302 Found 1 B URL User Request GET HTTP/2 IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type very short file (no magic)
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /eom/ HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
x-powered-by: PHP/7.4.33
cache-control: no-store
location: /
vary: Accept-Encoding
content-encoding: br
content-length: 1
content-type: text/html; charset=UTF-8
date: Fri, 08 Dec 2023 07:57:18 GMT
server: Apache
X-Firefox-Spdy: h2
200 OK 8.6 kB URL User Request GET HTTP/2 IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5382), with CRLF, LF line terminators
Hash a57e8cd4d4d61a1dbe5929ea68964398
7ed5e145126aa2caa344a36f42e446acb0fc29dc
dffede5eae0ad78f540cd063350e2351a59fd614ee81d6e082fa71fcb5018e93
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
link: <https://indmed.in/wp-json/>; rel="https://api.w.org/", <https://indmed.in/wp-json/wp/v2/pages/89>; rel="alternate"; type="application/json", <https://indmed.in/>; rel=shortlink
set-cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; expires=Sat, 09-Dec-2023 07:57:20 GMT; Max-Age=86400; path=/
wmc_current_currency=USD; expires=Sat, 09-Dec-2023 07:57:20 GMT; Max-Age=86400; path=/
vary: Accept-Encoding
content-encoding: br
content-length: 8568
content-type: text/html; charset=UTF-8
date: Fri, 08 Dec 2023 07:57:19 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-NMV7V22H2P
200 OK 81 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-NMV7V22H2P
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash 373cf7ec83f487987ddabf9f37a38e1f
156bbd16f9593086df3e217b6d4847bbeb91e8ac
144e88d581ed284c4fc7bf4756de4fcb7629af333c97214e0963d7f8ef20448f
GET /gtag/js?id=G-NMV7V22H2P HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Dec 2023 07:57:21 GMT
expires: Fri, 08 Dec 2023 07:57:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81353
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins%3Aital%2Cwght%400%2C100%3B0%2C200%3B0%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C100%3B1%2C200%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900&subset=latin%2Clatin-ext
200 OK 1.1 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Poppins%3Aital%2Cwght%400%2C100%3B0%2C200%3B0%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C100%3B1%2C200%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900&subset=latin%2Clatin-ext
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash 17db040c40dd85864d6a4cba45bde450
adef010f5187a3490b9a3690a12113ddfbcfbb01
fba471feded51d5a278de92431d2e391bb903d6e5c2b502903e1f6fd50458ee7
GET /css?family=Poppins%3Aital%2Cwght%400%2C100%3B0%2C200%3B0%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C100%3B1%2C200%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 07:57:21 GMT
date: Fri, 08 Dec 2023 07:57:21 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_740/https://indmed.in/wp-content/uploads/2022/05/INDMED-PHARMA-EXPORTER-FROM-INDIA.jpg
302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_740/https://indmed.in/wp-content/uploads/2022/05/INDMED-PHARMA-EXPORTER-FROM-INDIA.jpg
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_740/https://indmed.in/wp-content/uploads/2022/05/INDMED-PHARMA-EXPORTER-FROM-INDIA.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 08 Dec 2023 07:57:21 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://indmed.in/wp-content/uploads/2022/05/INDMED-PHARMA-EXPORTER-FROM-INDIA.jpg
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 12/07/2023 16:06:13
cdn-tag: 0; Domain: indmed.in; 302
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 2a1ff40704424325093921bc1d3e14d9
cdn-cache: STALE
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_250,h_62/https://indmed.in/wp-content/uploads/2019/01/cropped-Logo-e1558111840208.png
302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_250,h_62/https://indmed.in/wp-content/uploads/2019/01/cropped-Logo-e1558111840208.png
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_250,h_62/https://indmed.in/wp-content/uploads/2019/01/cropped-Logo-e1558111840208.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 08 Dec 2023 07:57:21 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://indmed.in/wp-content/uploads/2019/01/cropped-Logo-e1558111840208.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 12/07/2023 16:06:13
cdn-tag: 0; Domain: indmed.in; 302
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 9db61f6a357d9a0ed3d580f079a660cd
cdn-cache: STALE
X-Firefox-Spdy: h2
indmed.in/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
200 OK 2.3 kB URL GET HTTP/2 indmed.in/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type ASCII text, with very long lines (8171), with no line terminators
Hash dda652db133fddb9b80a05c6d1b5c540
60c8514c57a5db2980c4b046b0dd479bd427357b
c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Jan 2023 11:16:33 GMT
etag: "c220e17-1feb-5f287f2e2a640-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2323
content-type: application/javascript
date: Fri, 08 Dec 2023 07:57:21 GMT
server: Apache
X-Firefox-Spdy: h2
indmed.in/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
200 OK 2.4 kB URL GET HTTP/2 indmed.in/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type ASCII text, with very long lines (6607), with no line terminators
Hash 9a4f28a615173df36cb84be2b345816e
f709263841708d9e40268f24a0072ff4fe811b35
6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 07 Feb 2023 15:56:37 GMT
etag: "c220df7-19cf-5f41e314ed740-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2401
content-type: application/javascript
date: Fri, 08 Dec 2023 07:57:21 GMT
server: Apache
X-Firefox-Spdy: h2
indmed.in/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
200 OK 1.5 kB URL GET HTTP/2 indmed.in/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type ASCII text, with very long lines (4592)
Hash 7bd48eb3bd568033e96caf0fb62e6690
b38066999294b99d92d95db5f38bc15707eb1f22
7868467c94a5aa0b3f11ef542f45287967f9627b3b5acdc86e47f8f77a126596
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 27 Jun 2023 14:24:19 GMT
etag: "c220ead-1213-5ff1d39002ac0-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1487
content-type: application/javascript
date: Fri, 08 Dec 2023 07:57:21 GMT
server: Apache
X-Firefox-Spdy: h2
indmed.in/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
200 OK 5.7 kB URL GET HTTP/2 indmed.in/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type Unicode text, UTF-8 text, with very long lines (16142), with no line terminators
Hash 94dfdbe80f36b3be63ce74ff1135b996
5e05077d99e736af42b2da70e428e7f7df556dd4
4c0ced2cb3830d045cdd74f745fd4d6dcb082d8edd3a9fe46e39295e30cb8032
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 27 Jun 2023 14:24:19 GMT
etag: "c220e0a-3f12-5ff1d39002ac0-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 5735
content-type: application/javascript
date: Fri, 08 Dec 2023 07:57:21 GMT
server: Apache
X-Firefox-Spdy: h2
200 OK 0 B URL User Request GET HTTP/2 IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 08 Dec 2023 07:57:20 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
X-Redirect-By: WordPress
Set-Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; expires=Sat, 09-Dec-2023 07:57:21 GMT; Max-Age=86400; path=/
wmc_current_currency=USD; expires=Sat, 09-Dec-2023 07:57:21 GMT; Max-Age=86400; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://indmed.in/
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
indmed.in/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
200 OK 3.6 kB URL GET HTTP/2 indmed.in/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
Hash c2c4e2a562e06e1cb22293a5b920aca6
a7b5a369ac4883f1ee7fa701b238d20238b675ca
698e93fe491cc7bbf07a470579a33dbd0db53c19142b7be41ebfd39a23aef11f
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Jun 2023 20:08:46 GMT
etag: "c220ecb-24e5-5ff3626b0ef80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3567
content-type: application/javascript
date: Fri, 08 Dec 2023 07:57:21 GMT
server: Apache
X-Firefox-Spdy: h2
indmed.in/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
200 OK 30 kB URL GET HTTP/2 indmed.in/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type ASCII text, with very long lines (65447)
Hash ff04dd1ef5c67998d8652330c0441689
5e6ff5bd5240181a8bdea983837f39ac231dac4d
5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 May 2023 11:33:35 GMT
etag: "c2210e3-155ba-5fc971b7d21c0-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 29741
content-type: application/javascript
date: Fri, 08 Dec 2023 07:57:21 GMT
server: Apache
X-Firefox-Spdy: h2
indmed.in/wp-content/uploads/2019/01/cropped-Logo-e1558111840208.png
200 OK 12 kB URL GET HTTP/2 indmed.in/wp-content/uploads/2019/01/cropped-Logo-e1558111840208.png
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type PNG image data, 250 x 62, 8-bit/color RGBA, non-interlaced\012- data
Hash fc169030801c267eff3f0f0200d0168b
1abce96205707cee12d05389e6dc39e1c59f8e87
3547dfa37b91e6059508fad03b437d4a40062e8d258384a999fb54046a3e96f8
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2019/01/cropped-Logo-e1558111840208.png HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://indmed.in/
DNT: 1
Connection: keep-alive
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Aug 2020 15:52:13 GMT
etag: "c1a22df-2f11-5abfb1f404540"
accept-ranges: bytes
content-length: 12049
content-type: image/png
date: Fri, 08 Dec 2023 07:57:22 GMT
server: Apache
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.3093812604255718
200 OK 50 B URL GET HTTP/2 pixel.wp.com/g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.3093812604255718
IP
Certificate IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.3093812604255718 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 07:57:22 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img/https://indmed.in/wp-content/uploads/2023/10/buy_ship_cancer_medicines_from_india_footer_background_img.jpg
302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img/https://indmed.in/wp-content/uploads/2023/10/buy_ship_cancer_medicines_from_india_footer_background_img.jpg
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img/https://indmed.in/wp-content/uploads/2023/10/buy_ship_cancer_medicines_from_india_footer_background_img.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 08 Dec 2023 07:57:22 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://indmed.in/wp-content/uploads/2023/10/buy_ship_cancer_medicines_from_india_footer_background_img.jpg
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 12/07/2023 16:06:15
cdn-tag: 0; Domain: indmed.in; 302
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 8fce345e8f46c20c4e1693ddfa8836e8
cdn-cache: STALE
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img/https://indmed.in/wp-content/themes/storely/assets/images/footer_icon.png
302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img/https://indmed.in/wp-content/themes/storely/assets/images/footer_icon.png
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img/https://indmed.in/wp-content/themes/storely/assets/images/footer_icon.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 08 Dec 2023 07:57:22 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://indmed.in/wp-content/themes/storely/assets/images/footer_icon.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 12/07/2023 16:06:15
cdn-tag: 0; Domain: indmed.in; 302
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: b52835f65a29829562623c0946bb2fcc
cdn-cache: STALE
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
200 OK 7.9 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://indmed.in
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:00:07 GMT
expires: Fri, 06 Dec 2024 05:00:07 GMT
cache-control: public, max-age=31536000
age: 97035
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
indmed.in/wp-content/uploads/2022/05/INDMED-PHARMA-EXPORTER-FROM-INDIA.jpg
200 OK 184 kB URL GET HTTP/2 indmed.in/wp-content/uploads/2022/05/INDMED-PHARMA-EXPORTER-FROM-INDIA.jpg
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 740x450, components 3\012- data
Size 184 kB (183509 bytes)
Hash fad7b6ac63e3fe891839a187f426fe77
9c493aa497e5ce93280a15b927c9f1ce2c7523ef
06fe0911bf1c0630fb36f4226a8cb6f7c3f9bd93adfda1f19528c01ea46f3e7b
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/05/INDMED-PHARMA-EXPORTER-FROM-INDIA.jpg HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://indmed.in/
DNT: 1
Connection: keep-alive
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 May 2022 07:47:40 GMT
etag: "c1a5d27-2ccd5-5def4015fdf00"
accept-ranges: bytes
content-length: 183509
content-type: image/jpeg
date: Fri, 08 Dec 2023 07:57:22 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
200 OK 7.8 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://indmed.in
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:54:30 GMT
expires: Fri, 06 Dec 2024 15:54:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
age: 57772
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
200 OK 7.7 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://indmed.in
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:13:52 GMT
expires: Fri, 06 Dec 2024 05:13:52 GMT
cache-control: public, max-age=31536000
age: 96210
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
200 OK 8.0 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://indmed.in
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:48:42 GMT
expires: Thu, 05 Dec 2024 21:48:42 GMT
cache-control: public, max-age=31536000
age: 122920
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
indmed.in/wp-content/cache/autoptimize/css/autoptimize_c4f44d1cc677538d9232b3748623012c.css
200 OK 104 kB URL GET HTTP/2 indmed.in/wp-content/cache/autoptimize/css/autoptimize_c4f44d1cc677538d9232b3748623012c.css
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type ASCII text, with very long lines (53449)
Size 104 kB (103749 bytes)
Hash f2efdc31a7b29134701d9e90535ac3c6
25344e23abdf09e6a36b5bbc5c34cc48d8b8808c
e00e3822628eb1f41822f42f58f8572e5650eb55850aa24057ed432fe8335c0d
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/cache/autoptimize/css/autoptimize_c4f44d1cc677538d9232b3748623012c.css HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Dec 2023 16:09:21 GMT
etag: "c1c00f0-ac52f-60bedb0c3762c-gzip"
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Wed, 27 Nov 2024 07:57:21 GMT
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 08 Dec 2023 07:57:21 GMT
server: Apache
X-Firefox-Spdy: h2
indmed.in/wp-content/themes/storely/assets/css/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
200 OK 72 kB URL GET HTTP/2 indmed.in/wp-content/themes/storely/assets/css/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/storely/assets/css/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/wp-content/cache/autoptimize/css/autoptimize_c4f44d1cc677538d9232b3748623012c.css
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 Oct 2023 05:23:37 GMT
etag: "c1c0461-118d8-6085b6ca1de68"
accept-ranges: bytes
content-length: 71896
vary: Accept-Encoding
content-type: font/woff2
date: Fri, 08 Dec 2023 07:57:22 GMT
server: Apache
X-Firefox-Spdy: h2
indmed.in/wp-content/themes/storely/assets/images/footer_icon.png
200 OK 188 B URL GET HTTP/2 indmed.in/wp-content/themes/storely/assets/images/footer_icon.png
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type PNG image data, 8 x 8, 8-bit/color RGBA, non-interlaced\012- data
Hash 802607ba5d07f2ca32f91d42febd126a
adff2fd2c7e4e0da679330b7ccc47953bd7ddaf6
f3423fdc6f2723ddf7441342c4ad0b85ee8650be34c08f1974fd01e8b45ac38e
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/storely/assets/images/footer_icon.png HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://indmed.in/
DNT: 1
Connection: keep-alive
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 Oct 2023 05:23:37 GMT
etag: "c1c0477-bc-6085b6ca20579"
accept-ranges: bytes
content-length: 188
content-type: image/png
date: Fri, 08 Dec 2023 07:57:22 GMT
server: Apache
X-Firefox-Spdy: h2
indmed.in/wp-content/uploads/2023/10/buy_ship_cancer_medicines_from_india_footer_background_img.jpg
200 OK 88 kB URL GET HTTP/2 indmed.in/wp-content/uploads/2023/10/buy_ship_cancer_medicines_from_india_footer_background_img.jpg
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", progressive, precision 8, 1200x675, components 3\012- data
Hash ddb4c3cb66a62c793291d550d8f655de
9bf1563019f24d02efcfe0b90124808b59177427
89a9d8d0798a1ecd0c3efd45d17d692db099490a437ecb6267ed83a31029d0b8
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2023/10/buy_ship_cancer_medicines_from_india_footer_background_img.jpg HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://indmed.in/
DNT: 1
Connection: keep-alive
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 Oct 2023 06:02:19 GMT
etag: "c1c04fb-15743-6085bf6ff043e"
accept-ranges: bytes
content-length: 87875
content-type: image/jpeg
date: Fri, 08 Dec 2023 07:57:22 GMT
server: Apache
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_192,h_192/https://indmed.in/wp-content/uploads/2019/05/cropped-Logo-2-192x192.png
302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_192,h_192/https://indmed.in/wp-content/uploads/2019/05/cropped-Logo-2-192x192.png
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_192,h_192/https://indmed.in/wp-content/uploads/2019/05/cropped-Logo-2-192x192.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 08 Dec 2023 07:57:23 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://indmed.in/wp-content/uploads/2019/05/cropped-Logo-2-192x192.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 12/07/2023 16:06:15
cdn-tag: 0; Domain: indmed.in; 302
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 8ef9fcc347076b1f1ff9313cdc6c27bf
cdn-cache: STALE
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_32,h_32/https://indmed.in/wp-content/uploads/2019/05/cropped-Logo-2-32x32.png
302 Found 0 B URL GET HTTP/2 sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_32,h_32/https://indmed.in/wp-content/uploads/2019/05/cropped-Logo-2-32x32.png
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerSectigo Limited
Subject*.shortpixel.ai
FingerprintD3:2C:60:18:FC:72:6F:6C:49:7F:6E:01:A8:C0:0D:30:3D:E9:43:24
ValidityThu, 26 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_32,h_32/https://indmed.in/wp-content/uploads/2019/05/cropped-Logo-2-32x32.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 08 Dec 2023 07:57:23 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://indmed.in/wp-content/uploads/2019/05/cropped-Logo-2-32x32.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 12/07/2023 16:06:15
cdn-tag: 0; Domain: indmed.in; 302
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 5f48bf385d9a898fe8c304f6cbc33e6b
cdn-cache: STALE
X-Firefox-Spdy: h2
indmed.in/wp-content/uploads/2019/05/cropped-Logo-2-192x192.png
200 OK 14 kB URL GET HTTP/2 indmed.in/wp-content/uploads/2019/05/cropped-Logo-2-192x192.png
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 211e8eb4215199272faa51ab979968d4
7216356224667f7d21f1b16ab1a7fedd07fc693d
59b634239a9b0c02c9a1dcad411d4e584be5d197290aac11c1e039947db18949
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2019/05/cropped-Logo-2-192x192.png HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://indmed.in/
DNT: 1
Connection: keep-alive
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 May 2019 17:30:29 GMT
etag: "c1a22bb-34da-58918bd239740"
accept-ranges: bytes
content-length: 13530
content-type: image/png
date: Fri, 08 Dec 2023 07:57:23 GMT
server: Apache
X-Firefox-Spdy: h2
indmed.in/wp-content/uploads/2019/05/cropped-Logo-2-32x32.png
200 OK 1.0 kB URL GET HTTP/2 indmed.in/wp-content/uploads/2019/05/cropped-Logo-2-32x32.png
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 9253a543ce0f67c0ad2bcc12efb9e6fb
f1bd4351d661cedeedff1eb334cecafcdcb11929
89d6a7f5a92bd7715cdbb312dd1a80fb8145e47cb0ed53336fca7269ae5c86cf
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2019/05/cropped-Logo-2-32x32.png HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://indmed.in/
DNT: 1
Connection: keep-alive
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 May 2019 17:30:29 GMT
etag: "c1a22b5-400-58918bd239740"
accept-ranges: bytes
content-length: 1024
content-type: image/png
date: Fri, 08 Dec 2023 07:57:23 GMT
server: Apache
X-Firefox-Spdy: h2
200 OK 8.6 kB URL User Request GET HTTP/2 IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5382), with CRLF, LF line terminators
Hash 1852521d27917138772f9280ec75d66a
f943478cae0e5ec5994e455986ce12d5c6fce798
a5730595c328852fe397333cd1cffcf57701b065e151a2adf1ecc01aba8050f8
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
link: <https://indmed.in/wp-json/>; rel="https://api.w.org/", <https://indmed.in/wp-json/wp/v2/pages/89>; rel="alternate"; type="application/json", <https://indmed.in/>; rel=shortlink
set-cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; expires=Sat, 09-Dec-2023 07:57:23 GMT; Max-Age=86400; path=/
wmc_current_currency=USD; expires=Sat, 09-Dec-2023 07:57:23 GMT; Max-Age=86400; path=/
vary: Accept-Encoding
content-encoding: br
content-length: 8569
content-type: text/html; charset=UTF-8
date: Fri, 08 Dec 2023 07:57:22 GMT
server: Apache
X-Firefox-Spdy: h2
indmed.in/wp-content/cache/autoptimize/js/autoptimize_1d9e3d7817aceb8adb08404e3b8a4629.js
200 OK 354 kB URL GET HTTP/2 indmed.in/wp-content/cache/autoptimize/js/autoptimize_1d9e3d7817aceb8adb08404e3b8a4629.js
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
Size 354 kB (354514 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/cache/autoptimize/js/autoptimize_1d9e3d7817aceb8adb08404e3b8a4629.js HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Thu, 07 Dec 2023 16:09:18 GMT
etag: "c1c001a-568d2-60bedb0987e0f-gzip"
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Wed, 27 Nov 2024 07:57:21 GMT
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 08 Dec 2023 07:57:21 GMT
server: Apache
X-Firefox-Spdy: h2
stats.wp.com/w.js?ver=202349
200 OK 11 kB URL GET HTTP/2 stats.wp.com/w.js?ver=202349
IP
Certificate IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File type ASCII text, with very long lines (11119), with no line terminators
Hash 1ac0848d5bceb8555feaf98f8fb860cb
117dcc305a16fbf0f0ef2d173c3c52adfa816047
585d4af3a08847a4604f8796b4841ebf7eaec7211606cc954f88dc9f27c72b28
GET /w.js?ver=202349 HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 07:57:21 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/11154-1698845935987.3887
content-encoding: br
expires: Wed, 27 Nov 2024 16:32:01 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
indmed.in/wp-content/cache/autoptimize/css/autoptimize_645e25746732f92ab8912b8a07744c57.css
200 OK 7.0 kB URL GET HTTP/2 indmed.in/wp-content/cache/autoptimize/css/autoptimize_645e25746732f92ab8912b8a07744c57.css
IP
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerLet's Encrypt
Subjectautodiscover.indmed.in
Fingerprint6E:B0:51:FD:8E:60:8D:66:4F:0A:50:38:5E:A8:62:60:75:38:04:1C
ValiditySat, 21 Oct 2023 17:57:53 GMT - Fri, 19 Jan 2024 17:57:52 GMT
File type ASCII text, with very long lines (7025), with no line terminators
Hash ce8b0a7bb5f98d79c102c71933b3aad8
cd2b9324f1e811972b048dc8848a2f5c55f8ec51
32997f876bcfc37b657b0b8680a10e9dee1bd4749d3bf52e622c1ab697d7008e
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/cache/autoptimize/css/autoptimize_645e25746732f92ab8912b8a07744c57.css HTTP/1.1
Host: indmed.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://indmed.in/
Cookie: wmc_ip_info=eyJjb3VudHJ5IjoiTk8iLCJjdXJyZW5jeV9jb2RlIjoiTk9LIn0%3D; wmc_current_currency=USD
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Thu, 07 Dec 2023 16:09:21 GMT
etag: "c1c00f2-1b6d-60bedb0c37dfc-gzip"
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Wed, 27 Nov 2024 07:57:22 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1170
content-type: text/css
date: Fri, 08 Dec 2023 07:57:22 GMT
server: Apache
X-Firefox-Spdy: h2
43.255.154.31
142.250.74.131
194.242.11.186