Report - www.mybslhr.org/admin/

Report Overview

Visited public
2024-01-09 10:16:42
Tags
URL
www.mybslhr.org/admin/
Finishing URL
www.mybslhr.org/admin/
IP / ASN
72.52.251.3
#32244 LIQUIDWEB
Title
Contacting Admin - Brookdale Associate Self-Service

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-01-08 10:43:58	1.4 kB	231 kB	142.250.74.168
pixel.wp.com	2545	1997-03-28	2017-01-30 06:31:40	2024-01-09 05:15:04	565 B	269 B	192.0.76.3
i0.wp.com	3021	1997-03-28	2013-09-17 08:14:42	2024-01-08 20:08:56	994 B	13 kB	192.0.77.2
c0.wp.com	6988	1997-03-28	2018-09-24 17:59:05	2024-01-08 18:58:16	3.6 kB	332 kB	192.0.77.37
stats.wp.com	2711	1997-03-28	2017-01-30 06:06:59	2024-01-09 05:15:02	412 B	7.8 kB	192.0.76.3
www.mybslhr.org	unknown	2023-03-17	2023-03-18 10:40:42	2024-01-09 11:15:54	9.3 kB	169 kB	72.52.251.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed
2024-01-09	medium	mybslhr.org	Sinkholed

ThreatFox

No alerts detected

JavaScript (49)

	URL	From	Size	First Seen	Last Seen
	unknown	Function	694 B	2023-04-12	2025-05-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-12 17:08 Times Seen381 Hash bfcf76d28e80cbef46a588801baae8e3 7453a7df67d234ee192b477905a86f355a0fe838 6ebcda226bda40e62bff26724955179c93760034aa297ed889b8bb952f10d362 Loading...

	unknown	Function	196 B	2023-04-12	2025-05-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-12 17:08 Times Seen492 Hash fb0ed7c151c40e2e53406d3de39a48d5 339a10bbe2be49c586d400399f85b871f7bfe446 fbcbd60e9c26e0bb461e179d9eaabe7311877a0dc4be511baf77dd5cd996214e Loading...

	unknown	Function	1.1 kB	2023-04-12	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-09 07:51 Times Seen164 Hash 200f77c3a6e36b4d85b6efb64159ed0b 9d2581f08f73cdca7f8027aaa74f3eb0297e6bf6 bb283a6f0ca1874567106340d715f9ca5c2ddc31a61f986d10c12ecc8b5a8ac2 Loading...

	www.mybslhr.org/admin/	ScriptElement	53 B	2023-03-07	2025-05-12
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-12 23:18 Times Seen1165 Hash aca63831fff5d915e1d8fd6c936bb9ab beb6723fa1c0d27501feeb9b979eafef146d3f54 155cc2d89a4636fe39a6b202bcf09a76629ffb09cbcfa11e9b75106809d32bfe Loading...

	www.mybslhr.org/admin/	ScriptElement	3.3 kB	2024-08-20	2024-08-20
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 12:48 Last Seen2024-08-20 12:48 Times Seen1 Hash f276798c411fbfb7450472a755090d31 cac81abbd39d9ac32c677da422112ba0822ccc5c a376fc1a89fed6cd6b41b46f67e35e98072fd43b07ae2c2b177f00e9b66fa6ee Loading...

	www.mybslhr.org/admin/	ScriptElement	373 B	2024-08-20	2024-08-20
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 12:48 Last Seen2024-08-20 12:48 Times Seen1 Hash 396ad3e8393dfb130dd3cef5a551e33e dbe2b80fc2c86b5f9883276e9b6a052fa68bda6b ce821970a846a00069c152e9af7472e45c2a3e729f932d23e9338650b52dc972 Loading...

	www.mybslhr.org/admin/	ScriptElement	300 B	2024-08-20	2024-08-20
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 12:48 Last Seen2024-08-20 12:48 Times Seen1 Hash 08e230708d460d66554a2560eee518d8 4e259ab7e37afc95b5cb5127890599ea20662727 a6d764c447ed02a1c5cada182a21a7ecc99c676c5bd027ca39459ca05c20683b Loading...

	unknown	Function	525 B	2023-04-12	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-09 07:51 Times Seen460 Hash d7b4ae5a8ad0b7b89d62b6b208c3224a 4bedbff3cf603ad139b2a178e20f7798d01ea691 601a205fd87b18888bec6e9785b3015bdb1f1cc44d5bf6436038d88594bfa5cb Loading...

	unknown	Function	616 B	2023-09-22	2025-04-25
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-09-22 11:17 Last Seen2025-04-25 04:29 Times Seen293 Hash c8ad14af3315add6be049e46ae327106 9bc93f5cdbf27d5c3b371e4e8fe1b7cbe8a3b160 9c92783ffd76cecb83621fbd77b4065f8773082f3006a4133ca97549730e71bf Loading...

	unknown	Function	619 B	2023-04-12	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-09 07:51 Times Seen449 Hash 876094c28ff1aab075b7d8003f2f4d05 7eb3be1a59e5ee9c44208b339460c3fb56259f51 71dcc95cde80a9c7063c556762cc4dd2797661fe6c81b3b1e9421e70ff816b36 Loading...

	www.mybslhr.org/admin/	ScriptElement	57 B	2023-03-07	2025-05-13
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2025-05-13 00:14 Times Seen9638 Hash 2a2781f9bb6302c2f96df0d1e96ef524 796bb90146495848c0c479533c367edadb94f1a9 1b60af0ce49d65e8b1006457c16883d60e53a0054bb157c57c3b03a82ee9964d Loading...

	unknown	Function	192 B	2023-04-12	2025-05-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-12 17:08 Times Seen494 Hash 4d0098c254f913357ec7433d1eb1ed9c 4f7d908dc26e1d08cf772efbe5c13680bf3f6d81 469b40a7bf46790dbe4c2f043ff733862c63be22abb70dae10e8e034993e59de Loading...

	unknown	Function	989 B	2023-04-12	2025-05-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-12 17:08 Times Seen481 Hash a69de8c4f55590dc5fd05f72d54e8bf3 8174fc70b60afefda9ed05747f45a8237793326c 1fdce8c606ad40a974e50fc416a9ca19017c935b755171278b84cae301b6a351 Loading...

	unknown	Function	344 B	2023-04-12	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-09 07:51 Times Seen482 Hash a9256000c4f3336d0ba1dbd51f2300c3 0a6355762d2d4472608da8899c2507ff8cb941d0 e4fa83ecc63873e4b3fd15ed7e37b3acd57b6c972c3f13b1a422efc8f4ea6b5b Loading...

	unknown	Function	571 B	2023-04-12	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-09 05:55 Times Seen387 Hash 84ae169c58a1b84db9f1e4a18452624f 0955d9bf2b2e5fa9af88c0108934e19697bb3922 83f86fb85333afe87afddc54735b464dd72a7fe7059318deec806d1462cc089b Loading...

	c0.wp.com/c/6.4.2/wp-includes/js/jquery/jquery.min.js	ScriptElement	88 kB	2023-11-03	2025-05-13
Pretty URL c0.wp.com/c/6.4.2/wp-includes/js/jquery/jquery.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-05-13 03:35 Times Seen92820 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	c0.wp.com/c/6.4.2/wp-includes/js/backbone.min.js	ScriptElement	24 kB	2023-11-09	2025-05-11
Pretty URL c0.wp.com/c/6.4.2/wp-includes/js/backbone.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-09 11:37 Last Seen2025-05-11 18:14 Times Seen898 Hash a7c4a44edde567ba5c5b91254932af54 170e6827c58e6bd15f0ee67f75694f469ebd29f1 90554181b9d143453475bb69bbce45d406f2d2119409db9b71da8552536681a7 Loading...

	www.mybslhr.org/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188	ScriptElement	701 B	2023-05-10	2025-05-06
Pretty URL www.mybslhr.org/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188 IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-10 12:45 Last Seen2025-05-06 09:54 Times Seen3090 Hash 328b8123661abdd5f4a0c695e7aa9dcc 4164f78bb52e9f2bfbb7ae5fd519b4638063c1f0 27dd9b075cc59cf5f3c0f6ee075f4bd113782d81ce30a4f16aac669ecfdc4fa2 Loading...

	unknown	Function	1.3 kB	2023-04-12	2025-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-08 07:25 Times Seen288 Hash abb2c8b5ecbca027b6fffcdd726e133f 6495cc2086829febe1d46026906caa3ebc4eef17 091aa831b1e0039239317135268ba84750b9b1c343a353d58acee3080dbc4c81 Loading...

	unknown	Function	493 B	2023-04-12	2025-05-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-12 17:08 Times Seen490 Hash ffd68da4f5b031fdcfbcfb9db10fced4 330d04a86b71193355646894127c2eab04e1790c 20afcc48a5d2f7d5c2defaaf7b94a10e182e141f3c53886549e55cb8fc4c4205 Loading...

	c0.wp.com/c/6.4.2/wp-includes/js/jquery/jquery-migrate.min.js	ScriptElement	14 kB	2023-05-09	2025-05-13
Pretty URL c0.wp.com/c/6.4.2/wp-includes/js/jquery/jquery-migrate.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-05-13 03:35 Times Seen106419 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-13
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-13 04:10 Times Seen341567 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.mybslhr.org/wp-content/plugins/easy-table-of-contents/vendor/js-cookie/js.cookie.min.js?ver=2.2.1	ScriptElement	2.5 kB	2023-03-07	2025-05-12
Pretty URL www.mybslhr.org/wp-content/plugins/easy-table-of-contents/vendor/js-cookie/js.cookie.min.js?ver=2.2.1 IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11 Last Seen2025-05-12 12:43 Times Seen965 Hash 634ee9f21b34eb24ea532f2ee6042baf 6c32dedd95da07aa54c3b852d789bb529956427d ef09f4bec10862578ab2a20b0b0f5cff4faef4b3ce0fe01872a1460ad0d72c50 Loading...

	c0.wp.com/c/6.4.2/wp-includes/js/underscore.min.js	ScriptElement	19 kB	2023-03-08	2025-05-13
Pretty URL c0.wp.com/c/6.4.2/wp-includes/js/underscore.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-05-13 02:54 Times Seen20832 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	www.mybslhr.org/admin/	ScriptElement	13 kB	2024-08-20	2024-08-20
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 12:48 Last Seen2024-08-20 12:48 Times Seen1 Hash a4a397650d56056a72a50090ebe863ab b5a6811312563ae7fb9f6766da31a4f9c8475304 7d5e21346be0f89175c7161371317ae716c99aa3c9ada021e08592121f2bc2f5 Loading...

	www.mybslhr.org/admin/	ScriptElement	131 B	2023-03-07	2025-05-12
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-12 23:18 Times Seen1088 Hash 0345eab5966f4c0d5ea7b5a9f54e96ae ccb06f076c0ad8ae3439e1ceacb4c28d20cc7c6e 0a82f0a2b8c8c6adda40e131b989bf788d16dc6c6359ad02fd87c13dcb353564 Loading...

	www.mybslhr.org/admin/sandbox%20eval%20code		147 B	2023-04-11	2025-05-13
Pretty URL www.mybslhr.org/admin/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-13 04:10 Times Seen342376 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.googletagmanager.com/gtag/js?id=G-YN55E7D5N0&l=dataLayer&cx=c	ScriptElement	218 kB	2024-08-20	2024-08-20
Pretty URL www.googletagmanager.com/gtag/js?id=G-YN55E7D5N0&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 12:48 Last Seen2024-08-20 12:48 Times Seen1 Hash f6e94393ffeb2e4f6c1cea07d86fffe9 2b30d30402730280e58323ef6320393a646dd0d7 813fda6a923fd216a131536cc42566682a49720a22d7da8041172a61d5ac91bd Loading...

	www.mybslhr.org/wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.7.0	ScriptElement	104 kB	2023-09-24	2025-02-06
Pretty URL www.mybslhr.org/wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.7.0 IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-24 12:19 Last Seen2025-02-06 13:19 Times Seen72 Hash 2108e87bb49f49c15840ec1e981e799b 276bbc72229a56fe4b41c8de280b4ddba2c54df0 2e681110f4157a6c2243acf387304c2d63fe67fd2a58cd19e22962b2565f80cb Loading...

	www.mybslhr.org/admin/	ScriptElement	356 B	2024-08-20	2024-08-20
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 12:48 Last Seen2024-08-20 12:48 Times Seen1 Hash 8520741f020ffd22f24e3eabe320611a 850f04d19f817b4d528be79afe9a2db299623a7c fe376e3d13d302515e058d3b1711a8c2df758c1fb25b9d5004455f460676ff85 Loading...

	stats.wp.com/e-202402.js	ScriptElement	7.3 kB	2024-01-05	2025-01-03
Pretty URL stats.wp.com/e-202402.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-05 19:19 Last Seen2025-01-03 04:43 Times Seen2460 Hash bd2d67186594b0e32223b293fdfcca55 b797a9d012c850b53a7ccc12211adcfbcd9ae0be 4f9f4e2e225088f9cf3b6b54aa421e0f776d1802255505d2f752e1f83f441641 Loading...

	unknown	Function	310 B	2023-04-12	2025-05-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-12 17:08 Times Seen490 Hash 7cfdb0261089316c3a34eb24af49c0cb 6b3ba0c7cadf45ac86ea7e5b2f7c29145f789003 8f2515d66dc8c7f4c51db76a297659abaa15538f5cc434b391261fc292cc33ec Loading...

	www.mybslhr.org/admin/	ScriptElement	50 B	2023-11-19	2024-08-20
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-19 01:46 Last Seen2024-08-20 18:51 Times Seen23 Hash bf7fb1b4b0e318bcdb60baf681d3699b 35d8ca7a23ee1481bf53bfb87ab498a519244885 dd0a47ee7e01cee92d61a995dfa658c2a49f2bed7550a8fc65262a8260458b27 Loading...

	www.mybslhr.org/admin/	ScriptElement	1.0 kB	2024-08-20	2024-08-20
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 12:48 Last Seen2024-08-20 12:48 Times Seen1 Hash 0bb08f9b10da2090eacc9ebac12bd25d a2b583c736a0dc1d67c8a7ecbfd83665c86ce7b0 0cead2bcfacde6b25e5c723477ab1ff19db327ce00b51cfbfea3212b3e5f0948 Loading...

	www.mybslhr.org/wp-content/plugins/easy-table-of-contents/assets/js/front.min.js?ver=2.0.61-1702461878	ScriptElement	4.0 kB	2023-12-15	2024-08-20
Pretty URL www.mybslhr.org/wp-content/plugins/easy-table-of-contents/assets/js/front.min.js?ver=2.0.61-1702461878 IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-15 02:14 Last Seen2024-08-20 15:50 Times Seen42 Hash 120aefd3e03e7889d0f48a06919fe8a3 43823143b32a506c897895bdbcb1b8b41cb619e5 a5cff1d4758e1bed456da4b6ebb08e75da92257c1b8c22b2c4ce24fbb9ed0777 Loading...

	www.mybslhr.org/admin/	ScriptElement	240 B	2023-03-13	2025-04-30
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 16:30 Last Seen2025-04-30 20:51 Times Seen130 Hash a95ea0fb231d2604762774048edfa417 e39177ea711063153072c45f9f2f673140575630 3c988ad441dc48a41cc2e191e4d722e740d1f959e395379edf84b72aff1f47c7 Loading...

	www.mybslhr.org/wp-content/plugins/easy-table-of-contents/assets/js/smooth_scroll.min.js?ver=2.0.61	ScriptElement	907 B	2023-11-30	2024-10-20
Pretty URL www.mybslhr.org/wp-content/plugins/easy-table-of-contents/assets/js/smooth_scroll.min.js?ver=2.0.61 IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 19:49 Last Seen2024-10-20 11:52 Times Seen61 Hash bb836562e3c50785723e88d145128f44 c22ff8d4c472da26422bc6256a269abb3c6c4234 7acacc960de81613b8c53b856a3bed117f76802e632836053299a6ecb15fa9da Loading...

	www.mybslhr.org/wp-content/plugins/easy-table-of-contents/vendor/sticky-kit/jquery.sticky-kit.min.js?ver=1.9.2	ScriptElement	2.9 kB	2023-03-07	2025-05-12
Pretty URL www.mybslhr.org/wp-content/plugins/easy-table-of-contents/vendor/sticky-kit/jquery.sticky-kit.min.js?ver=1.9.2 IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:19 Last Seen2025-05-12 21:30 Times Seen978 Hash f74050f4bacb44b594f0014217a4b3c0 7f45d27c9185b2b4312140f234258bb76573a2c4 66361c617e79f2f0643b4ce1a922a59cb6d4e048fa3ee5cbc2309ab826af40ac Loading...

	www.mybslhr.org/wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.7.0	ScriptElement	64 kB	2023-07-07	2025-05-08
Pretty URL www.mybslhr.org/wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.7.0 IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-07 06:37 Last Seen2025-05-08 07:25 Times Seen188 Hash 0cc678c9d558709407ec0e953e17e7da aa8ec1cf955f09362702d59a9b5a009e172a4c33 176dd82674ae5b5d84dce0826ad9e069b4e3c1d6281ee3fb3ebccc0df9568b16 Loading...

	unknown	Function	364 B	2023-04-12	2025-05-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-12 17:08 Times Seen478 Hash 1e679d73e9e15af3ff07798619ed1912 28a45cb21d1ac0ddcbe70bdf9df0dff3cf374ca9 a879a9dfb5d493c58aef42f144dbd2cc5e43ab26bf9466bd2fe320a41aee5726 Loading...

	www.mybslhr.org/admin/	ScriptElement	184 B	2024-08-20	2024-08-20
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 12:48 Last Seen2024-08-20 12:48 Times Seen1 Hash 0f0ac052d13d276e64d3867e60877d89 4c26751e04bc27b4a869b6f234f94e541b83a8e5 5c8ca46ce853490a01a4413e5ae60dd7cf159becefc7047ebfccbb59468fe291 Loading...

	www.googletagmanager.com/gtag/js?id=UA-260958327-1	ScriptElement	193 kB	2024-08-20	2024-08-20
Pretty URL www.googletagmanager.com/gtag/js?id=UA-260958327-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 12:48 Last Seen2024-08-20 12:48 Times Seen1 Hash dd7a6bd21c61c39e0f683b4c12cab6af cbc51f382f3121bcf061d8babaa0e584a17602a0 c80a03e365cf5b1b9c17e1a31b9d72e0787e4689694a93cfbca2c9be465d97e2 Loading...

	unknown	Function	865 B	2023-04-16	2025-04-25
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-16 01:39 Last Seen2025-04-25 04:29 Times Seen168 Hash 226d1708852f7de7a89ff4189f91c188 7b222c9c66e9272c2c375add196ea1dce30cfb4c 6c7381c65472e68e11d461ff74037277b7862d6eba240d14c7771a5471f11ee5 Loading...

	www.mybslhr.org/wp-content/plugins/helpie-faq/assets/bundles/main.app.js?ver=1.16	ScriptElement	191 kB	2023-12-20	2024-08-20
Pretty URL www.mybslhr.org/wp-content/plugins/helpie-faq/assets/bundles/main.app.js?ver=1.16 IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 07:55 Last Seen2024-08-20 15:28 Times Seen4 Hash e95ffa6798ae132fe13b5df4f56303ae e76af856bfb4976e6578ab99441610cfcc13e864 e4dbe8a3fc15642bf8eecbe870d4ce0e36d7eb19aed7e92fb063d523f0099860 Loading...

	www.mybslhr.org/wp-content/themes/kadence/assets/js/navigation.min.js?ver=1.1.35	ScriptElement	18 kB	2023-03-29	2025-04-30
Pretty URL www.mybslhr.org/wp-content/themes/kadence/assets/js/navigation.min.js?ver=1.1.35 IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:00 Last Seen2025-04-30 20:51 Times Seen27 Hash 9c96026681fc8e0fb4915573b0b57a9f 922815dd45238db2b8cac6e9593f172e55309e7a 8f9d3680de0b0cae7c0000945d283a0e829b9077c514990dbc214ddcc8067c2b Loading...

	www.mybslhr.org/admin/	ScriptElement	11 kB	2024-08-20	2024-08-20
Pretty URL www.mybslhr.org/admin/ IP 72.52.251.3 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 12:48 Last Seen2024-08-20 12:48 Times Seen1 Hash a22e505a2e32f29ac9f6d9644842bc92 dfd79067332d89eced3a8f5458317e372dd567d4 a072daf56d16e93f85b3e7e3cb59a56b64aa8f9b020b433e243b0eb875cb0082 Loading...

	www.googletagmanager.com/gtag/js?id=G-B3FXK1XJ63&l=dataLayer&cx=c	ScriptElement	230 kB	2024-08-20	2024-08-20
Pretty URL www.googletagmanager.com/gtag/js?id=G-B3FXK1XJ63&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 12:48 Last Seen2024-08-20 12:48 Times Seen1 Hash 71d0bf749562d50a01a7a9311813c6cf 65a8002ba1a393e6631ad88a30cadc505d9d893e 97de9ddca5f7aea2cad88ef977fd0e89411b6fcb5b951345f7d9aa2ff8608a3c Loading...

	unknown	Function	191 B	2023-04-12	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-09 07:51 Times Seen487 Hash 31d85e34fe609b22567d22adac8ab7cb aef10544d0b3f05647ac5c87b9d0288fa7e46da2 3f67f05ff6495c7f8880c2d0d93704b8772c5b397ae7aa9e7900e8fb08af0d94 Loading...

	unknown	Function	1.2 kB	2023-04-12	2025-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 02:22 Last Seen2025-05-08 07:25 Times Seen127 Hash 438f313c0a69b63b6aa2942e95970009 80e4eba3d36e120b4b0ca5f3381521e3b8b2ef13 d335c2be35941660b91e5ac42e06923a0260d5ccfbfb3376278c3260d93d877f Loading...

HTTP Transactions (34)

URL IP Response Size

www.mybslhr.org/admin/

72.52.251.3

200 OK

19 kB

URL User Request GET HTTP/1.1
www.mybslhr.org/admin/
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (11685), with CRLF, LF line terminators
Size
19 kB (19085 bytes)
Hash
d4605c1ce82c522a6d92f2df83356946
824f1495bf9d903dbf7fe0323332a713f82ae0ec
04115eeae04e2588a4a65a1f4f36e4bb5880bac1bfe7c2874b807def27f94683

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /admin/ HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:14 GMT
Server: Apache
Vary: Accept-Encoding,Cookie,User-Agent
Content-Encoding: gzip
Cache-Control: max-age=3, must-revalidate, max-age=600
Expires: Tue, 09 Jan 2024 10:26:14 GMT
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.mybslhr.org/wp-content/plugins/helpie-faq/assets/bundles/main.app.css?ver=1.16

72.52.251.3

200 OK

2.7 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/plugins/helpie-faq/assets/bundles/main.app.css?ver=1.16
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (16174)
Size
2.7 kB (2716 bytes)
Hash
936ca7ca04ad8c65a32c6289bb54d303
3f02a68e899d8cfb83e9d386c20f5c15a81fe7fc
3a492b6873b4daae183878e7485bb41b71bb75d4ad89d9bffaaaec16cb2460ef

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/helpie-faq/assets/bundles/main.app.css?ver=1.16 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:15 GMT
Server: Apache
Last-Modified: Tue, 12 Dec 2023 21:44:11 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:15 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2716
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Content-Type: text/css

www.googletagmanager.com/gtag/js?id=UA-260958327-1

142.250.74.168

200 OK

70 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-260958327-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type
ASCII text, with very long lines (4179)
Size
70 kB (69730 bytes)
Hash
dd7a6bd21c61c39e0f683b4c12cab6af
cbc51f382f3121bcf061d8babaa0e584a17602a0
c80a03e365cf5b1b9c17e1a31b9d72e0787e4689694a93cfbca2c9be465d97e2

HTTP Headers

GET /gtag/js?id=UA-260958327-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 09 Jan 2024 10:16:15 GMT
expires: Tue, 09 Jan 2024 10:16:15 GMT
cache-control: private, max-age=900
last-modified: Tue, 09 Jan 2024 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69730
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.mybslhr.org/wp-content/themes/kadence/assets/css/content.min.css?ver=1.1.35

72.52.251.3

200 OK

5.9 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/themes/kadence/assets/css/content.min.css?ver=1.1.35
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (32716)
Size
5.9 kB (5919 bytes)
Hash
1743f193e1ac7284108f23debc6cc89f
defa3ae599f083f55352d9146772e497bb63fdc9
6819e416761ad3319c68fbf6ddb662fcb50a010a734bf6ead4be2aa49ba830b1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/kadence/assets/css/content.min.css?ver=1.1.35 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:15 GMT
Server: Apache
Last-Modified: Fri, 07 Apr 2023 09:47:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:15 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5919
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive
Content-Type: text/css

www.mybslhr.org/wp-content/plugins/easy-table-of-contents/assets/css/screen.min.css?ver=2.0.61

72.52.251.3

200 OK

1.5 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/plugins/easy-table-of-contents/assets/css/screen.min.css?ver=2.0.61
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (5752), with no line terminators
Size
1.5 kB (1544 bytes)
Hash
ce3ffdd1af3da9422f3955fcccd20f09
fa3f34abb15d2f7213a09467fa3fac9c8bbfb58a
68e53612b9d14bc8dd4a490e5df6cc860a94a92c1d2e778510099668431d6826

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-table-of-contents/assets/css/screen.min.css?ver=2.0.61 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:15 GMT
Server: Apache
Last-Modified: Wed, 13 Dec 2023 10:04:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:15 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1544
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Content-Type: text/css

www.mybslhr.org/wp-content/themes/kadence/assets/css/header.min.css?ver=1.1.35

72.52.251.3

200 OK

4.6 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/themes/kadence/assets/css/header.min.css?ver=1.1.35
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (27993)
Size
4.6 kB (4606 bytes)
Hash
3295ac4546403a8ef95aea44a3f7dd0f
dfd490e5d9296b8346486d0091393a183d437229
5405ca68d94de128d658b9e172d95e4341a4e454a6039920e89722fac899830e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/kadence/assets/css/header.min.css?ver=1.1.35 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:15 GMT
Server: Apache
Last-Modified: Fri, 07 Apr 2023 09:47:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:15 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4606
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Content-Type: text/css

www.mybslhr.org/wp-content/themes/kadence/assets/css/global.min.css?ver=1.1.35

72.52.251.3

200 OK

4.7 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/themes/kadence/assets/css/global.min.css?ver=1.1.35
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
Unicode text, UTF-8 text, with very long lines (20906)
Size
4.7 kB (4675 bytes)
Hash
bbd6c0eecd30519ea831c263547682aa
a0b71f402f4902b6754fca09527a339231172c43
3f5a33801c2430f432473ae8c2dbb94d907f8453627ef4e9b70354b25f7f7cad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/kadence/assets/css/global.min.css?ver=1.1.35 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:15 GMT
Server: Apache
Last-Modified: Fri, 07 Apr 2023 09:47:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:15 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4675
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Content-Type: text/css

www.mybslhr.org/wp-content/plugins/ninja-forms/assets/css/display-opinions-light.css?ver=6.4.2

72.52.251.3

200 OK

6.7 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/plugins/ninja-forms/assets/css/display-opinions-light.css?ver=6.4.2
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (44726)
Size
6.7 kB (6672 bytes)
Hash
482b0078ee33f8fbc362b2d5dc4df631
0d63572a70aa882557df30d7a0ab10f8bd15c653
cb25f2e4344e2aebd755fea83113c2ecd70c890eb7094ee7a00f98092ef40345

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/ninja-forms/assets/css/display-opinions-light.css?ver=6.4.2 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:15 GMT
Server: Apache
Last-Modified: Wed, 08 Nov 2023 21:43:16 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:15 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6672
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive
Content-Type: text/css

www.mybslhr.org/wp-content/themes/kadence/assets/css/sidebar.min.css?ver=1.1.35

72.52.251.3

200 OK

288 B

URL GET HTTP/1.1
www.mybslhr.org/wp-content/themes/kadence/assets/css/sidebar.min.css?ver=1.1.35
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (748)
Size
288 B (288 bytes)
Hash
e0735226a4e539dc8ec34548f42d50bd
354e1fc1ab0d276a92410e47494533716fd39b52
51bb6e5e42da084b36fc157bdc14d6df9a559d918da43fd26bc9ff80d9e1b4d0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/kadence/assets/css/sidebar.min.css?ver=1.1.35 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:15 GMT
Server: Apache
Last-Modified: Fri, 07 Apr 2023 09:47:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:15 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 288
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Content-Type: text/css

www.mybslhr.org/wp-content/themes/kadence/assets/css/footer.min.css?ver=1.1.35

72.52.251.3

200 OK

1.9 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/themes/kadence/assets/css/footer.min.css?ver=1.1.35
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (18879)
Size
1.9 kB (1869 bytes)
Hash
ac66026814f09e694941b283567b2af8
d76a7ab8e560b700a1a4d53424873e1f22c65e72
41107b3cd820a6c6a8f93fed73dca66867b14a64769ec41fccb2a214a354e3f0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/kadence/assets/css/footer.min.css?ver=1.1.35 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:15 GMT
Server: Apache
Last-Modified: Fri, 07 Apr 2023 09:47:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:15 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1869
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Content-Type: text/css

www.mybslhr.org/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188

72.52.251.3

200 OK

383 B

URL GET HTTP/1.1
www.mybslhr.org/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (701), with no line terminators
Size
383 B (383 bytes)
Hash
328b8123661abdd5f4a0c695e7aa9dcc
4164f78bb52e9f2bfbb7ae5fd519b4638063c1f0
27dd9b075cc59cf5f3c0f6ee075f4bd113782d81ce30a4f16aac669ecfdc4fa2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:16 GMT
Server: Apache
Last-Modified: Fri, 22 Dec 2023 21:55:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 383
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Content-Type: application/javascript

www.mybslhr.org/wp-content/plugins/ninja-forms/assets/css/font-awesome.min.css?ver=6.4.2

72.52.251.3

200 OK

6.2 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/plugins/ninja-forms/assets/css/font-awesome.min.css?ver=6.4.2
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (27303)
Size
6.2 kB (6243 bytes)
Hash
4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/ninja-forms/assets/css/font-awesome.min.css?ver=6.4.2 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:16 GMT
Server: Apache
Last-Modified: Wed, 08 Nov 2023 21:43:16 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6243
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Content-Type: text/css

www.mybslhr.org/wp-content/plugins/easy-table-of-contents/assets/js/smooth_scroll.min.js?ver=2.0.61

72.52.251.3

200 OK

456 B

URL GET HTTP/1.1
www.mybslhr.org/wp-content/plugins/easy-table-of-contents/assets/js/smooth_scroll.min.js?ver=2.0.61
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (907), with no line terminators
Size
456 B (456 bytes)
Hash
bb836562e3c50785723e88d145128f44
c22ff8d4c472da26422bc6256a269abb3c6c4234
7acacc960de81613b8c53b856a3bed117f76802e632836053299a6ecb15fa9da

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-table-of-contents/assets/js/smooth_scroll.min.js?ver=2.0.61 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:16 GMT
Server: Apache
Last-Modified: Wed, 13 Dec 2023 10:04:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 456
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive
Content-Type: application/javascript

www.mybslhr.org/wp-content/plugins/easy-table-of-contents/vendor/js-cookie/js.cookie.min.js?ver=2.2.1

72.52.251.3

200 OK

1.1 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/plugins/easy-table-of-contents/vendor/js-cookie/js.cookie.min.js?ver=2.2.1
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (2369), with CRLF line terminators
Size
1.1 kB (1101 bytes)
Hash
634ee9f21b34eb24ea532f2ee6042baf
6c32dedd95da07aa54c3b852d789bb529956427d
ef09f4bec10862578ab2a20b0b0f5cff4faef4b3ce0fe01872a1460ad0d72c50

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-table-of-contents/vendor/js-cookie/js.cookie.min.js?ver=2.2.1 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:16 GMT
Server: Apache
Last-Modified: Wed, 13 Dec 2023 10:04:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1101
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Content-Type: application/javascript

www.mybslhr.org/wp-content/plugins/easy-table-of-contents/vendor/sticky-kit/jquery.sticky-kit.min.js?ver=1.9.2

72.52.251.3

200 OK

1.3 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/plugins/easy-table-of-contents/vendor/sticky-kit/jquery.sticky-kit.min.js?ver=1.9.2
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1280 bytes)
Hash
f74050f4bacb44b594f0014217a4b3c0
7f45d27c9185b2b4312140f234258bb76573a2c4
66361c617e79f2f0643b4ce1a922a59cb6d4e048fa3ee5cbc2309ab826af40ac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-table-of-contents/vendor/sticky-kit/jquery.sticky-kit.min.js?ver=1.9.2 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:16 GMT
Server: Apache
Last-Modified: Wed, 13 Dec 2023 10:04:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1280
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Content-Type: application/javascript

www.mybslhr.org/wp-content/themes/kadence/assets/js/navigation.min.js?ver=1.1.35

72.52.251.3

200 OK

4.3 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/themes/kadence/assets/js/navigation.min.js?ver=1.1.35
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (17803), with no line terminators
Size
4.3 kB (4333 bytes)
Hash
9c96026681fc8e0fb4915573b0b57a9f
922815dd45238db2b8cac6e9593f172e55309e7a
8f9d3680de0b0cae7c0000945d283a0e829b9077c514990dbc214ddcc8067c2b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/kadence/assets/js/navigation.min.js?ver=1.1.35 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:16 GMT
Server: Apache
Last-Modified: Fri, 07 Apr 2023 09:47:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4333
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive
Content-Type: application/javascript

www.mybslhr.org/wp-content/plugins/easy-table-of-contents/assets/js/front.min.js?ver=2.0.61-1702461878

72.52.251.3

200 OK

1.4 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/plugins/easy-table-of-contents/assets/js/front.min.js?ver=2.0.61-1702461878
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (3960), with no line terminators
Size
1.4 kB (1409 bytes)
Hash
120aefd3e03e7889d0f48a06919fe8a3
43823143b32a506c897895bdbcb1b8b41cb619e5
a5cff1d4758e1bed456da4b6ebb08e75da92257c1b8c22b2c4ce24fbb9ed0777

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-table-of-contents/assets/js/front.min.js?ver=2.0.61-1702461878 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:16 GMT
Server: Apache
Last-Modified: Wed, 13 Dec 2023 10:04:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1409
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive
Content-Type: application/javascript

www.googletagmanager.com/gtag/js?id=G-B3FXK1XJ63&l=dataLayer&cx=c

142.250.74.168

200 OK

82 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-B3FXK1XJ63&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type
ASCII text, with very long lines (5955)
Size
82 kB (81651 bytes)
Hash
71d0bf749562d50a01a7a9311813c6cf
65a8002ba1a393e6631ad88a30cadc505d9d893e
97de9ddca5f7aea2cad88ef977fd0e89411b6fcb5b951345f7d9aa2ff8608a3c

HTTP Headers

GET /gtag/js?id=G-B3FXK1XJ63&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 09 Jan 2024 10:16:16 GMT
expires: Tue, 09 Jan 2024 10:16:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81651
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-YN55E7D5N0&l=dataLayer&cx=c

142.250.74.168

200 OK

78 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-YN55E7D5N0&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type
ASCII text, with very long lines (4179)
Size
78 kB (78026 bytes)
Hash
f6e94393ffeb2e4f6c1cea07d86fffe9
2b30d30402730280e58323ef6320393a646dd0d7
813fda6a923fd216a131536cc42566682a49720a22d7da8041172a61d5ac91bd

HTTP Headers

GET /gtag/js?id=G-YN55E7D5N0&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 09 Jan 2024 10:16:16 GMT
expires: Tue, 09 Jan 2024 10:16:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78026
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.mybslhr.org/wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.7.0

72.52.251.3

200 OK

18 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.7.0
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (32153)
Size
18 kB (17940 bytes)
Hash
0cc678c9d558709407ec0e953e17e7da
aa8ec1cf955f09362702d59a9b5a009e172a4c33
176dd82674ae5b5d84dce0826ad9e069b4e3c1d6281ee3fb3ebccc0df9568b16

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.7.0 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:16 GMT
Server: Apache
Last-Modified: Wed, 08 Nov 2023 21:43:21 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 17940
Keep-Alive: timeout=2, max=495
Connection: Keep-Alive
Content-Type: application/javascript

www.mybslhr.org/wp-content/plugins/helpie-faq/assets/bundles/main.app.js?ver=1.16

72.52.251.3

200 OK

59 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/plugins/helpie-faq/assets/bundles/main.app.js?ver=1.16
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
59 kB (58738 bytes)
Hash
e95ffa6798ae132fe13b5df4f56303ae
e76af856bfb4976e6578ab99441610cfcc13e864
e4dbe8a3fc15642bf8eecbe870d4ce0e36d7eb19aed7e92fb063d523f0099860

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/helpie-faq/assets/bundles/main.app.js?ver=1.16 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:16 GMT
Server: Apache
Last-Modified: Tue, 12 Dec 2023 21:44:11 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 58738
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Content-Type: application/javascript

www.mybslhr.org/wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.7.0

72.52.251.3

200 OK

23 kB

URL GET HTTP/1.1
www.mybslhr.org/wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.7.0
IP
72.52.251.3:443
ASN
#32244 LIQUIDWEB

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerLet's Encrypt
Subjectmybslhr.org
FingerprintFE:55:94:2A:F1:93:99:9A:94:A0:0D:77:8C:BC:4A:8A:77:EA:4E:61
ValidityThu, 04 Jan 2024 07:44:07 GMT - Wed, 03 Apr 2024 07:44:06 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
23 kB (22604 bytes)
Hash
2108e87bb49f49c15840ec1e981e799b
276bbc72229a56fe4b41c8de280b4ddba2c54df0
2e681110f4157a6c2243acf387304c2d63fe67fd2a58cd19e22962b2565f80cb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.7.0 HTTP/1.1
Host: www.mybslhr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/admin/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 09 Jan 2024 10:16:16 GMT
Server: Apache
Last-Modified: Wed, 08 Nov 2023 21:43:21 GMT
Accept-Ranges: bytes
Cache-Control: max-age=3600, public
Expires: Thu, 08 Feb 2024 10:16:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 22604
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive
Content-Type: application/javascript

pixel.wp.com/g.gif?v=ext&blog=216847918&post=49&tz=0&srv=www.mybslhr.org&j=1%3A12.9.3&host=www.mybslhr.org&ref=&fcp=1966&rand=0.9489459486475447

192.0.76.3

200 OK

50 B

URL GET HTTP/2
pixel.wp.com/g.gif?v=ext&blog=216847918&post=49&tz=0&srv=www.mybslhr.org&j=1%3A12.9.3&host=www.mybslhr.org&ref=&fcp=1966&rand=0.9489459486475447
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
GIF image data, version 89a, 6 x 5
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&blog=216847918&post=49&tz=0&srv=www.mybslhr.org&j=1%3A12.9.3&host=www.mybslhr.org&ref=&fcp=1966&rand=0.9489459486475447 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 09 Jan 2024 10:16:16 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i0.wp.com/www.mybslhr.org/wp-content/uploads/2023/03/Screenshot-437.png?fit=141%2C108&ssl=1

192.0.77.2

200 OK

11 kB

URL GET HTTP/2
i0.wp.com/www.mybslhr.org/wp-content/uploads/2023/03/Screenshot-437.png?fit=141%2C108&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
11 kB (11090 bytes)
Hash
e813084698ba07cb4f75c0d288f19f59
006d31a5be19fba6d23e402e0f940aab2ebce66a
a5fce1c2a13e1fd3278248c55e56109f6748c96eb232aee96e956c47b6e3f157

HTTP Headers

GET /www.mybslhr.org/wp-content/uploads/2023/03/Screenshot-437.png?fit=141%2C108&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 09 Jan 2024 10:16:16 GMT
content-type: image/webp
content-length: 11090
last-modified: Tue, 09 Jan 2024 10:16:16 GMT
expires: Thu, 08 Jan 2026 22:16:16 GMT
cache-control: public, max-age=63115200
link: <https://www.mybslhr.org/wp-content/uploads/2023/03/Screenshot-437.png>; rel="canonical"
x-content-type-options: nosniff
etag: "36dd4dbb3ba105ba"
vary: Accept
x-nc: MISS arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/www.mybslhr.org/wp-content/uploads/2023/03/Screenshot-437.png?fit=32%2C25&ssl=1

192.0.77.2

200 OK

992 B

URL GET HTTP/2
i0.wp.com/www.mybslhr.org/wp-content/uploads/2023/03/Screenshot-437.png?fit=32%2C25&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
992 B (992 bytes)
Hash
cdcb4a59cfc64939845352fc0371c21f
8b03c9be15ae12ed88041e70151aeae230a6b804
7a86c72fc8d63fdeb801558042ffb4d664ebb9cb4a84937f45c01a0335a4d12c

HTTP Headers

GET /www.mybslhr.org/wp-content/uploads/2023/03/Screenshot-437.png?fit=32%2C25&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 09 Jan 2024 10:16:16 GMT
content-type: image/webp
content-length: 992
last-modified: Tue, 09 Jan 2024 10:16:16 GMT
expires: Thu, 08 Jan 2026 22:16:16 GMT
cache-control: public, max-age=63115200
link: <https://www.mybslhr.org/wp-content/uploads/2023/03/Screenshot-437.png>; rel="canonical"
x-content-type-options: nosniff
etag: "eb261831058eabf5"
vary: Accept
x-nc: MISS arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.4.2/wp-includes/js/jquery/jquery.min.js

192.0.77.37

200 OK

88 kB

URL GET HTTP/2
c0.wp.com/c/6.4.2/wp-includes/js/jquery/jquery.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

HTTP Headers

GET /c/6.4.2/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 09 Jan 2024 10:16:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 28 Aug 2023 17:14:23 GMT
content-encoding: br
expires: Wed, 08 Jan 2025 10:16:15 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.4.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css

192.0.77.37

200 OK

11 kB

URL GET HTTP/2
c0.wp.com/c/6.4.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (11256), with no line terminators
Size
11 kB (11256 bytes)
Hash
2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646

HTTP Headers

GET /c/6.4.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 09 Jan 2024 10:16:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Wed, 08 Jan 2025 10:16:15 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.4.2/wp-includes/js/underscore.min.js

192.0.77.37

200 OK

19 kB

URL GET HTTP/2
c0.wp.com/c/6.4.2/wp-includes/js/underscore.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (18798)
Size
19 kB (18833 bytes)
Hash
f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a

HTTP Headers

GET /c/6.4.2/wp-includes/js/underscore.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 09 Jan 2024 10:16:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 27 Sep 2022 15:18:25 GMT
content-encoding: br
expires: Wed, 08 Jan 2025 10:16:15 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.4.2/wp-includes/js/backbone.min.js

192.0.77.37

200 OK

24 kB

URL GET HTTP/2
c0.wp.com/c/6.4.2/wp-includes/js/backbone.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (24105)
Size
24 kB (24140 bytes)
Hash
a7c4a44edde567ba5c5b91254932af54
170e6827c58e6bd15f0ee67f75694f469ebd29f1
90554181b9d143453475bb69bbce45d406f2d2119409db9b71da8552536681a7

HTTP Headers

GET /c/6.4.2/wp-includes/js/backbone.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 09 Jan 2024 10:16:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 11 Aug 2023 16:12:21 GMT
content-encoding: br
expires: Wed, 08 Jan 2025 10:16:15 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.4.2/wp-includes/js/jquery/jquery-migrate.min.js

192.0.77.37

200 OK

14 kB

URL GET HTTP/2
c0.wp.com/c/6.4.2/wp-includes/js/jquery/jquery-migrate.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /c/6.4.2/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 09 Jan 2024 10:16:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
content-encoding: br
expires: Wed, 08 Jan 2025 10:16:15 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.4.2/wp-includes/css/dashicons.min.css

192.0.77.37

200 OK

59 kB

URL GET HTTP/2
c0.wp.com/c/6.4.2/wp-includes/css/dashicons.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (58981)
Size
59 kB (59016 bytes)
Hash
d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e

HTTP Headers

GET /c/6.4.2/wp-includes/css/dashicons.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 09 Jan 2024 10:16:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 03 Mar 2021 21:16:22 GMT
content-encoding: br
expires: Wed, 08 Jan 2025 10:16:15 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.4.2/wp-includes/css/dist/block-library/style.min.css

192.0.77.37

200 OK

110 kB

URL GET HTTP/2
c0.wp.com/c/6.4.2/wp-includes/css/dist/block-library/style.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type

Size
110 kB (110035 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c/6.4.2/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 09 Jan 2024 10:16:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 05 Nov 2023 19:40:32 GMT
content-encoding: br
expires: Wed, 08 Jan 2025 10:16:15 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.4.2/wp-includes/js/mediaelement/wp-mediaelement.min.css

192.0.77.37

200 OK

4.2 kB

URL GET HTTP/2
c0.wp.com/c/6.4.2/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4186), with no line terminators
Size
4.2 kB (4186 bytes)
Hash
ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe

HTTP Headers

GET /c/6.4.2/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 09 Jan 2024 10:16:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Wed, 08 Jan 2025 10:16:15 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

stats.wp.com/e-202402.js

192.0.76.3

200 OK

7.3 kB

URL GET HTTP/2
stats.wp.com/e-202402.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.mybslhr.org/admin/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (7504), with no line terminators
Size
7.3 kB (7329 bytes)
Hash
43bf680c0caba9b62f1c46e128d40360
e8950271ef6af3759a7429b45a7e583e6e24e305
21ef883e41d9b0fc02bd11801d9823daf93a2b294a6f05b6080bad1b689facab

HTTP Headers

GET /e-202402.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mybslhr.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 09 Jan 2024 10:16:15 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/14377-1704402356565.5398
content-encoding: br
expires: Mon, 06 Jan 2025 16:22:59 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (49)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash