86Ow==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:57 GMT
age: 31506
etag: "dd691328acf190c745465208f18a41a75878df18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7539 bytes)
Hash
55801be30fc7e7d24ba2418d00ce4ca2
31935f7d11269f0f4177a48d2c166e09fec1f377
05e58892cab261aca3abe7e29ff482b51f5f7e4261b8579e7b9f85487f53eeda

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7539
x-amzn-requestid: 96d0ad29-0b25-4e4b-93ea-da9fde83aa8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9V5E2boAMFbiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8f2-33f7f4592f8574486987e233;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: r1X3PUyrso5VkyphYHqBQdYo6lmmIvTQdA_kPA5I-lds8qn9RtEIpw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:38 GMT
etag: "31935f7d11269f0f4177a48d2c166e09fec1f377"
content-type: image/jpeg
age: 30925
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11715 bytes)
Hash
cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZLWa-RphwZqiAmeqffmEE8Mmfsfs9ZYz0bmANBEc5Ru1--VKDL4Fsw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 15:59:54 GMT
age: 52869
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7631 bytes)
Hash
b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qpoQa1Lhe-h27dGooXDCtujesSTg7Tb0Ov-PNLnUP0288ZofwHxkhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:40 GMT
age: 31703
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6339 bytes)
Hash
4998f097d23ee5f19cae27d5b938e5fc
4369c8ebe61b9944e639bb2731feb51c5a758fe7
5691c66766c9578e9c4aa71240608653821162c668abc63ee40e553ede2450e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6339
x-amzn-requestid: 0be5dee5-272d-4577-ba55-5cdb7935ea60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-MCExBoAMFz6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa4c-15fd613336aa6fcb165d0b26;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NYs-Nf0PzWqhXP5nkvanTjhJ6vfwRIU--YD06RFIGPEuwDCu6fvEPg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:40 GMT
age: 31703
etag: "4369c8ebe61b9944e639bb2731feb51c5a758fe7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, CFF, length 1380, version 1.0\012- data
Size
5.1 kB (5139 bytes)
Hash
5e9b5dda990fa32a5533b23b74a77d7a
2d1b665774000f8298aa56978f57edefe181eb44
7b643dc09fdf07adc55fe0a95e0862711f1f5a993cf61f92fe19d314e33d7a57

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:50:49 GMT
age: 31814
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

mplpuritytesting.com/testing/Metal/metaltest1.jpg

216.10.248.111

200 OK

41 kB

URL HTTP/1.1
mplpuritytesting.com/testing/Metal/metaltest1.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x368, components 3\012- data
Size
41 kB (41024 bytes)
Hash
2a5b1b99ed04ede4c4a711d793ea85b3
73f23df579dc68192e52b63e992d255375b8de9f
59229df12ee872f053ccb8a28f240b78f876871c71203fa6992013897519b10c

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/Metal/metaltest1.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 41024
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/Fruits-and-Vegetables/vegtest1.jpg

216.10.248.111

200 OK

170 kB

URL HTTP/1.1
mplpuritytesting.com/testing/Fruits-and-Vegetables/vegtest1.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1274, components 3\012- data
Size
170 kB (170044 bytes)
Hash
93355a6d756a1e4adcf72e79a7c02565
bb4b1a7a77229101d646bb394ada872588a81006
23d58a64a71a57c6310fc64cd9d530bff21a32d3417d91c89c2011090a38e0a1

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/Fruits-and-Vegetables/vegtest1.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 170044
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/Grains/graintest1.jpeg

216.10.248.111

200 OK

65 kB

URL HTTP/1.1
mplpuritytesting.com/testing/Grains/graintest1.jpeg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x1024, components 3\012- data
Size
65 kB (65311 bytes)
Hash
2f55d13be7778c3cdb1c5fcc28eee938
d8ef75bcac7d831708c032fac0c4d0295cc14d4f
04089a97af94a227a56c6de2ba0a880edcb9ae2cd913b496844bf8467c058c7b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/Grains/graintest1.jpeg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 65311
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/milk-and-Diary/milktest2.jpg

