firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 30 Sep 2022 17:16:06 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LNGFcSY02vp0GH_fmwIcTvYsnQzhLiM1zZfV6sw4Wgv4qw-DSDAA1Q==
Age: 2632
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6dd4587c98aef98ad0939030a6976a7f
92dc5966ac2deb0c3ac7fdd02bf8d28f9239801e
a382476d14b6ae14003333e7acdfbbd9ae8775d4c1a7d5c31116f33987043cff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A382476D14B6AE14003333E7ACDFBBD9AE8775D4C1A7D5C31116F33987043CFF"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10710
Expires: Fri, 30 Sep 2022 20:58:28 GMT
Date: Fri, 30 Sep 2022 17:59:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 30 Sep 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yOQb8CYR8eJyiIiF2EAmlaILFbegMjPySCSJhB-fF_3AUbTf7YAP6g==
age: 45091
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 17:59:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 30 Sep 2022 17:29:34 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 30 Sep 2022 17:54:23 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UawdaGPszmkJkp6Ea34oH4coQbxR01tBSNbJwEfsfCDIHnlRs7kdOQ==
Age: 1825
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d1be374a29f94481ff2c021e35f4eaa0
e05e92d94b5e434e9935e560fd8dc33bdc393aea
37a5132d2183f5c3bfaac5c89df691fea72cac4423110df88bdeb231f430deee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4585
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 17:59:59 GMT
Last-Modified: Fri, 30 Sep 2022 16:43:35 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.214.236.46101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.236.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: C657wO0HBYwdZEV80WW5PA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: me5zepeDqpZwRXVoKaBCGXda2KI=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12857
Expires: Fri, 30 Sep 2022 21:34:17 GMT
Date: Fri, 30 Sep 2022 18:00:00 GMT
Connection: keep-alive
poolinspectionapps.com/npr/nntiisntdoico
110.173.135.47301 Moved Permanently 0 B URL HTTP/2 poolinspectionapps.com/npr/nntiisntdoico
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /npr/nntiisntdoico HTTP/1.1
Host: poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://www.poolinspectionapps.com/npr/nntiisntdoico
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 30 Sep 2022 17:59:59 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12857
Expires: Fri, 30 Sep 2022 21:34:17 GMT
Date: Fri, 30 Sep 2022 18:00:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe12af206-9f17-40de-9764-14d3cdcb4d2f.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe12af206-9f17-40de-9764-14d3cdcb4d2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b8d0a19bc0a56bb40a975c5c71af05a
3248ca3a8b88efd5be8499898fce957d096cf211
da44d6dd845dc400b0b76f19c67e5a79d9359ce24fe5e4490477f195b23203b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe12af206-9f17-40de-9764-14d3cdcb4d2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6722
x-amzn-requestid: 6aca2e04-02b4-4e42-8bba-9bbe2ace1ed0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPeLrGq1oAMFuAw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633610b0-65b0664d0233107029ef0157;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:40:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AJBSzj2-oh3i6UOpOUtGTcsdTFfHlZhIQchgvcnIeF-4mnNKRly5HQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:47:14 GMT
etag: "3248ca3a8b88efd5be8499898fce957d096cf211"
content-type: image/jpeg
age: 72766
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 139a144f8cb04ac8aae65f4bad1473e7
265840b2d2fc6eb764cc6409b05deee8d77a19c2
6e0f01b6bdd5a92e92c7b29a6172a2900c68900afd2abba948940621252e0fd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10380
x-amzn-requestid: 35ee2a77-159c-4bb4-a825-98c638398586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdZYHsTIAMFQNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f6f-4f68073432bcea371c7b8f03;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IENB0e-e13ywHJKPgyLWn1bGPMMxFLUu3cIUcREjGhxDEMROEL1jBg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:24:00 GMT
age: 70560
etag: "265840b2d2fc6eb764cc6409b05deee8d77a19c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1389b1d624b44706c7a6f6b7eb769241
78b798f2cfa7db13a6b5ca2ca2783bece5e77d5d
c3c2526b98be06fc7e793e1150bacde2a7bd718e29a851a6e6992e8d84333790
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16011
x-amzn-requestid: d58dfdcd-383a-45ac-8ae2-2b97f016b6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdbjFy1IAMF84A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f7c-1ca9707a5e5087fd769d9ab6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f7RrSV82yxUNWPUohKYX-_PBShMw7Qk82bepr3WAGkzHTjLR-gIXBA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:53:34 GMT
age: 68786
etag: "78b798f2cfa7db13a6b5ca2ca2783bece5e77d5d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d21d2bdcedbd619a80017054076319f9
86dd3bf133e9eddf8852f39e1ee695ee599ac886
fc5672d5a8e9c6a5ec531f7ba05b65c192af37edf6c3a48105df3685de44ec0d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8059
x-amzn-requestid: f8bb9e4b-9f3c-47ba-8524-de16155e536d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZNepwHAVoAMFvNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633544a4-5d884e29378635b60592b618;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 07:09:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NMiKZSkokVXNTV76vsVJ7VEu6YFfT9MqL7tHtT8CwZq0BwTbXOpm6Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 04:58:47 GMT
age: 46873
etag: "86dd3bf133e9eddf8852f39e1ee695ee599ac886"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f0344fb-c824-4eac-9d71-05a217499bf9.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f0344fb-c824-4eac-9d71-05a217499bf9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7bb7bc234f1a5c9b04670d89d99c7957
6fbb164a7a1b894c6f5b2be20e66cbc8914f6a10
c4e2ad314004e1e8c97c02575823f376379292c55ba4033362713d84f62e1432
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f0344fb-c824-4eac-9d71-05a217499bf9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9281
x-amzn-requestid: 85c111f8-8883-4f7a-8e94-2e4e12e923b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdZZF7-oAMF0Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f6f-5f4e26bd047866fb170cae01;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: j2TJHo66aMJ_s9Vtr_Tqf0YbBcCwFTprSzk2aUNyOzEPgON6NW5Npw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:21:29 GMT
age: 70711
etag: "6fbb164a7a1b894c6f5b2be20e66cbc8914f6a10"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 456968f691ae9464d69a37bffe9bd7ce
31b8538deb0f00d5b4182739a4a2fcc1b956a998
5cde1e3158e6c6c0b7a01d3bd32f2aa292b3b205f604e5c4ed71cafedad06bf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7810
x-amzn-requestid: 7f6d92e1-c7b1-4dd2-9efa-52ad324ca19d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMK6pFvkoAMF_yA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334beaa-362b7368566955966db78385;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 24LX-CT34ANsW2VajOWyq5zihPRuCXVgf2UwZPURnB-Tl0Tw4SKXkA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 04:12:56 GMT
age: 49624
etag: "31b8538deb0f00d5b4182739a4a2fcc1b956a998"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 86e0fe14ac54b7b9131a460fd65d73fd
49ec80657f4183e2ad7e906583b94cbf48a94809
9f30a1437666225f096d72763cf89a4e5ae9e5f501ffed4becc51b08c515cf6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 18:00:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 254cce7ebdf47f4c681ad3d5e22fee04
21ef3d38029b8c76262a70ff813dccce63434eda
a316352726e25710020ff342d7d907ee2a39d3f643a00e52b88b4b8cabbca9bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 18:00:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
142.250.74.10200 OK 2.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
IP 142.250.74.10:0
Hash 8f27708a76676052d20a0b3f5445deea
e6a7adf6223a09e5f6fce4cbec96f32c069e12a5
1bee904222aaeeb27be390c5cffc3e8c03c5937a8bbea5a7f55189b3e170b409
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 30 Sep 2022 18:00:03 GMT
date: Fri, 30 Sep 2022 18:00:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LebQesZAAAAALUf-zlcU9cyIC4jpEN89uf7RVug&ver=3.0
142.250.74.164200 OK 584 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LebQesZAAAAALUf-zlcU9cyIC4jpEN89uf7RVug&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 974d38360f4b7315201b76d09410dab4
730f488663fd414edbed76b733e3481b172d4630
5b174378097c076ab828044cd748a82149f2e7f3c0a95a4eff0e951c3e390e79
GET /recaptcha/api.js?render=6LebQesZAAAAALUf-zlcU9cyIC4jpEN89uf7RVug&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 30 Sep 2022 18:00:03 GMT
date: Fri, 30 Sep 2022 18:00:03 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.poolinspectionapps.com/npr/nntiisntdoico
110.173.135.47404 Not Found 14 kB URL HTTP/2 www.poolinspectionapps.com/npr/nntiisntdoico
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (27948), with CRLF, LF line terminators
Hash ba7e02d43b51d9c7d55f59ced62012aa
1cb8ed025eba05583a3a795df694ba40a2bf0595
cdb334a071b30ba6ccd41d46a89e18269a8b7d5a7bf2043899902f8cb6145cb1
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /npr/nntiisntdoico HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.poolinspectionapps.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13744
content-type: text/html; charset=UTF-8
date: Fri, 30 Sep 2022 18:00:00 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9258de3968ca063250558ee06c75757b
56415f416ce29130b0a0b6fc919e2cdc0fd4d693
2474d99b3d10370e1efad3804a6f32452287e6b8e24d8254c69e8619a62624d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 18:00:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.poolinspectionapps.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
110.173.135.47200 OK 972 B URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 09:01:34 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:03 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 972
content-type: text/css
date: Fri, 30 Sep 2022 18:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=3.9.2
110.173.135.47200 OK 424 B URL HTTP/2 www.poolinspectionapps.com/wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=3.9.2
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (882), with no line terminators
Hash ee80e5093d4e46344ea1eadd7306ae9f
63a9ad2501f4a6dc61ba9a31230ccb96e2fc99d9
ad7a17c7be30b44ef409671f71e0e2c6f99d839e1927a4825e6b3f930be4a7c7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=3.9.2 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 09:04:31 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:03 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 424
content-type: text/css
date: Fri, 30 Sep 2022 18:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/wpcf7-redirect/build/css/wpcf7-redirect-frontend.min.css?ver=6.0.2
110.173.135.47200 OK 124 B URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/wpcf7-redirect/build/css/wpcf7-redirect-frontend.min.css?ver=6.0.2
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with CRLF, CR line terminators
Hash 893dd4d34591cb544851b5a41747cdfd
e8585a3187cfaa2288f0cb48e5696929306b7615
1de5e3983dd9d63c6d92bc1543a4ae8978b38fbaa8d79fbbc2035c62a68cd7cf
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpcf7-redirect/build/css/wpcf7-redirect-frontend.min.css?ver=6.0.2 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 08:50:18 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:03 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 124
content-type: text/css
date: Fri, 30 Sep 2022 18:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
110.173.135.47200 OK 323 B URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
Hash b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 08:50:14 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:03 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 323
content-type: text/css
date: Fri, 30 Sep 2022 18:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
110.173.135.47200 OK 4.0 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (19233)
Hash 24dc15839234f4dbd06f677098762e1c
a285318fa3f4d9a1491f523f080cd32e1df12315
016fdb3d864bb8491d6450906f97c734548f76ca9ead4b13b92dc7112c5568c6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:20 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:03 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3961
content-type: text/css
date: Fri, 30 Sep 2022 18:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/themes/astra/assets/css/minified/style.min.css?ver=3.9.2
110.173.135.47200 OK 12 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/themes/astra/assets/css/minified/style.min.css?ver=3.9.2
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (63070), with CRLF line terminators
Hash aab8da333613933cc37485d8a7ba13be
29762b20907f8feda444d83de5e1b08b07351713
02762812ff8f9094fca15e4e5361fcffbb7b9be75acfb46ed6e87f43acdcbbdc
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/astra/assets/css/minified/style.min.css?ver=3.9.2 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 09:04:31 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:03 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11733
content-type: text/css
date: Fri, 30 Sep 2022 18:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.7
110.173.135.47200 OK 855 B URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.7
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (13766)
Hash b67ce014664ad80f61a78b2721f5001f
80a3c23a3643598f590765c091f16008c834eb18
77f77a21706b27952b789ff364c6322da6675363d50bb0f9cdff7c4b6db6ec40
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.7 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:24 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:03 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 855
content-type: text/css
date: Fri, 30 Sep 2022 18:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/uploads/elementor/css/post-1182.css?ver=1664160997
110.173.135.47200 OK 410 B URL HTTP/2 www.poolinspectionapps.com/wp-content/uploads/elementor/css/post-1182.css?ver=1664160997
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (1248), with no line terminators
Hash 8f6dfdb3a9c80a402df7d9a5e583bd3f
0aaeea9af923a69e2455d748d2d94297e0345e4c
b2df97d04c9a81fc75604199bf059a8dfbc262d3ae9aa9ef7f576081cc62f10c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-1182.css?ver=1664160997 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:56:37 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:03 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 410
content-type: text/css
date: Fri, 30 Sep 2022 18:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7
110.173.135.47200 OK 13 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (59158)
Hash d7913fc87c4606f82b4ee77a8d47fc2f
62a54acf7535ae53425b44dadfe5fdabf3d8300a
bb05c88bb0b82e2f14f1efb94b4c3511292f74c3bb7cb0b104d300a42a49492f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:21 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:03 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12869
content-type: text/css
date: Fri, 30 Sep 2022 18:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.7
110.173.135.47200 OK 20 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.7
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (65497)
Hash aabd344581399563134b985f514a1cd8
6b5a37930501a8b1ed54dd5f6c41251dd1943ecf
b4dee2a7a178a601312478f2b97c5b8aff205c8930669a9bf90825bb4a2a9bb1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.7 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:24 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:03 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 20219
content-type: text/css
date: Fri, 30 Sep 2022 18:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/themes/poolinspection/style.css?ver=1.0.0
110.173.135.47200 OK 1.1 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/themes/poolinspection/style.css?ver=1.0.0
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
Hash a804cc95eafd30810e30e8402fcf43f6
2d6e89866d95834d669c37bc88e948823c959200
c98c70bf4178bcbb92f86a38b0324e4d16e1cfc8182ea1891c0b1bda3d8885b9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/poolinspection/style.css?ver=1.0.0 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 19 Nov 2020 11:01:20 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1112
content-type: text/css
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.7
110.173.135.47200 OK 4.2 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.7
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (26516)
Hash d74abcef3df71d56667a44693f75c454
be993a7b5c88a550ef0dc19c4841f240e41967f8
8c8fb98c0a68a93f2bcf224fcc1bdaa1095fc1b3f5418f2e2c5fddcfa3dee410
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.7 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:21 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4229
content-type: text/css
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.7
110.173.135.47200 OK 4.2 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.7
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (14869)
Hash 1fcdd9935a66511c3b8069495af248e3
b0e375ac95b547b3bb6ce74cd1bcc505ffc2281d
4a741209fc122872cb5ae018a5870d70848a616fa98eb4289ad78cec986ec282
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.7 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:21 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4205
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/uploads/astra-addon/astra-addon-6336b270f1a758-56145911.css?ver=3.9.2
110.173.135.47200 OK 5.8 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/uploads/astra-addon/astra-addon-6336b270f1a758-56145911.css?ver=3.9.2
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (50376), with no line terminators
Hash 1b9c487485d860935ce9a86ec082aae9
b0b3698e17bcfe8aea6b1b15377d3d6815791b6a
f686e2090093c8567d22787cdde2a0bfec2251c726335d26d69157cc0495115b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/astra-addon/astra-addon-6336b270f1a758-56145911.css?ver=3.9.2 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 09:10:08 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5772
content-type: text/css
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/wpcf7-redirect/build/js/wpcf7r-fe.js?ver=1.1
110.173.135.47200 OK 1.6 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/wpcf7-redirect/build/js/wpcf7r-fe.js?ver=1.1
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
Hash 62c642c72a7a6f14e1537dbf13c38fc3
e34220a94267a2ba69e2eb20570cd51e92dc1ef6
f41feba544c18f3faa2ec91a3edcb553ec456530791f2d827ec6afb4fc578202
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpcf7-redirect/build/js/wpcf7r-fe.js?ver=1.1 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 08:50:18 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1617
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
110.173.135.47200 OK 7.8 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash 572aea78f382e525fda96f769d9800c5
35398693aaa753f89dc5935130e927c61fbfd6e6
e16dff142803bf871380a64dcd6a2bb729500b1e13b04e042a78dbb2ef7f11e4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 08:50:14 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7753
content-type: text/css
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
110.173.135.47200 OK 2.9 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (9680), with no line terminators
Hash 7c2c4ebd10adb73367b5c5f0e1e5d3ce
a67e4fd0e3e7452e74b22517ba924b58307d7758
5244443e699788a134cc77adfc3fd18f03386df5fe49e6c82b057387ba4d0ebd
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 09:01:34 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2914
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.7
110.173.135.47200 OK 2.6 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.7
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (10019)
Hash 0ea81c35141c6a4692506e4fe8d36edb
392c5f96995e66d74c27ed5a42f93169c2f32d18
b7488fd21ad73e483cdcaf42097ea7787ffe0616477e29a537f53f6064e321ab
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.7 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:22 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2592
content-type: text/css
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/themes/astra/assets/js/minified/style.min.js?ver=3.9.2
110.173.135.47200 OK 2.7 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/themes/astra/assets/js/minified/style.min.js?ver=3.9.2
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (10398), with no line terminators
Hash 97cea445c7c0cec6df1760fc0cf5fefb
69aef0529522fab7eb0a6807897ade7eb0f4e90c
19f00f952b91cd466ae2dceee052773304dcc4a7f103d9b87d0ea62f9c0d0f4c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/astra/assets/js/minified/style.min.js?ver=3.9.2 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 09:04:31 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2744
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/uploads/elementor/css/post-1071.css?ver=1664160997
110.173.135.47200 OK 1.1 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/uploads/elementor/css/post-1071.css?ver=1664160997
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (4296)
Hash 2b00e5afa651395a3ee1205823b34182
9d62619d6e37613f6ce9e3ceffd0d808077606c3
34c2ac8ca9615fd431e2a7c1f49e07fe6865ee9c3e875196c1b1d13e70b90bed
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-1071.css?ver=1664160997 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:56:37 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1128
content-type: text/css
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
110.173.135.47200 OK 2.5 kB URL HTTP/2 www.poolinspectionapps.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 08:58:58 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2457
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/uploads/astra-addon/astra-addon-6336b270f251e4-88539007.js?ver=3.9.2
110.173.135.47200 OK 7.0 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/uploads/astra-addon/astra-addon-6336b270f251e4-88539007.js?ver=3.9.2
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (33295), with no line terminators
Hash 4918bd5de4830631fce306e583477f7a
ffb3e11ed2dca2e6b1eb4e341259915cb92bb359
55f2ba07eb43c67d27e2dd082e443a486b8e75900fd92685b982bd868f195fe3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/astra-addon/astra-addon-6336b270f251e4-88539007.js?ver=3.9.2 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 09:10:08 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6951
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.3
110.173.135.47200 OK 507 B URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.3
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (999), with no line terminators
Hash 22f32f77e17fa7640cda0a401c2b0844
019765feeed7ea2a9e9e506ce000978ea3ecd171
269c0f075ceb9464731b25afc21ae41536b76ef76bf0cf856c42e3e6311ec6ce
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.3 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 09:01:34 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 507
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
110.173.135.47200 OK 4.2 kB URL HTTP/2 www.poolinspectionapps.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 08:59:00 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4169
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7
110.173.135.47200 OK 2.2 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (4918)
Hash ac5286e01cb948466083b4a9db3725b1
158ee166465804fafaf226ed85b2243bb34d5fb1
e4ab2a0069a89260933d5fc4235c352cd504a7fe88d14c95ef66f46a680718b3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:24 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2193
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
110.173.135.47200 OK 31 kB URL HTTP/2 www.poolinspectionapps.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 08:59:00 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30908
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
110.173.135.47200 OK 7.1 kB URL HTTP/2 www.poolinspectionapps.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 08:58:58 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7095
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
110.173.135.47200 OK 3.0 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (12198), with no line terminators
Hash cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:20 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2993
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
110.173.135.47200 OK 3.4 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (10544)
Hash 88f71137b2a89a53df46cdb4deeb4e3d
426e12f0e8712db20afd2c54e77e1384074f3181
591a8b7a859de8af878c56e1ec72384596285f768387e9958f0a0afe53d89428
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:20 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3446
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
110.173.135.47200 OK 3.9 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 7ef755c2700783f9eae63fc539149a18
e57c0c5ceb5e2fbf1aaad44aad6319f8b26b69a1
95c808afbeaf569865125c132b69df4a68bca03fd6b792d38ef9a0e341dbf06b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 09:01:34 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3934
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
110.173.135.47200 OK 5.0 kB URL HTTP/2 www.poolinspectionapps.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 08:59:01 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5009
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
110.173.135.47200 OK 6.9 kB URL HTTP/2 www.poolinspectionapps.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 7e2b78a6e8a9b90385330755ee1cf3e5
684c325f39d45e42ae44a9e42f5e9fe4fb0b909c
43f124dabb4bc663cc1cc8d3161c1e6365cf8445d873ed5d69bbfdb507cf24a9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 08:59:00 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6914
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7
110.173.135.47200 OK 11 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash 540ab7a81306a8a45622d154e9df498b
f06d1223e432a8d648d15008c4dcd7306553e0ac
9f5782726439ecaa602bfb3f5d4762d50409899eb22562da187e252a3eaf0df9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:23 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10742
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/themes/astra/style.css?ver=6.0.2
110.173.135.47200 OK 1.9 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/themes/astra/style.css?ver=6.0.2
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (901), with CRLF line terminators
Hash 44b25068649b6380997c64757b8712c3
91feb91d9c0e46f60db747b0feff452408d6763b
8017cc97ccd27e8dfdb05580ed4c88fdf925b4b59e8bec7d697eb39ea596d156
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/astra/style.css?ver=6.0.2 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 09:04:32 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Sat, 01 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1860
content-type: text/css
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.7
110.173.135.47200 OK 1.1 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.7
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (2620), with no line terminators
Hash 366a9c35bbef9fea7021f6b1b56cf8d0
18feab78c61c6e8261db364d6681a9633041e837
b1108a264198109bc4e692e30e2dc7c148625fa9a3dce15477fc7618669c7a6f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.7 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:22 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1139
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7
110.173.135.47200 OK 12 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (40474)
Hash 9f98d9eb97acbaa6fdbecb9086f0eba1
b8f3c7e68de9fcbc87c3bb232f71800e62a2c2f7
1eff8a686486469b581f8ea377acaaedb79cc6339976d17c9392752be4c4a993
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:22 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12045
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
110.173.135.47200 OK 36 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (65280)
Hash f2f239cb6e82311cd197aa5888632811
e2376a981fa3bf8e7e36e86b979f3a3ea6443d29
