| |  24.144.92.38 | 200 OK | 40 kB |
URL User Request GET HTTP/2IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeHTML document, ASCII text, with very long lines (57736) Hash7a59064ef960840d2eeb07d0372f1106 863b5853e4e7986c158c21dc9066cf22cb49b1cc ee0e0a1ca99523667deb256a054af51bba44bcd6ba0c55441deb0c424d0ed12c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://cretumfc.com/wp-json/>; rel="https://api.w.org/", <https://cretumfc.com/wp-json/wp/v2/pages/8>; rel="alternate"; type="application/json", <https://cretumfc.com/>; rel=shortlink
vary: Accept-Encoding
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-litespeed-cache: hit
content-encoding: gzip
content-length: 39932
date: Thu, 09 May 2024 06:06:46 GMT
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.6.3 | 24.144.92.38 | 200 OK | 7.9 kB |
URL GET HTTP/2cretumfc.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.6.3 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (40186) Hash262ac640afea51f93e5add489c9c6df6 6abf19d8716106b71f37724d93528f71672cd5b9 b515a60a6963e4fcc6877f257ec9ee1b39bb5db12dcb6de97d4704f277ffc84b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.6.3 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "a580-65a43573-521d3;br"
last-modified: Sun, 14 Jan 2024 19:26:43 GMT
content-type: text/css
content-length: 7920
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/bdthemes-element-pack-lite/assets/css/bdt-uikit.css?ver=3.13.1 | 24.144.92.38 | 200 OK | 14 kB |
URL GET HTTP/2cretumfc.com/wp-content/plugins/bdthemes-element-pack-lite/assets/css/bdt-uikit.css?ver=3.13.1 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeUnicode text, UTF-8 text, with very long lines (65534), with no line terminators Hash97a2373ff1642abfb8f2493824d6a80a c1da9b6240e15b1465b7d714fc0876042dc75f56 352e60a77d643c4fd4b9d57d0b49aa8a50fd4795cf0e444fde0a6a4eb712a188
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bdthemes-element-pack-lite/assets/css/bdt-uikit.css?ver=3.13.1 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "172f0-651b177d-51ffb;br"
last-modified: Mon, 02 Oct 2023 19:18:21 GMT
content-type: text/css
content-length: 14445
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/uploads/2022/10/Untitled-3-Recovered.png | 24.144.92.38 | 200 OK | 10 kB |
URL GET HTTP/3cretumfc.com/wp-content/uploads/2022/10/Untitled-3-Recovered.png IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typePNG image data, 813 x 361, 8-bit/color RGBA, non-interlaced Hashf0042a4729d6b59f71806e06938dd510 1c683aeb5a7dffe38176966b87916b5db537e4ae dde782b29472375a05422f58e6358c7226f5714471fdc65d19d8bcb6cba1e238
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2022/10/Untitled-3-Recovered.png HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "2794-635ebcfe-54c15;;;"
last-modified: Sun, 30 Oct 2022 18:05:50 GMT
content-type: image/png
content-length: 10132
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css | 24.144.92.38 | 200 OK | 3.1 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeUnicode text, UTF-8 text, with very long lines (26551) Hash9f830c125107a4299405d1b0e41502b3 0e3e78602556dbc66bd6eb6a085fbe92d6188981 7f593e1de91b7e12418fbf5c6efec63fc1eee75e7d7767029a2942721550a9f2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "67e4-65184dfb-52dac;br"
last-modified: Sat, 30 Sep 2023 16:34:03 GMT
content-type: text/css
content-length: 3110
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.16.3 | 24.144.92.38 | 200 OK | 2.4 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.16.3 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (10019) Hash4601ba55044413706c2022cb6c1c3d05 5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.16.3 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "4824-65184dc0-50239;br"
last-modified: Sat, 30 Sep 2023 16:33:04 GMT
content-type: text/css
content-length: 2430
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.18 | 24.144.92.38 | 200 OK | 12 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.18 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeUnicode text, UTF-8 text, with very long lines (12602) Hash08f3fa5cd7040c88c7ddf43deadde2a9 cd026e9a65b6c13b7140a87f2d550ecc165b1af2 d2a7a173045c7ed2c9474ee0edd3ebc0389454132b0a16e55b3eae6402c46a05
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.18 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "e3d7-65671f86-51628;br"
last-modified: Wed, 29 Nov 2023 11:24:54 GMT
content-type: text/css
content-length: 11885
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.6.3 | 24.144.92.38 | 200 OK | 4.7 kB |
URL GET HTTP/3cretumfc.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.6.3 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (21258), with no line terminators Hash5cfec86864ad91d75eeaaf47f8fd052e e34119b9521d753bfc955f69b211dfeea1713ccf 00cfed1d7680f3a3435bf24ed4286fa745c0b33d78f5f169e6fcf94852b93589
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.6.3 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "530a-65a43573-521e8;br"
last-modified: Sun, 14 Jan 2024 19:26:43 GMT
content-type: application/x-javascript
content-length: 4726
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/bdthemes-element-pack-lite/assets/css/ep-helper.css?ver=5.4.2 | 24.144.92.38 | 200 OK | 5.3 kB |
URL GET HTTP/2cretumfc.com/wp-content/plugins/bdthemes-element-pack-lite/assets/css/ep-helper.css?ver=5.4.2 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (41067), with no line terminators Hashf5b551bc895fd52bc8db8d7728830914 80d840f47a242f3a39919272026c1411fc6b45a5 9d93400cc6ccdb3839cb71a0fa6802e296e66abc38b27b43ee62a64bf4a4d2f8
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bdthemes-element-pack-lite/assets/css/ep-helper.css?ver=5.4.2 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "a06b-651b177d-5201c;br"
last-modified: Mon, 02 Oct 2023 19:18:21 GMT
content-type: text/css
content-length: 5251
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 | 24.144.92.38 | 200 OK | 14 kB |
URL GET HTTP/2cretumfc.com/wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (59701) Hash51a8390b47aa0582cf2d9c96c5addee2 b16a640874025d085c38119a1a02a3460f83f2de 98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "1bae5-660c5e80-4ee68;br"
last-modified: Tue, 02 Apr 2024 19:37:36 GMT
content-type: text/css
content-length: 13743
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.16.3 | 24.144.92.38 | 200 OK | 13 kB |
URL GET HTTP/2cretumfc.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.16.3 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (65496) Hash62af5bb2cc4e1d87d1374d80bba56dcb 21da10b86823a79eee040ed31df0a717e9206570 a9979d70d8cbb8fe7ee74247da30eb3e1f0b70ac937f7f5f6113166b3cc02ca0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.16.3 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "1c99e-65184dc0-50423;br"
last-modified: Sat, 30 Sep 2023 16:33:04 GMT
content-type: text/css
content-length: 12692
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6 | 24.144.92.38 | 200 OK | 2.2 kB |
URL GET HTTP/2cretumfc.com/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (12876), with no line terminators Hashbcad7781b3e74db2565b8424c45232cd 41b0d94434ef667897c06e1184b703064ffceda1 d622534d53d3ac1095af275f0b30274fcd835785577df2dde6d9398e6f7a2c8f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "324c-65184dc0-50248;br"
last-modified: Sat, 30 Sep 2023 16:33:04 GMT
content-type: text/css
content-length: 2172
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/uploads/elementor/css/post-12.css?ver=1696092368 | 24.144.92.38 | 200 OK | 352 B |
URL GET HTTP/2cretumfc.com/wp-content/uploads/elementor/css/post-12.css?ver=1696092368 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (1219), with no line terminators Hash6665a4fe0ba019f6dfa9a31881b21254 23e1fc53de1ed854121a75dc5ed1e92fbfbc368c 4b8b5a0a7a36976083fef8c980eda97a2113b4afcdc3d320dc53097a07f1e9c4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-12.css?ver=1696092368 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "4c3-651850d0-541c5;br"
last-modified: Sat, 30 Sep 2023 16:46:08 GMT
content-type: text/css
content-length: 352
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.16.1 | 24.144.92.38 | 200 OK | 1.5 kB |
URL GET HTTP/2cretumfc.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.16.1 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (11720) Hasheb63f3d980e04244a5634456b955da98 c0a316de855c3e4c38b7258c6a221433a4240cb3 b5fa21b85bd484e42940368b586b409f970f2415eb1add4abad16dbf8ee8c1f1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.16.1 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "2df4-65184dfb-52d91;br"
last-modified: Sat, 30 Sep 2023 16:34:03 GMT
content-type: text/css
content-length: 1512
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/uploads/elementor/css/post-8.css?ver=1701258132 | 24.144.92.38 | 200 OK | 4.6 kB |
URL GET HTTP/2cretumfc.com/wp-content/uploads/elementor/css/post-8.css?ver=1701258132 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (52552) Hash1bda0f732c837144264c73d74f0041f2 c3fc75ef68fad39f884dd71b26519e48d8490dbb f9f449c304549f1582b7feb46a72407dc03542bf2d58ed11b0410306fb03301f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-8.css?ver=1701258132 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "10d23-65672394-541c3;br"
last-modified: Wed, 29 Nov 2023 11:42:12 GMT
content-type: text/css
content-length: 4596
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/uploads/elementor/css/post-117.css?ver=1696840776 | 24.144.92.38 | 200 OK | 1.8 kB |
URL GET HTTP/2cretumfc.com/wp-content/uploads/elementor/css/post-117.css?ver=1696840776 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (4885) Hash9e5945187d0d602afa2efcfdff6f59b5 8b6dccc7a5be39669faecb7f02c4c25e943c7986 b2773864f859f8cb5909aed43b046317dd57068a29ae975aa1ac301567e63e12
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-117.css?ver=1696840776 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "4ccd-6523bc48-541c0;br"
last-modified: Mon, 09 Oct 2023 08:39:36 GMT
content-type: text/css
content-length: 1778
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/uploads/elementor/css/post-123.css?ver=1696254544 | 24.144.92.38 | 200 OK | 1.0 kB |
URL GET HTTP/2cretumfc.com/wp-content/uploads/elementor/css/post-123.css?ver=1696254544 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (9976), with no line terminators Hashebf9680b567d3b7e96a74e02f4d54276 2bc7bb5e1282b49f6d8eb19ba0c21e47b9668b15 94c8464f7a1180fb93ab546175b556ba1c9a65c6059989577ccf0a8e078c81a0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-123.css?ver=1696254544 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "26f8-651aca50-541c8;br"
last-modified: Mon, 02 Oct 2023 13:49:04 GMT
content-type: text/css
content-length: 1026
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.9.2 | 24.144.92.38 | 200 OK | 12 kB |
URL GET HTTP/2cretumfc.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.9.2 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash9323fd320e12c4d0d865a254138147d4 93218fbf674488be2feccebf36055c6fc1d8a1ee 49ebaf0bfad5aaf0c66de0bb84a2c7d1e32f33add8d6cb75897ae56cb07bcda9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.9.2 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "1e7a5-65184f60-53eba;br"
last-modified: Sat, 30 Sep 2023 16:40:00 GMT
content-type: text/css
content-length: 11767
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.9.2 | 24.144.92.38 | 200 OK | 40 B |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.9.2 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash94d041d462db321cdb888066586f2068 717d2f9da7fb9f9e2bf2058a8177a0344f8a8647 b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.9.2 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "28-65184f60-53de5;;;"
last-modified: Sat, 30 Sep 2023 16:40:00 GMT
content-type: application/x-javascript
content-length: 40
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.9.2 | 24.144.92.38 | 200 OK | 45 kB |
URL GET HTTP/2cretumfc.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.9.2 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashe532822c165fac57219aaf26698aa4f7 08ca385d552db8b8afdde2fee6cbdf966f9c27ec ebd4a78569ef1fab71b07e0f3e449819623ae220f0080fb6ec59fb66f2f65489
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.9.2 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "6cbf5-65184f61-53fc5;br"
last-modified: Sat, 30 Sep 2023 16:40:01 GMT
content-type: text/css
content-length: 44614
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.9.2 | 24.144.92.38 | 200 OK | 2.8 kB |
URL GET HTTP/2cretumfc.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.9.2 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (30299), with no line terminators Hash317fbc87772718eb181ec7feba35e148 e08708d82fba6bdb5d2a6826cc5099662f7daab1 12c3f7bc60c99d1b6b634d6cd16fbb0e26ae75ddda15d7a6e5106cd5dad83f14
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.9.2 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "765b-65184f61-53fc3;br"
last-modified: Sat, 30 Sep 2023 16:40:01 GMT
content-type: text/css
content-length: 2834
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.18 | 24.144.92.38 | 200 OK | 59 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.18 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (45047) Hash0a7176e860c4303f557950b75fb8a898 c292eb1b902ed06fccd65a684d6b311e1290caa9 c4596b16b126326b0d8fc2fb8bf91389ad3dc4671a269187913c19a8f2ad1094
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.18 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "285db-65671f87-515f8;br"
last-modified: Wed, 29 Nov 2023 11:24:55 GMT
content-type: application/x-javascript
content-length: 59270
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 24.144.92.38 | 200 OK | 30 kB |
URL GET HTTP/2cretumfc.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "15601-65a428f6-4f3fd;br"
last-modified: Sun, 14 Jan 2024 18:33:26 GMT
content-type: application/x-javascript
content-length: 29597
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 24.144.92.38 | 200 OK | 4.7 kB |
URL GET HTTP/2cretumfc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "3509-65a428f6-4f3fe;br"
last-modified: Sun, 14 Jan 2024 18:33:26 GMT
content-type: application/x-javascript
content-length: 4679
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css | 24.144.92.38 | 200 OK | 860 B |
URL GET HTTP/2cretumfc.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (9881) Hash709954ff1d4ee268d30643698f17ed3f 16ed4e5ff150fda843fe99da192c0c81ecbaadc4 6f22c76ad8895de2c15b58688a9a5a8df753bcacc03448aa94706ac70e6b2fa7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "26c1-65184dc0-503b8;br"
last-modified: Sat, 30 Sep 2023 16:33:04 GMT
content-type: text/css
content-length: 860
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.18 | 24.144.92.38 | 200 OK | 100 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.18 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash0e4ee1e57cfb5ed34b74d82e847ce797 a9358089dd645dfb6fb3e060bdf50c26c160d5fa 44350f3c434ddd70b17e6b0f49398c24efa091ab58e1ab12700acd15962f4374
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.18 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "64229-65671f87-515f9;br"
last-modified: Wed, 29 Nov 2023 11:24:55 GMT
content-type: application/x-javascript
content-length: 99502
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.9.2 | 24.144.92.38 | 200 OK | 35 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.9.2 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (45047) Hash6c087aaba5bcb76bc96366600b854e20 6de8049f8f4e6c83300be31ffa9e54d652f10f1a 03ca8c38633872b885f1e54e729c4597da2f1c52d06f9a5289ddda7ca3a9930c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.9.2 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "2194d-65184f61-53fa6;br"
last-modified: Sat, 30 Sep 2023 16:40:01 GMT
content-type: application/x-javascript
content-length: 34628
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 06:08:19 GMT
expires: Sat, 03 May 2025 06:08:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 518308
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 | 24.144.92.38 | 200 OK | 6.9 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (25115) Hash046405de007ff73e52d17dab2af75258 887cfb8a9de27005875f6e1c1d1ead43bd0865c8 533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "6272-65184dfb-52c9a;br"
last-modified: Sat, 30 Sep 2023 16:34:03 GMT
content-type: application/x-javascript
content-length: 6884
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 | 24.144.92.38 | 200 OK | 678 B |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (1801), with no line terminators Hash4d43b2fcb5ef3e6afdcd539f46148514 0ff4d5160beb004c439b20c6343044917c629d10 9aa9bb8be2b834059533ce5de7eed3a662ad3d3e70643bbe5f75265075e9bd28
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "709-65184dc0-50269;br"
last-modified: Sat, 30 Sep 2023 16:33:04 GMT
content-type: application/x-javascript
content-length: 678
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/bdthemes-element-pack-lite/assets/js/bdt-uikit.min.js?ver=3.13.1 | 24.144.92.38 | 200 OK | 46 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/bdthemes-element-pack-lite/assets/js/bdt-uikit.min.js?ver=3.13.1 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashc05a9770013eeb8d368e53b4f7d742fd 986786ba187d910508fba7fd05d2dc4b7b8c3be1 373941874e17b88895a73861badb5d6549b37ad4ee6724e712fb1a500034649f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bdthemes-element-pack-lite/assets/js/bdt-uikit.min.js?ver=3.13.1 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "21ffa-651b177d-51e8e;br"
last-modified: Mon, 02 Oct 2023 19:18:21 GMT
content-type: application/x-javascript
content-length: 45654
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3 | 24.144.92.38 | 200 OK | 2.1 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (4957) Hashaa98805dbc21b79555011ded6e33a1bd c150db214b80f6739fc16e8bccd02187e9d542a6 672416f94b97a3b46527b6e624a7f6110addea8c498acb0b7f80ad255eebb8d3
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "1385-65184dc0-5035e;br"
last-modified: Sat, 30 Sep 2023 16:33:04 GMT
content-type: application/x-javascript
content-length: 2071
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3 | 24.144.92.38 | 200 OK | 16 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (58819) Hash1558ab61bab790ac5a634d0bf9b03780 2aa94dff810eb1927d7b224c0760a04435006d5b 1b2661621514d161467c7fdbe8d8c053b6377c57a7929eca9bea34c4e1bed9c6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "e5ec-65184dc0-502bb;br"
last-modified: Sat, 30 Sep 2023 16:33:04 GMT
content-type: application/x-javascript
content-length: 16197
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 | 24.144.92.38 | 200 OK | 2.8 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (12198), with no line terminators Hash3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "2fa6-65184dc0-50213;br"
last-modified: Sat, 30 Sep 2023 16:33:04 GMT
content-type: application/x-javascript
content-length: 2843
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 | 24.144.92.38 | 200 OK | 6.8 kB |
URL GET HTTP/3cretumfc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (8189) Hashc4e68a0f3463c0bd3c39eab38815e881 0ce58644e9f3c5063a11453ff287c5ec096465a7 ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "53be-65a428f6-4f3b3;br"
last-modified: Sun, 14 Jan 2024 18:33:26 GMT
content-type: application/x-javascript
content-length: 6790
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3 | 24.144.92.38 | 200 OK | 12 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (40396) Hashe2a3fb1470104bd64d98e8245c6de817 0845f9f5eeda970595c9d3f22c5e104c9c761960 b9e240e7c455e9415ddcebc9ebd5c1b37350abef90c0a7d7b6a57423850250f7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "9df4-65184dc0-5034d;br"
last-modified: Sat, 30 Sep 2023 16:33:04 GMT
content-type: application/x-javascript
content-length: 11869
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/bdthemes-element-pack-lite/assets/js/common/helper.min.js?ver=5.4.2 | 24.144.92.38 | 200 OK | 603 B |
URL GET HTTP/3cretumfc.com/wp-content/plugins/bdthemes-element-pack-lite/assets/js/common/helper.min.js?ver=5.4.2 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1141), with no line terminators Hasheeb9fbc63a603bc79d2c7935d5102bad 7bf99d0312f1d64d0a9a64317904b1cbddb3e3b3 1a37ac149b4f6babafc01b4c61cfd3c5d6237ff34ee947e1e4ab8ef74ff4baf0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bdthemes-element-pack-lite/assets/js/common/helper.min.js?ver=5.4.2 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "48e-651b177d-51e87;br"
last-modified: Mon, 02 Oct 2023 19:18:21 GMT
content-type: application/x-javascript
content-length: 603
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.16.1 | 24.144.92.38 | 200 OK | 2.4 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.16.1 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (5696) Hash4e4b528c123d1d623df373c205a92ab6 f05d90df1cf507b74d520641c5777b4a8cdc9907 7ec04850fd045b6c85aa35a71b59da6ad399c3f94ed50d325cfc12b4bce23872
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.16.1 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "166c-65184dfb-52d37;br"
last-modified: Sat, 30 Sep 2023 16:34:03 GMT
content-type: application/x-javascript
content-length: 2420
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 | 24.144.92.38 | 200 OK | 2.3 kB |
URL GET HTTP/3cretumfc.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (8171), with no line terminators Hashdda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "1feb-65a428f6-4f372;br"
last-modified: Sun, 14 Jan 2024 18:33:26 GMT
content-type: application/x-javascript
content-length: 2307
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 | 24.144.92.38 | 200 OK | 2.4 kB |
URL GET HTTP/3cretumfc.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (6625), with no line terminators Hashfd7ef2e4737acd74fd0dcdc3b515e304 0d792b33f12a48ee8aaaf2560a63a5682470645b 1d52e1ac7d3bc25a8b0ffc257153f9dd50249f96fe9a4df5e0d771241a69062c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "19e1-65a428f6-4f36b;br"
last-modified: Sun, 14 Jan 2024 18:33:26 GMT
content-type: application/x-javascript
content-length: 2402
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 | 24.144.92.38 | 200 OK | 14 kB |
URL GET HTTP/3cretumfc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (38582), with no line terminators Hash92f8c01350c630f414f5d0b015ad6864 eab40ab4e77f92f2fb17684aaf44b579a51b8034 17b79ece7ef9d1454a90156690d33d64387b67a7a7548fc826012512e287a937
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "96be-660c5e81-4f360;br"
last-modified: Tue, 02 Apr 2024 19:37:37 GMT
content-type: application/x-javascript
content-length: 13466
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-includes/js/dist/hooks.min.js?ver=2810c76e705dd1a53b18 | 24.144.92.38 | 200 OK | 1.5 kB |
URL GET HTTP/3cretumfc.com/wp-includes/js/dist/hooks.min.js?ver=2810c76e705dd1a53b18 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (4272) Hash072d3f6e5c446f57d5c544f9931860e2 ee6aa3d65b474309376468b24bb6f829a4514809 2cb546fbdda7995d374fffa4b2f6530bbcf57d014639ddf76de45df43d593045
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/hooks.min.js?ver=2810c76e705dd1a53b18 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "10d3-660c5e81-4f398;br"
last-modified: Tue, 02 Apr 2024 19:37:37 GMT
content-type: application/x-javascript
content-length: 1462
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 | 24.144.92.38 | 200 OK | 3.5 kB |
URL GET HTTP/3cretumfc.com/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
Hasha8127c1a87bb4f99edbeec7c37311dcd 9997a1745f48bdd233dbe9bd8164daa53eba105b f313d12ea6124bd28fc4a6b7163d253bb83d5aeab5edce594880c5c3df475cbc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "23b5-660c5e80-4f393;br"
last-modified: Tue, 02 Apr 2024 19:37:36 GMT
content-type: application/x-javascript
content-length: 3540
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.16.1 | 24.144.92.38 | 200 OK | 6.4 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.16.1 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (24630) Hash348bad20577d50cd243826b9cad538f6 d0b3352a42cfc038154426acd53c4fc5aa1b014d 9f4db455102cdacf8c486f6c60df4d0efcb2ed10c00ee4d37412069cdf8c9d25
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.16.1 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "6062-65184dfb-52d19;br"
last-modified: Sat, 30 Sep 2023 16:34:03 GMT
content-type: application/x-javascript
content-length: 6384
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| fonts.gstatic.com/s/robotomono/v23/L0x5DF4xlVMF-BfR8bXMIjhLq38.woff2 | 142.250.74.163 | 200 OK | 33 kB |
URL GET HTTP/2fonts.gstatic.com/s/robotomono/v23/L0x5DF4xlVMF-BfR8bXMIjhLq38.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 32936, version 1.0 Hash1756e80858412bdcfbdbcb28acfd98c7 6915043546ef69661d294911b08fa42c5dc325ae 47388fbc1a8fbcd4fbd9a1b184144f5e87239866538593ea87cd496a6d0f61c5
GET /s/robotomono/v23/L0x5DF4xlVMF-BfR8bXMIjhLq38.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32936
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 06:08:25 GMT
expires: Sat, 03 May 2025 06:08:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:29:19 GMT
content-type: font/woff2
age: 518302
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.16.1 | 24.144.92.38 | 200 OK | 8.1 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.16.1 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (35389) Hasha5b47de3462b1267b332faa0b2283892 0c5af42b51e326e0cc2365a6e6ac3ab45c0b408a 08528647466ffb93e573cf07c2908ad07587b7598410b7e53507a68e82e581b1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.16.1 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "8a69-65184dfb-52cb4;br"
last-modified: Sat, 30 Sep 2023 16:34:03 GMT
content-type: application/x-javascript
content-length: 8082
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.min.js?ver=2.9.2 | 24.144.92.38 | 200 OK | 392 B |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.min.js?ver=2.9.2 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeASCII text, with very long lines (681), with no line terminators Hashf5945db2f3337fd9f1cbef5b07b2a493 8a11439d56af9fb27836bb5f2a30aeb35b93bb5a a8642bcd147ba3528345f5bd17f788cd524931e093255b2c1c8344677a1ab505
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.min.js?ver=2.9.2 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "2a9-65184f61-53fa5;br"
last-modified: Sat, 30 Sep 2023 16:40:01 GMT
content-type: application/x-javascript
content-length: 392
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.9.2 | 24.144.92.38 | 200 OK | 5.0 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.9.2 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (18458), with no line terminators Hash0690a2cefe1d06fe211b57d2f5e530c1 eec3dc3057eed501d15d6e63f637d53d839be4a3 2c34c72649547631a667da33a6f1a5198c7005c5af2cf5ed2631db33150d1a58
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.9.2 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "481a-65184f61-53fa9;br"
last-modified: Sat, 30 Sep 2023 16:40:01 GMT
content-type: application/x-javascript
content-length: 4995
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.16.1 | 24.144.92.38 | 200 OK | 1.4 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.16.1 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (3720) Hash3e31a0ddb1f910fc672d22e6435b95ed f478fd262840bfb394da94a2f5dd95eed4991194 34bbd1c367ffc7d80fcff86c7e5f8777e70f4911bb324e8ecfc7dd3604a96e68
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.16.1 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "e89-65184dfb-52ca4;br"
last-modified: Sat, 30 Sep 2023 16:34:03 GMT
content-type: application/x-javascript
content-length: 1446
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/revslider/public/assets/assets/dummy.png | 24.144.92.38 | 200 OK | 68 B |
URL GET HTTP/3cretumfc.com/wp-content/plugins/revslider/public/assets/assets/dummy.png IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typePNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced Hash2a637d3d825673c0e3462fa4ed9a1c5c 81668d396da22832d75a986407ff10035e0d5899 69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:47 GMT
etag: "44-65671f86-51633;;;"
last-modified: Wed, 29 Nov 2023 11:24:54 GMT
content-type: image/png
content-length: 68
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 06:08:19 GMT
expires: Sat, 03 May 2025 06:08:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 518309
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0 Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:49:11 GMT
expires: Fri, 09 May 2025 01:49:11 GMT
cache-control: public, max-age=31536000
age: 15457
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 | 142.250.74.163 | 200 OK | 24 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 23:17:17 GMT
expires: Fri, 02 May 2025 23:17:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 542971
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 10:46:32 GMT
expires: Wed, 07 May 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 156016
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 | 142.250.74.163 | 200 OK | 23 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23040, version 1.0 Hashde69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:06:03 GMT
expires: Fri, 09 May 2025 02:06:03 GMT
cache-control: public, max-age=31536000
age: 14445
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 | 142.250.74.163 | 200 OK | 31 kB |
URL GET HTTP/2fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 31052, version 1.0 Hash5c4f357d4926fc197d43abc63b7fca8c 686af7000d038d7479ed36b48a8ebb0ea9b98aea 1393acc632c160def86b45c2521c8ee742b7e6239d0d90fb95f51d55cf48b9c3
GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:55:34 GMT
expires: Fri, 09 May 2025 01:55:34 GMT
cache-control: public, max-age=31536000
age: 15074
last-modified: Thu, 27 Apr 2023 00:27:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2 | 142.250.74.163 | 200 OK | 39 kB |
URL GET HTTP/2fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 39124, version 1.0 Hash86b73ab5f530be7984b704414f2a711d 8e297794ed7b6f5ea476d14b5270df12e8f3e42a 1a48b70f97555c13f84b8f088a417f9179d99b5101250819350acaf6e91bb92f
GET /s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39124
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:49:00 GMT
expires: Fri, 09 May 2025 01:49:00 GMT
cache-control: public, max-age=31536000
age: 15468
last-modified: Thu, 14 Sep 2023 00:02:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 142.250.74.163 | 200 OK | 33 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 33092, version 1.0 Hash057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 17:06:37 GMT
expires: Fri, 02 May 2025 17:06:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
age: 565211
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 | 142.250.74.163 | 200 OK | 19 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18668, version 1.0 Hash8655d20bbcc8cdbfab17b6be6cf55df3 90edbfa9a7dabb185487b4774076f82eb6412270 e7af9d60d875eb1c1b1037bbbfdec41fcb096d0ebcf98a48717ad8b07906ced6
GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 01:06:41 GMT
expires: Sat, 03 May 2025 01:06:41 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:00:39 GMT
content-type: font/woff2
age: 536407
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 | 142.250.74.163 | 200 OK | 7.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:33:12 GMT
expires: Fri, 09 May 2025 01:33:12 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 16416
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/odormeanchey/v27/raxkHiKDttkTe1aOGcJMR1A_4lrf0Ts.woff2 | 142.250.74.163 | 200 OK | 12 kB |
URL GET HTTP/2fonts.gstatic.com/s/odormeanchey/v27/raxkHiKDttkTe1aOGcJMR1A_4lrf0Ts.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 11908, version 1.0 Hashcb0df248326619705ed279a8bcea7752 ebf03266d6d79a84d6a3bbd2d67f34868908c89e f0f99a0f19e4a64a6aa300ddaf60ce70351713b70b42f242600cb54b1e629473
GET /s/odormeanchey/v27/raxkHiKDttkTe1aOGcJMR1A_4lrf0Ts.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 May 2024 15:33:57 GMT
expires: Thu, 08 May 2025 15:33:57 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 20:09:53 GMT
content-type: font/woff2
age: 52371
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 | 24.144.92.38 | 200 OK | 4.6 kB |
URL GET HTTP/3cretumfc.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:48 GMT
etag: "4926-660c5e80-4f2b0;br"
last-modified: Tue, 02 Apr 2024 19:37:36 GMT
content-type: application/x-javascript
content-length: 4630
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:48 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/revslider/public/assets/assets/loader.gif | 24.144.92.38 | 200 OK | 2.5 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/revslider/public/assets/assets/loader.gif IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeGIF image data, version 89a, 24 x 24 Hash4b3afb84b2b71ef56df09997a350bd04 accdac8a7abeab0e21c49539aad0a973addb28ef 9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.18
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:48 GMT
etag: "9f1-65671f86-51630;;;"
last-modified: Wed, 29 Nov 2023 11:24:54 GMT
content-type: image/gif
content-length: 2545
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:48 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.70d63d6d093f3a45a0c6.bundle.min.js | 24.144.92.38 | 200 OK | 1.6 kB |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.70d63d6d093f3a45a0c6.bundle.min.js IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (4607) Hash8e7c17d0ca02bb68ecfcb8278b504dea d8cadfefeb0bc2fe3255331b5616353cf811a383 264dd840f6347f92cc2018e084e5f9187c086f3d2f67c856ca3f40ed8f57546e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.70d63d6d093f3a45a0c6.bundle.min.js HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:49 GMT
etag: "122b-65184dfb-52cd1;br"
last-modified: Sat, 30 Sep 2023 16:34:03 GMT
content-type: application/x-javascript
content-length: 1561
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js | 24.144.92.38 | 200 OK | 600 B |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (1320) Hashcd239b47507a8c8ccb597ae1c031ca51 47c8d93160c57bdf24efb56dbc9061068ac67f20 b7efbd371ce5321aba694b02a0e88b012e8ca8a3c3f0150b578d80ca10706114
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:49 GMT
etag: "550-65184dc0-50356;br"
last-modified: Sat, 30 Sep 2023 16:33:04 GMT
content-type: application/x-javascript
content-length: 600
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| www.catcharl.infinityendconcepts.co.za/wp-content/uploads/revslider/57_c_background.jpg |  41.222.34.12 | 404 Not Found | 1.2 kB |
URL GET HTTP/2www.catcharl.infinityendconcepts.co.za/wp-content/uploads/revslider/57_c_background.jpg IP41.222.34.12:443
CertificateIssuerLet's Encrypt Subjectinfinityendconcepts.co.za Fingerprint32:07:9B:A0:0C:9B:19:B8:FE:63:54:E5:FC:78:3E:C0:BB:10:6F:4B ValidityWed, 24 Apr 2024 11:57:08 GMT - Tue, 23 Jul 2024 11:57:07 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash0bde7d4b3da67537eaf9188e6f8049cf 64300fc482d01d38b40ab20e15960b6509665e5a 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /wp-content/uploads/revslider/57_c_background.jpg HTTP/1.1
Host: www.catcharl.infinityendconcepts.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Thu, 09 May 2024 05:57:08 GMT
server: LiteSpeed
vary: User-Agent
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| www.catcharl.infinityendconcepts.co.za/wp-content/uploads/2023/10/rawpixel-799380-unsplash.jpg | 41.222.34.12 | 404 Not Found | 1.2 kB |
URL GET HTTP/2www.catcharl.infinityendconcepts.co.za/wp-content/uploads/2023/10/rawpixel-799380-unsplash.jpg IP41.222.34.12:443
CertificateIssuerLet's Encrypt Subjectinfinityendconcepts.co.za Fingerprint32:07:9B:A0:0C:9B:19:B8:FE:63:54:E5:FC:78:3E:C0:BB:10:6F:4B ValidityWed, 24 Apr 2024 11:57:08 GMT - Tue, 23 Jul 2024 11:57:07 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash0bde7d4b3da67537eaf9188e6f8049cf 64300fc482d01d38b40ab20e15960b6509665e5a 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /wp-content/uploads/2023/10/rawpixel-799380-unsplash.jpg HTTP/1.1
Host: www.catcharl.infinityendconcepts.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Thu, 09 May 2024 05:57:08 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
|
|
| www.catcharl.infinityendconcepts.co.za/wp-content/uploads/2023/10/lee-miller-47629-unsplash.jpg | 41.222.34.12 | 404 Not Found | 1.2 kB |
URL GET HTTP/2www.catcharl.infinityendconcepts.co.za/wp-content/uploads/2023/10/lee-miller-47629-unsplash.jpg IP41.222.34.12:443
CertificateIssuerLet's Encrypt Subjectinfinityendconcepts.co.za Fingerprint32:07:9B:A0:0C:9B:19:B8:FE:63:54:E5:FC:78:3E:C0:BB:10:6F:4B ValidityWed, 24 Apr 2024 11:57:08 GMT - Tue, 23 Jul 2024 11:57:07 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash0bde7d4b3da67537eaf9188e6f8049cf 64300fc482d01d38b40ab20e15960b6509665e5a 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /wp-content/uploads/2023/10/lee-miller-47629-unsplash.jpg HTTP/1.1
Host: www.catcharl.infinityendconcepts.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Thu, 09 May 2024 05:57:08 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/elementor/assets/js/counter.02cef29c589e742d4c8c.bundle.min.js | 24.144.92.38 | 200 OK | 428 B |
URL GET HTTP/3cretumfc.com/wp-content/plugins/elementor/assets/js/counter.02cef29c589e742d4c8c.bundle.min.js IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJavaScript source, ASCII text, with very long lines (872) Hashe110dd4b20ff878667ed54dc8619ae42 362599a48fc2efad98475d3348cc81c7d50ed5fd 27b5d198a145ea34f6d41faccd32903b019c7c11ea7a4d0cb964c6a40cdc37d7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/counter.02cef29c589e742d4c8c.bundle.min.js HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:49 GMT
etag: "390-65184dc0-50333;br"
last-modified: Sat, 30 Sep 2023 16:33:04 GMT
content-type: application/x-javascript
content-length: 428
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 May 2024 06:06:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| www.catcharl.infinityendconcepts.co.za/wp-content/uploads/revslider/30_b_background.jpg | 41.222.34.12 | 404 Not Found | 1.2 kB |
URL GET HTTP/2www.catcharl.infinityendconcepts.co.za/wp-content/uploads/revslider/30_b_background.jpg IP41.222.34.12:443
CertificateIssuerLet's Encrypt Subjectinfinityendconcepts.co.za Fingerprint32:07:9B:A0:0C:9B:19:B8:FE:63:54:E5:FC:78:3E:C0:BB:10:6F:4B ValidityWed, 24 Apr 2024 11:57:08 GMT - Tue, 23 Jul 2024 11:57:07 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash0bde7d4b3da67537eaf9188e6f8049cf 64300fc482d01d38b40ab20e15960b6509665e5a 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /wp-content/uploads/revslider/30_b_background.jpg HTTP/1.1
Host: www.catcharl.infinityendconcepts.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Thu, 09 May 2024 05:57:08 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/plugins/revslider/public/assets/assets/transparent.png | 24.144.92.38 | 200 OK | 122 B |
URL GET HTTP/3cretumfc.com/wp-content/plugins/revslider/public/assets/assets/transparent.png IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typePNG image data, 300 x 200, 1-bit grayscale, non-interlaced Hash86c58b484b48eac285e131e8b55d2ce7 3d3ee4c137a6f36e5fbee31e21a4d08f2c38d20e 9603ffeb6772f1cf745e0097d5d6c046eaf16151e5bc521f20764bba5ddb7713
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/revslider/public/assets/assets/transparent.png HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:49 GMT
etag: "7a-65671f86-51640;;;"
last-modified: Wed, 29 Nov 2023 11:24:54 GMT
content-type: image/png
content-length: 122
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/uploads/2023/10/33333.jpg | 24.144.92.38 | 200 OK | 5.9 kB |
URL GET HTTP/3cretumfc.com/wp-content/uploads/2023/10/33333.jpg IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJPEG image data, progressive, precision 8, 690x571, components 3 Hash6d0ea32fa415d537548d362111cb86f6 19e9837de392d21858e6dad7641e2bd139075636 80da876e311d29ddadd5bd149d4bececdac2c3f2e68cb784398d84832fb31918
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/33333.jpg HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:49 GMT
etag: "1701-651a267f-54a47;;;"
last-modified: Mon, 02 Oct 2023 02:10:07 GMT
content-type: image/jpeg
content-length: 5889
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/uploads/2023/10/DJB-Feature-ada_insight_card-Blue-1-1024x576-1-e1696205000856.jpg | 24.144.92.38 | 200 OK | 74 kB |
URL GET HTTP/3cretumfc.com/wp-content/uploads/2023/10/DJB-Feature-ada_insight_card-Blue-1-1024x576-1-e1696205000856.jpg IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJPEG image data, progressive, precision 8, 879x560, components 3 Hash14c39942ee64b9644663327e57fa2ae2 660d867e5e39969e7f424b7af850302dd5931d89 fc8b0d05967ad16efa7c427d42c75d091f74c0328e2c75d5f7161ce3a28a5491