216.10.248.111

200 OK

19 kB

URL HTTP/1.1
mplpuritytesting.com/testing/milk-and-Diary/milktest2.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Size
19 kB (19160 bytes)
Hash
eefef90e00c587f256f0f405d7496a45
d91dfff31d482927fa0621edf8f7983c23052ee3
351c47dcd3e2fc692ac081ed397870bf4285a44db2e8b667a10c2866c8265d27

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/milk-and-Diary/milktest2.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 19160
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/beverages/brevages-ban.jpg

216.10.248.111

200 OK

164 kB

URL HTTP/1.1
mplpuritytesting.com/testing/beverages/brevages-ban.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size
164 kB (164306 bytes)
Hash
4b635bc78338b1ed91adc828a5d77a3a
0c923af35946c711af2ce9f087b598e230fd92cc
777d6ff56ab7462a21939009309a7b88d5fe21708d8b4bf6efde2fe969818add

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/beverages/brevages-ban.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 164306
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/processed-foods/protest3.jpg

216.10.248.111

200 OK

58 kB

URL HTTP/1.1
mplpuritytesting.com/testing/processed-foods/protest3.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 409x235, components 3\012- data
Size
58 kB (58382 bytes)
Hash
24ca3d4c546649779de04c7b12b1f7f0
aa8e615be980cb3de2edfb2304073ebfb835629e
a8041ec9ae8c362bf2160372ae98b8e707c4edb06bc54b459bd2fc8caa3f3ea8

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/processed-foods/protest3.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 58382
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/Watertesting/Watertest3.jpg

216.10.248.111

200 OK

26 kB

URL HTTP/1.1
mplpuritytesting.com/testing/Watertesting/Watertest3.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x333, components 3\012- data
Size
26 kB (25872 bytes)
Hash
6f1f01a7777d9e2b8f0819b807a7f604
a7fa0fd8ae44f1fe43dccbcab71b57112aa79845
6518d9f44193330397cef1db9507075d2692c96329a1554a37ca344e40b80dad

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/Watertesting/Watertest3.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 25872
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/Oil/oiltest1.jpg

216.10.248.111

200 OK

28 kB

URL HTTP/1.1
mplpuritytesting.com/testing/Oil/oiltest1.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x333, components 3\012- data
Size
28 kB (27989 bytes)
Hash
6d48f66eba42befe3b081593c0e7373d
6c06a11093b94fae7aced2458caeed05d639341d
97177f3319ce68c78a2ecc977366f69b4943dc346343c249125f74923a802891

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/Oil/oiltest1.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 27989
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/img/lab-pouring.jpg

216.10.248.111

200 OK

195 kB

URL HTTP/1.1
mplpuritytesting.com/img/lab-pouring.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 5184x2869, components 3\012- data
Size
195 kB (194577 bytes)
Hash
0c83f21cd1f43f7908ff321a42757aaa
c7d749021e152a9f295400552c70a8a619e28188
53c67d598d7a7d62d9feda1c4b716e7bbe2cef9970a6552f0658246e1553f873

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/lab-pouring.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/css/style.css

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 194577
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/testing/Oil/oiltest4.jpg

216.10.248.111

200 OK

147 kB

URL HTTP/1.1
mplpuritytesting.com/testing/Oil/oiltest4.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size
147 kB (147332 bytes)
Hash
ae7d97c570e0ac0b00f8e961a2a40b58
bf8e66bc694fa2e616f5673f0c6baae0f41f63ad
1b26da5cdde2907a9de5d752baab9fa7f126b73ca483f2f9b88cea11faa85eb1

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/Oil/oiltest4.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 147332
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/img/client-slider/Western-Railway.jpg

216.10.248.111

200 OK

51 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Western-Railway.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 220x220, segment length 16, baseline, precision 8, 599x299, components 3\012- data
Size
51 kB (51150 bytes)
Hash
783fae91c35ba8d5b1bd051391a7ed9c
d4de3168f03e2a4bf7b847a6ee831bcb6371892c
874452ca49b8c2d4b01a7b71d5cc8c36583747f0336e4369ee16e0551acdcad0

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Western-Railway.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 51150
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/img/client-slider/Indian-Oil-Corporation.png