c4ceac2088d1b38f5263c50bdfb2e54ed643186248b3a81c5850214b55336e4d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:20 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 35491
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
110.173.135.47200 OK 3.8 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
Hash 2c0e4f45028e4e156b3825f1d0f6eabf
d9f6711d0e940b190f55d4cc299853a922ec620f
6e290b2cb732d896727bac78e9eadd85435506385de341523e1830fd63e25c13
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 08:50:14 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3809
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/uploads/elementor/thumbs/SPASA_MEMBER_LOGO_BLUE_TRANS_cropped-p4rnuxydkh0d302lg6r11w85jxr8hw95wv13xjfsl6.png
110.173.135.47200 OK 13 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/uploads/elementor/thumbs/SPASA_MEMBER_LOGO_BLUE_TRANS_cropped-p4rnuxydkh0d302lg6r11w85jxr8hw95wv13xjfsl6.png
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type PNG image data, 200 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash 272e76ebbc34485cf0d67154f16983d3
711f28222fc3b1e0be56ed26c0f171d337115b2f
5848fb128fb9f759f1a5d29a0e816708d3d848f974cf47e5214b8d6fee5ad04e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/thumbs/SPASA_MEMBER_LOGO_BLUE_TRANS_cropped-p4rnuxydkh0d302lg6r11w85jxr8hw95wv13xjfsl6.png HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 03 Sep 2022 08:43:49 GMT
accept-ranges: bytes
content-length: 13390
cache-control: max-age=5184000
expires: Tue, 29 Nov 2022 18:00:04 GMT
content-type: image/png
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/uploads/2020/07/poolInspection_logo.png
110.173.135.47200 OK 41 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/uploads/2020/07/poolInspection_logo.png
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type PNG image data, 267 x 96, 8-bit/color RGBA, interlaced\012- data
Hash a6087844f1cf64fa7794c2fd38ea88b9
2d08121e0ddaaa464dae7f8f6abc1a1d87e8fe3a
03721d5895f50f1f22b1f257d0a1690ccacd35ec2b0f077d8f712f66b59fe0ab
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2020/07/poolInspection_logo.png HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 19 Nov 2020 11:01:20 GMT
accept-ranges: bytes
content-length: 41433
cache-control: max-age=5184000
expires: Tue, 29 Nov 2022 18:00:04 GMT
content-type: image/png
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.7
110.173.135.47200 OK 13 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.7
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type ASCII text, with very long lines (43101)
Hash 227f3f29a5ac2d74fec28aeb97d0768a
2a7516811b58b46c0ee982c7c6616c76433e19c5
dbc5b4077a4e85e9dedec28dd5c513cfdfbc672d16f8eb3eb7d2340188bcd6c6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.7 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:24 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Fri, 07 Oct 2022 18:00:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13121
content-type: application/javascript
date: Fri, 30 Sep 2022 18:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8045f030f1424d43155236ac74193734
9f5d53209a1b442a342d7d59986e4817024e2fcd
211c2261b71490e21be41166efa63b59b01ed4188f80c7e095b748abf1f0ae68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 18:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8045f030f1424d43155236ac74193734
9f5d53209a1b442a342d7d59986e4817024e2fcd
211c2261b71490e21be41166efa63b59b01ed4188f80c7e095b748abf1f0ae68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 18:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.163200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.poolinspectionapps.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:10:21 GMT
expires: Wed, 27 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 262184
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A400%2C%2C900%2C700&display=fallback&ver=3.9.2
142.250.74.10200 OK 24 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A400%2C%2C900%2C700&display=fallback&ver=3.9.2
IP 142.250.74.10:0
Hash c65cf5056514ec0d8e8862b4b41b243e
8caa3d2ca7c3e9cd6d5f7d12daf440bbb3cd0ba6
0053bb0eeeadfaac6660c4934e489f67597f62b40aa1f3bb1a27f71147f4e0d1
GET /css?family=Lato%3A400%2C%2C900%2C700&display=fallback&ver=3.9.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 30 Sep 2022 18:00:03 GMT
date: Fri, 30 Sep 2022 18:00:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8045f030f1424d43155236ac74193734
9f5d53209a1b442a342d7d59986e4817024e2fcd
211c2261b71490e21be41166efa63b59b01ed4188f80c7e095b748abf1f0ae68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 18:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
110.173.135.47200 OK 78 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 02:34:21 GMT
accept-ranges: bytes
content-length: 78196
vary: Accept-Encoding,User-Agent
content-type: font/woff2
date: Fri, 30 Sep 2022 18:00:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/themes/astra/assets/fonts/astra.woff
110.173.135.47200 OK 3.3 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/themes/astra/assets/fonts/astra.woff
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type Web Open Font Format, TrueType, length 3304, version 1.0\012- data
Hash bfe0ed8503c926d68f58ed0408dfe0d0
0346d02d96ff7d2a0278bc10f4dfdf365c80eac3
ec7ef7aa5fd1e019f1c26193e95e46d481d4983673936a9dda086705ada6e3d5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/astra/assets/fonts/astra.woff HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 09:04:32 GMT
accept-ranges: bytes
content-length: 3304
vary: Accept-Encoding,User-Agent
content-type: font/woff
date: Fri, 30 Sep 2022 18:00:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/uploads/2019/12/PIA-footer-logo.png
110.173.135.47200 OK 22 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/uploads/2019/12/PIA-footer-logo.png
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type PNG image data, 250 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash f82f97f886531d2b98ef6ddb3f47ce67
1dfdf8e61f0470e76f935e029c0c3074c14d6d46
d8e099518641985ca2f9b5bb37cf05b4562ddecb6da1a558c1202b33b29ef712
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2019/12/PIA-footer-logo.png HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 19 Nov 2020 11:01:20 GMT
accept-ranges: bytes
content-length: 21970
cache-control: max-age=5184000
expires: Tue, 29 Nov 2022 18:00:05 GMT
content-type: image/png
date: Fri, 30 Sep 2022 18:00:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
142.250.74.163200 OK 159 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (711)
Size 159 kB (158844 bytes)
Hash b4ed95d4318e3b78b936c9c0f1ffa96e
b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.poolinspectionapps.com
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 16:19:48 GMT
expires: Tue, 26 Sep 2023 16:19:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 351617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/styles__ltr.css
142.250.74.163200 OK 24 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/styles__ltr.css
IP 142.250.74.163:0
File type ASCII text, with very long lines (52913), with no line terminators
Hash f4bb161deae4e93f1a82e52f82ea2af9
74cd72b02999ea35cde6dd6c1d58ca9aec94da07
3330fe65fd8dbe742211f1609fbfe70b3b94434ad5639223942d921f085ea589
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24262
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 16:19:49 GMT
expires: Tue, 26 Sep 2023 16:19:49 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/css
age: 351616
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
142.250.74.163200 OK 159 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (711)
Size 159 kB (158844 bytes)
Hash b4ed95d4318e3b78b936c9c0f1ffa96e
b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 16:19:48 GMT
expires: Tue, 26 Sep 2023 16:19:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 351617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.poolinspectionapps.com/wp-content/uploads/2020/07/Favicon.png
110.173.135.47200 OK 17 kB URL HTTP/2 www.poolinspectionapps.com/wp-content/uploads/2020/07/Favicon.png
IP 110.173.135.47:0
ASN #55803 Hostopia Australia Web Pty Ltd
File type PNG image data, 78 x 69, 8-bit/color RGBA, interlaced\012- data
Hash 1451dc492ae4993c0617b6bdac7d7ea1
4aa434370a8dd48d614a443bcd643e9d6f9fb87a
35f80f2ea9768ec626aaea8fd76101128d3563400f58dae65cef879d4b091bc4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2020/07/Favicon.png HTTP/1.1
Host: www.poolinspectionapps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poolinspectionapps.com/npr/nntiisntdoico
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 19 Nov 2020 11:01:20 GMT
accept-ranges: bytes
content-length: 16599
cache-control: max-age=5184000
expires: Tue, 29 Nov 2022 18:00:05 GMT
content-type: image/png
date: Fri, 30 Sep 2022 18:00:05 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 12:31:58 GMT
expires: Sun, 24 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 538087
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 00:48:31 GMT
expires: Sat, 30 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 61894
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.163200 OK 2.2 kB URL HTTP/2 www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 20:02:15 GMT
expires: Mon, 03 Oct 2022 20:02:15 GMT
cache-control: public, max-age=604800
age: 338270
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2