r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4c9ec202b798d350b6582220b7bb8457
d16ca24cd60b349231ad06fa5db32f54a3bc9e09
df036d315a613ac6396b77afb0a4ea5f793091786be0cbf3f3a0d043bc1d1d3c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF036D315A613AC6396B77AFB0A4EA5F793091786BE0CBF3F3A0D043BC1D1D3C"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4591
Expires: Thu, 27 Oct 2022 09:48:23 GMT
Date: Thu, 27 Oct 2022 08:31:52 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6099
Cache-Control: max-age=96049
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:52 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 11:12:41 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a39eea1096852891690eaee02a64383e
c273000f799fc3676e8e3ef3617611a31252cffc
d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2990
Expires: Thu, 27 Oct 2022 09:21:42 GMT
Date: Thu, 27 Oct 2022 08:31:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Qgqy9EE1eSEAurx91GLnP3o1VRV9wRgTWTzgaGFdzA7D7kc7a1BhAQjxvAzBYFT4hp7b0z0Q1qY=
x-amz-request-id: Q91XFVCG2YT6RKV5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 27 Oct 2022 08:09:45 GMT
age: 1327
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
halalsign.com/
204.11.58.168301 Moved Permanently 230 B IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash df1bea146fe7d92e700ea3552be60721
2c8ca7c5e5af1a51c409dbceef9ae8bdb44099eb
05825269623ec8122179158ab5d80ae5c0c3683cf7e110974c50d4047c172196
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 27 Oct 2022 08:31:51 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=iso-8859-1
Content-Length: 230
Location: https://halalsign.com/
X-Server-Cache: true
X-Proxy-Cache: EXPIRED
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f211080f39e10c9aea70fd23891cec44
43cf3258ffa921df810f50e6341273d9eab9ff72
13d785ca9df9dda5f652fa4fbadeec1584836416297c08e29cf900fc1588df8d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "13D785CA9DF9DDA5F652FA4FBADEEC1584836416297C08E29CF900FC1588DF8D"
Last-Modified: Wed, 26 Oct 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20092
Expires: Thu, 27 Oct 2022 14:06:45 GMT
Date: Thu, 27 Oct 2022 08:31:53 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dd283dfc036535bdeb8a8be1310ef930
d3b1c300dd75d7af630e0f3112e49d7492d66c17
578f9256faa188facb3f2d68b02b0c7fb2e30e02e2e74234d015429563cba7aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6368
Cache-Control: max-age=91262
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:53 GMT
Etag: "6358ea97-1d7"
Expires: Fri, 28 Oct 2022 09:52:55 GMT
Last-Modified: Wed, 26 Oct 2022 08:06:47 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.164.183.116101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.183.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wd3XWPFi6s7lDPJLKlpt4Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 18IOPiOSxZsV0vzm+P3WyIA3h1g=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.halalsign.com/wp-content/plugins/LayerSlider/assets/static/layerslider/css/layerslider.css?ver=6.11.2
204.11.58.168200 OK 5.3 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/LayerSlider/assets/static/layerslider/css/layerslider.css?ver=6.11.2
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 90a1da4830bde1ee84e213673a96182b
d1431a280d3a82232ce75cd4193087ab7dc91b4a
f9b98d6ffca39d3799151db524ef9e7bb69cac420f090127a1a7d162a730d8a2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/assets/static/layerslider/css/layerslider.css?ver=6.11.2 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Aug 2020 00:10:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5341
content-type: text/css
date: Thu, 27 Oct 2022 08:31:54 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
204.11.58.168200 OK 7.1 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (30837)
Hash 09b8b6cbc1b0486aa66786792e8c6984
73a077a16ce58b6b5c7169a61989f7421a913936
a8e462cb54773ddf7cd4fdc03715c0cd12a537c633c026635d5810b621246db6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Apr 2022 23:20:45 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7112
content-type: text/css
date: Thu, 27 Oct 2022 08:31:54 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=6.0.1
204.11.58.168200 OK 9.9 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=6.0.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (45507)
Hash 1244373d699f215ae98b1572be78b72d
0a9f6a05681b81458e51e8654b95e8485795789b
dcd3780c57da1a4868ea0149fecb62f33536faf818e7d858026436c01c7c1614
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=6.0.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Aug 2022 16:36:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9938
content-type: text/css
date: Thu, 27 Oct 2022 08:31:54 GMT
server: Apache
X-Firefox-Spdy: h2
i1.wp.com/www.halalsign.com/wp-content/uploads/2016/11/graphics-3_r4_c2-compressor1.jpg?fit=1600%2C416
192.0.77.2200 OK 53 kB URL HTTP/2 i1.wp.com/www.halalsign.com/wp-content/uploads/2016/11/graphics-3_r4_c2-compressor1.jpg?fit=1600%2C416
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x416, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8e544a94822b8142bdde4b408b89a1ba
6a50f5c20a96bbe4f4f02f6a842be4a57523614b
fd6153f6cd2b351d6bac989440c3862d796a489182bcffc97701999659c06495
GET /www.halalsign.com/wp-content/uploads/2016/11/graphics-3_r4_c2-compressor1.jpg?fit=1600%2C416 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: image/webp
content-length: 52812
last-modified: Sun, 25 Sep 2022 13:14:15 GMT
expires: Wed, 25 Sep 2024 01:14:15 GMT
cache-control: public, max-age=63115200
link: <http://www.halalsign.com/wp-content/uploads/2016/11/graphics-3_r4_c2-compressor1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "dc77e4d190a2ee58"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/10.8/_inc/build/twitter-timeline.min.js
192.0.77.37200 OK 270 B URL HTTP/2 c0.wp.com/p/jetpack/10.8/_inc/build/twitter-timeline.min.js
IP 192.0.77.37:0
File type ASCII text, with no line terminators
Hash 18af70e911ed6d73672ef0940705e293
7507fc902699c257c250fb0319a2dbf781a96bdd
3688a29bbda548acee73eb4383de2cfe65fee84e27fe7d2bccb7d670f697fa18
GET /p/jetpack/10.8/_inc/build/twitter-timeline.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
content-length: 270
last-modified: Tue, 07 Dec 2021 16:56:47 GMT
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
i1.wp.com/www.halalsign.com/wp-content/uploads/2018/06/hs-slide1-1.jpg?fit=1600%2C416
192.0.77.2200 OK 111 kB URL HTTP/2 i1.wp.com/www.halalsign.com/wp-content/uploads/2018/06/hs-slide1-1.jpg?fit=1600%2C416
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x416, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 111 kB (111088 bytes)
Hash 8bd7ab92c325586b7bb50ed0e5d61550
d1708253c8b065505ce369dbd33ef88581b906d2
369c3b5c64408d31897bfbd6f4b52b89d3f288848f613bf9fa5a93c5fcc0eafe
GET /www.halalsign.com/wp-content/uploads/2018/06/hs-slide1-1.jpg?fit=1600%2C416 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: image/webp
content-length: 111088
last-modified: Sat, 24 Sep 2022 07:41:46 GMT
expires: Mon, 23 Sep 2024 19:41:46 GMT
cache-control: public, max-age=63115200
link: <http://www.halalsign.com/wp-content/uploads/2018/06/hs-slide1-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "5e643f8c560f9862"
vary: Accept
x-nc: HIT arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/dabur_chyawanprash.jpg?fit=200%2C200&ssl=1
192.0.77.2200 OK 6.0 kB URL HTTP/2 i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/dabur_chyawanprash.jpg?fit=200%2C200&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0121b916c037f648734b37dd631e4cac
b206310a6ac77ead582fccaee365bd25ac1e66c2
8466635f65efba4abcc980d6fc703a05094ec9b834d8817283a4add582650a6e
GET /www.halalsign.com/wp-content/uploads/2016/09/dabur_chyawanprash.jpg?fit=200%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: image/webp
content-length: 5992
last-modified: Mon, 22 Aug 2022 08:21:42 GMT
expires: Wed, 21 Aug 2024 20:21:42 GMT
cache-control: public, max-age=63115200
link: <https://www.halalsign.com/wp-content/uploads/2016/09/dabur_chyawanprash.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "93219713768b60e5"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/cadbury_gems.jpg?fit=200%2C200&ssl=1
192.0.77.2200 OK 6.1 kB URL HTTP/2 i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/cadbury_gems.jpg?fit=200%2C200&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash df9bc32a79d25be645b5c36b0c427778
1ff296a3929baf249c4ec83c8e1159906a423738
09ecfece2323258dbfbb2443580c50d42ca6c1c049172f51e30cc320bec0f533
GET /www.halalsign.com/wp-content/uploads/2016/09/cadbury_gems.jpg?fit=200%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: image/webp
content-length: 6086
last-modified: Thu, 04 Aug 2022 12:35:15 GMT
expires: Sun, 04 Aug 2024 00:35:15 GMT
cache-control: public, max-age=63115200
link: <https://www.halalsign.com/wp-content/uploads/2016/09/cadbury_gems.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "9784a2882c8c2564"
vary: Accept
x-nc: HIT arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.0.1
204.11.58.168200 OK 14 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.0.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (57835), with no line terminators
Hash d0df3f6390e0bba60511ba285033d8a2
0a14a3d8b2e48a0d7796a958fa01c1cf62b0eb4d
083b0e197827f4ba151d90a4ba9a7b2d04dfb1f2f2e41f1d2d9803a02c71c30c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.0.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Aug 2022 16:36:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13554
content-type: text/css
date: Thu, 27 Oct 2022 08:31:54 GMT
server: Apache
X-Firefox-Spdy: h2
i0.wp.com/www.halalsign.com/wp-content/uploads/2016/10/Nestle-Nescafe-Classic-Coffee.jpg?fit=150%2C150&ssl=1
192.0.77.2200 OK 4.5 kB URL HTTP/2 i0.wp.com/www.halalsign.com/wp-content/uploads/2016/10/Nestle-Nescafe-Classic-Coffee.jpg?fit=150%2C150&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 150x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4b5c79dd00968bb567b0ecc29be7ad45
d8ea25bcfb54ff96f5edc7aa02422c330d3e90cb
8a38bd020bdce91546cb5a25148f325b35633b5b568b528eee4c1f50504f5423
GET /www.halalsign.com/wp-content/uploads/2016/10/Nestle-Nescafe-Classic-Coffee.jpg?fit=150%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: image/webp
content-length: 4516
last-modified: Mon, 22 Aug 2022 08:21:42 GMT
expires: Wed, 21 Aug 2024 20:21:42 GMT
cache-control: public, max-age=63115200
link: <https://www.halalsign.com/wp-content/uploads/2016/10/Nestle-Nescafe-Classic-Coffee.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "385459b9a2958803"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/download-manager/assets/css/front.css?ver=6.0.1
204.11.58.168200 OK 16 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/download-manager/assets/css/front.css?ver=6.0.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (482)
Hash cd1ea7128f5bc9bf147ad77b2dc081ab
6f6e4e40fc62c6bcc44ae1d0327fa0f7050e838d
36212fc3339b6940d00662676819e8856f263ca717666cac32e350ff79c7ac8a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/download-manager/assets/css/front.css?ver=6.0.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Aug 2022 16:36:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 16469
content-type: text/css
date: Thu, 27 Oct 2022 08:31:54 GMT
server: Apache
X-Firefox-Spdy: h2
i0.wp.com/www.halalsign.com/wp-content/uploads/2016/10/HUL-Brooke-Bond-Taj-Mahal-Classic-Tea.jpg?fit=119%2C150&ssl=1
192.0.77.2200 OK 5.1 kB URL HTTP/2 i0.wp.com/www.halalsign.com/wp-content/uploads/2016/10/HUL-Brooke-Bond-Taj-Mahal-Classic-Tea.jpg?fit=119%2C150&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 119x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 69148cde703874a56ba5e7c8e7512194
2e6abfc640e0ee1dd9f1a9ff5a4b5af2efd1f04c
187ac486c44f6414eb96814b8c46daeca55c788c81b735738dd4f95ef71b14aa
GET /www.halalsign.com/wp-content/uploads/2016/10/HUL-Brooke-Bond-Taj-Mahal-Classic-Tea.jpg?fit=119%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: image/webp
content-length: 5100
last-modified: Thu, 25 Aug 2022 00:31:49 GMT
expires: Sat, 24 Aug 2024 12:31:49 GMT
cache-control: public, max-age=63115200
link: <https://www.halalsign.com/wp-content/uploads/2016/10/HUL-Brooke-Bond-Taj-Mahal-Classic-Tea.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "76414a75ce8ae148"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/juices.jpg?resize=150%2C150&ssl=1
192.0.77.2200 OK 6.6 kB URL HTTP/2 i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/juices.jpg?resize=150%2C150&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 150x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6c6cfbc270831fc41723269546ce934e
9e6fcc239706fb9820b026300722cdf74db22d2b
2af223670e283374a1634fd4c4a5893ca905d0addff899e568e7129cecbb0773
GET /www.halalsign.com/wp-content/uploads/2016/09/juices.jpg?resize=150%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: image/webp
content-length: 6636
last-modified: Thu, 25 Aug 2022 00:31:49 GMT
expires: Sat, 24 Aug 2024 12:31:49 GMT
cache-control: public, max-age=63115200
link: <https://www.halalsign.com/wp-content/uploads/2016/09/juices.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "189de2fa5882a70f"
vary: Accept
x-nc: HIT arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/namkeens.jpg?resize=150%2C150&ssl=1
192.0.77.2200 OK 9.3 kB URL HTTP/2 i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/namkeens.jpg?resize=150%2C150&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 150x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e9c4fc125de93bb6047b190d0ef3b6ce
75bffb8d9155879b5c844ac66095e58052888fab
e3d62e5f8f5fc8ea221dce064c7d89b2802304d9978e47c07a3bb29140cb3b4e
GET /www.halalsign.com/wp-content/uploads/2016/09/namkeens.jpg?resize=150%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: image/webp
content-length: 9336
last-modified: Mon, 22 Aug 2022 08:21:42 GMT
expires: Wed, 21 Aug 2024 20:21:42 GMT
cache-control: public, max-age=63115200
link: <https://www.halalsign.com/wp-content/uploads/2016/09/namkeens.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "cf97413c02b9c5cf"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/soaps.jpg?resize=150%2C150&ssl=1
192.0.77.2200 OK 5.4 kB URL HTTP/2 i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/soaps.jpg?resize=150%2C150&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 150x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8ee436b7fdee1cd68e4b74728241d5ef
ceb25e74144f023b49500a0509753842f8b9238b
c56d866fd0354342849f420f184c5bf11501592e2dc3ec5328c3e4815b15d066
GET /www.halalsign.com/wp-content/uploads/2016/09/soaps.jpg?resize=150%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: image/webp
content-length: 5438
last-modified: Thu, 25 Aug 2022 00:31:49 GMT
expires: Sat, 24 Aug 2024 12:31:49 GMT
cache-control: public, max-age=63115200
link: <https://www.halalsign.com/wp-content/uploads/2016/09/soaps.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "b9bd291f20f0ba3f"
vary: Accept
x-nc: HIT arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/tea.jpg?resize=150%2C150&ssl=1
192.0.77.2200 OK 6.3 kB URL HTTP/2 i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/tea.jpg?resize=150%2C150&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 150x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 38e725dd13c52b7ce5a952ebbe911c81
c3720095ff216f6f97729669b7fd4e045152653d
c68f836a014538882fcf8fad197fb55a82a2d32eb9792c1b1240877b30f1e6fd
GET /www.halalsign.com/wp-content/uploads/2016/09/tea.jpg?resize=150%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: image/webp
content-length: 6260
last-modified: Sat, 24 Sep 2022 07:41:46 GMT
expires: Mon, 23 Sep 2024 19:41:46 GMT
cache-control: public, max-age=63115200
link: <https://www.halalsign.com/wp-content/uploads/2016/09/tea.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "aa40a0609a3af5c3"
vary: Accept
x-nc: HIT arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.7.6
204.11.58.168200 OK 677 B URL HTTP/2 www.halalsign.com/wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.7.6
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash a9d53ee077f46fab944e4f8e2e60f110
f76561d6cb4ffe01f1d91cdb7375367cd752e123
d423103ba56631d2859b2d3040cf0c65cb188cedff3cf897a12f45cf9698bbfb
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.7.6 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Aug 2021 11:59:46 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 677
content-type: text/css
date: Thu, 27 Oct 2022 08:31:54 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c0.wp.com/c/6.0.1/wp-includes/js/jquery/jquery.min.js
192.0.77.37200 OK 36 kB URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/jquery/jquery.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (65447)
Hash c9193213de3cf93457b28f1a52b83a6e
084bc7d56d109a7d40aad3a962935346128b078b
0d3b04e69443a4e77595e940a56775cbe76b849cd87ac97466e79540a24b4b99
GET /c/6.0.1/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/sp-faq/assets/css/jquery.accordion.css?ver=3.6.4
204.11.58.168200 OK 535 B URL HTTP/2 www.halalsign.com/wp-content/plugins/sp-faq/assets/css/jquery.accordion.css?ver=3.6.4
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (368)
Hash 2e705198ac5d7c5052acd857d954c8c9
ea2bb38cb111fec8d764d2168c1c72393398640b
b73f5567a7ca34cb300ff9dc61e35afca1db1459fb8e9200f92f31990b61fa27
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/sp-faq/assets/css/jquery.accordion.css?ver=3.6.4 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 09:38:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 535
content-type: text/css
date: Thu, 27 Oct 2022 08:31:54 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.1
142.250.74.10200 OK 8.7 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.1
IP 142.250.74.10:0
Hash fd080f1c5c66d4166fe1307d82624765
9c0460cef6702074a5548638800fb9f4e4613658
2f48b66cba5ff9ebfcf6ff857289fa41b5ab3adaa2a9e53752042d5562875f5c
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 27 Oct 2022 08:31:54 GMT
date: Thu, 27 Oct 2022 08:31:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/supercarousel/public/css/supercarouselmerged.css?ver=3.6.6
204.11.58.168200 OK 2.9 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/supercarousel/public/css/supercarouselmerged.css?ver=3.6.6
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (10256)
Hash 28e88741bfb174c2504e1f72c954d148
f81a223b303efeb267def864498e8e639a9f9723
6099ef7938f89b43a68c80aac0fd4d7c319a70e0efdb78a57f809df401bdf2d0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/supercarousel/public/css/supercarouselmerged.css?ver=3.6.6 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Jun 2020 09:36:10 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2915
content-type: text/css
date: Thu, 27 Oct 2022 08:31:54 GMT
server: Apache
X-Firefox-Spdy: h2
i2.wp.com/www.halalsign.com/wp-content/uploads/2018/06/hs-slide31.jpg?fit=1600%2C416
192.0.77.2200 OK 147 kB URL HTTP/2 i2.wp.com/www.halalsign.com/wp-content/uploads/2018/06/hs-slide31.jpg?fit=1600%2C416
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x416, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 147 kB (147002 bytes)
Hash 629ee253869a81e454f700718e03f148
610c0f18f5e4a027b84c2c51ec1062ae3d79e2ca
195e8e687f6b3820a10a1a84e5c4c6e79022ffb5a1abdf7d3740753b8dffe50d
GET /www.halalsign.com/wp-content/uploads/2018/06/hs-slide31.jpg?fit=1600%2C416 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:55 GMT
content-type: image/webp
content-length: 147002
last-modified: Thu, 20 Oct 2022 18:40:27 GMT
expires: Sun, 20 Oct 2024 06:40:27 GMT
cache-control: public, max-age=63115200
link: <http://www.halalsign.com/wp-content/uploads/2018/06/hs-slide31.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "87347b6e4f44c130"
vary: Accept
x-nc: HIT arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.22
204.11.58.168200 OK 17 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.22
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 26654e907c542b3da66723d35ee26a50
cf957dec7ff9801be13555ea2e9c533ec9ff5995
f507e289ed85a71bbdd7a4c938d25043d929d84f392b6791732faee714c70b3d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.22 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 21 Aug 2020 10:48:24 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 16832
content-type: text/css
date: Thu, 27 Oct 2022 08:31:54 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/jquery/ui/mouse.min.js
192.0.77.37200 OK 1.5 kB URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/jquery/ui/mouse.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (3233)
Hash a2fb7c5193f07a0f7894f7dbfaac8f91
0559def03d39fb87e17e7b7d33e03d800be15d84
c97b26d63246e4f4d18b0498a22d72544b5541adf231c2ace1127e7382c3a195
GET /c/6.0.1/wp-includes/js/jquery/ui/mouse.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/dabur_red_toothpaste.jpg?fit=200%2C200&ssl=1
192.0.77.2200 OK 6.5 kB URL HTTP/2 i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/dabur_red_toothpaste.jpg?fit=200%2C200&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4383ef713d9d5e955357f49a3e80486c
664dcdc5f2f1acac013b9adecec747616d686d31
112a270d6ed248daa7f263f6a40ee310475471a8ceae34da9bebe54e3bc5da6d
GET /www.halalsign.com/wp-content/uploads/2016/09/dabur_red_toothpaste.jpg?fit=200%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:55 GMT
content-type: image/webp
content-length: 6484
last-modified: Thu, 04 Aug 2022 12:35:15 GMT
expires: Sun, 04 Aug 2024 00:35:15 GMT
cache-control: public, max-age=63115200
link: <https://www.halalsign.com/wp-content/uploads/2016/09/dabur_red_toothpaste.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "cf4939624de4fcac"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/dabur_honey.jpg?fit=200%2C200&ssl=1
192.0.77.2200 OK 5.7 kB URL HTTP/2 i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/dabur_honey.jpg?fit=200%2C200&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0726079da58c3e34ec8e97a23345c434
3693b6b759c422a1f7046c2e5af28733b8631a28
2665bc3ba9db225a75357747795fbe58d7c6d52ba0792cfbacc5a0c52072fb85
GET /www.halalsign.com/wp-content/uploads/2016/09/dabur_honey.jpg?fit=200%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:55 GMT
content-type: image/webp
content-length: 5696
last-modified: Mon, 22 Aug 2022 08:21:41 GMT
expires: Wed, 21 Aug 2024 20:21:41 GMT
cache-control: public, max-age=63115200
link: <https://www.halalsign.com/wp-content/uploads/2016/09/dabur_honey.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ee28f99ff220e9c6"
vary: Accept
x-nc: HIT arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/nivea_creme_soap.jpg?fit=200%2C200&ssl=1
192.0.77.2200 OK 4.0 kB URL HTTP/2 i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/nivea_creme_soap.jpg?fit=200%2C200&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e2b7206dc470cf754a0450a8d262833d
b017db2a849c3a3369cf2b92ce40d80f6148f817
1727ec3ae12d9ba7a6e285442ce0002bdf4512c5112945db28d47a6fe39b4a98
GET /www.halalsign.com/wp-content/uploads/2016/09/nivea_creme_soap.jpg?fit=200%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:55 GMT
content-type: image/webp
content-length: 4032
last-modified: Tue, 11 Oct 2022 14:02:41 GMT
expires: Fri, 11 Oct 2024 02:02:41 GMT
cache-control: public, max-age=63115200
link: <https://www.halalsign.com/wp-content/uploads/2016/09/nivea_creme_soap.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "1207513de4cfd6b4"
vary: Accept
x-nc: HIT arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1
204.11.58.168409 Conflict 83 B URL HTTP/2 www.halalsign.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Thu, 27 Oct 2022 08:31:54 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/jquery/ui/accordion.min.js
192.0.77.37200 OK 3.1 kB URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/jquery/ui/accordion.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (8632)
Hash d60eedbdbb8eec2eb3bddb9fc24d500c
3f92f9990e23c2386502ca41736897b831b9cd96
30be54f938ea7b4a15f33fd935a2675530d94e8f7e016d4a5a4b63f5cdaca8a9
GET /c/6.0.1/wp-includes/js/jquery/ui/accordion.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/uploads/elementor/css/post-4706.css?ver=1650103690
204.11.58.168200 OK 358 B URL HTTP/2 www.halalsign.com/wp-content/uploads/elementor/css/post-4706.css?ver=1650103690
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1120), with no line terminators
Hash c55dceb46490e1be34e6e8ba0724b626
c5daf0648a9ea405c2f0608facf63052410bc3cb
f610428c5ce4b0117387c09acfca25a47d31da4306d9b019e548d50a99e8fa86
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-4706.css?ver=1650103690 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 16 Apr 2022 10:08:10 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 358
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/uploads/elementor/css/global.css?ver=1650103691
204.11.58.168200 OK 1.1 kB URL HTTP/2 www.halalsign.com/wp-content/uploads/elementor/css/global.css?ver=1650103691
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (6697)
Hash 7925a5df5ac6e4c7abb8d166d2d59e79
5a01c01c75e565a3248d9736b1dbf3d8e538034c
22d0e4d10ed3b16e146e95047de05f9033bdd9c8b646ee9ff3fb7b60ceb6035c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/global.css?ver=1650103691 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 16 Apr 2022 10:08:11 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1122
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme-child/style.css?ver=21.8.1
204.11.58.168200 OK 151 B URL HTTP/2 www.halalsign.com/wp-content/themes/betheme-child/style.css?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash b6809424adb07404fd1007e667757d7c
a43492195fbbd9e9345eb65d34040f9141b9250c
c0ee67be91890c836184065a1998cc6d3c22f2748d5019c08788313033a79bac
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme-child/style.css?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 03 Jul 2020 14:58:48 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 151
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/tablepress-responsive-tables/css/tablepress-responsive.min.css?ver=1.8
204.11.58.168200 OK 2.3 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/tablepress-responsive-tables/css/tablepress-responsive.min.css?ver=1.8
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (8874), with no line terminators
Hash 7316f5b09b2233f32e43991586f5c3f9
115db49fbb33ada85ea031d743ffb82344ba4ed4
13f79bc6a015409ba3b8603b91d0a8b94f5ccd76cc79a63d2ff8193a207f8bd8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/tablepress-responsive-tables/css/tablepress-responsive.min.css?ver=1.8 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 May 2021 06:39:24 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2276
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/dist/vendor/wp-polyfill.min.js
192.0.77.37200 OK 7.4 kB URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP 192.0.77.37:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash ef4a97549fe34a72a1238399026b3a44
71708e9ae48d85f875efc97ed1c28331ecddbf02
20a37d9601c931d79e09fff44fc5429f39cd6f46bdb05079a62cd75c78d89358
GET /c/6.0.1/wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6081
Expires: Thu, 27 Oct 2022 10:13:16 GMT
Date: Thu, 27 Oct 2022 08:31:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6081
Expires: Thu, 27 Oct 2022 10:13:16 GMT
Date: Thu, 27 Oct 2022 08:31:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6081
Expires: Thu, 27 Oct 2022 10:13:16 GMT
Date: Thu, 27 Oct 2022 08:31:55 GMT
Connection: keep-alive
www.halalsign.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
204.11.58.168409 Conflict 83 B URL HTTP/2 www.halalsign.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/tablepress-combined.min.css?ver=29
204.11.58.168200 OK 2.7 kB URL HTTP/2 www.halalsign.com/wp-content/tablepress-combined.min.css?ver=29
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5146)
Hash 37673689d47004898643aa0fae1af529
2eb41cb0c7520e17b8cbc9aa27d4ee1b4650c48f
73a40fefd80332ee892221dc95d153b8496bfc7543223fb40c7e646de5638ff9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/tablepress-combined.min.css?ver=29 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Aug 2021 12:00:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2731
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.8.1
204.11.58.168200 OK 2.8 kB URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 882a67edf998a8e4042a26b7fbcd0063
d8601e5df26c9ad9f834c1b02f70fb7f04921ea9
3fdc0aaaab656ed1e354659de46b5b468936c40219a596cc728af45cbb34e425
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:22:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2777
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.transitions.js?ver=6.11.2
204.11.58.168200 OK 3.6 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.transitions.js?ver=6.11.2
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (21440)
Hash 90b224d725bfc80967cfad6866700648
41aeeb42a181ca14413495a7a938f7376281c98a
286926ca6beaede61f4390c9ef352686c133af59a8189b756d05c415cda4b484
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.transitions.js?ver=6.11.2 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Aug 2020 00:10:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3610
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LegsAgUAAAAALWsE7H1HIHYJZLowoj9yMR2dgNX&ver=3.0
142.250.74.164200 OK 555 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LegsAgUAAAAALWsE7H1HIHYJZLowoj9yMR2dgNX&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash e97ac326fe7d86d6443c29db10dd14e7
6001bc7cf0bc44bb9fb4b3cb5e99928d988e5221
ceb685ffc1ceb8e12d13345098796805f46a8f97fb744a00739f57c8961a59b6
GET /recaptcha/api.js?render=6LegsAgUAAAAALWsE7H1HIHYJZLowoj9yMR2dgNX&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 27 Oct 2022 08:31:55 GMT
date: Thu, 27 Oct 2022 08:31:55 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/dist/hooks.min.js
192.0.77.37200 OK 11 kB URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/dist/hooks.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (4875)
Hash 1ae37aaaf42713ee814797dda7d41df0
8a434f6f7a1f76cbcfa3fa3cbd36cf5e7feba555
fb211794c69954fa87af75d76a136b014ff0a495b12b8082dd175def5e376396
GET /c/6.0.1/wp-includes/js/dist/hooks.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/dist/i18n.min.js
192.0.77.37200 OK 20 kB URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/dist/i18n.min.js
IP 192.0.77.37:0
Hash 2441e3116c3c35446c874aec4b1dbb65
9215b983b6611a8e297bb98f882c51aad1bc6e5c
c0f16a838adb7c6ce1777487642674a9a91e63e450891537ae20fa97ba15d12a
GET /c/6.0.1/wp-includes/js/dist/i18n.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 15:12:47 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/10.8/modules/wpgroho.js
192.0.77.37200 OK 5.9 kB URL HTTP/2 c0.wp.com/p/jetpack/10.8/modules/wpgroho.js
IP 192.0.77.37:0
Hash 71d7e0e81e7ba15f02872ff5d5294ba7
37490613fea15b31cf9699e14420c650a9e5175f
83dee1194f6c5b2b74273f1263ada625c57989b25537dfef0dc6e6574eeee654
GET /p/jetpack/10.8/modules/wpgroho.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 28 Jul 2020 17:06:48 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.8.1
204.11.58.168200 OK 4.0 kB URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (365)
Hash 0e7efc9f41534813b20d2eda067254ee
e0cd0ad1436f442d6363286943b42ba7fe92b11a
ef233825778cf8a0ca1d7efa9a63b4f7a13afe161412fae9514a997ae99221da
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:22:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4015
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c92c49279a7704d715e50836676d1abb
3092b4dbd87f7e5a2eff65c463da9c5103ff748a
6941145d63e68abf0f20081517faa4082eed3c59f8b8a69066f70b29d90fd355
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4709
x-amzn-requestid: c2923a57-57c4-4d62-83bc-e4c8b61aa2bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocuiGeeIAMF9Dg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7f6-7e47cfe804e333cc540f162a;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: M72Vjcyc06ihmWcqr2_Xrk8dGcC5pCoDidg5rhtRkVddavcUFE6G6w==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:47:37 GMT
etag: "3092b4dbd87f7e5a2eff65c463da9c5103ff748a"
content-type: image/jpeg
age: 38658
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
204.11.58.168200 OK 4.0 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (19082)
Hash 1a51c193793d105fc6aaddfc3bc05349
238e509973276daa145be273af1aba0fbb3801bf
69e8578f795564941f826ab314ab57c83da7fb6ca7d9221c8df5f1e9081ae6e3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Apr 2022 23:20:45 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3978
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/jquery/jquery.form.min.js
192.0.77.37200 OK 15 kB URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/jquery/jquery.form.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (16109), with no line terminators
Hash 52930a6fa7caaca6e6d4fa0152d4a50f
618b90ecad419a85678a962ecd67e2cc7743266f
f329a906eb3d956c22d3c5efc03cff5d7050fbeffd51fcdb469ff9a64f91b34b
GET /c/6.0.1/wp-includes/js/jquery/jquery.form.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.8.1
204.11.58.168200 OK 6.6 kB URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (58508), with no line terminators
Hash abe5d01dd73a3c3b946127f8da8c3f86
d90424abbbd2512ce4426e41308a2f3c72814351
dc4684a523a059576b53faff19b2fbd76b51ba0c4eb62608c361a9ecc0181036
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:22:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6622
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/imagesloaded.min.js
192.0.77.37200 OK 11 kB URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/imagesloaded.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (5477)
Hash 5b5a8345e59c57d087ffa439b47d5107
2ed7394ba46780e10929cccb382803df49e088e4
5ed9c2b44c62c62bf84fb4961552703ed965b61390c7a17a081fb7fd75e30ace
GET /c/6.0.1/wp-includes/js/imagesloaded.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.7.6
204.11.58.168200 OK 1.6 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.7.6
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash bf378701bfc97385e9160181fb66fd62
b7ca82d7fe2ed9d36bf837ca1cbf1b2466fe0d30
62ed970182ae6744f5a86abe769f33560949ebfdfd60ffb5412cb4e4f1550eb1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.7.6 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Aug 2021 11:59:46 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1603
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/wpdm-button-templates/buttons.css?ver=6.0.1
204.11.58.168200 OK 8.4 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/wpdm-button-templates/buttons.css?ver=6.0.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2272)
Hash a6f4f86653c04de706ed4fe1b2ae7f68
7c1db5470c58b5497802c4613b2316a0c3794843
6750c065a1e4109a20e0c31d0101d94ca9cf4f11e79b62360e3ec14ef3bcf08a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpdm-button-templates/buttons.css?ver=6.0.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 01 Oct 2016 10:08:32 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8378
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.0.1
204.11.58.168200 OK 8.9 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.0.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (21084)
Hash 192059224c07b64be6d211bcd9756103
041aa25a9962fe6666181b540096c7f9d646bce6
0d0b8c399d578ab71f0cf91357f9a0305414f10562478d6baabf45c7fafa5b39
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.0.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Aug 2022 16:36:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8949
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme/css/responsive.css?ver=21.8.1
204.11.58.168200 OK 16 kB URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/css/responsive.css?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (612)
Hash 066d5313a33623b2119b2b61eb7f5700
41cc2fe85df43d05e2749d643de33f32ab0f0d67
60b447e71db1d985f6bba04ac41092a53a506bf610c8350b70a165bd2769eec7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/css/responsive.css?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:21:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 15783
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.4
204.11.58.168200 OK 1.6 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.4
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (13766)
Hash 62a3e8ede9a61445c50a10e5181e7680
9bca5c0ec7116d80be7cb876ff794810e147bab0
af9af8e94ad196859761c5216e8cf46e4e7dc95d7a89a94c91e4ad39a85d6367
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.4 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Apr 2022 23:20:45 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1608
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 26e60c83d7af169687cbd74f7ca924e0
00f7ceb935fe1cc423f95718a04076e4f5eca150
a041e2901d418b289c3129ce7c07a66e598f6d3ac076732635b0a9ac6fbabb89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.halalsign.com/wp-content/plugins/supercarousel/public/js/supercarouselmerged.js?ver=3.6.6
204.11.58.168200 OK 13 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/supercarousel/public/js/supercarouselmerged.js?ver=3.6.6
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (17109)
Hash ffefe385c23aaee2840a997365ada10c
c4fdade13bb2e3ae8838434f1d3760b4ff97bdf0
ea4a1a71596f8f7e4cb0dd56b786ec76376a8e07f38fb0ce151a78c349621d28
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/supercarousel/public/js/supercarouselmerged.js?ver=3.6.6 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Jun 2020 09:36:10 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13091
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.6
204.11.58.168200 OK 4.6 kB URL HTTP/2 www.halalsign.com/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.6
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (27639), with no line terminators
Hash a74d8a9e6361e6170342143743d34e52
033d08f24f8768a1d7cd92ba1d049a011bb585eb
c55a939cb1bad24f59b12c0533db6a87fecaede91efe8d6e285ae44dbb7990d5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.6 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 23 Sep 2016 20:32:22 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4644
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.53
204.11.58.168200 OK 15 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.53
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4122)
Hash b033b3a9f364b055fee66a59bceee005
ae0c18189660bd058aa9fc26f62785f664bf7d34
25d1707b32df89ced0cc1d5098a9e62054a70ffabdf68b8f0f7f405b2f0cb1be
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.53 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Aug 2022 16:36:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 14686
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme/css/base.css?ver=21.8.1
204.11.58.168200 OK 16 kB URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/css/base.css?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (464)
Hash 8d0ef699c6b5eb527cf662d8b45ab907
9ae69c5cd211520cbef6559bc1dcad135bd5d580
c34b16f5a2acb2c8465e5cf8f6c1f9e164d5108a797508e6a7744063300a69d9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/css/base.css?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:21:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 15515
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A1%7CUbuntu%3A1%7COpen+Sans%3A1&font-display=swap&ver=6.0.1
142.250.74.10200 OK 1.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A1%7CUbuntu%3A1%7COpen+Sans%3A1&font-display=swap&ver=6.0.1
IP 142.250.74.10:0
File type ASCII text, with very long lines (1723)
Hash 1d52409da3a6501cafbb4135778fb22d
38150b6d02f3b9b84629feb1cc2da479e0f13b10
93fc3a80d88c5346e10d08a839a2201c0ff2f6f113b5cf41894bc4aa8df2dc9e
GET /css?family=Roboto%3A1%7CUbuntu%3A1%7COpen+Sans%3A1&font-display=swap&ver=6.0.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 27 Oct 2022 08:31:54 GMT
date: Thu, 27 Oct 2022 08:31:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme/js/menu.js?ver=21.8.1
204.11.58.168200 OK 861 B URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/js/menu.js?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 4509711e43c3f101d1134204104b60e7
487f0e98ece5858b7482854f8ab162d6702f2cf4
b30807309b4b74dc22327db09124e519cbb693c888451109c92791935c49bc07
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/js/menu.js?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 861
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/sp-faq/assets/js/jquery.accordion.js?ver=3.6.4
204.11.58.168200 OK 2.5 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/sp-faq/assets/js/jquery.accordion.js?ver=3.6.4
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 1a4b83a2ae87662471bc6c411a5ed5ef
f526bb8aca981e43e268372cc26b903dfa926b25
ae817701a90db6020838442c92af552dd0b3a22cfd157e1ba00777d2196182cd
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/sp-faq/assets/js/jquery.accordion.js?ver=3.6.4 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 09:38:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2500
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
192.0.77.37200 OK 4.0 kB URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash d8544627a5e1e726f6886d7f25de77d8
a4e4f7a2e978c1a815a3539ee877de42f99036e0
6db2f510b5e00b0ba4ba22edf5a593fc49603efe6d9c905a869a5ba89debcdfd
GET /c/6.0.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/download-manager/assets/file-type-icons/pdf.svg
204.11.58.168200 OK 1.7 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/download-manager/assets/file-type-icons/pdf.svg
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (3336), with no line terminators
Hash a486ed4380997dee2888b2b05614c5f8
1d2da68b79116d4182b600ec6e2c18dda0e02f27
0b96b8d8884ec6ae89de27f1dba6d528f35642c6bd57af253c958775745a2287
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/download-manager/assets/file-type-icons/pdf.svg HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Aug 2022 16:36:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1681
content-type: image/svg+xml
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/email-subscribers/lite/public/images/spinner.gif
204.11.58.168200 OK 3.2 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/email-subscribers/lite/public/images/spinner.gif
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type GIF image data, version 89a, 32 x 32\012- data
Hash 80cd1b1264ba5e75e17297cfae6dedb6
a8b2cba86918ac7aae92e04746d7dbc349554cb2
7837e876f1eef549b3250b78380ec2df00ad6da4da6c27667424b1636854df3c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/email-subscribers/lite/public/images/spinner.gif HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Aug 2021 11:59:46 GMT
accept-ranges: bytes
content-length: 3208
vary: User-Agent
content-type: image/gif
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
142.250.74.10200 OK 9.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
Hash ee01966b7b4b128d41df973c63616ad5
f8b0a55b6e501b2aa717842d4c8ca0e75f4b1e30
91ae032f11603a1731d2f168896ee9effe39412623badfeec312c5a4eff43df0
GET /css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 27 Oct 2022 08:31:54 GMT
date: Thu, 27 Oct 2022 08:31:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/uploads/2016/11/hmc-uk-logo-compressed.png
204.11.58.168200 OK 14 kB URL HTTP/2 www.halalsign.com/wp-content/uploads/2016/11/hmc-uk-logo-compressed.png
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 244 x 244, 8-bit colormap, non-interlaced\012- data
Hash 91979ab6b0b425b48b2bcca63a7a6b20
f0eba51a78632202dc4d79b86f7e7d84ce32dd5b
c871fb835ef9e5c2f95637107e10b8be418b02637b337b3d0e10fd3bf0e39589
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2016/11/hmc-uk-logo-compressed.png HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Nov 2016 16:03:12 GMT
accept-ranges: bytes
content-length: 13518
vary: User-Agent
content-type: image/png
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/10.8/css/jetpack.css
192.0.77.37200 OK 34 kB URL HTTP/2 c0.wp.com/p/jetpack/10.8/css/jetpack.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (18436)
Hash a780d331fcd958876bbfae3722a52acc
96ffb04936dd389ce88bd9d49235f38401745f7b
e5af9ac90377f513d431247f8cddf223db3d9355bbd87b060cc781ff1e1ec5aa
GET /p/jetpack/10.8/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Mar 2022 19:04:42 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/jquery/jquery-migrate.min.js
192.0.77.37200 OK 4.1 kB URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/jquery/jquery-migrate.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (11126)
Hash 6fd63873d259d8bf85d0e327bc146324
85e511bdbb966a44e2722b4b0bab6a9eb6e1437d
1bfb2689cb23b41670f4c2fe5ae11d98d49857c382f6765ba447c3ef778bb7bc
GET /c/6.0.1/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/contact-widgets/assets/css/style.min.css?ver=1.0.1
204.11.58.168409 Conflict 83 B URL HTTP/2 www.halalsign.com/wp-content/plugins/contact-widgets/assets/css/style.min.css?ver=1.0.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-widgets/assets/css/style.min.css?ver=1.0.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/uploads/2016/11/hs-icon-fb.png
204.11.58.168200 OK 1.5 kB URL HTTP/2 www.halalsign.com/wp-content/uploads/2016/11/hs-icon-fb.png
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 40 x 40, 8-bit/color RGB, non-interlaced\012- data
Hash 39a5e148937f9af7c789fe470ed2ab33
18c3709c647093588587770c97a122d4358ba899
a4ae8139543beb1c752c05c1fda4d44ef56ca85c71afc81ba0a4da720829acd9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2016/11/hs-icon-fb.png HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Nov 2016 13:17:58 GMT
accept-ranges: bytes
content-length: 1514
vary: User-Agent
content-type: image/png
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/css/dist/block-library/style.min.css
192.0.77.37200 OK 13 kB URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/css/dist/block-library/style.min.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (43771)
Hash d8e657275da3f422b9e871d56929e7da
5dd4124764bc0c1d34b6caeeab801d75af526ec1
94b6b97c0e34003428804cb9dae643ee80a766227cf4cca809e0b0defcd3d25d
GET /c/6.0.1/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 04 Jul 2022 12:10:37 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
192.0.77.37200 OK 2.8 kB URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash 6442138dbff3884cfc345c9ee5455c7d
cce5213a66ee53f325b18bc6e96a35a5a9f04d72
cddc210d7dccef6ec00ec17c74b5e787dfaab1d9d41f71341f216c357dce0e9a
GET /c/6.0.1/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/uploads/2016/11/hs-icon-youtube.png
204.11.58.168200 OK 1.9 kB URL HTTP/2 www.halalsign.com/wp-content/uploads/2016/11/hs-icon-youtube.png
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 40 x 40, 8-bit/color RGB, non-interlaced\012- data
Hash bfc5118b037e29b133735932786d137f
78039cb4e11637c7235c761d5d7d8d9ae425ebf0
77e4657387ea467d2fd667175fe3d38fb35c64c0aaa4ef33cb470487bb4e3a13
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2016/11/hs-icon-youtube.png HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Nov 2016 13:17:42 GMT
accept-ranges: bytes
content-length: 1886
vary: User-Agent
content-type: image/png
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/uploads/2016/11/halal-proud-logo-compressor.png
204.11.58.168200 OK 2.6 kB URL HTTP/2 www.halalsign.com/wp-content/uploads/2016/11/halal-proud-logo-compressor.png
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 180 x 85, 8-bit colormap, non-interlaced\012- data
Hash 40085c7554b32deeb64268c7f318b944
2e35abacc5736613320a2e8117a555f78e1447fd
3de7f71ed2866df6342b9a740fd498f55d0fd9e75bb412632e6b64630666a361
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2016/11/halal-proud-logo-compressor.png HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Nov 2016 15:54:22 GMT
accept-ranges: bytes
content-length: 2643
vary: User-Agent
content-type: image/png
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/uploads/2016/09/logo.png
204.11.58.168200 OK 37 kB URL HTTP/2 www.halalsign.com/wp-content/uploads/2016/09/logo.png
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 134 x 134, 8-bit/color RGBA, non-interlaced\012- data
Hash 669bc8cc75e3c74876d575d75a463c9b
1f6038e8c039599ea88caca4f5cd0ab8b5a657ad
d0a541363d6c39a3d02bd5d2a57e586625e42f739b0e5da45380e07eee2ce623
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2016/09/logo.png HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 23 Sep 2016 18:16:02 GMT
accept-ranges: bytes
content-length: 36918
vary: User-Agent
content-type: image/png
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/uploads/2016/09/logo-hs.png
204.11.58.168200 OK 81 kB URL HTTP/2 www.halalsign.com/wp-content/uploads/2016/09/logo-hs.png
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 299 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 4eaa5608119daf86273073e74b9fe674
1abaf991af710fa0c781e0e1cc37f975556b12dc
4bef6c64669792a0746a2a323825bf494ca59efe244943276e8dc24a1e4ae5f4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2016/09/logo-hs.png HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 23 Sep 2016 19:59:30 GMT
accept-ranges: bytes
content-length: 81058
vary: User-Agent
content-type: image/png
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.8.1
204.11.58.168200 OK 1.6 kB URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 5444b4233fef0d6b3f6d7316b938c97b
bef990587a7c2f0eb7c7b35bf902e0d72959d93c
6f40f4ffc121a4bff5d779409a7809f9d849893e4df4c680bbe6319679fdb958
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1639
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/vertical-news-scroller/js/jv.js?ver=2.0
204.11.58.168200 OK 1.0 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/vertical-news-scroller/js/jv.js?ver=2.0
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash a0dfda71e01e8cfca74001fefc68e0b3
79745b26ba6b105d2279078eb79281f2b971ba2c
15461610b8e2e80b2f6a006bc788e8951eef6f6e1f816d40b1b60ac316fb16f0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/vertical-news-scroller/js/jv.js?ver=2.0 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Aug 2021 12:01:02 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1018
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.8.1
204.11.58.168200 OK 17 kB URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (634)
Hash 62176794f730927744bf4cd8c3f02d89
c35d3703448cdb9aa9f146fe166dd7b4366ffbb7
0b983d055b6aeac5f3e95843caffd850c11119bcdae6943e8435e6b86a88aaed
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:22:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 16769
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.halalsign.com/wp-content/themes/betheme/js/plugins.js?ver=21.8.1
204.11.58.168200 OK 90 kB URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/js/plugins.js?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 89f29a150ed85563e84ebe9fdd842281
f590fb0cb6fff5f5c4374b17a7e48a1a47ddb8cd
9d91b5041aca9f4a5f7d030ce17424ec6ccd1d6f7ab0d3ee5eaf17193077e64e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/js/plugins.js?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
secure.gravatar.com/js/gprofiles.js?ver=202243
192.0.73.2200 OK 25 kB URL HTTP/2 secure.gravatar.com/js/gprofiles.js?ver=202243
IP 192.0.73.2:0
File type ASCII text, with very long lines (24043), with no line terminators
Hash 74ccf83f90b42c96a09ce38ff7600b7f
f9e5dd86cfc7e5fe81db1b2198ac70118cfc9ee2
5e83066c787e971021d277ded7defaa7777092d444b342497b04027f33e8c334
GET /js/gprofiles.js?ver=202243 HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:55 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 11:48:47 GMT
etag: W/"6323111f-5deb"
content-encoding: br
expires: Thu, 03 Nov 2022 08:31:55 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
216.58.207.195200 OK 35 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0\012- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.halalsign.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 19:28:55 GMT
expires: Thu, 26 Oct 2023 19:28:55 GMT
cache-control: public, max-age=31536000
age: 46980
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.halalsign.com/wp-content/themes/betheme/js/scripts.js?ver=21.8.1
204.11.58.168200 OK 39 kB URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/js/scripts.js?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash efb236f10e6bc55f9d9fe5588cbd719f
85aa1760044fd0bcd4b1f8ec0d18ac5e65850efc
831fc96f6eca550ad2fd5da940d1b6530361721e3f7f877b941c3f884b87efa0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/js/scripts.js?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.halalsign.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 19:34:08 GMT
expires: Thu, 26 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 46667
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme/fonts/mfn-icons.woff?31690507
204.11.58.168200 OK 81 kB URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/fonts/mfn-icons.woff?31690507
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format, TrueType, length 81448, version 1.0\012- data
Hash 743706216bfe3fc0728d0bd15313ac92
d923ae95df3ea7676e8dc34f4de04abf2eefaaab
559a910060423ed485ddc062a9ab5318859bbfde26be3f73d9b83ac0b9dae677
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/fonts/mfn-icons.woff?31690507 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.halalsign.com/wp-content/themes/betheme/css/base.css?ver=21.8.1
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:21:48 GMT
accept-ranges: bytes
content-length: 81448
vary: User-Agent
content-type: font/x-woff
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.halalsign.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 18:53:39 GMT
expires: Tue, 24 Oct 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 221896
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
204.11.58.168409 Conflict 83 B URL HTTP/2 www.halalsign.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/supercarousel/public/images/miscellaneous_sprite.svg
204.11.58.168200 OK 11 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/supercarousel/public/images/miscellaneous_sprite.svg
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (355)
Hash 5972c99d5e45e6860d39eb87b2da8879
b3cd72f9b08d51ff3fba4f5dfa954ed4c0e7918e
0479917d1f147a6116b2baa557466d0ecb47dd3687e526fd32dce4a662cdbb8b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/supercarousel/public/images/miscellaneous_sprite.svg HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/wp-content/plugins/supercarousel/public/css/supercarouselmerged.css?ver=3.6.6
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Jun 2020 09:36:10 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11358
content-type: image/svg+xml
date: Thu, 27 Oct 2022 08:31:56 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme/images/stripes/textline.png
204.11.58.168200 OK 1.2 kB URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/images/stripes/textline.png
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 1200 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash e7ef4c23b267bbf8dc8c8f2f0fe78ea0
3d63ba5167cc594dea76fae3c3915631a02a2600
b51efb58143fc686df6895f8e78f8691ae8e9b49b65b1ca770ea0c83de2414bf
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/images/stripes/textline.png HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/wp-content/themes/betheme/css/shortcodes.css?ver=21.8.1
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:21:44 GMT
accept-ranges: bytes
content-length: 1160
vary: User-Agent
content-type: image/png
date: Thu, 27 Oct 2022 08:31:56 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-solid-900.woff2
204.11.58.168200 OK 60 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-solid-900.woff2
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format (Version 2), TrueType, length 59572, version 1.0\012- data
Hash 18d2347ab2a9f40ca2247cdb03303d84
8aba5b59c5aa7f548a1fa663f02f3cdd3757bb52
a83079124373d924ad1402fbc08d2e24d0043234d4c26565f1c368745f55f5d9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.halalsign.com/wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=6.0.1
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Aug 2022 16:36:36 GMT
accept-ranges: bytes
content-length: 59572
vary: User-Agent
content-type: font/woff2
date: Thu, 27 Oct 2022 08:31:56 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.1
204.11.58.168409 Conflict 83 B URL HTTP/2 www.halalsign.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Thu, 27 Oct 2022 08:31:56 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&j=1%3A10.8&blog=113392468&post=2324&tz=5.5&srv=www.halalsign.com&host=www.halalsign.com&ref=&fcp=3450&rand=0.9721519292106445
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&j=1%3A10.8&blog=113392468&post=2324&tz=5.5&srv=www.halalsign.com&host=www.halalsign.com&ref=&fcp=3450&rand=0.9721519292106445
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A10.8&blog=113392468&post=2324&tz=5.5&srv=www.halalsign.com&host=www.halalsign.com&ref=&fcp=3450&rand=0.9721519292106445 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:56 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/favicon-hs.png?fit=64%2C64&ssl=1
192.0.77.2200 OK 5.7 kB URL HTTP/2 i0.wp.com/www.halalsign.com/wp-content/uploads/2016/09/favicon-hs.png?fit=64%2C64&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 52628f86abf4bfc79cc615e03a5caad5
97592ec6a0c9db7ca7449ce627c11888a3a1b875
1f54fa095c0519253b4f904cf35ccb514d2b15e77ceee83520724d1b251f24cd
GET /www.halalsign.com/wp-content/uploads/2016/09/favicon-hs.png?fit=64%2C64&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:56 GMT
content-type: image/webp
content-length: 5690
last-modified: Sat, 11 Jun 2022 07:55:16 GMT
expires: Mon, 10 Jun 2024 19:55:16 GMT
cache-control: public, max-age=63115200
link: <https://www.halalsign.com/wp-content/uploads/2016/09/favicon-hs.png>; rel="canonical"
x-content-type-options: nosniff
etag: "9b8f3cd6d279fd6c"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.22
204.11.58.168200 OK 112 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.22
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Size 112 kB (112273 bytes)
Hash 7055582dc277c028b1262c7e3ee8e3b9
06b1ded04a124bc37f76e1fd73ba80a27ca030b2
1eb37667b6e6bd9505726d385dbb5988d53e73dcef6e914c5bcb59fcea435f13
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.22 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 21 Aug 2020 10:48:24 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3f691dd015f1e89124ff513ef96aef9
1f8bc004da03321868fa1218f6c21916a944b2a0
5c74f21a5e9897d6671a87e1100749c46eda882c5d49aae706841f5968c5adab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2381
Cache-Control: max-age=157495
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:56 GMT
Etag: "6359fce6-1d7"
Expires: Sat, 29 Oct 2022 04:16:51 GMT
Last-Modified: Thu, 27 Oct 2022 03:37:10 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
www.halalsign.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.11.2
204.11.58.168200 OK 86 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.11.2
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 1e3ede29d9af06912f9e7d82324924ca
ef5018382a02073468809a3a07c98b9dcfd8a479
894f5fb3fb543d6a435d03307995e92f63e44f5aea6742950ec8e01e84e81cf7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.11.2 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Aug 2020 00:10:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cdf16c5333628708fae7b304303fc48
23654b66838aa89e8b975a9e6c0251d2f8f18366
6f3935f102b0dcfee703eb07abcf04d9181fdfe13fae4d7566aed743a00beb9c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash 96ee2eedfca73ee971d5e4853aec3373
ca02465d6c0141e630225c3ef156f3589304c18c
5e1047cecf375c637addfcf037ad4a234435e90088c5b971cc596c72272bdeea
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: da2f2513b6fb67b5ed1107c894841b28
etag: "db4ae62386b77ad294ffdda96c88cb09"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 27 Oct 2022 08:35:07 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: lu4u7fynPulx1eSFOuwzcw==
x-fb-debug: d2CF4+V/j7rDgxPRa/e0WNLcjSCnZYKHZU85hjnBERwL5d4P5lEDbjyCYIh7joESZ7pv+mLG+01jQckKM8nSEA==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1904183273
date: Thu, 27 Oct 2022 08:31:56 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 27 Oct 2022 06:41:09 GMT
expires: Thu, 27 Oct 2022 08:41:09 GMT
cache-control: public, max-age=7200
age: 6647
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js
142.250.74.163200 OK 160 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (608)
Size 160 kB (159789 bytes)
Hash 1230a090d5cedcb9e764406ab9497c1b
3d175bcf4ad9957c3e32611713c01347299b173e
585cafe3d6a3b932804aaa5aeb19a650688a2c15767f513d0d60c1941475c428
GET /recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.halalsign.com
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 159789
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 21:08:18 GMT
expires: Tue, 24 Oct 2023 21:08:18 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Oct 2022 20:02:07 GMT
content-type: text/javascript
age: 213818
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3f691dd015f1e89124ff513ef96aef9
1f8bc004da03321868fa1218f6c21916a944b2a0
5c74f21a5e9897d6671a87e1100749c46eda882c5d49aae706841f5968c5adab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2381
Cache-Control: max-age=157495
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:56 GMT
Etag: "6359fce6-1d7"
Expires: Sat, 29 Oct 2022 04:16:51 GMT
Last-Modified: Thu, 27 Oct 2022 03:37:10 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cdf16c5333628708fae7b304303fc48
23654b66838aa89e8b975a9e6c0251d2f8f18366
6f3935f102b0dcfee703eb07abcf04d9181fdfe13fae4d7566aed743a00beb9c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=https%3A%2F%2Fwww.halalsign.com
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=https%3A%2F%2Fwww.halalsign.com
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 800140747b9eaa618eb76779a72b8653
9b01fddea24a63b76d645398229523baae849fae
b4bc244dee0f2df26990afae0ccd9297f203e9757bc0a18445793ef4bb678dd2
GET /widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=https%3A%2F%2Fwww.halalsign.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596880
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:56 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:27 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F704)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 00581ae7687cd8dc0db5c5009521559a
5455923f358ef76cc9d39abe7c443cae76a509b8
f44816c3db1c6a6bed46a9776c8627671dc2c1be1b8badf0facf1ca6b2770bb1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6009
Cache-Control: max-age=162878
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 08:31:56 GMT
Etag: "635a03c1-139"
Expires: Sat, 29 Oct 2022 05:46:34 GMT
Last-Modified: Thu, 27 Oct 2022 04:06:25 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
syndication.twitter.com/settings?session_id=e261d8fdaf94376e2a5e448e766b6c7b02446df2
104.244.42.136200 OK 355 B URL HTTP/2 syndication.twitter.com/settings?session_id=e261d8fdaf94376e2a5e448e766b6c7b02446df2
IP 104.244.42.136:0
File type JSON data\012- , ASCII text, with very long lines (851), with no line terminators
Hash 7cac009f8121486bc6c44991cf606190
ddae6074c908031f09b586d38a022e0e4add23b5
7825444c58d1293285c059256fb6e04dcd4bf7dff5a6a65972f65d55286b1e89
GET /settings?session_id=e261d8fdaf94376e2a5e448e766b6c7b02446df2 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 08:31:56 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Thu, 27 Oct 2022 08:31:56 GMT
content-length: 355
content-encoding: gzip
x-transaction-id: 9bb529d9364b4585
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 106
x-connection-hash: 4b9ece8cc5031f3a8d003570ab36ae5bafcd61e5998065af299c78568f51c443
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
204.11.58.168200 OK 2.5 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.22
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; _ga=GA1.2.1678337245.1666859516; _gid=GA1.2.845478143.1666859516; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 21 Aug 2020 10:48:22 GMT
accept-ranges: bytes
content-length: 2545
vary: User-Agent
content-type: image/gif
date: Thu, 27 Oct 2022 08:31:56 GMT
server: Apache
X-Firefox-Spdy: h2
platform.twitter.com/js/horizon_timeline.a7991bb824d62c8d5038ddd875db8389.js
93.184.220.66200 OK 3.0 kB URL HTTP/1.1 platform.twitter.com/js/horizon_timeline.a7991bb824d62c8d5038ddd875db8389.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (8212), with no line terminators
Hash 7bd62a2c188e00b0be13d8eeeaf78888
9a5999f86e0a21d9c35ccb6d053bb51bfe0d05c3
667c3d4ea595de6a3fe2b36baa07543dc53e38749c0bda81af74f76038bd4890
GET /js/horizon_timeline.a7991bb824d62c8d5038ddd875db8389.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596881
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "c908b448c0ca2496f191efa1401a04ff+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:20 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2955
www.halalsign.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
204.11.58.168200 OK 7.5 kB URL HTTP/2 www.halalsign.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.halalsign.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.22
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; _ga=GA1.2.1678337245.1666859516; _gid=GA1.2.845478143.1666859516; _gat=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 21 Aug 2020 10:48:24 GMT
accept-ranges: bytes
content-length: 7536
vary: User-Agent
content-type: font/x-woff
date: Thu, 27 Oct 2022 08:31:57 GMT
server: Apache
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666859516331%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=e261d8fdaf94376e2a5e448e766b6c7b02446df2
104.244.42.136200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666859516331%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=e261d8fdaf94376e2a5e448e766b6c7b02446df2
IP 104.244.42.136:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666859516331%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=e261d8fdaf94376e2a5e448e766b6c7b02446df2 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 08:31:56 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Thu, 27 Oct 2022 08:31:57 GMT
content-length: 43
x-transaction-id: 035072a56d93d63f
strict-transport-security: max-age=631138519
x-response-time: 115
x-connection-hash: 4b9ece8cc5031f3a8d003570ab36ae5bafcd61e5998065af299c78568f51c443
X-Firefox-Spdy: h2
syndication.twitter.com/srv/timeline-profile/screen-name/halalsign?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=true&hideFooter=true&hideHeader=false&hideScrollBar=false&lang=en&limit=1&maxHeight=300px&origin=https%3A%2F%2Fwww.halalsign.com%2F&partner=jetpack&sessionId=e261d8fdaf94376e2a5e448e766b6c7b02446df2&showHeader=true&showReplies=false&theme=light&transparent=false&widgetsVersion=1c23387b1f70c%3A1664388199485
104.244.42.136200 OK 2.3 kB URL HTTP/2 syndication.twitter.com/srv/timeline-profile/screen-name/halalsign?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=true&hideFooter=true&hideHeader=false&hideScrollBar=false&lang=en&limit=1&maxHeight=300px&origin=https%3A%2F%2Fwww.halalsign.com%2F&partner=jetpack&sessionId=e261d8fdaf94376e2a5e448e766b6c7b02446df2&showHeader=true&showReplies=false&theme=light&transparent=false&widgetsVersion=1c23387b1f70c%3A1664388199485
IP 104.244.42.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7230), with no line terminators
Hash 7ff3ce6bc26bfc5767e813ab599d0c13
a164590289d3d7be39a1bee58ba1c0c573328635
5a70d172cd1114670437ef64933bad319b1883416dd82c8f8792c4a9d3464cfd
GET /srv/timeline-profile/screen-name/halalsign?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=true&hideFooter=true&hideHeader=false&hideScrollBar=false&lang=en&limit=1&maxHeight=300px&origin=https%3A%2F%2Fwww.halalsign.com%2F&partner=jetpack&sessionId=e261d8fdaf94376e2a5e448e766b6c7b02446df2&showHeader=true&showReplies=false&theme=light&transparent=false&widgetsVersion=1c23387b1f70c%3A1664388199485 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 08:31:57 GMT
etag: "1c3e-PiRvaFqaZsAcBRPPZkJcwuyERn4"
perf: 7626143928
server: tsa_o
content-type: text/html; charset=utf-8
cache-control: must-revalidate, max-age=60
x-transaction-id: 6c221747d4788e0c
x-xss-protection: 0
strict-transport-security: max-age=631138519
content-encoding: gzip
content-length: 2258
x-response-time: 191
x-connection-hash: 4b9ece8cc5031f3a8d003570ab36ae5bafcd61e5998065af299c78568f51c443
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/runtime-eb61dff4a84b8f906e6b.js
93.184.220.66200 OK 2.1 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/runtime-eb61dff4a84b8f906e6b.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (3831), with no line terminators
Hash d112e8263f529b0e0ccdc133c63bd949
f5155d60e41a09436efd8ad5a20915ab0a9b6973
d9d2362621e253c2443eaae309f5215fbbd0fac12df703f6bcc1955d934e422a
GET /_next/static/chunks/runtime-eb61dff4a84b8f906e6b.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596881
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "9e24908c04f34a86015898eca0fccd4a+gzip"
Last-Modified: Wed, 28 Sep 2022 17:24:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2101
platform.twitter.com/_next/static/chunks/modules.c7def0268c66f6a548ed.js
93.184.220.66200 OK 96 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/modules.c7def0268c66f6a548ed.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 12bea7ea22b3c50f7f37f5e605e78430
5e7542f91bcaab2eb202fc8b19f53f1d009bc199
67cf3d50c902dfdf90bcf12de4d3f32d23d2547e9e90566a9a41f95db671fad9
GET /_next/static/chunks/modules.c7def0268c66f6a548ed.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596881
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "51acddf0dbfab928b183f36c1ee67619+gzip"
Last-Modified: Wed, 28 Sep 2022 17:24:15 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70E)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 95749
platform.twitter.com/_next/static/chunks/main-e9db78f5e7b3d83edd5e.js
93.184.220.66200 OK 90 B URL HTTP/1.1 platform.twitter.com/_next/static/chunks/main-e9db78f5e7b3d83edd5e.js
IP 93.184.220.66:0
File type ASCII text, with no line terminators
Hash 8e33207e7b788da9abde5b6d33da0b00
23e48f1b412b3a0a406639f297fb6f4c4740efe8
80534a6e1ec41d37acec8be383f8d1112dbbeea31dd51ead47463095c13bff3a
GET /_next/static/chunks/main-e9db78f5e7b3d83edd5e.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596881
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "8e33207e7b788da9abde5b6d33da0b00"
Last-Modified: Wed, 28 Sep 2022 17:24:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 90
platform.twitter.com/_next/static/chunks/pages/_app-446fb4a338b215deec8c.js
93.184.220.66200 OK 668 B URL HTTP/1.1 platform.twitter.com/_next/static/chunks/pages/_app-446fb4a338b215deec8c.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (1338), with no line terminators
Hash 79fd032d8d5d9fa6b966e0a2b0e5a3e1
092828885b8721858c80381d92622760aa6b2188
d08463c097b4b77e9db4acb6fdf01a44f3b80db66cd368c76185a363c9bf0863
GET /_next/static/chunks/pages/_app-446fb4a338b215deec8c.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596881
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "be3e428d416daa9027cecf70b5f26bf9+gzip"
Last-Modified: Wed, 28 Sep 2022 17:24:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 668
secure.gravatar.com/dist/css/services.min.css?ver=202243
192.0.73.2200 OK 1.8 kB URL HTTP/2 secure.gravatar.com/dist/css/services.min.css?ver=202243
IP 192.0.73.2:0
File type ASCII text, with very long lines (2644), with no line terminators
Hash fa0c7c01103bd91a266577296d6bc245
0f1d4fa7322a57668f25bb1cabdf93b6b3a22fcf
00ddde9dcddbb9004b1ef01089ee4184759d055760a700db9440c9a0b2bd8f8c
GET /dist/css/services.min.css?ver=202243 HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:56 GMT
content-type: text/css
last-modified: Thu, 22 Mar 2018 09:46:04 GMT
etag: W/"5ab37b5c-a54"
content-encoding: br
expires: Thu, 03 Nov 2022 08:31:56 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/d2V1PoRy5_I_iOYSDbAAL/_buildManifest.js
93.184.220.66200 OK 414 B URL HTTP/1.1 platform.twitter.com/_next/static/d2V1PoRy5_I_iOYSDbAAL/_buildManifest.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (1208), with no line terminators
Hash d20f525a412f62929a0bd89a11654e41
dd85ff797a4fe88329a97ab31e5b00f89dec685f
f8951d6972c1d249692debd428a0c45d12cda2d7d696e3f5ca7c79735cb1f2e2
GET /_next/static/d2V1PoRy5_I_iOYSDbAAL/_buildManifest.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596881
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "12a5a08767706f15b6b316996cd057c1+gzip"
Last-Modified: Wed, 28 Sep 2022 17:24:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F708)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 414
platform.twitter.com/_next/static/d2V1PoRy5_I_iOYSDbAAL/_ssgManifest.js
93.184.220.66200 OK 76 B URL HTTP/1.1 platform.twitter.com/_next/static/d2V1PoRy5_I_iOYSDbAAL/_ssgManifest.js
IP 93.184.220.66:0
File type ASCII text, with no line terminators
Hash abee47769bf307639ace4945f9cfd4ff
c0a0dc51ee8a2852baf5ff30c33b1478ff302585
653f3e53e89b4f8548ff86c19e92bb3c6b84b6be7485a320b1e00893ed877479
GET /_next/static/d2V1PoRy5_I_iOYSDbAAL/_ssgManifest.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596881
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "abee47769bf307639ace4945f9cfd4ff"
Last-Modified: Wed, 28 Sep 2022 17:24:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 76
platform.twitter.com/_next/static/chunks/13.c59196c8bf52e5067fc1.js
93.184.220.66200 OK 12 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/13.c59196c8bf52e5067fc1.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (37610), with no line terminators
Hash ce2cbdd378b4a650511bb4d03a350676
89cfc86adb855e59d54cb2f9d96cf88e3ecd2324
ed10afe64bdfbdfa66267497d95a9607c52920366a6b37e5d0fde487e2b2aead
GET /_next/static/chunks/13.c59196c8bf52e5067fc1.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596881
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "de98c79c5c494d83f73eec4364ac6fd3+gzip"
Last-Modified: Wed, 28 Sep 2022 17:24:14 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F712)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 11906
platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js
93.184.220.66200 OK 7.7 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (23122), with no line terminators
Hash 47db702890e40ec11a744a885b6724b9
8ad88841d05dc05ce69ee8d430728214dd82e981
c8f11861cf29a4bc87a1f04f8add61885cc2627e6fd35a0ad12c48acddbaecb6
GET /_next/static/chunks/2.691622e4391d1973cb65.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596881
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "942b5b928a24465d1906b4716131d896+gzip"
Last-Modified: Wed, 28 Sep 2022 17:24:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F712)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 7674
platform.twitter.com/_next/static/chunks/4.7497632a393acfc2ab3b.js
93.184.220.66200 OK 1.3 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/4.7497632a393acfc2ab3b.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (2558), with no line terminators
Hash 08f25306f5abe2ab776f1b7adb7824de
b7550b3df401f2cc62c18b1d8a3388e3cc1ed34c
b4a6917d12cac68c958893752854b7a462355b4717c77596aaf9816c7bed0cc9
GET /_next/static/chunks/4.7497632a393acfc2ab3b.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596881
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "95839d52c44b54ae87cc3a8c070a7da4+gzip"
Last-Modified: Wed, 28 Sep 2022 17:24:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F713)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 1275
platform.twitter.com/_next/static/chunks/1.d976cf0cb2521083131e.js
93.184.220.66200 OK 302 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/1.d976cf0cb2521083131e.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 302 kB (301526 bytes)
Hash a76fe1ebe8659620cbfc82e221792f0c
eeef0f406b2f1584c07dc3258825a5d12bb82b30
039d836b49254dabd2a78fb80958df9c0f8bf9f95596bacbc469d2cd466f453e
GET /_next/static/chunks/1.d976cf0cb2521083131e.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596881
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "68700f8862593047761c23e5253a8686+gzip"
Last-Modified: Wed, 28 Sep 2022 17:24:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70E)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 301526
platform.twitter.com/_next/static/chunks/0.8f205dbb7b06b224e307.js
93.184.220.66200 OK 187 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/0.8f205dbb7b06b224e307.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 187 kB (186671 bytes)
Hash 112745f3cd4f6af3ed8f9386c05f0aa3
9879a8a2bf4aef208ac7779ca53c50bb4a2a4255
3f26f4cf9c2e84d162282971c6066ffa548895d47c975bfb189c35defafdde38
GET /_next/static/chunks/0.8f205dbb7b06b224e307.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596881
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "11f6449263029b9f59f18afa52cc99ed+gzip"
Last-Modified: Wed, 28 Sep 2022 17:24:16 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F715)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 186671
platform.twitter.com/_next/static/chunks/ondemand.Dropdown.aa8f31b4b2f4e3e0986f.js
93.184.220.66200 OK 2.6 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/ondemand.Dropdown.aa8f31b4b2f4e3e0986f.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (6637), with no line terminators
Hash c2cb8a0b5afb8f79e74c4cca1171c902
b227ec3a0ac4b3331b90412358428fa35ada3034
ea6ff1cbe34ce87324c0b21bbfeade492103af1d29d76f75e56b6645b4783ab0
GET /_next/static/chunks/ondemand.Dropdown.aa8f31b4b2f4e3e0986f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596882
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:57 GMT
Etag: "deb1205c6e01f2720f75bbd978f5925b+gzip"
Last-Modified: Wed, 28 Sep 2022 17:24:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F710)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2597
platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js
93.184.220.66200 OK 42 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7d62fb224e618094ce4d3e0e5052d16e
867b72ca2f006158db3c520eb3a2532d63746b92
f5d821fa38dc57edfe84c505b14245d8d03a8553c55383ea3aabb688c1a1d21a
GET /_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 596882
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 08:31:58 GMT
Etag: "72929dff5e574c1b877555fd36c7683a+gzip"
Last-Modified: Wed, 28 Sep 2022 17:24:15 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F711)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 41941
abs.twimg.com/sticky/animations/like.3.json
152.199.21.141200 OK 1.6 kB URL HTTP/2 abs.twimg.com/sticky/animations/like.3.json
IP 152.199.21.141:0
File type ASCII text, with very long lines (19834)
Hash 07da5ecc2e4029fc7d3befffa5f3c536
1b57e1656f3cbf73adc77bf2a1a732b7882b2aca
faffe9c75fe31ec6ba41e043e88b0ad50c13ad847a468e1b34ecde308fa6f569
GET /sticky/animations/like.3.json HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syndication.twitter.com/
Origin: https://syndication.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 4908020
content-type: application/json
date: Thu, 27 Oct 2022 08:31:58 GMT
etag: "b9munHAdxNyPtNl2GaO2bw=="
expires: Fri, 27 Oct 2023 08:31:58 GMT
last-modified: Tue, 15 Feb 2022 21:43:54 GMT
server: ECAcc (ska/F796)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: b2416fb8c94532ef46b2069f2a8d4ab6aa32507f9132cb6f6efe61940801c5b3
x-content-type-options: nosniff
x-response-time: 9
x-ton-expected-size: 19835
content-length: 1627
X-Firefox-Spdy: h2
pbs.twimg.com/media/FLoyKXIVIAINckk?format=png&name=120x120
93.184.220.70200 OK 1.7 kB URL HTTP/2 pbs.twimg.com/media/FLoyKXIVIAINckk?format=png&name=120x120
IP 93.184.220.70:0
File type PNG image data, 120 x 30, 8-bit colormap, non-interlaced\012- data
Hash a5162f027e675442e5709e97e60cd8db
7ff7e29883cb4dbb31bde5be48634b1ed206e1ba
2fc8984426d7fec5a45a3a02e92a0cb385df673b898fbf894c6d3f723e626ede
GET /media/FLoyKXIVIAINckk?format=png&name=120x120 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 91993
cache-control: max-age=604800, must-revalidate
content-type: image/png
date: Thu, 27 Oct 2022 08:31:58 GMT
last-modified: Tue, 15 Feb 2022 12:20:36 GMT
perf: 7626143928
server: ECS (ska/F704)
server-timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/8 media/1493561380015775746
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: 3619cd0fefed00c08ca55d7c6ba653698b501f1987d5b8aa1fbc7bc9a52a18f0
x-content-type-options: nosniff
x-response-time: 115
x-transaction-id: e518400578b535c7
x-tw-cdn: VZ, VZ
content-length: 1697
X-Firefox-Spdy: h2
pbs.twimg.com/profile_images/561036508186935299/PrR1Zl29_normal.jpeg
93.184.220.70200 OK 2.0 kB URL HTTP/2 pbs.twimg.com/profile_images/561036508186935299/PrR1Zl29_normal.jpeg
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 2227920b0d23546db6b7093810802e2e
05967e8d99ca439dad018d479d962d911903cf2a
ad82a2f83169fe807ad9075e6c8d974972876941ca199e5978f88967f8a9806b
GET /profile_images/561036508186935299/PrR1Zl29_normal.jpeg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 255833
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Thu, 27 Oct 2022 08:31:58 GMT
last-modified: Fri, 30 Jan 2015 05:39:41 GMT
perf: 7626143928
server: ECS (ska/F707)
server-timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
strict-transport-security: max-age=631138519
surrogate-key: profile_images profile_images/bucket/2 profile_images/561036508186935299
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: 4673455da92527313c21645206f50f84feb4c098d2382c6da480b75595ce602c
x-content-type-options: nosniff
x-response-time: 111
x-transaction-id: e2e566c67d40b11e
x-tw-cdn: VZ, VZ
content-length: 1959
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666859517374%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fwww.halalsign.com%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22jetpack%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%225fc5ca9%3A1664378768171%22%2C%22widget_data_source%22%3A%22screen-name%3Ahalalsign%22%7D&session_id=e261d8fdaf94376e2a5e448e766b6c7b02446df2
104.244.42.136200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666859517374%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fwww.halalsign.com%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22jetpack%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%225fc5ca9%3A1664378768171%22%2C%22widget_data_source%22%3A%22screen-name%3Ahalalsign%22%7D&session_id=e261d8fdaf94376e2a5e448e766b6c7b02446df2
IP 104.244.42.136:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666859517374%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fwww.halalsign.com%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22jetpack%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%225fc5ca9%3A1664378768171%22%2C%22widget_data_source%22%3A%22screen-name%3Ahalalsign%22%7D&session_id=e261d8fdaf94376e2a5e448e766b6c7b02446df2 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/srv/timeline-profile/screen-name/halalsign?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=true&hideFooter=true&hideHeader=false&hideScrollBar=false&lang=en&limit=1&maxHeight=300px&origin=https%3A%2F%2Fwww.halalsign.com%2F&partner=jetpack&sessionId=e261d8fdaf94376e2a5e448e766b6c7b02446df2&showHeader=true&showReplies=false&theme=light&transparent=false&widgetsVersion=1c23387b1f70c%3A1664388199485
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 08:31:57 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Thu, 27 Oct 2022 08:31:58 GMT
content-length: 43
x-transaction-id: b711c99e3cb650d1
strict-transport-security: max-age=631138519
x-response-time: 112
x-connection-hash: 4b9ece8cc5031f3a8d003570ab36ae5bafcd61e5998065af299c78568f51c443
X-Firefox-Spdy: h2
pbs.twimg.com/media/FLoyKXIVIAINckk?format=png&name=360x360
93.184.220.70200 OK 9.5 kB URL HTTP/2 pbs.twimg.com/media/FLoyKXIVIAINckk?format=png&name=360x360
IP 93.184.220.70:0
File type PNG image data, 360 x 90, 8-bit colormap, non-interlaced\012- data
Hash 95c59497eb4f13a66bfd233f4307610e
401b7a417e97372f473ae8d453eb016de06a1291
c68c7ab550ef726dddda2431a7e2c33352696d7a6de53a4c9b06377de332c3a9
GET /media/FLoyKXIVIAINckk?format=png&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 568843
cache-control: max-age=604800, must-revalidate
content-type: image/png
date: Thu, 27 Oct 2022 08:31:58 GMT
last-modified: Tue, 15 Feb 2022 12:20:36 GMT
perf: 7626143928
server: ECS (ska/F6FD)
server-timing: x-cache;desc= ,x-tw-cdn;desc=VZ,edge;dur=29
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/8 media/1493561380015775746
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 7735d470cccdcc04b48c33e3f2b30188ba5ec4fe2ccb951f31b83913e07f845d
x-content-type-options: nosniff
x-response-time: 109
x-transaction-id: fea7463ca49207b3
x-tw-cdn: VZ, VZ
content-length: 9453
X-Firefox-Spdy: h2
www.facebook.com/v2.3/plugins/page.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df26c8c7916d9ff%26domain%3Dwww.halalsign.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.halalsign.com%252Ff349917e3439c7%26relation%3Dparent.parent&container_width=281&height=350&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fhalalsign1%2F&locale=en_US&sdk=joey&show_facepile=false&show_posts=true&width=280
31.13.72.36302 Found 0 B URL HTTP/2 www.facebook.com/v2.3/plugins/page.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df26c8c7916d9ff%26domain%3Dwww.halalsign.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.halalsign.com%252Ff349917e3439c7%26relation%3Dparent.parent&container_width=281&height=350&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fhalalsign1%2F&locale=en_US&sdk=joey&show_facepile=false&show_posts=true&width=280
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2.3/plugins/page.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df26c8c7916d9ff%26domain%3Dwww.halalsign.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.halalsign.com%252Ff349917e3439c7%26relation%3Dparent.parent&container_width=281&height=350&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fhalalsign1%2F&locale=en_US&sdk=joey&show_facepile=false&show_posts=true&width=280 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fplugins%2Fpage.php%3Fapp_id%26channel%3Dhttps%253A%252F%252Fstaticxx.facebook.com%252Fx%252Fconnect%252Fxd_arbiter%252F%253Fversion%253D46%2523cb%253Df26c8c7916d9ff%2526domain%253Dwww.halalsign.com%2526is_canvas%253Dfalse%2526origin%253Dhttps%25253A%25252F%25252Fwww.halalsign.com%25252Ff349917e3439c7%2526relation%253Dparent.parent%26container_width%3D281%26height%3D350%26hide_cover%3Dfalse%26href%3Dhttps%253A%252F%252Fwww.facebook.com%252Fhalalsign1%252F%26locale%3Den_US%26sdk%3Djoey%26show_facepile%3Dfalse%26show_posts%3Dtrue%26width%3D280
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: sREsas25yQyzND4t4iNYd6emxUo1rdWWrjzIRxZP7lGWwUq6lN39gYdULoUzjPVOAchE+I3bF9M+K2yOELqesA==
content-length: 0
date: Thu, 27 Oct 2022 08:31:58 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/jquery/ui/sortable.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/jquery/ui/sortable.min.js
IP 192.0.77.37:0
GET /c/6.0.1/wp-includes/js/jquery/ui/sortable.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.0.1
204.11.58.168200 OK 0 B URL HTTP/2 www.halalsign.com/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.0.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.0.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Aug 2022 16:36:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.4
204.11.58.168200 OK 0 B URL HTTP/2 www.halalsign.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.4
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.4 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Apr 2022 23:20:45 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/jquery/ui/core.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/jquery/ui/core.min.js
IP 192.0.77.37:0
GET /c/6.0.1/wp-includes/js/jquery/ui/core.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik
IP 142.250.74.10:0
GET /css?family=Rubik HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 27 Oct 2022 08:31:54 GMT
date: Thu, 27 Oct 2022 08:31:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.utils.js?ver=6.11.2
204.11.58.168200 OK 0 B URL HTTP/2 www.halalsign.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.utils.js?ver=6.11.2
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.utils.js?ver=6.11.2 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Aug 2020 00:10:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/comment-reply.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/comment-reply.min.js
IP 192.0.77.37:0
GET /c/6.0.1/wp-includes/js/comment-reply.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.wp.com/e-202243.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202243.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:55 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 16 Oct 2023 10:12:22 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/jquery/ui/tabs.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/jquery/ui/tabs.min.js
IP 192.0.77.37:0
GET /c/6.0.1/wp-includes/js/jquery/ui/tabs.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fplugins%2Fpage.php%3Fapp_id%26channel%3Dhttps%253A%252F%252Fstaticxx.facebook.com%252Fx%252Fconnect%252Fxd_arbiter%252F%253Fversion%253D46%2523cb%253Df26c8c7916d9ff%2526domain%253Dwww.halalsign.com%2526is_canvas%253Dfalse%2526origin%253Dhttps%25253A%25252F%25252Fwww.halalsign.com%25252Ff349917e3439c7%2526relation%253Dparent.parent%26container_width%3D281%26height%3D350%26hide_cover%3Dfalse%26href%3Dhttps%253A%252F%252Fwww.facebook.com%252Fhalalsign1%252F%26locale%3Den_US%26sdk%3Djoey%26show_facepile%3Dfalse%26show_posts%3Dtrue%26width%3D280
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fplugins%2Fpage.php%3Fapp_id%26channel%3Dhttps%253A%252F%252Fstaticxx.facebook.com%252Fx%252Fconnect%252Fxd_arbiter%252F%253Fversion%253D46%2523cb%253Df26c8c7916d9ff%2526domain%253Dwww.halalsign.com%2526is_canvas%253Dfalse%2526origin%253Dhttps%25253A%25252F%25252Fwww.halalsign.com%25252Ff349917e3439c7%2526relation%253Dparent.parent%26container_width%3D281%26height%3D350%26hide_cover%3Dfalse%26href%3Dhttps%253A%252F%252Fwww.facebook.com%252Fhalalsign1%252F%26locale%3Den_US%26sdk%3Djoey%26show_facepile%3Dfalse%26show_posts%3Dtrue%26width%3D280
IP 31.13.72.36:0
GET /login/?next=https%3A%2F%2Fwww.facebook.com%2Fplugins%2Fpage.php%3Fapp_id%26channel%3Dhttps%253A%252F%252Fstaticxx.facebook.com%252Fx%252Fconnect%252Fxd_arbiter%252F%253Fversion%253D46%2523cb%253Df26c8c7916d9ff%2526domain%253Dwww.halalsign.com%2526is_canvas%253Dfalse%2526origin%253Dhttps%25253A%25252F%25252Fwww.halalsign.com%25252Ff349917e3439c7%2526relation%253Dparent.parent%26container_width%3D281%26height%3D350%26hide_cover%3Dfalse%26href%3Dhttps%253A%252F%252Fwww.facebook.com%252Fhalalsign1%252F%26locale%3Den_US%26sdk%3Djoey%26show_facepile%3Dfalse%26show_posts%3Dtrue%26width%3D280 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.halalsign.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
cross-origin-opener-policy: same-origin-allow-popups
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 5YgjJ+DhkKy1HWKr3ldPkIjqvMf6O78E2OaM1/cM9a5Bst14LGEV8+7Q0d9RJgGQS8PYoeyt2LeEhTtRub//qA==
date: Thu, 27 Oct 2022 08:31:58 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme/css/layout.css?ver=21.8.1
204.11.58.168200 OK 0 B URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/css/layout.css?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/css/layout.css?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:21:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/themes/betheme/css/shortcodes.css?ver=21.8.1
204.11.58.168200 OK 0 B URL HTTP/2 www.halalsign.com/wp-content/themes/betheme/css/shortcodes.css?ver=21.8.1
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/betheme/css/shortcodes.css?ver=21.8.1 HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Aug 2020 12:21:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.halalsign.com/wp-content/uploads/2015/03/halal-database-map_3e377ca1a132e3cf27d87e47b3a6639b.png
204.11.58.168200 OK 0 B URL HTTP/2 www.halalsign.com/wp-content/uploads/2015/03/halal-database-map_3e377ca1a132e3cf27d87e47b3a6639b.png
IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2015/03/halal-database-map_3e377ca1a132e3cf27d87e47b3a6639b.png HTTP/1.1
Host: www.halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Nov 2016 16:02:24 GMT
accept-ranges: bytes
content-length: 148512
vary: User-Agent
content-type: image/png
date: Thu, 27 Oct 2022 08:31:55 GMT
server: Apache
X-Firefox-Spdy: h2
halalsign.com/
204.11.58.168301 Moved Permanently 0 B IP 204.11.58.168:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: halalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Thu, 27 Oct 2022 08:31:53 GMT
server: Apache
content-type: text/html; charset=UTF-8
x-pingback: https://www.halalsign.com/xmlrpc.php
x-redirect-by: WordPress
content-encoding: gzip
vary: Accept-Encoding,User-Agent
location: https://www.halalsign.com/
x-server-cache: true
x-proxy-cache: MISS
set-cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; secure; HttpOnly
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/10.8/_inc/build/photon/photon.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/10.8/_inc/build/photon/photon.min.js
IP 192.0.77.37:0
GET /p/jetpack/10.8/_inc/build/photon/photon.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Dec 2021 16:56:47 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.1/wp-includes/js/dist/vendor/regenerator-runtime.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.1/wp-includes/js/dist/vendor/regenerator-runtime.min.js
IP 192.0.77.37:0
GET /c/6.0.1/wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.halalsign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 08:31:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
content-encoding: br
expires: Fri, 27 Oct 2023 08:31:54 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2