216.10.248.111

200 OK

28 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Indian-Oil-Corporation.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 598 x 313, 8-bit/color RGBA, non-interlaced\012- data
Size
28 kB (28235 bytes)
Hash
a820ece11a662804890b8187ff1942d1
bed0153e2a7c028b9acb2ab64a984c68392c382b
744553f37b4d60e703d1542c4a79d437102561275b804dc68f500dece5c07a85

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Indian-Oil-Corporation.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 28235
Keep-Alive: timeout=5, max=60
Connection: Keep-Alive
Content-Type: image/png

mplpuritytesting.com/img/client-slider/Larsen-Toubro.jpg

216.10.248.111

200 OK

17 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Larsen-Toubro.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 630x390, components 3\012- data
Size
17 kB (17045 bytes)
Hash
fd44d9b9f4d304fa089b8ba3a0be8a44
577d41be05e7b1ae1eff6d7a02afc9b5579531e4
bfa23ab6dbe0a8bafac120a206ebc3f4e99f65d2e65ac8cddb0484e753893c41

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Larsen-Toubro.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 17045
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/img/client-slider/Nilkamal-Plastics.png

216.10.248.111

200 OK

22 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Nilkamal-Plastics.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 735 x 343, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (21679 bytes)
Hash
91d453724db1acc5e5a7c254e06fcc12
b33f9b9136db67cd6476ad1564de0a029f19584a
64093247c5166f8716a4484c1960e2967a5178abd3cee02d79449065ef3ba80d

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Nilkamal-Plastics.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 21679
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/png

mplpuritytesting.com/img/client-slider/Jones-Lang-LaSalle.png

216.10.248.111

200 OK

16 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Jones-Lang-LaSalle.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 757 x 304, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (16380 bytes)
Hash
8ac315a230e859652fc7ee9c05c97c04
abb54c926a42d65adedff1c4694b6572f505877c
c7489eaf258e4e7c8f2e50ad21db8686042b755c1b6bec9cd05e9c77926a7ef3

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Jones-Lang-LaSalle.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 16380
Keep-Alive: timeout=5, max=59
Connection: Keep-Alive
Content-Type: image/png

mplpuritytesting.com/img/client-slider/Altantium-Technologies.png

216.10.248.111

200 OK

11 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Altantium-Technologies.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 583 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10909 bytes)
Hash
ceae7f2f7cb7aebc3d91acc1e4d0b4ab
1df70c83fba97c5c69aef407d02645762e3b5c81
0e6fa196e53fa19adde993d00b554cc32c5360bd840aa4960f7ff6c66ca89548

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Altantium-Technologies.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 10909
Keep-Alive: timeout=5, max=58
Connection: Keep-Alive
Content-Type: image/png

mplpuritytesting.com/img/client-slider/HDFC-Bank.jpg

216.10.248.111

200 OK

24 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/HDFC-Bank.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 220x220, segment length 16, baseline, precision 8, 464x271, components 3\012- data
Size
24 kB (23551 bytes)
Hash
5588780cfdf1e79f28baa1454bc6ad64
bd494da9b2bb5097304a1ef161fe9a6425cb6bce
2833698d0177a3686484c5ef653b51949dad71b45afbb1fc7f0eb23a791684b7

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/HDFC-Bank.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 23551
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/img/client-slider/Niva-Bupa.png

216.10.248.111

200 OK

40 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Niva-Bupa.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 495 x 278, 8-bit/color RGB, non-interlaced\012- data
Size
40 kB (40135 bytes)
Hash
9f78c86a21db356cba15eb79127c0571
acb3c810bb486acd73b186ff5c878e4db97d9d81
e427979f9aa97ff79734ef11e98afb4acd5a59ca2834126d89a44e335516d11d

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Niva-Bupa.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 40135
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/png

mplpuritytesting.com/img/client-slider/Bharat-Petroleum.png

216.10.248.111

200 OK

19 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Bharat-Petroleum.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 495 x 365, 8-bit/color RGBA, non-interlaced\012- data
Size
19 kB (19384 bytes)
Hash
9d43b080bb8b5edf4d3883289d47c43f
8dc5f4f3423e12add30a0d5011c969ee8590bdc3
4adb010eb017b6732baaa84031bb553a211793b1b48f042158fb70701968826f

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Bharat-Petroleum.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 19384
Keep-Alive: timeout=5, max=57
Connection: Keep-Alive
Content-Type: image/png

mplpuritytesting.com/testing/TestingBusiness/tb5.jpg

216.10.248.111

200 OK

2.7 MB

URL HTTP/1.1
mplpuritytesting.com/testing/TestingBusiness/tb5.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 9344x7200, components 3\012- data
Size
2.7 MB (2712756 bytes)
Hash
d5e2257ee4fd11f105fdfe92e2c0509e
068ad4a759e65e3a2dd5231d951a8ec13dc60555
84c01b114cf9f763f53fbdbf2e9bea257cdf4b1d52ebf80afd3acb0facaacaff

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/TestingBusiness/tb5.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 2712756
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/img/client-slider/Alcazar-Hospitality.png

216.10.248.111

200 OK

3.3 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Alcazar-Hospitality.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 224 x 224, 8-bit colormap, non-interlaced\012- data
Size
3.3 kB (3273 bytes)
Hash
1d85d00abfc21d73c1f14f3068ec0a2c
b73c1b78187fe5336c6e26ea09bd1032a17c70f7
b86f839454cc0c8449c440a2ee92adc9aff8bfde415f18565ccf718f866238fa

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Alcazar-Hospitality.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 3273
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/png

mplpuritytesting.com/img/client-slider/Reliance-Retail-Limited.png

216.10.248.111

200 OK

11 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Reliance-Retail-Limited.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Size
11 kB (10584 bytes)
Hash
f4202ca7edcd6c496c6f1dbf7d580151
8b384a1e0643968e4070fe5ef3e9a25a73378b80
8599292379bf688bd063857bb1e50c2d94b4c84b8a46a20be4cd98e8f933ff51

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Reliance-Retail-Limited.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 10584
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: image/png

mplpuritytesting.com/img/client-slider/Matrimony.com.jpg

216.10.248.111

200 OK

42 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Matrimony.com.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 220x220, segment length 16, baseline, precision 8, 789x245, components 3\012- data
Size
42 kB (41478 bytes)
Hash
0c23a9a7bf9a8308b94dbb2147bef9a8
578e35e17303458696ec5999ce1dfa3ab9d492db
bef5d085a3cf1fb2e6677234705906f2fc51983d7f1482bdc42901f1dbc0d2d7

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Matrimony.com.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 41478
Keep-Alive: timeout=5, max=56
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/img/client-slider/Reliance-Footprint.jpg

216.10.248.111

200 OK

17 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Reliance-Footprint.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 400x282, components 3\012- data
Size
17 kB (16653 bytes)
Hash
1f29a58098886fb71ac72954a2eefd78
d1d97c5507f016417fb63c4fed41ec10aacee6bb
1c349e796887b1eb080a4b0d0ec8e941d2257a554cc5fcb86dba2a1250741a94

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Reliance-Footprint.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 16653
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/img/client-slider/Shapoorji-Pallonji.png

216.10.248.111

200 OK

9.0 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Shapoorji-Pallonji.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 300 x 168, 8-bit colormap, non-interlaced\012- data
Size
9.0 kB (8981 bytes)
Hash
f2c8db1f1c73b763dbb2c20f5fce3708
cf9fa4703b31a32d2d022b8287728f715e02599f
2c01e635d1d63c1dc326f367a8d5c5a116e76ef809091cd0bc7edb2dbc4cfeb5

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Shapoorji-Pallonji.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 8981
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Content-Type: image/png

mplpuritytesting.com/img/client-slider/Sai-Service.png

216.10.248.111

200 OK

4.7 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Sai-Service.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 225 x 225, 8-bit colormap, non-interlaced\012- data
Size
4.7 kB (4728 bytes)
Hash
1a09c4f538e6bd258b3148a79a5e60ad
4f05af946797b6b301adda2f81c4492c86c954d2
3836b48e1785c3c623c44efeddb112579e8e4f2a7a2cb7e7e7949238e045b0ba

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Sai-Service.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 4728
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/png

mplpuritytesting.com/img/client-slider/World-Trade-Center-Mumbai.jpg

216.10.248.111

200 OK

7.4 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/World-Trade-Center-Mumbai.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 225x225, components 3\012- data
Size
7.4 kB (7416 bytes)
Hash
48bad4e2501de79e74c9e1946d3690d6
9955a914b5cf6210dc49c81b17a0d858d0967ee0
959032d343ed9b83bcfb7ca657e9c1321c3f38bacd7b8da24c53912796aa5764

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/World-Trade-Center-Mumbai.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 7416
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/img/client-slider/N.L.-Dalmia-Educational-Society.jpg

216.10.248.111

200 OK

49 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/N.L.-Dalmia-Educational-Society.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 220x220, segment length 16, baseline, precision 8, 771x472, components 3\012- data
Size
49 kB (49139 bytes)
Hash
f87dc0074d740a6635710e022f428df7
320116687033ce0dfeebffb1133ee52e3665b4ae
a966105a0ef091f39057a61b7ab4b277b650160db4ab2a1e3f81beb6c2877d80

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/N.L.-Dalmia-Educational-Society.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:06 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 49139
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/img/client-slider/Tata-Consulting-Engineers-Limited.jpg

216.10.248.111

200 OK

37 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Tata-Consulting-Engineers-Limited.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 220x220, segment length 16, baseline, precision 8, 615x360, components 3\012- data
Size
37 kB (36866 bytes)
Hash
289fc6ee64e0c677f68513a26447b851
5b9f454a9942e1e2b0c7bcf478004915ecea9c3b
59f41810d2b054d04d94c526164c4963dec57f1a9c4d63b7861ed013ad37677a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Tata-Consulting-Engineers-Limited.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 36866
Keep-Alive: timeout=5, max=55
Connection: Keep-Alive
Content-Type: image/jpeg

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mplpuritytesting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 18 Nov 2022 04:41:09 GMT
expires: Fri, 18 Nov 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 7197
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mplpuritytesting.com/testing/TestingBusiness/tb7.jpg

216.10.248.111

200 OK

2.0 MB

URL HTTP/1.1
mplpuritytesting.com/testing/TestingBusiness/tb7.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 7807x5207, components 3\012- data
Size
2.0 MB (1993667 bytes)
Hash
356d58e45f5d7dda3e8a3d69269a342b
ae3fbeb01c299e36f1b7128970b5473a3b3ffb01
7e1abb212ca62d41b49bf03f282a375787ca13a45771ae57912553b8c60fa8c0

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/TestingBusiness/tb7.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 1993667
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/jpeg

mplpuritytesting.com/img/client-slider/Reserve-Bank-of-India.png

216.10.248.111

200 OK

320 kB

URL HTTP/1.1
mplpuritytesting.com/img/client-slider/Reserve-Bank-of-India.png
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 603 x 612, 8-bit/color RGBA, non-interlaced\012- data
Size
320 kB (319891 bytes)
Hash
38108bbccad585f62035a0329a31dfa8
05cf9af916e828ac3a2784292ce3552c6a501b88
38166da6720830e640559579c407ad447b6339f940333727d7adbdd47331fc51

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /img/client-slider/Reserve-Bank-of-India.png HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:05 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 319891
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/png

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08ef698a-56d7-4f19-be41-17c1eca0ce7b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8644 bytes)
Hash
6672a5b26995975d4c7a589daf121490
b48bffb7c716db7c05dc2e74ffbc49f89e7f4c24
8d23d01e100d958dc1ae0f8f3cd39c2bc40c19c75a560c4df5ba9ce1de247615

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08ef698a-56d7-4f19-be41-17c1eca0ce7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8644
x-amzn-requestid: 989e9461-ddcc-4a41-8d88-d86dfa891899
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9UqERtoAMFUow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ea-40b5695c1a052c3a0bd03458;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: j-FsOPbQyKGUzW06HOBWpRb-VIB6dSNf2Dja2ZwtbQaOFs6aJ7MXqw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:43 GMT
age: 31527
etag: "b48bffb7c716db7c05dc2e74ffbc49f89e7f4c24"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

mplpuritytesting.com/testing/spices/sps3.jpg

216.10.248.111

200 OK

0 B

URL HTTP/1.1
mplpuritytesting.com/testing/spices/sps3.jpg
IP
216.10.248.111:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /testing/spices/sps3.jpg HTTP/1.1
Host: mplpuritytesting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mplpuritytesting.com/

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:41:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 7296578
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (24)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations