r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 30c30d01178fc74ac5266ee64c3ee85b
c0c2af8a864c00aa85a8775d55f85ab107150a3b
c15644f69fbfeb99074c7e9711dfc9452ee164fa78eb981b6bae4fb7e3585f2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C15644F69FBFEB99074C7E9711DFC9452EE164FA78EB981B6BAE4FB7E3585F2A"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14346
Expires: Fri, 18 Nov 2022 10:02:05 GMT
Date: Fri, 18 Nov 2022 06:02:59 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash be1be806b5dca7facbb45a6c3db44652
7ae9380a2f3eca959fe6ff6b3832a17cffd12cf4
1f3338058f8e9cae5c9fdd733c74564312726b01c6efdcd628d851d0c99876b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6434
Cache-Control: max-age=108938
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:02:59 GMT
Etag: "63760d7b-1d7"
Expires: Sat, 19 Nov 2022 12:18:37 GMT
Last-Modified: Thu, 17 Nov 2022 10:31:23 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18016
Expires: Fri, 18 Nov 2022 11:03:15 GMT
Date: Fri, 18 Nov 2022 06:02:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xitXkir93/kzOelClol3yAinzE/DdHIqA3Vbiy5zCnmGT80aYSSASLUOgfzLnMuGsg+TPqo3958=
x-amz-request-id: 1V54YY10Z9VBFNDM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 05:15:28 GMT
age: 2851
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 05:45:01 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1078
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 06:02:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
hbvidyapith.in/ra/idet
208.91.198.152301 Moved Permanently 0 B IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /ra/idet HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 18 Nov 2022 06:02:59 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://hbvidyapith.in/ra/idet
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 05:25:01 GMT
cache-control: public,max-age=3600
age: 2279
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c10055ce87434f700ff8b20e3be1f919
477b3c9f1da0c464282bb54572737e76b6e346da
4d78eb296876122e5ff40fcd7667adf1bf8a4b1ee4c8203c88a63ce8d7910a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4253
Cache-Control: max-age=101688
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:03:00 GMT
Etag: "6375f9af-1d7"
Expires: Sat, 19 Nov 2022 10:17:48 GMT
Last-Modified: Thu, 17 Nov 2022 09:06:55 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9c041d29bbeebb3e9cb1ecdfc4d9da70
95f1a37a73a268006d5c837c8189b540fb9ca001
16a39904d4abfdfec8d1ade456bf593944a8e683398915d672c1c55b31a666e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "16A39904D4ABFDFEC8D1ADE456BF593944A8E683398915D672C1C55B31A666E3"
Last-Modified: Thu, 17 Nov 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 18 Nov 2022 12:03:00 GMT
Date: Fri, 18 Nov 2022 06:03:00 GMT
Connection: keep-alive
push.services.mozilla.com/
35.164.183.116101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.183.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dloMpjN6ABbjgraE9ihXzQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pYo25yYw78IBVJ2txYtbxnAY7No=
hbvidyapith.in/wp-content/uploads/2021/04/head02.png
208.91.198.152200 OK 34 kB URL HTTP/2 hbvidyapith.in/wp-content/uploads/2021/04/head02.png
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 501 x 105, 8-bit/color RGBA, non-interlaced\012- data
Hash af2102ba24952d9426d0b66162f1ca92
85b4a4a7b60163bdd48e003f4a700555deecc35d
6a48d814c41c831881691bed2c98ae11237e067dca66129d2e224ff8f1c94b3b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/04/head02.png HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 08:56:50 GMT
accept-ranges: bytes
content-length: 33810
content-type: image/png
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-includes/css/classic-themes.min.css?ver=1
208.91.198.152200 OK 189 B URL HTTP/2 hbvidyapith.in/wp-includes/css/classic-themes.min.css?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Oct 2022 19:15:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 189
content-type: text/css
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/uploads/2021/04/logo-m.png
208.91.198.152200 OK 16 kB URL HTTP/2 hbvidyapith.in/wp-content/uploads/2021/04/logo-m.png
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 399 x 105, 8-bit/color RGBA, non-interlaced\012- data
Hash e81e20dd8a992de73dc09bef5c3bf62d
06b0bb35ddac9d649b277231434be4a726d92e82
941d6110546ee439337d09aeb2f19fc1b305583efef35cf4ad3c79830170d63e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/04/logo-m.png HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 08:56:53 GMT
accept-ranges: bytes
content-length: 16133
content-type: image/png
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/sp-news-and-widget/assets/css/sp-news-public.css?ver=4.4.3
208.91.198.152200 OK 2.0 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/sp-news-and-widget/assets/css/sp-news-public.css?ver=4.4.3
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type assembler source, ASCII text, with very long lines (350), with CRLF line terminators
Hash 83f9943bf79c571a353d1ae6276e2a80
fe2be4b59349eb9ac6134c2b0658966f8face4ce
e9bed0d4252ad7bc017919fefad30843366f2e706af523926cc982c5b63e2404
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/sp-news-and-widget/assets/css/sp-news-public.css?ver=4.4.3 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Apr 2021 12:05:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1959
content-type: text/css
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
208.91.198.152200 OK 5.3 kB URL HTTP/2 hbvidyapith.in/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 11:26:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/?sccss=1&ver=6.1.1
208.91.198.152200 OK 1.6 kB URL HTTP/2 hbvidyapith.in/?sccss=1&ver=6.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (517), with CRLF line terminators
Hash 418491c064432921dd9218db24ac0e8d
b470b16278b587a8c6f437b4b6fcf55333eac80d
e4dfbc81d614a8aae079975d29f92d6a6189d1b7e55cd6dc6ee7a02b4a9542fd
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /?sccss=1&ver=6.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-length: 1641
content-type: text/css;charset=UTF-8
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
208.91.198.152200 OK 4.6 kB URL HTTP/2 hbvidyapith.in/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 14:36:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
208.91.198.152200 OK 828 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2221), with no line terminators
Hash 2ca9b96b12b6cabe84c8681e66fd3407
843c9e542037b688a0d1f8a5b8d8df61b36e9716
662b8232c2fc67a4303f621c5c86ec4d49834e204df859f9cb64e6e3f11fce60
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 828
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1
208.91.198.152200 OK 646 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1642), with no line terminators
Hash ddde6ff4de87ee0b59314d2e302c7f4b
294581b8b5d1f71481a38c742a73127f74b35732
4c26778829c00a1e7a857e77e157ffdfb60eb7c687662601b61a8a1598e6d869
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 646
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1
208.91.198.152200 OK 2.3 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5453), with no line terminators
Hash 162f4b762c9c7ebaae0bae39de32da2c
61ecd4736cbb2f0137242fbe80a11654b2bba147
c2f2b02477bde4ab4ef2cb9d8a0782ef62c89c4f151ccb376f7933cbe21c5ded
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2299
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
208.91.198.152200 OK 2.4 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (6803), with no line terminators
Hash 672ec612192b7d08fd7d0ba21411fa93
5c191412975d8dbc8680791ae4ac7eaefdda9a5c
5cc7fa29768e8820e3a0bade5e93feebdd135169d9c3075ee1c7e3ab413f5589
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2416
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1
208.91.198.152200 OK 4.9 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (15833), with no line terminators
Hash f20f985968818b36077d02bd712afc69
cb4a7f9493e8623ccff65080dce71611fc1d77e1
bd6fb4e43fbde3503a9bb164e5b3055607eb113d1e9f6a9bd4e7a5459a7eeb70
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4900
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
208.91.198.152200 OK 795 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (1767), with no line terminators
Hash b79965d26737121a398b88bb7fc1f0fe
a4f5e6d76a398b6a4f7101b1322fdca8ed3fa2d1
d9708d168947b4ba3bc2856ecd1b63a67f6954e45f15ed885c76154391e4eecc
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 795
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1
208.91.198.152200 OK 1.8 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5219), with no line terminators
Hash 76d2020f0b284eae8f47eca78960aac3
50c693c20633b6507f670d7fdecaba9b8d51f752
a522c77dcaede46dc5ed253b826e85bfaa2bdb129d93ee86c6f7def4eb20af5d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1842
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/ra/idet
208.91.198.152404 Not Found 20 kB IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15970)
Hash 6dbc78d9148b4a84a8e8c4683bfae2ea
1f37e0920e194805c479ba51f1a17f3b4f1644e3
a3f9416163c02ddad8c7a5163086ec583f34597aca4213bf24652130f3b63d3f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /ra/idet HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://hbvidyapith.in/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Fri, 18 Nov 2022 06:03:00 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1
208.91.198.152200 OK 1.0 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3359), with no line terminators
Hash e4fc973e2083d40d1c78629158df29fb
5cb2f051e9b4bd9f3fb885a0fa24bf3d64ddcc43
d72c71c66a56bbd9b09d3e7a1a33739f7624765fc39ea8419e9666e672c16cad
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1038
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1
208.91.198.152200 OK 1.0 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4261), with no line terminators
Hash 324fe50ee120f5e58c694c0ce6cd49b9
9333a7a3c276098367e7d480169b8e7b2ee080ab
6480cbdcef5dae0bbc9aaed87ca74916f5f013afd09f7821121464a0ffd277b3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1028
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
208.91.198.152200 OK 287 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (503), with no line terminators
Hash d5a59d9450726bd9edb3004de1165297
ce23f627b63ab58ed0829e1bf8b65212a2a49c43
e5cc54a01129bb2e30a97c520842f5e7386b9fb60f31e5bb9b78c5e7062c5f30
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 287
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1
208.91.198.152200 OK 329 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (522), with no line terminators
Hash bd6f03c09b6472b665d7c9b7b15d5eda
da767a7c09d7201421c379883225cf5875f03c06
c051751afdebce10d25b465ee8d813751ab8fc4749d7911c4461b775802c4cd4
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 329
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
208.91.198.152200 OK 1.2 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2604), with no line terminators
Hash 09c35f81b047f667721303469402049b
00f430f31bfc0d7477a163c20a085d826be6fafb
a5e4274497fc1f8799efe14d6799ac7a9b0ff5ffd59f2e0ff654596beef036c9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1176
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1
208.91.198.152200 OK 683 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2742), with no line terminators
Hash 8d0fd463005a69ce7c31fade539237cc
da4afbd4f2176b59408ef514d1c7aa6f6344a6fd
9676fe8d100fa65a1d28fc0bc8668db0440a4b29ae7bc4c60cd86be51db1bae6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 683
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1
208.91.198.152200 OK 302 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (499), with no line terminators
Hash 96384af790f02ac5f134d8bb2112e74d
e9e34685a85a9984bcee642fd58117b8dfec56c0
52c2d9f15d7e9c34aedd1f48c6d9429e1d0f07f47cecee2fe91e5b21698910bd
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 302
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0
208.91.198.152200 OK 1.1 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2916), with no line terminators
Hash 4f7081ca2a82254ffcfbc6b7f761c23c
f044d9fc6cbfd22a0f7ed3d947d187ae87f8d175
92b3f5bdee92f8e199939b2e3503478e3cc88b4d87f6fca9548628a1abd8b416
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1131
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.comodoca.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash fa04a4c27f466f5caf0dc27dcdcb14fb
3eaddd9c8134d5d4f5c9e82a9cc48de3d5394b18
ec527f8b30560ce54bb6dc96274abd9b5987fc6c8db9711101504d908ed583d3
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:03:01 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 16 Nov 2022 00:03:33 GMT
Expires: Wed, 23 Nov 2022 00:03:32 GMT
Etag: "3eaddd9c8134d5d4f5c9e82a9cc48de3d5394b18"
Cache-Control: max-age=409830,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76be8027c808b509-OSL
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1
208.91.198.152200 OK 337 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (695), with no line terminators
Hash 0921c87a11483e7ea5c29d7adeb6575e
7f4edddc51e12385b8ee8c859abbadaae5f2f899
dee531dca244cc30d1bd9e80253cf7362928cc9dfbbf58b3ea020edfdbc6fcbd
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 337
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1
208.91.198.152200 OK 726 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1900), with no line terminators
Hash c72f69c615bd6f8225105b3f21563cd6
a5673b845518f0d4363f8767d8ca5044bdfc3fae
4933eb7880d405726bf079924ac568f5942efa6be2806390ff1876d32668a023
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 726
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1
208.91.198.152200 OK 432 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (945), with no line terminators
Hash 7a2c23633bedbfe0dd402232c9517c3d
c62fec3990f9dbf62b5b03f401d58506ceeb7384
779f5047b88dddc73f1f3a3c8fe74a046ee0fcc776971d20efb32c1787b7c5b8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 432
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0
208.91.198.152200 OK 1.1 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3139), with no line terminators
Hash 4ac65544827bdb77a08787f3f5d37ec3
ba23f684a6809758e82b915883d4dfb65677fba0
ba8aa27f99116529fb3db46776a853f825a3d8de6d23f59e26840bf95d108ac7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1122
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fade.js?ver=1
208.91.198.152200 OK 437 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fade.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1162), with no line terminators
Hash 51e57fabc7b182d7ec3fef8f4f57404e
8d8018b572928c522b6c9a665ad347f35f693d62
6f8638903f64d7b007e657b7b3319ca1017d864aa5ce24c19d75f37608b617e7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fade.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 437
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1
208.91.198.152200 OK 864 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2434), with no line terminators
Hash 8183a63cc72a8750009b7e8e9c685a9c
52057f5ebd620cf50fa5677ff9f3130b6b691e37
dcffa482870efb060333ecdeff81a62528c66117cfbfb52b1f1979a0db24be0a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 864
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1
208.91.198.152200 OK 533 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1269), with no line terminators
Hash 661bf18337eb9feb885fff92bc455920
397d08a97b8afe8e9d11fc0687c3d9475dfcf425
fc0a5214f53e67390c0774d5fe9283c4a62eaca374a6d197b191a4366a34dcd8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 533
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.sticky-kit.js?ver=1.1.2
208.91.198.152200 OK 2.2 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.sticky-kit.js?ver=1.1.2
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5777), with no line terminators
Hash 37b83b14061bbfe03420d6177b1b4872
f7be12141faf8f64813bc900f431f461e5dc5e94
efa985b424b18f497b30532a84009d027d742fd693eeaa90b80dcdcaf4530a3f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.sticky-kit.js?ver=1.1.2 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2219
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
208.91.198.152200 OK 1.5 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3344), with no line terminators
Hash 7b1c3a4ae856e0f5476185a5eadee528
40cb14c5c5a4763e6562115d9de15a800a6a8a15
b751be721e680dae84ffcadafad3650afd6740cf1bc807ea8c8bf8a674c71b99
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1540
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.easyPieChart.js?ver=2.1.7
208.91.198.152200 OK 1.5 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.easyPieChart.js?ver=2.1.7
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3555), with no line terminators
Hash 4d92ece0d123bd52f6338127c1921a20
9ec4d20a34b4217308ce2295c81111785f4463b8
88bfdc70bfb2ab94482579371391375d0971f7ffad82a9c7327fe64d038f3f97
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.easyPieChart.js?ver=2.1.7 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1492
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0
208.91.198.152200 OK 2.1 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5524), with no line terminators
Hash d1f70f6320843722110a2ab753d33580
247f75d3986f5a4cd1d708513d3c7d428422bede
be9c4d7059a976935c35df7283c799dbd5139ee11821956bcc50d42c6c20f5b2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2141
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.appear.js?ver=1
208.91.198.152200 OK 1.4 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.appear.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2985), with no line terminators
Hash c60e1ce539f78214b98c3cd04d5ef246
f493baedcc5a64ebe75bc4d9c086f6255ff8ea91
be05c1537faaa596de1934db35843fb68bdf5a89da640e36d751fc195eb244b6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.appear.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1402
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
208.91.198.152200 OK 2.4 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (6785), with no line terminators
Hash c4ea01973e169b7b13a4720c4fddc224
d47479922d4f446a4be81804f0ad6afa00aab316
5c748fd2bd60baa5294bf900c34ad8b34aa3a823342f49c12af9c52ed791018c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2445
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2
208.91.198.152200 OK 2.2 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5699), with no line terminators
Hash f2d35f23d5f19f3003b55159471d5428
cd435708ff1c9b81a65a44e3b80485614b9e8381
5c5b2f3b2c65576733ec65f918632d3b3a785f5dc5327dd6ac782d65e01a18c3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2151
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
208.91.198.152200 OK 2.5 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (7217), with no line terminators
Hash 198cde49b0c330da72c0f38e0cc156c6
6d5d503b20c9b2481ddc3e0b7fdf701a83f385d1
c55bd7643c8bd6967cad9af2ee3c21d2e2898a80dec63bda518cc45bbee9cf08
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2510
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1
208.91.198.152200 OK 1.5 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3974), with no line terminators
Hash 0b03ffdd2d30589ecfad5db3779e242e
7120f7616bc49fca52e01fdcfd7c6eaa288d2716
7543760ebbcbb7d892e5bc67611f6d5f11c0da8dc84a29106adf3f970bb1257c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1478
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1
208.91.198.152200 OK 343 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (761), with no line terminators
Hash 5e77d61c90db1ad2179f16ea92e2edfa
4490d9e70adc78ecbf0b264f6156ea23e18e53d3
a6fcfe5f904635aed480fba9f6e550945a24965434763de261eb12c646c4b1f2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 343
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-recent-posts.js?ver=1
208.91.198.152200 OK 846 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-recent-posts.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1965), with no line terminators
Hash eeb099d1ed6735c3df8af46d5ca3cda6
07280456bea475036c955f59247eaa1d60eb74c2
a0f41568520c8eba370de011a1caec56bdaaeaa349eecf0592a5afb69b5e9521
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-recent-posts.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 846
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1
208.91.198.152200 OK 1.1 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3340), with no line terminators
Hash cc17fb2579f58ad03e01d5f246fae424
a300e93f43f8d32d1f77ecbb16ecb0dd44fb7edb
72949a51dd745f050dba8f2efbc22a01f046a97d2d47bc6f725d9d7095fc9807
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1057
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
208.91.198.152200 OK 742 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2069), with no line terminators
Hash 659e87d2a49bda2a61c1863b7c254394
0987dc0ba33e384d4cacdc3f77bb1d7cffc51e5d
1b9242dc40f6fc76f67d0d76b95943e834ebf0545769e67d850aaf204629c6d7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 742
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1
208.91.198.152200 OK 1.3 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3487), with no line terminators
Hash 0b7292e3f48e008a1f8fd014df3cc6f9
42562f38a1f7d2c05ebd25aedfc56587a8b45365
c98d9b22dcf00e8f13a66636731abdc6249b68c60dd19b737f94dee6c17e7beb
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1287
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1
208.91.198.152200 OK 790 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1685), with no line terminators
Hash a292f9bc866f1a33c23b76d57a156326
9581cef788a5217e76a3962f53296a8267ba60fc
2193f6b75fabfdb5f239b74ed88cc57f0923828cd279de544513766eae52838a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 790
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1
208.91.198.152200 OK 739 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1966), with no line terminators
Hash d37ec5edf822e4eb5299d64daf4b7ea8
2c3f44b8cab23a886ef442d6791a33316afd53e0
8529cd80394756e17a6f75ce6ad93015c74db522b6b8eec6e1c48fbe4ae99d41
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 739
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.textillate.js?ver=2.0
208.91.198.152200 OK 2.5 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.textillate.js?ver=2.0
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5946), with no line terminators
Hash 3b4177e3b2e0eba9677389adb552ac05
30079d4891b36dbf0568c35c1acf89cd3040f629
53ef11ef6e9c8d2224a2cd8b91a24e928e5fae5224327e8b37496808689cdaa9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.textillate.js?ver=2.0 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2473
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1
208.91.198.152200 OK 1.7 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3879), with no line terminators
Hash 6dc635c59a5d138c5aa7c4c25fdcda5a
f75a801234c00948caa38d843030b4dfc2108bf6
33e481fd76b267a7ced5f8f45c56b709a13216e2460c55fccb593c39f016f5e4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1694
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1
208.91.198.152200 OK 3.8 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (12004), with no line terminators
Hash cefcb295e716b8eeeef6f0cdaf38c6bc
ea486c7b29a9f5ffafc3917eb2d53ba3df40202f
31822d66e79778f85d2bddd1768d391f20b425a9157faaf89b0606a5fc3781cd
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3839
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
208.91.198.152200 OK 5.2 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (13723), with no line terminators
Hash 67ddde12e40697486479621dcaa6ada0
0893136676fd812a763a073c3f40bcc7a5f72870
957e444b47f3d9b6f15ae4d69702b8983153004f3b1df1e82be31a2e8360ea9e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5160
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2397
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 06:03:02 GMT
Connection: keep-alive
hbvidyapith.in/wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=5.1.1
208.91.198.152200 OK 4.2 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=5.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (13567), with no line terminators
Hash 8ceedc0e60c1a4f4f927589880ab774d
92c720e78d26c0ef1c2a063d5673aa51bf3e96d2
9d23009b9a47741165d34d6983eded1ad27501226a1a46eec2dd606c35d4b1d7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=5.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:43:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4194
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
dpsdooars.com/wp-content/uploads/2019/03/footer-fb-icon.jpg
103.92.235.21200 OK 3.4 kB URL HTTP/1.1 dpsdooars.com/wp-content/uploads/2019/03/footer-fb-icon.jpg
IP 103.92.235.21:0
ASN #135822 Ovi Hosting Pvt Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 150x36, components 3\012- data
Hash fe6087100329da1aae67594346cbdae2
c99a6dd7311b8009429f8bfe8221ea568ed714f3
62d7431f8f5f22296ca618833ba37b8704dc97f574dbc19ed58c3c6907099551
GET /wp-content/uploads/2019/03/footer-fb-icon.jpg HTTP/1.1
Host: dpsdooars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:03:03 GMT
Server: Apache
Last-Modified: Tue, 06 Oct 2020 09:20:02 GMT
Accept-Ranges: bytes
Content-Length: 3381
Keep-Alive: timeout=5, max=20
Connection: Keep-Alive
Content-Type: image/jpeg
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
208.91.198.152200 OK 5.8 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (12991), with no line terminators
Hash 6abcdd034dd7851cdd3b2dcc1078e107
00ae25c1c12d9778da5701359d425637d65ff307
6dd4737179a597c7a877abb269d8438ed5d23e7dc44affb5f6ec6e268b0cadf2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5789
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2397
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 06:03:02 GMT
Connection: keep-alive
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3
208.91.198.152200 OK 8.8 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (25337), with no line terminators
Hash 5e634bea5471043150a7844449b6183d
34f2d8b400fbf4ab0685707351d9fec0f8e44508
659cb46657973a446fae4c34ff1ffc41c5bc16a3d1ac125eb4ae7d34bfe5be43
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8788
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
208.91.198.152200 OK 13 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (34773), with no line terminators
Hash 8b6cf65f168bd191d58b1f3a68e39391
0b778f44756ad7a25241aa828f7cfd35cf12097d
e449d9d3b5f0251e83eafc4fd6ad5a2293c154e7abcb36eeba0f782296f068b5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12766
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2397
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 06:03:02 GMT
Connection: keep-alive
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
208.91.198.152200 OK 373 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (741), with no line terminators
Hash 0287f860a8c842bd15caea306aeae882
78fd117d49d7ee7aa8f57809902a190b16fe6040
b59b5dbbb13c25fbd8177298e3960a218c5034c076d4f840958540947896ae22
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 373
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
208.91.198.152200 OK 817 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3308), with no line terminators
Hash 4b155f32465ac88951af115d1738aac2
446d31546d86b94c4950396fb780902f1a3efd89
2c4ae3c0f7231a230b77c7ff4b2a4567cc6af518520c927b829a89140012cd15
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 817
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=5.1.1
208.91.198.152200 OK 451 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=5.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1131), with no line terminators
Hash cbd9c8fd1191e50116b8a9370cbe4139
f25c8066eaab3c1ec740bb23638a63fb340471c1
7b394e163511919d8b3fcc0d14008450a8f2f4ab71c7430b882d98df05a4faff
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=5.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:43:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 451
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-button.js?ver=1
208.91.198.152200 OK 174 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-button.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with no line terminators
Hash 1484db10cddde999b798bd7c603eff96
26a39f2ff3b0e16aef731ef3b17f761959678e19
bf3d923f5f52fb47ebd84f4eac24b5800a2bc7a7e5f7403757fc514fe656e54a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-button.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 174
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2397
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 06:03:02 GMT
Connection: keep-alive
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1
208.91.198.152200 OK 334 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (647), with no line terminators
Hash d149404863e3dff58424f3f020ae6ace
869cc5667a9c403ceca871820efb16bd194251d6
bbf79d290f98746420dc076d71132d409a2f9dc4132f7d06669b615097fcfb8f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 334
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2397
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 06:03:02 GMT
Connection: keep-alive
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-blog.js?ver=1
208.91.198.152200 OK 2.5 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-blog.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (7660), with no line terminators
Hash 4b99772bf33d0d21166825128c1a63e9
b3270d636bd7e6528299606f364f6834976c412a
179ed33b04045d6b619757de402e88310eab423d6fde1439c775b3b15725e571
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-blog.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2483
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d0b6106f00f9fd8b89c2d484a559a1a
399ac393209dcdac7d2188d7aa8d95f04570ef7c
5d8151c9eb558f4a2b8bd2952c6845606ddb0c27e36f6e49aca7e60908cd9fe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:08:54 GMT
age: 28448
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1
208.91.198.152200 OK 1.8 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5834), with no line terminators
Hash 82700c87e0a32418d91d4198b35deec6
ee45d504c9728717987cc85a1ebcff2c633d20de
f314161b20c2e9095f4d2fe4124a8061f5fd399ab9358b5d074271fdcf9c57a7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1770
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4998f097d23ee5f19cae27d5b938e5fc
4369c8ebe61b9944e639bb2731feb51c5a758fe7
5691c66766c9578e9c4aa71240608653821162c668abc63ee40e553ede2450e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6339
x-amzn-requestid: 0be5dee5-272d-4577-ba55-5cdb7935ea60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-MCExBoAMFz6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa4c-15fd613336aa6fcb165d0b26;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NYs-Nf0PzWqhXP5nkvanTjhJ6vfwRIU--YD06RFIGPEuwDCu6fvEPg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:01:30 GMT
age: 28892
etag: "4369c8ebe61b9944e639bb2731feb51c5a758fe7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1
208.91.198.152200 OK 609 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1634), with no line terminators
Hash 004ba726099e4f31a85fe977d764406a
96662082df46611885903e519d3ed5e3ec9159f9
9d04f13ad00e2b949c66bb71239a410003f19843ac3310702ccd52a785adcffc
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 609
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: 4778d1bd-28c3-4665-89da-046e356087f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyD1HE-oAMF0QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-53c7330c5fd36d3c4d9e6aed;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5zDWKjYmvVLCemXw5Swm2qkhw1mQtD5c07Fl7Krydo_XR5FFyHDu4Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 07:15:37 GMT
age: 82045
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-popover.js?ver=1
208.91.198.152200 OK 305 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-popover.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (698), with no line terminators
Hash 8ee3b4e7eacb6fc3749ecc6ff5bd2223
06f0ea0e8e4a97683c8d96337a8008ba2a268c64
c8b00948f734aae808a6f0e0d303152a8acf4c64ba385c1a40b07f7c9ca9eabd
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-popover.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 305
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
208.91.198.152200 OK 245 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (483), with no line terminators
Hash 4001b77cd3b0c975837e565ac678502a
044aa2eddb3c3f51fb12a4d2a28e251c80878202
040c6f4cd99e486f79e06fffdc110d3a554dd72a8d76ac025cf9a6c7110518ca
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 245
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
208.91.198.152200 OK 339 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (888), with no line terminators
Hash 046f411390a97a03d9218b2bd6c64dba
34f2a8696c779c841c3d021289753cd73d0dd8b2
04e39cb212ecc51faacac3d4ef2cebebd33398b4a83ff34eb69150ab5eeea16f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 339
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5
208.91.198.152200 OK 739 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1748), with no line terminators
Hash 6e57122990b8560ce164b0104e0e8c37
4765df780454d373c1c1dec2309c63d3c5d3550c
1e6fd995c28aa4557455cac181b7081457bb798193b92328a5a755a52c2affc8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 739
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=5.1.1
208.91.198.152200 OK 473 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=5.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1887), with no line terminators
Hash bb62359b25993f85c81d8f70ad5364f4
034d1acbe045002ba30ea944daa6c2a3e289f94c
792761e29f29ff2e702e5f89a7f6166787fbfa2bdcbc1fafe5476f4d970ef08c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=5.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:43:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 473
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion.js?ver=3.1.1
208.91.198.152200 OK 1.3 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion.js?ver=3.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3394), with no line terminators
Hash be128ea50f8a6339014a4a84a1ff62b0
6d2403395bb9c2bd2a052ddcb8cfa1e79f747cff
d6e3c54a391de6089e02f7e28bb8ee699ff2b6c29650f4ee810738e9debdbb4a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion.js?ver=3.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1302
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93b326374b3808d0af42e295643cdc14
dd691328acf190c745465208f18a41a75878df18
224ac3995e2e78ee5fcc6c5c3d5fb1f4b0ceca1c42b7a1a493c756aa199bf75f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5198
x-amzn-requestid: ba4e00c8-a996-41f3-b15a-1e304907ca2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9UpH1ioAMF6ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ea-2f9f794c4de03f8b212e072f;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LPflGHjoeNg1X5EszKAaziaZsKFf5hT6LeNPpZQriZ5H1z7Zhh86Ow==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:57 GMT
age: 29225
etag: "dd691328acf190c745465208f18a41a75878df18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/lazysizes.js?ver=4.1.5
208.91.198.152200 OK 3.6 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/lazysizes.js?ver=4.1.5
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (7142), with no line terminators
Hash ba3cc71b8deb66d7dc60f5893c9219eb
3c54fa3aa928ee0af365253fa1492be46de81851
e7ce393b806b1a53b9216e4cdd1f517f28417c9395b829af7888215eccf08016
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/lazysizes.js?ver=4.1.5 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3556
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6
208.91.198.152200 OK 4.0 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (9399), with no line terminators
Hash 3fa7bd8fba422e7334a4dbd0bfb055b6
f281ec77828f1073fd39da8f48d837ba8f627f3c
8bea4d5d991cd887af8835959c779d91527bc3482803f009f76b491c3ccf6737
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3988
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
208.91.198.152200 OK 4.5 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (10862), with no line terminators
Hash 3ba9771f425df344603ff17d0833bfb6
e52fbc72e649ce839e6e1d53dfa46ffa61f3a775
9fb90ea5d02e8854297739876a1b160d05035bd0dd1e5531e0514c6c7fc957c3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4486
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1
208.91.198.152200 OK 6.3 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (16292)
Hash f03d4179ce7c60bf15fbeb6b29e347e8
489a1ca6def01eb0f88b45b8899b8896bb8c2987
26c366bd394321e335978fb79a8f9f17aba5ac0b0a527cefde214c623da62b21
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6269
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2
208.91.198.152200 OK 8.6 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (23008), with no line terminators
Hash 55542e45645f76a9f8c3c761fb2a290f
ee6adb6aae067ef469ea11602f32684c9dadcd0e
9a23b6bc90f1ff4203a85bc69d49f57f287f63ff2705f978a80a245dae926e13
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8649
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
208.91.198.152200 OK 455 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1098), with no line terminators
Hash 92d413f666cc16f4f15841860284e9f3
4fea8bdac69fa63fa73dfc9fd5a303d97d72b59c
9410e7dea07e2a58e34689544e62945270327930b5adad13171ce7f080429a17
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 455
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7d16e5ff718353c095d266b080fe547f
fa7c5c9a1d16355859196271f3d13f3850931888
9a94d8eb20cc56d0898b1e2b80c0006ebbef75c15ad94e907050c5be4e19a960
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10349
x-amzn-requestid: fc85e078-a81a-4fed-899e-15249961f59c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7tHGLIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7d-4224d193517794684fcdc0ad;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UK-XD_8EcfPwfLb-QVwfLr8aG-sqVBoUJcbPb5hKAlQS68eOxdgM5g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:52 GMT
age: 28630
etag: "fa7c5c9a1d16355859196271f3d13f3850931888"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
208.91.198.152200 OK 873 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2176), with no line terminators
Hash 9276bd6681ea3877bcfe75a91176be52
60eb7404920631cdef60fc09d96551d888004848
654d24fcc7d5cfda65beebafcb58a0aca1221e1ff16ce73542ff4686f8583575
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 873
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=1
208.91.198.152200 OK 195 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with no line terminators
Hash 035163682275e8f6a212787443a5bec6
030d18ea4df0e92fc24075a087a5d9348ac9ec05
a8c8562166bc6c2f9865bcd3ce89dd0e9d5e49cb6583bcb7d4579e173a882f60
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 195
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=7.1.1
208.91.198.152200 OK 218 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (413), with no line terminators
Hash 23f2f1c5d7ea17a286f0786a6e140c57
07747eb896e632ae0be9434bd6f72f23bfd5deba
37ec369020564a393ed54f305a9405de87340872e44669cc0a5d4f93b579715f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 218
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=7.1.1
208.91.198.152200 OK 259 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (498), with no line terminators
Hash dae7e5f077e7abb1818b9bb20a87cc1a
a9a08e03abe8c8fd04196c143a008d5ba10ccc4e
716a1824c0b23045a62191926cbfd6baacd79bd1004b541668930fe492281841
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 259
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=7.1.1
208.91.198.152200 OK 467 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1012), with no line terminators
Hash 79506190042625eb20a4ce658b6e6c9c
4eb0e9f4089223bfb5b3425ef6c3f7cb19bcc7ae
cf005fa27b5dd803abb0aec1818ec1c4ddb0ec98910f7559bdcfa2196df1633a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 467
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-sidebars.js?ver=7.1.1
208.91.198.152200 OK 1.0 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-sidebars.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3537), with no line terminators
Hash 73679b40caa33804033fbaa2d998787b
a47b7bb0fa6a74b199eccfcac11ce70f7f442032
ffe05cff24b26f651fca41cd7977d5ce4553d4d46ac12c1d6656268fa59bca73
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-sidebars.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1028
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1
208.91.198.152200 OK 494 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1707), with no line terminators
Hash 3328b1bbd5127aa58225e613f03f52ba
aa40b87e20b1e70dd6c46a7805aad3bd017e9aa3
a2550f1576c5973132c1f8079ff7a5e1ada965be38aeba1eb3bd3c4bafd9f94a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 494
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1
208.91.198.152200 OK 1.5 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4419), with no line terminators
Hash f6d1942141cfd1cb7a97f9f5d6d8a9f7
627743c5ec45407e90d495d0acecfff63bc92afb
b4cc97b2023605fa96a844451230e038e8c958497ce823d124bc490303efd39e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1485
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1
208.91.198.152200 OK 670 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1781), with no line terminators
Hash 70afe8d24e486048f3512ded51f98f9d
41dfa8561c20878d72aef4a1cc353671f8b3f00c
000917cf4832d8cdacac01191843e2602241389c48b0a2380a4643283161eea2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 670
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
208.91.198.152200 OK 1.3 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3575), with no line terminators
Hash cad228573c17dcca5a2142bdce10de44
9640857a4764a8bae562cdcf8abc44d699446d70
2561c074abb6da7b781da9048db6a4e7b9a9d2fbec956c9887c791fd0d808493
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1314
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ptsans/v12/jizaRExUiTo99u79D0KEw8OPIDU.woff
216.58.207.195200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v12/jizaRExUiTo99u79D0KEw8OPIDU.woff
IP 216.58.207.195:0
File type Web Open Font Format, TrueType, length 14256, version 1.1\012- data
Hash 97369ebef4512e0ae2561ae38250409f
0db20d24b48fc35883fd184dcc30a355076cf312
3c241100650328593f8410141e1ba386e6707c450c11a922a958354b40e70cb8
GET /s/ptsans/v12/jizaRExUiTo99u79D0KEw8OPIDU.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hbvidyapith.in
Connection: keep-alive
Referer: https://hbvidyapith.in/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14256
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:50:19 GMT
expires: Fri, 17 Nov 2023 21:50:19 GMT
cache-control: public, max-age=31536000
age: 29563
last-modified: Tue, 15 Sep 2020 18:09:12 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=7.1.1
208.91.198.152200 OK 746 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1807), with no line terminators
Hash 1d3389784bea7185820b1733b9345124
eb6161dd649776502e1e5063dc9e11e7c6faf9fa
f33cc62678c452fae9f400e3b5b9e4970cd8182451458c5f4eed764b58d33b4e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 746
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
208.91.198.152200 OK 1.1 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2709), with no line terminators
Hash da7dbca7355b3ec26104da678c543cb6
e34c466902bcdd2e09c4ef0654336acc6a2d8a54
e7186b86e0f126649c9a0f0bff43293261933c91aaa3a528f8086f1a05483b26
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1103
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
208.91.198.152200 OK 2.0 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5353), with no line terminators
Hash 1999caf275f27dbe2e5f44a1d41dd99a
ce2f10554d1ead4ebdec2a371632c08d525cc643
6660471be34218d6cd7feda83dd4bea7f753f085fe2b7e93b79f6f91b58316d6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2037
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-comments.js?ver=7.1.1
208.91.198.152200 OK 482 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-comments.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1244), with no line terminators
Hash 906e3e1e38bd50a0b35023e2e431335c
f994df3d27595cbb701b5b0655d414994b39c50f
fedbb32b3d2ac479c9da18bd80611d5f40a7afbdc4153248f4a5c5b797b674cb
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-comments.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 482
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/anticslab/v9/bWt97fPFfRzkCa9Jlp6IacVcWkxq9Qs.woff
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/anticslab/v9/bWt97fPFfRzkCa9Jlp6IacVcWkxq9Qs.woff
IP 216.58.207.195:0
File type Web Open Font Format, TrueType, length 15940, version 1.1\012- data
Hash 9ba5bd360693f1c14aa4269455b581a2
b2df1969c7083a4d1c225a4d4c9cffb12abe944e
5ebb230f7d65dd2621f3b29a77c1aa708c8e0935e26e0b634a6923552969e6b9
GET /s/anticslab/v9/bWt97fPFfRzkCa9Jlp6IacVcWkxq9Qs.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hbvidyapith.in
Connection: keep-alive
Referer: https://hbvidyapith.in/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15940
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Nov 2022 03:24:24 GMT
expires: Sun, 12 Nov 2023 03:24:24 GMT
cache-control: public, max-age=31536000
age: 527918
last-modified: Tue, 01 Sep 2020 04:55:29 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=7.1.1
208.91.198.152200 OK 331 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (761), with no line terminators
Hash 23f44935192d6700820ccbb499e217ff
1a0df8aae68cef2f7046b3db9ab37e457b856153
7ff3a2a48c48f952369cd8e286aa3a4dc0f2cb300c6904a5b2b6b504e7c2c58b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 331
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=7.1.1
208.91.198.152200 OK 291 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (641), with no line terminators
Hash e551bb252520313efb49c758e59fcc85
24d1bcba5912d87d36eb0a1d1c5da5a19765da9b
75e5b9d2316541fb9e567a681455c1fc1f2defc84b436ef9be19327d8632b075
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 291
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-skip-link-focus-fix.js?ver=7.1.1
208.91.198.152200 OK 242 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-skip-link-focus-fix.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (325), with no line terminators
Hash 08d2bf4a763267afc84beb93b7c39f88
2221be913b0428a1bafe766ec95a841b488318bc
2902a191ee6ba196d11c1606d3d05bcc3e9ed69a71e101ea4ab3735f6aa81105
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-skip-link-focus-fix.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 242
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-elastic-slider.js?ver=7.1.1
208.91.198.152200 OK 233 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-elastic-slider.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (565), with no line terminators
Hash f39dd41bde45ff29bd8ce208c94482ca
82c273265b6ed4d17be7f2cd63d105892cc6fd77
ede9659bfe70a2ce8c8e5a06b443c7e70c93d0b83f930c7b5e6010674a4be1f5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-elastic-slider.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 233
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=7.1.1
208.91.198.152200 OK 1.3 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5798), with no line terminators
Hash 1da3494fc748a0c00695bf53c046cd13
c6e22d020eb47560662a7d53e4cba5e3176e8833
63a4d983f003c9cd16dd61c3f4697950d2fe6da34239f2ce61daac5f7f658ddc
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1343
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/library/jquery.elasticslider.js?ver=7.1.1
208.91.198.152200 OK 1.8 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/library/jquery.elasticslider.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4545), with no line terminators
Hash bf51d2431dcd639b5c2cf1be62a972d0
0dae9fe43151ee24f749cc7cdb01970fa2af6583
40f502fb3cc22d170d0dc74c2c990c29833f4692ed8af8f0dd77798b5d49007e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/library/jquery.elasticslider.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1798
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=5.1.1
208.91.198.152200 OK 5.3 kB URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=5.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (15967), with no line terminators
Hash cd47cad180371799d19a62af026d4f31
d739a9f0246aca4e47f637cdc826112e95c26fe7
f1503df879822bc0acac7c7f8e1913245c76ebecf237ccb35b87f81ccb47a852
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=5.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:43:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5312
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=7.1.1
208.91.198.152200 OK 8.5 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (33143), with no line terminators
Hash 0536fb218087ec2fe5adb579e81a931a
ee24a9017b07cdd33fedfde9fa8c5194f2b02b62
f85b9e02d7c7cc033abe40e1c95dfd659f98fadd4eadf3c44887f9bd91013733
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8483
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=7.1.1
208.91.198.152200 OK 11 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (40017), with no line terminators
Hash 4986cbe321457f80a49b9c6982a06b17
5d398c4ecaed2ebe416d52f53b764dc6d8a83c03
259d82edd9be46e2efa13513844b4f23efd494a43fb35a9e219d3127b2b64ad6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11011
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
208.91.198.152200 OK 13 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (20999), with no line terminators
Hash ccbab8dbaf66fc2377e8e51be564e717
306095a6eabfdd33376a926984ac8a65df45e54a
f2af7567450f2d16753123a28fb9f981c8b36036d0198920252e6a2c19ccbdbe
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12882
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
208.91.198.152200 OK 21 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format, TrueType, length 21112, version 1.0\012- data
Hash 98f14d10e4fb98fcbb66820234f7ccbe
4a7ccaafa5fdf54c0a35303633339b38020db49e
adb8f6a60466aa8292ca11f56ab5a2bed803719a1d32df096e8dca6224a6523a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hbvidyapith.in/wp-content/uploads/fusion-styles/b38ce42fcdc584c68ec5098da383ab71.min.css?ver=3.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
content-length: 21112
content-type: font/woff
date: Fri, 18 Nov 2022 06:03:02 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hbvidyapith.in/wp-content/uploads/2021/04/inner-bg-300.jpg
208.91.198.152200 OK 129 kB URL HTTP/2 hbvidyapith.in/wp-content/uploads/2021/04/inner-bg-300.jpg
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1500x300, components 3\012- data
Size 129 kB (129411 bytes)
Hash e0ec5c50040f13c3fb40dc56288aa349
33cd6072486eb59e80ed2440ecfa6fe4cd2248f6
d6d010d6c8c8d4f17d7366650e6072f3141f04e6c06b0e9abc318d926594c1d7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/04/inner-bg-300.jpg HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/?sccss=1&ver=6.1.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Apr 2021 08:06:32 GMT
accept-ranges: bytes
content-length: 129411
content-type: image/jpeg
date: Fri, 18 Nov 2022 06:03:02 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
208.91.198.152200 OK 80 kB URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format (Version 2), TrueType, length 80272, version 331.-31458\012- data
Hash 3bb4d4ff63186a8caf433d3d3a022d49
023d6411b150baea1ec6784dcb2888577d95f13e
75f5349190725c85b426fdb66c683beb21b7804792d0770a9e84b28e7ace5d28
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hbvidyapith.in/wp-content/uploads/fusion-styles/b38ce42fcdc584c68ec5098da383ab71.min.css?ver=3.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
content-length: 80272
content-type: font/woff2
date: Fri, 18 Nov 2022 06:03:02 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/uploads/2021/02/favicon.png
208.91.198.152200 OK 8.7 kB URL HTTP/2 hbvidyapith.in/wp-content/uploads/2021/02/favicon.png
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 60 x 58, 8-bit/color RGBA, non-interlaced\012- data
Hash 1bd12105798c192b0b9657442e3d5374
a0a1b8879525a56680e5836bb42714bb2549dd0e
1227fddbe56702e360faec136d38b6dd2b24ecc66bceb46a51117b41f3388f91
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/02/favicon.png HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 07:29:17 GMT
accept-ranges: bytes
content-length: 8733
content-type: image/png
date: Fri, 18 Nov 2022 06:03:02 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qpoQa1Lhe-h27dGooXDCtujesSTg7Tb0Ov-PNLnUP0288ZofwHxkhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:24:12 GMT
age: 27536
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hbvidyapith.in/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
208.91.198.152200 OK 0 B URL HTTP/2 hbvidyapith.in/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 19 Sep 2022 19:46:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/assets/css/style.min.css?ver=7.1.1
208.91.198.152200 OK 0 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/assets/css/style.min.css?ver=7.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/assets/css/style.min.css?ver=7.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1
208.91.198.152200 OK 0 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
208.91.198.152200 OK 0 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/uploads/fusion-styles/b38ce42fcdc584c68ec5098da383ab71.min.css?ver=3.1.1
208.91.198.152200 OK 0 B URL HTTP/2 hbvidyapith.in/wp-content/uploads/fusion-styles/b38ce42fcdc584c68ec5098da383ab71.min.css?ver=3.1.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/fusion-styles/b38ce42fcdc584c68ec5098da383ab71.min.css?ver=3.1.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 18 Sep 2021 00:36:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
208.91.198.152200 OK 0 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3069
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
208.91.198.152200 OK 0 B URL HTTP/2 hbvidyapith.in/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Nov 2020 10:44:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1252
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2
hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1
208.91.198.152200 OK 0 B URL HTTP/2 hbvidyapith.in/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1
IP 208.91.198.152:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1 HTTP/1.1
Host: hbvidyapith.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbvidyapith.in/ra/idet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Oct 2020 02:42:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 18 Nov 2022 06:03:01 GMT
server: Apache
X-Firefox-Spdy: h2