| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hasheb76c0b3adf4098ad8a9d1e38250758f 99610ddb2b4ec6d04250ac244f966951695d4f00 01ed8c191c175471aee23cbc196d558e5bf5209f166806fc97db08eb06544bab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01ED8C191C175471AEE23CBC196D558E5BF5209F166806FC97DB08EB06544BAB"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16359
Expires: Sat, 19 Nov 2022 23:51:48 GMT
Date: Sat, 19 Nov 2022 19:19:09 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashf732c50f6a2482aeea20552e0370c2d0 6f33119d5c38e92a0a62f3a46766ff86014e4d68 a47e38c199c5fecd5594544a3889e1cfca5547d85f19056f06eaeeadf17f4fe9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5245
Cache-Control: max-age=146369
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:19:09 GMT
Etag: "6378b071-1d7"
Expires: Mon, 21 Nov 2022 11:58:38 GMT
Last-Modified: Sat, 19 Nov 2022 10:31:13 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash1cee7787feebac18f9eca273e56e3741 3a7dac544172921e24c2a1701beef5079b21d01b 79ff4a450c749d64e116c00ca3b00d40e968906c5c3881d6eeb2dc6374a4c858
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "79FF4A450C749D64E116C00CA3B00D40E968906C5C3881D6EEB2DC6374A4C858"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13903
Expires: Sat, 19 Nov 2022 23:10:52 GMT
Date: Sat, 19 Nov 2022 19:19:09 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash4d7e4eed097b9c4e5d509419f1cfc85a 290bb3d428a7c6330e2e3d73a952b16f820896c8 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 19 Nov 2022 18:45:10 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2039
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3CZWzKUqWLjQeWHsIGGUgdDQugvQKSUCvq3a3aolGBOZpyp388k2RFdfuY3Ov84Ta2f8EyMeh7k=
x-amz-request-id: Q0XG6K8X5BX9H2VE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 19 Nov 2022 18:38:25 GMT
age: 2444
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 19:19:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 19 Nov 2022 18:44:49 GMT
cache-control: public,max-age=3600
age: 2060
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 472 B |
IP172.64.155.188:0
Hash0bbd773739d481035d5756de6e86fe4b 2602368bc8e921c1db12f98df83dc47b7fe78264 6a6aa403139753b5324ba42cc8c7dbd8bead2ee6711e91d4100de2a22aaa3607
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 19:19:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2022 22:14:28 GMT
Expires: Fri, 25 Nov 2022 22:14:27 GMT
Etag: "2602368bc8e921c1db12f98df83dc47b7fe78264"
Cache-Control: max-age=528317,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76cb4bbbc8a00b69-OSL
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash060d538b33e370fcd033339830d33a42 4a37d427988358eb318e18e2678c3484ef4a5ebd efa33f92547243814b5bd3bca4f94d26055d590a4431611b3ba251a8d774bfbb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3900
Cache-Control: max-age=139963
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:19:09 GMT
Etag: "63789cac-1d7"
Expires: Mon, 21 Nov 2022 10:11:52 GMT
Last-Modified: Sat, 19 Nov 2022 09:06:52 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 52.89.217.163 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.89.217.163:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3xPMZqwJzQ512Va8SRQceA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9/SNXLyZY5/jzyHOmYD4AWJPdzU=
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf7c5da16d7c4384a4c2454d6b0d84710 69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12109
Expires: Sat, 19 Nov 2022 22:41:00 GMT
Date: Sat, 19 Nov 2022 19:19:11 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf7c5da16d7c4384a4c2454d6b0d84710 69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12109
Expires: Sat, 19 Nov 2022 22:41:00 GMT
Date: Sat, 19 Nov 2022 19:19:11 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf7c5da16d7c4384a4c2454d6b0d84710 69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12109
Expires: Sat, 19 Nov 2022 22:41:00 GMT
Date: Sat, 19 Nov 2022 19:19:11 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf7c5da16d7c4384a4c2454d6b0d84710 69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12109
Expires: Sat, 19 Nov 2022 22:41:00 GMT
Date: Sat, 19 Nov 2022 19:19:11 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c537d4-e03f-4ec6-8922-6dce72c72ab9.jpeg | 34.120.237.76 | 200 OK | 4.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c537d4-e03f-4ec6-8922-6dce72c72ab9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash459df915ce91b32b2dcc4850516d68a0 d7a5473d367e7965a4af55acbf4675ed7088fab2 a03e26ebee79ad9b9dda1bf680e0d2467ae6d5e582589ada9fe6ddfa437c483c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c537d4-e03f-4ec6-8922-6dce72c72ab9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4851
x-amzn-requestid: 8c868655-d0eb-428d-9fc0-a7449f770bd4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brtDFF9HoAMFV9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748ee0-4f7daf8f7451dc5e0840f620;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:18:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xirMw5z5GPbmx9Sii_I4iNeh1GS5k9lGmaaJvUGAPWoVyP0Tldhf1w==
via: 1.1 e9ba0a9a729ff2960a04323bf1833df8.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 07:17:42 GMT
age: 43289
etag: "d7a5473d367e7965a4af55acbf4675ed7088fab2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf7c5da16d7c4384a4c2454d6b0d84710 69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12109
Expires: Sat, 19 Nov 2022 22:41:00 GMT
Date: Sat, 19 Nov 2022 19:19:11 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F680965e1-a075-4bd9-8788-73e1a3c92de2.jpeg | 34.120.237.76 | 200 OK | 3.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F680965e1-a075-4bd9-8788-73e1a3c92de2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2e9f6e24e829065d4f201b4c9d9c8fd1 317ec439968641329b83210f7fcab59023310077 d1d304d12f3e1c2ad9cf9279bbb7cab4a954942ab86f41d5333e030cdc7a55c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F680965e1-a075-4bd9-8788-73e1a3c92de2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3842
x-amzn-requestid: 8effd7ec-299f-471f-8746-3cb81d94998b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: boYBREE6oAMFmfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63733a07-46160f6159dfb4a729e5d688;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 07:04:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 37fj6lqvqFTCEPkclxpI6OuYvlIB57GI2bS4wySNP3X4eQ3Lwy3WQA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 10:26:23 GMT
age: 31968
etag: "317ec439968641329b83210f7fcab59023310077"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb1ea6fe-f968-42eb-9bb6-5965ae4e6ce6.jpeg | 34.120.237.76 | 200 OK | 7.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb1ea6fe-f968-42eb-9bb6-5965ae4e6ce6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe5fb6d72b647aabea33ab4017f4a0847 ed93ac946111340a254b92f8ce27e8be93ae87e8 0782ed4ffaea8f9487461d5a9b0c241d30dfe057676753b24e180d0a94efad99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb1ea6fe-f968-42eb-9bb6-5965ae4e6ce6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7045
x-amzn-requestid: e8dace8b-0cc8-4ea0-b47a-e42a66576f72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-K3EuCIAMFsmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa45-71c191e462be52006858817b;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: S0Sq8vuP-MbcuYVx_WFXTkmrY966mBTY1Qpowx_E_to1tDk1b8R-Bw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:49:21 GMT
age: 77390
etag: "ed93ac946111340a254b92f8ce27e8be93ae87e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb2b393e36ee2c9649d90db136aa49542 e88c5832ff0c49bab181d948c3a510d88343bb6f 8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WpaBFpaCu0GBiHiiQzCCsyXrA7uzesHS92c_PsgxROxPkqjZ8RyI6Q==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:52:45 GMT
age: 77186
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg | 34.120.237.76 | 200 OK | 8.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc8f6118fc03f31862ff68fef8a2b9a7f 318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73 cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f3c55266-9b03-4b7f-b076-fdf56704318e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QQyECioAMFzdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6b-3e10cef6117a10a4115cfce7;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9FO1gkdftjvJFDvAlxwLD63BP-liwnS2MImVhVdjg83wi4xJdM73Kg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:36:25 GMT
age: 78166
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg | 34.120.237.76 | 200 OK | 3.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd6b026c34985bbf2ebf89a62d0724c66 72369ebeccf447fa91ef77711d6297063c99777e e5598ada634274ab9995dedda8c1fd18344abcfdd49b3a1aaede0a86fafc0f40
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3035
x-amzn-requestid: 3e3f3a7f-9a1d-4b37-b932-22c6e3e638f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QRcFOuoAMF_fQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6f-09dc20ea5620dd167e3f7265;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xvVfLfP2DUilu7GSJMGArO90Kdoq5cPBVtmtyVjZmX5ZKnvOjpR_UQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:36:25 GMT
age: 78166
etag: "72369ebeccf447fa91ef77711d6297063c99777e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| mascotahub.com/ena/index.php?e=qbot.zip | 198.187.29.26 | 301 Moved Permanently | 0 B |
URL HTTP/2mascotahub.com/ena/index.php?e=qbot.zip IP198.187.29.26:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /ena/index.php?e=qbot.zip HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://mascotahub.com/ena/?e=qbot.zip
x-litespeed-cache: miss
content-length: 0
date: Sat, 19 Nov 2022 19:19:12 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash07caf241d63e15426cd26434ef88e9dd ec289ab860ffccd49ce9a62d2c47c59dc181fbd5 d1f4bc6604b8a399049b5943d23dbfb842d9a100bf6f5c71e91a27cd3588cecb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash07caf241d63e15426cd26434ef88e9dd ec289ab860ffccd49ce9a62d2c47c59dc181fbd5 d1f4bc6604b8a399049b5943d23dbfb842d9a100bf6f5c71e91a27cd3588cecb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash5e884c53db72411f06e2209d005f7586 6e1049a7fc26d6a3259a97bfca9dc6ba7b0dd5af 2965603dd297987ffa36ffd33c133f2c6a67fa6df1551554160b65ce804b0198
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash5e884c53db72411f06e2209d005f7586 6e1049a7fc26d6a3259a97bfca9dc6ba7b0dd5af 2965603dd297987ffa36ffd33c133f2c6a67fa6df1551554160b65ce804b0198
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash07caf241d63e15426cd26434ef88e9dd ec289ab860ffccd49ce9a62d2c47c59dc181fbd5 d1f4bc6604b8a399049b5943d23dbfb842d9a100bf6f5c71e91a27cd3588cecb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/recaptcha/api.js?hl=en_US&onload=agrLoad&render=explicit | 142.250.74.164 | 200 OK | 574 B |
URL HTTP/2www.google.com/recaptcha/api.js?hl=en_US&onload=agrLoad&render=explicit IP142.250.74.164:0
File typeASCII text, with very long lines (902), with no line terminators Hash3496b8a73c9f424d3c22be886c5d6429 39efd9ac4feb76e51da77ddefd07d3b2d4889173 7e49229559e0dad9019a407066941bcd4ab908fdfd68f0c04b60bfa4616d84af
GET /recaptcha/api.js?hl=en_US&onload=agrLoad&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 19 Nov 2022 19:19:14 GMT
date: Sat, 19 Nov 2022 19:19:14 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 574
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js?render=6Lci8O0iAAAAAHTYmXVw0ByN8pHDDl_2k2mNCrpf | 142.250.74.164 | 200 OK | 582 B |
URL HTTP/2www.google.com/recaptcha/api.js?render=6Lci8O0iAAAAAHTYmXVw0ByN8pHDDl_2k2mNCrpf IP142.250.74.164:0
File typeASCII text, with very long lines (884), with no line terminators Hash321caba28af1d298f49f2f121589ab3f 041c1e5e5a4756f381b0e1e0d9f5f13f4ab19cb7 d8889c9ede848130fb3e5d7ac8835e0f528355ffcbdab8a3c2169d48958bb07c
GET /recaptcha/api.js?render=6Lci8O0iAAAAAHTYmXVw0ByN8pHDDl_2k2mNCrpf HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 19 Nov 2022 19:19:14 GMT
date: Sat, 19 Nov 2022 19:19:14 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 582
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash07caf241d63e15426cd26434ef88e9dd ec289ab860ffccd49ce9a62d2c47c59dc181fbd5 d1f4bc6604b8a399049b5943d23dbfb842d9a100bf6f5c71e91a27cd3588cecb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| mascotahub.com/wp-includes/css/dist/block-library/style.min.css | 198.187.29.26 | 200 OK | 12 kB |
URL HTTP/2mascotahub.com/wp-includes/css/dist/block-library/style.min.css IP198.187.29.26:0
File typeASCII text, with very long lines (47826) Hashc4d7cc056b49b00e05cc29cc59aa3d5a 48c426bec60099d2a8628df430ed682c72aab42a 8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 21:52:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-includes/css/classic-themes.min.css | 198.187.29.26 | 200 OK | 217 B |
URL HTTP/2mascotahub.com/wp-includes/css/classic-themes.min.css IP198.187.29.26:0
Hash95e891f28e44a9b314c09545d86be2b7 f9b13a8bd47273b086a0a07df15f314e0af0bc3e 5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-includes/css/classic-themes.min.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 06:08:08 GMT
accept-ranges: bytes
content-length: 217
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/contact-form-7/includes/css/styles.css | 198.187.29.26 | 200 OK | 848 B |
URL HTTP/2mascotahub.com/wp-content/plugins/contact-form-7/includes/css/styles.css IP198.187.29.26:0
Hashc962ba8e7d42ff9da18392b41dad5151 7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f 322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hasha00fff9dd1711061b285e2136c973d13 66548ac11fc58024c6994539ab81804add41d2f2 4b87c5468c15817686a8497324c2a06d18fd5574141aa0476bf98aa3b8395a8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| mascotahub.com/wp-content/plugins/revslider/public/assets/css/rs6.css | 198.187.29.26 | 200 OK | 12 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/revslider/public/assets/css/rs6.css IP198.187.29.26:0
File typeUnicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators Hash8c56df0bf7178d462e61475087524101 fd9c2ef288827c04f68757f07451388f2a01c626 afa0ec69a19b51f8e6e1471cb873c27c52864d70fad53b286c94d71f54d697fa
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/revslider/public/assets/css/rs6.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11649
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css | 198.187.29.26 | 200 OK | 605 B |
URL HTTP/2mascotahub.com/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css IP198.187.29.26:0
File typeASCII text, with very long lines (2723), with no line terminators Hash2699ab4f80f3b570c722b19a41d201ad 200f03467816356e1962e46209ef382485674844 9157afd63f20bfcea453198277b7a1f3ea74ba0f75107a239eff29dabaff6545
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 605
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/advanced-google-recaptcha/assets/css/captcha.min.css | 198.187.29.26 | 200 OK | 128 B |
URL HTTP/2mascotahub.com/wp-content/plugins/advanced-google-recaptcha/assets/css/captcha.min.css IP198.187.29.26:0
File typeASCII text, with no line terminators Hash82c41743b95f3214eb99e6d78a11d1c2 784152c09860ab79555b138f88e36b52435319ab f15c0e6e911cc7b11c95c9f60b60e5cc0326d7261d3c523899cf47dab4597a33
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/advanced-google-recaptcha/assets/css/captcha.min.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:45 GMT
accept-ranges: bytes
content-length: 128
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/themes/anno/style.css | 198.187.29.26 | 200 OK | 630 B |
URL HTTP/2mascotahub.com/wp-content/themes/anno/style.css IP198.187.29.26:0
File typeASCII text, with very long lines (627) Hash1ce73bc7989e2a15d39ecde9aed8b0aa 18fdace37f3461f96a8b481b81497388a32fdf98 dc0686bbb521ef73e324b5ee7d59c14a276512b73b00428af526adb8c7dba99a
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/anno/style.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 630
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/themes/anno/assets/css/apps.min.css | 198.187.29.26 | 200 OK | 47 kB |
URL HTTP/2mascotahub.com/wp-content/themes/anno/assets/css/apps.min.css IP198.187.29.26:0
File typeASCII text, with very long lines (65536), with no line terminators Hashb5279b3a275666ea0c25eb48498274d8 1b3aa5310ffd45e68c6df7f3820e62eae2a56a14 3fa65dd96a058a1b6f18dd2c2a8d80ec5baedf65efeffb052ec8ac927c795e90
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/anno/assets/css/apps.min.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 47091
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css | 198.187.29.26 | 200 OK | 12 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css IP198.187.29.26:0
File typeASCII text, with very long lines (57726) Hashf463afd8661ddc733305df1f0cbdaff2 77262f0209e75e340eb7014aba9cd8d69966032f c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css | 198.187.29.26 | 200 OK | 284 B |
URL HTTP/2mascotahub.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css IP198.187.29.26:0
File typeASCII text, with very long lines (489) Hashdc279c928e2924b07a4a7575f8070ee8 0196756cacdb61ef40483af7ea982b699b0933de 80b6d9e3f0304f4199350c6015fd96084646c2a0121332bcb5a46d3956b7df5c
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 284
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css | 198.187.29.26 | 200 OK | 286 B |
URL HTTP/2mascotahub.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css IP198.187.29.26:0
File typeASCII text, with very long lines (483) Hash8828fa3c5bdcfa66615714a2b8c9d807 4f556d0b005ac7754af607418df445f8cf98e8b1 16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js | 198.187.29.26 | 200 OK | 1.8 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (6448), with no line terminators Hasha5606b4ef203499b565c0201b182959d 4de8efbd1e5ca94550793f8bb352d0e143336ae5 265789002984de853cbb9041479061f2313d1088e5c934277928ba044bc74469
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1831
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/burst-statistics/assets/js/build/burst.min.js | 198.187.29.26 | 200 OK | 2.5 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/burst-statistics/assets/js/build/burst.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (6171), with no line terminators Hashbb123d4bd64f831a02ea7abf502628cd 34ae5e348ca1e7f73b090c27f89109919cfafa79 116367f7506137dac230d5b97a122339c656f7fc5f77caca04b96739a2cd4b41
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/burst-statistics/assets/js/build/burst.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2548
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-includes/js/jquery/jquery.min.js | 198.187.29.26 | 200 OK | 30 kB |
URL HTTP/2mascotahub.com/wp-includes/js/jquery/jquery.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (65447) Hash3a1740685bd5c0bbd5f2b812e1eb7fb4 488e07695da787fed18361c50292aef35abb5e81 4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:08:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-includes/js/jquery/jquery-migrate.min.js | 198.187.29.26 | 200 OK | 4.0 kB |
URL HTTP/2mascotahub.com/wp-includes/js/jquery/jquery-migrate.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (11126) Hash7e058b51f939eacfa31cdface14dded5 9d732e5afdeb42edef9e1b9631b7e95e054787cc 4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:08:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/advanced-google-recaptcha/assets/js/captcha.min.js | 198.187.29.26 | 200 OK | 210 B |
URL HTTP/2mascotahub.com/wp-content/plugins/advanced-google-recaptcha/assets/js/captcha.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (376), with no line terminators Hash5689d63f71cfd66c8ec1b0d5624cd948 88509fe5d54bdf05399a2578312eadac44cf85fd 79cb79faffffae8caa958f41eb139b429f26556e463dc525c30c8e76fb1a7d1e
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/advanced-google-recaptcha/assets/js/captcha.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 210
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/uploads/2020/05/Logo-Header-White.png | 198.187.29.26 | 200 OK | 11 kB |
URL HTTP/2mascotahub.com/wp-content/uploads/2020/05/Logo-Header-White.png IP198.187.29.26:0
File typePNG image data, 500 x 142, 8-bit/color RGBA, non-interlaced\012- data Hash2f80e4178b7ff70f0fdfd6ff1f01461b 78603979b9b3b8b5509f10c701ff79065b6c4d10 f25f13131f3cb6ac723e336e6d8b1392ff48d078acf1b954143603576a9699de
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/uploads/2020/05/Logo-Header-White.png HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: image/png
last-modified: Tue, 08 Nov 2022 22:13:05 GMT
accept-ranges: bytes
content-length: 11288
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/jet-blocks/assets/css/jet-blocks.css | 198.187.29.26 | 200 OK | 4.0 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/jet-blocks/assets/css/jet-blocks.css IP198.187.29.26:0
File typeASCII text, with very long lines (41083) Hashc5d6d89fb39123c1f1354f67ccc61ffa a120b3ffd25150c000594e618964c5ed88392d45 1d4867cdd8c42c4ee3c5d5d80ae4aa4e1259cdab1958838091a2aeb455d47c6c
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/jet-blocks/assets/css/jet-blocks.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4037
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css | 198.187.29.26 | 200 OK | 2.7 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css IP198.187.29.26:0
File typeASCII text, with very long lines (17644) Hash5b7a5fc84a801908d019d7e31520bdae 552a6e6bda8f2079e20ea91b20674998ee7c93e8 ea5b3c448d27222b5171483b61864de432152abf30695892425485c00ca2d04e
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2673
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css | 198.187.29.26 | 200 OK | 3.6 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css IP198.187.29.26:0
File typeASCII text, with very long lines (18854) Hash23d0cda7fbd7f269a200dfff8ee211c6 497cc19819270e7a3795ab61e775c130ac7b255a 299d22db4a8362551089748bb93645f190469be3b392fa206b9872bd298bb41b
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3554
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/elementor/assets/css/frontend.min.css | 198.187.29.26 | 200 OK | 16 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/elementor/assets/css/frontend.min.css IP198.187.29.26:0
File typeASCII text, with very long lines (65497) Hash5c61f5b04de22f9852627fca78f6c35b e92cdd60b526190f570c2c61946f3f0ea821676d bb8e5603560f01b2f8ce5f72923c60311630651068d8e4277e58121a01701f74
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/css/frontend.min.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16227
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js | 198.187.29.26 | 200 OK | 2.8 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js IP198.187.29.26:0
File typeASCII text, with very long lines (9937), with no line terminators Hash4317b1c024df372435f6482deadddeb3 5c8824a17e40a44ea8fc51568b98bdb1e2e7fab5 3798fb16289ba55459fb6d3b2efa915e3c019c5942759abb7bd19a0ef622b85d
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2817
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/contact-form-7/includes/js/index.js | 198.187.29.26 | 200 OK | 3.7 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/contact-form-7/includes/js/index.js IP198.187.29.26:0
File typeHTML document, ASCII text, with very long lines (12310), with no line terminators Hashdc6411bfa6891b75944f0074c945752d 03c1a8b686c287068c61ab90f58d905496d65085 96abeabc9cc7b4c2b7d46579f2827c67ccd02fbaef0343ae052f71accd381b0d
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/contact-form-7/includes/js/index.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3706
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-includes/js/masonry.min.js | 198.187.29.26 | 200 OK | 7.1 kB |
URL HTTP/2mascotahub.com/wp-includes/js/masonry.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (23966) Hashacbcd70975a7cfaf92dc02b2ede1fd24 7a50461999972abb541d4baf1ccf23d8e435aad6 c1250ec4943afb181633078eb9d67c5944fc64b2bb219c98406c286e9449189e
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-includes/js/masonry.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:08:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7117
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-includes/js/imagesloaded.min.js | 198.187.29.26 | 200 OK | 1.7 kB |
URL HTTP/2mascotahub.com/wp-includes/js/imagesloaded.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (5477) Hashfa921f07ecc438baf227765de450e215 1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95 b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-includes/js/imagesloaded.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:08:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1733
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js | 198.187.29.26 | 200 OK | 2.4 kB |
URL HTTP/2mascotahub.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (6475), with no line terminators Hash4e773d7cec56bacab6d2db420be6f262 c95573d884c1caec0ec9c6f3e2a8c0fbf28d939a 5c8839d0b02f21e8d83d856bbf85a6b87fbedf9ba0b70711b11a1c378d5443e7
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:08:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2354
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-includes/js/dist/vendor/wp-polyfill.min.js | 198.187.29.26 | 200 OK | 6.3 kB |
URL HTTP/2mascotahub.com/wp-includes/js/dist/vendor/wp-polyfill.min.js IP198.187.29.26:0
File typeUnicode text, UTF-8 text, with very long lines (17819), with no line terminators Hashfecbc00e8af71d8cfb678cd811c7cb2e 44e5dd77f62cb5c67271442b75cdff10d45f2f8d d6f03fb4728d0c23251451df8d66b5107d3c87458dc624aacfbad437e99d01f1
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:08:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6335
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/anno-core/public/assets/js/front-end-widget.min.js | 198.187.29.26 | 200 OK | 4.7 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/anno-core/public/assets/js/front-end-widget.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (15032) Hashaf9073b6077cc94821b479d84c9b5f5e 2e62cc021c17cc2fa49211c3685af4e61a1c4ac2 584a250967ab0efe5bfcff9fd3cdd54330d4ec8edcbdb3636dc9b10521e034d6
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/anno-core/public/assets/js/front-end-widget.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4704
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js | 198.187.29.26 | 200 OK | 439 B |
URL HTTP/2mascotahub.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js IP198.187.29.26:0
File typeASCII text, with very long lines (999), with no line terminators Hash941c9d44f1c480a37006540de948ef9a 29bc99b84660341fc37d60774b3083025a19147c d297692ee1e68d1e2499576903508be06859340a25eded15b2565631a592851e
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 439
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-includes/js/hoverIntent.min.js | 198.187.29.26 | 200 OK | 668 B |
URL HTTP/2mascotahub.com/wp-includes/js/hoverIntent.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (1464) Hashb57bb5f7f55be8837811df1bbfebd197 a9fd3372526724938daa13cba926cff79395cbae 26512154e931a4b5441386af49e0e6d93a298ec6ae9ce2088d292cba42d61c7c
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-includes/js/hoverIntent.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:08:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 668
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js | 198.187.29.26 | 200 OK | 5.3 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (13959) Hash5c6015470a14c3dc216f456963e0ce1a 97154a593350eca5217522412f26110fa5f10ec5 4326b9f25dc6f619f9b0bdfb03c23078f453019403db0f1412131a4457b94e94
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5329
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js | 198.187.29.26 | 200 OK | 11 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js IP198.187.29.26:0
File typeC source textAlgol 68 source text\012- Pascal source, ASCII text, with very long lines (48616), with no line terminators Hashe0a7ac753030b47eb7b381953caf1a37 918bc8fb19214bf801fddf2a7656c53700a77827 4117f72e00d2b81e6d57406ba71750d76e83a985ead67e61272a5db31e47bd5a
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10732
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/elementor/assets/js/frontend.min.js | 198.187.29.26 | 200 OK | 12 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/elementor/assets/js/frontend.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (36864) Hash2d67bcec6e4ffc94c28602598eb64ca4 3a8623f349940dbd4209a67a22070d8b36af3e54 8355c56dda239431d66df47865cde20b767c4338ef284d053757d057c942ab05
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/js/frontend.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11758
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-includes/js/underscore.min.js | 198.187.29.26 | 200 OK | 7.2 kB |
URL HTTP/2mascotahub.com/wp-includes/js/underscore.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (18798) Hashf4bb18d2e152ba945cb63980362f40e9 925f93a6c4ee411e97d8dc3186f9d66c4b5169ab 16ab496a6c74f5f272f7a5c31e9cb69c753fea994396ef6deacf641180ad317b
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-includes/js/underscore.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:08:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7179
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js | 198.187.29.26 | 200 OK | 5.8 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (14218) Hash91a22c1988be9df5285ab2287f405a3f db2fbb4e31090970348ff60198d0d2c3cf235eb4 345657ba37c4c215887340651aa7b74046174935d1a697d22e1fefc606cfca0f
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5764
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js | 198.187.29.26 | 200 OK | 339 B |
URL HTTP/2mascotahub.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (754), with no line terminators Hashf4cea5c82bb62f34a31f39a322513366 bab5dfb3f8d04b76f83ca994798534e697b85290 5b00e0c1288d5d1f1df303a55bd0ff67d9acf5b734bc0093a651727c48a077ff
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 339
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-includes/js/jquery/ui/core.min.js | 198.187.29.26 | 200 OK | 6.8 kB |
URL HTTP/2mascotahub.com/wp-includes/js/jquery/ui/core.min.js IP198.187.29.26:0
File typeUnicode text, UTF-8 text, with very long lines (8189) Hash3d0ff0f6731d9cef860af9a5a0e3ce62 13aed444304d782039e261475c8b4450b83e743e e8d05db77732c71843ced6f386ea82eb32243ac36e7ca3e071cb7f53e2ffbce5
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-includes/js/jquery/ui/core.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:08:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6800
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js | 198.187.29.26 | 200 OK | 4.2 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (12220) Hasha4a3bfad84f6eba6c66192afd4b4a3a9 c10503641628990ef68d815d890e9f16d351ca46 41a509e41b270a83e68590a43a17e063b1a4b7659c8a588f03f3306b1310c0ff
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4180
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-includes/js/wp-util.min.js | 198.187.29.26 | 200 OK | 690 B |
URL HTTP/2mascotahub.com/wp-includes/js/wp-util.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (1391) Hashebe552e54e3815c6867913d252ff2a79 4982bd9ba944833e821be18419ad8408290f5d75 8b0aedc73b1d41ab59c0ad42553259c90458cfb72b149946a3bae3298c012e40
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-includes/js/wp-util.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:08:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 690
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js | 198.187.29.26 | 200 OK | 3.3 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (4888) Hash634fe888866149ffcc05931cdd7b5eb9 2a2658534c874f17d0fd83f392fd61076eec04fd 41ac7d22cf6463eadb69fc815d6e17969d8b9cf8fdf26a6b634c13e9ec686391
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3312
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-includes/js/wp-emoji-release.min.js | 198.187.29.26 | 200 OK | 4.6 kB |
URL HTTP/2mascotahub.com/wp-includes/js/wp-emoji-release.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (15660) Hash0232689bd203f330529b36a437f41a68 9046583f7469ad38297969f10a9513eb895d5316 feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-includes/js/wp-emoji-release.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:08:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js | 198.187.29.26 | 200 OK | 47 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (54175), with CRLF line terminators Hashcc45bbdc82ecb782543ea065e1e4965f e6142254b64fe16e4670ad569bdadc42b3d90b92 6c036902f764491abc23e32888c938ef048e31b238547434eef8948c72e9f983
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 47276
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/jet-elements/assets/css/jet-elements.css | 198.187.29.26 | 200 OK | 19 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/jet-elements/assets/css/jet-elements.css IP198.187.29.26:0
File typeASCII text, with very long lines (65536), with no line terminators Hash9c937256858db243bddf35747c509303 119740db190070291b51f668756d263723f88023 4a09debce5eb6c7de8c0b090c24d52ff20767358027563f373a1bcacbd926a19
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/jet-elements/assets/css/jet-elements.css HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:12:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19389
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/anno-core/public/assets/js/extension.min.js | 198.187.29.26 | 200 OK | 19 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/anno-core/public/assets/js/extension.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (41153) Hash19f6994e100da5c911a9df9cf02e49df 62dc41322e0541b3857de9c7a3e1c0c503515c95 a6a9f4355d032653dae708240b55df9746e0d916c03282aea7c5328a487d677b
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/anno-core/public/assets/js/extension.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19116
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js | 198.187.29.26 | 200 OK | 18 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (51834) Hashd76cfff3f5bda1fc1972050d07d36cf0 5b518a6886b1fb3f929d904f23e765b1d4a2770b f32b5b16eb54ee6b1cb8e1494c66516768fe4d1282e70b80a7b0467c8b027353
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/jet-elements/assets/js/jet-elements.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18005
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/themes/anno/assets/js/apps.min.js | 198.187.29.26 | 200 OK | 83 kB |
URL HTTP/2mascotahub.com/wp-content/themes/anno/assets/js/apps.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (65536), with no line terminators Hash805c10d832eefeb9bf790cd072ee1190 7736b0617278b086e695e495e4b7d95b15962f1b 0a40ca799cdafde5f6da67f9d20c1fefa40ab0dc71c08fe7a489eab16b52112d
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/themes/anno/assets/js/apps.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 82986
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js | 198.187.29.26 | 200 OK | 73 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js IP198.187.29.26:0
File typeASCII text, with very long lines (63491) Hashfebc3859937bf7de263a1a89a916f363 54ebe50e70eb45a8ddccb5457fd1aafaed761f9d 5c1bf1e25dcb487fe7d526103f8ac9fcb03c0d232408b78b4b1656c860e3e7a6
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/ena/?e=qbot.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:14 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 72829
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashc58de690a701dea26333a42815dc3003 91d9e60c285f6578b5d814901a90f52cafbb8790 179d035993138ec5fdb0b2bf1987888f751903e959af09e335ada210be842ca6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:19:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 | 216.58.207.195 | 200 OK | 33 kB |
URL HTTP/2fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data Hashd010a9f2d5c7a0374b3b84706a43d2ec c1fe465db08785c3f115555d39db23838960cb66 9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536
GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mascotahub.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 15:39:48 GMT
expires: Sat, 18 Nov 2023 15:39:48 GMT
cache-control: public, max-age=31536000
age: 99569
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 | 216.58.207.195 | 200 OK | 7.9 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mascotahub.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 21:48:50 GMT
expires: Thu, 16 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 250227
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 | 216.58.207.195 | 200 OK | 7.8 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data Hash25b0e113ca7cce3770d542736db26368 cb726212d5d525021752a1d8470a0fb593e0c49e 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mascotahub.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:30:59 GMT
expires: Thu, 16 Nov 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 258498
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashc58de690a701dea26333a42815dc3003 91d9e60c285f6578b5d814901a90f52cafbb8790 179d035993138ec5fdb0b2bf1987888f751903e959af09e335ada210be842ca6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:19:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 | 216.58.207.195 | 200 OK | 7.8 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 7824, version 1.0\012- data Hashaf4d371a10271dafeb343f1eace762bc 6d11d743bc3cfb169d70bc86450f18351dc1a905 60bf0aba6526436f3930c58c12047687fbb6bff4dd180cce4613458ed3439ea2
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mascotahub.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:50:37 GMT
expires: Thu, 16 Nov 2023 19:50:37 GMT
cache-control: public, max-age=31536000
age: 257320
last-modified: Wed, 27 Apr 2022 16:52:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 | 198.187.29.26 | 200 OK | 77 kB |
URL HTTP/2mascotahub.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 IP198.187.29.26:0
File typeWeb Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data Hashf7307680c7fe85959f3ecf122493ea7d fce0da592a3e536d6d5df5b50cb513398d8c5161 43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mascotahub.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css
Cookie: burst_uid=fa1cb19a9f2671d909a84ff85f386bd8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:17 GMT
content-type: font/woff2
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-length: 76764
date: Sat, 19 Nov 2022 19:19:17 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js | 142.250.74.163 | 200 OK | 163 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js IP142.250.74.163:0
File typeASCII text, with very long lines (730) Size163 kB (162976 bytes) Hash79d18cf4265108d7cecca1bf4ada6109 e51d0285a545381d4c39e9e0292a650ffeeecbb9 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mascotahub.com
Connection: keep-alive
Referer: https://mascotahub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 15:30:33 GMT
expires: Fri, 17 Nov 2023 15:30:33 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 186525
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto+Slab%3A200%2C300%2C400%2C500%2C600%2C700%2C800&subset=latin | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Roboto+Slab%3A200%2C300%2C400%2C500%2C600%2C700%2C800&subset=latin IP142.250.74.10:0
GET /css?family=Roboto+Slab%3A200%2C300%2C400%2C500%2C600%2C700%2C800&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 19 Nov 2022 19:19:14 GMT
date: Sat, 19 Nov 2022 19:19:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Poppins%3A200%2C300%2C400%2C500%2C600%2C700%2C800&subset=latin | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Poppins%3A200%2C300%2C400%2C500%2C600%2C700%2C800&subset=latin IP142.250.74.10:0
GET /css?family=Poppins%3A200%2C300%2C400%2C500%2C600%2C700%2C800&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 19 Nov 2022 19:19:14 GMT
date: Sat, 19 Nov 2022 19:19:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto IP142.250.74.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 19 Nov 2022 19:19:14 GMT
date: Sat, 19 Nov 2022 19:19:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto IP142.250.74.10:0
GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mascotahub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 19 Nov 2022 19:19:14 GMT
date: Sat, 19 Nov 2022 19:19:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mascotahub.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 | 198.187.29.26 | 200 OK | 0 B |
URL HTTP/2mascotahub.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 IP198.187.29.26:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mascotahub.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css
Cookie: burst_uid=fa1cb19a9f2671d909a84ff85f386bd8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 19:19:17 GMT
content-type: font/woff2
last-modified: Tue, 08 Nov 2022 22:12:49 GMT
accept-ranges: bytes
content-length: 78196
date: Sat, 19 Nov 2022 19:19:17 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|
| mascotahub.com/ena/?e=qbot.zip | 198.187.29.26 | 404 Not Found | 0 B |
URL HTTP/2mascotahub.com/ena/?e=qbot.zip IP198.187.29.26:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /ena/?e=qbot.zip HTTP/1.1
Host: mascotahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://mascotahub.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: a4a_HTTP.404,a4a_404,a4a_URL.9de6d09c4ac972b46c99e8d0e362098b,a4a_
x-litespeed-cache: miss
content-encoding: br
vary: Accept-Encoding
date: Sat, 19 Nov 2022 19:19:14 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
|
|