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/DJB-Feature-ada_insight_card-Blue-1-1024x576-1-e1696205000856.jpg HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:49 GMT
etag: "121bc-651a0af2-54a25;;;"
last-modified: Mon, 02 Oct 2023 00:12:34 GMT
content-type: image/jpeg
content-length: 74172
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/uploads/2023/10/bigstock-ACCOUNTING-inscription-coming-324977827-e1696205930937.jpg | 24.144.92.38 | 200 OK | 55 kB |
URL GET HTTP/3cretumfc.com/wp-content/uploads/2023/10/bigstock-ACCOUNTING-inscription-coming-324977827-e1696205930937.jpg IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 723x462, components 3 Hash709467825c77f1ac4cbccffbaab00b45 538126ef2c31594d4b775216a0f0cdcceaff4958 4733c0e7d2a70cf991a035125927789cd14114279e3ee169ebcd4d65fe0d4e9f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/bigstock-ACCOUNTING-inscription-coming-324977827-e1696205930937.jpg HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:49 GMT
etag: "d65f-651a0c6a-54a62;;;"
last-modified: Mon, 02 Oct 2023 00:18:50 GMT
content-type: image/jpeg
content-length: 54879
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/uploads/2023/10/Business-Rescue-e1696206271107.jpg | 24.144.92.38 | 200 OK | 47 kB |
URL GET HTTP/3cretumfc.com/wp-content/uploads/2023/10/Business-Rescue-e1696206271107.jpg IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 791x504, components 3 Hashfe2d5e8cc58faa2edfe985c2de70d5c8 f80557e491b890fc1c80471d6985c26faf850a6f 60717f5355fb6778fdf07398f4e6dab9f71a04eeecd0bcd7f696cb3fcd303fce
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/Business-Rescue-e1696206271107.jpg HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:49 GMT
etag: "b6c6-651a0dbf-54a79;;;"
last-modified: Mon, 02 Oct 2023 00:24:31 GMT
content-type: image/jpeg
content-length: 46790
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 142.250.74.163 | 200 OK | 33 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 33092, version 1.0 Hash057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cretumfc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 17:06:37 GMT
expires: Fri, 02 May 2025 17:06:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
age: 565212
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cretumfc.com/wp-content/uploads/2022/10/cropped-cropped-Untitled-3-Recovered-192x192.png | 24.144.92.38 | 200 OK | 5.4 kB |
URL GET HTTP/3cretumfc.com/wp-content/uploads/2022/10/cropped-cropped-Untitled-3-Recovered-192x192.png IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash85bb28d5621a7706ea5575ac3181a793 e615090c03f9e5113e61343762eda396522178b6 2576e0289c2fd74134ba3f04c012e1990893466ef189b2124b481c872a7dcad7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2022/10/cropped-cropped-Untitled-3-Recovered-192x192.png HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:49 GMT
etag: "151d-63735576-54ca2;;;"
last-modified: Tue, 15 Nov 2022 09:01:42 GMT
content-type: image/png
content-length: 5405
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/uploads/2022/10/cropped-cropped-Untitled-3-Recovered-32x32.png | 24.144.92.38 | 200 OK | 793 B |
URL GET HTTP/3cretumfc.com/wp-content/uploads/2022/10/cropped-cropped-Untitled-3-Recovered-32x32.png IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash55ad16265ef595f4db34fab3c4514837 cde7fd36c1b78d74de8e71fb527fd103940c432e b69643b7ef895c220f2ee369591b1fd75ec7ae4d7af7ded0ff1ecd6ecb32bc94
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2022/10/cropped-cropped-Untitled-3-Recovered-32x32.png HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:49 GMT
etag: "319-63735576-54bfb;;;"
last-modified: Tue, 15 Nov 2022 09:01:42 GMT
content-type: image/png
content-length: 793
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/uploads/2023/10/back-office-outsourcing-services-image-2-e1696212013391.jpg | 24.144.92.38 | 200 OK | 21 kB |
URL GET HTTP/3cretumfc.com/wp-content/uploads/2023/10/back-office-outsourcing-services-image-2-e1696212013391.jpg IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 450x286, components 3 Hash7ca86c02dc361d4741efd3dd7b60f352 796ee6fd707c42cd4ff390fc073f938cb1b53137 7aefcd06d16807a2a0fa78cac4760a0993518c3e4d87e215152f530004de1d09
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/back-office-outsourcing-services-image-2-e1696212013391.jpg HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:49 GMT
etag: "52f6-651a242d-54b1b;;;"
last-modified: Mon, 02 Oct 2023 02:00:13 GMT
content-type: image/jpeg
content-length: 21238
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| cretumfc.com/wp-content/uploads/2023/10/tm_image1_774358-e1696212171960.jpg | 24.144.92.38 | 200 OK | 17 kB |
URL GET HTTP/3cretumfc.com/wp-content/uploads/2023/10/tm_image1_774358-e1696212171960.jpg IP24.144.92.38:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectcretumfc.com Fingerprint5D:CA:3B:90:31:35:B6:09:3A:49:DD:25:A1:D5:85:88:01:13:85:3C ValidityThu, 14 Mar 2024 17:18:04 GMT - Wed, 12 Jun 2024 17:18:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 500x318, components 3 Hash1324fbe52662a436f642eafe26edba09 a0b5a7a50367b38c0277aff62b13e5b43a3e2208 1919b65acc24bcfbd22c043339dea380658f7daea4ee0071994e404873a2da4b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/10/tm_image1_774358-e1696212171960.jpg HTTP/1.1
Host: cretumfc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 16 May 2024 06:06:49 GMT
etag: "434a-651a24cb-54b03;;;"
last-modified: Mon, 02 Oct 2023 02:02:51 GMT
content-type: image/jpeg
content-length: 17226
accept-ranges: bytes
date: Thu, 09 May 2024 06:06:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| fonts.googleapis.com/css?family=Montserrat:700%2C800%7CRoboto:400%2C700%7COpen+Sans:400%7CPoppins:400&display=swap | 142.250.74.42 | 200 OK | 15 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Montserrat:700%2C800%7CRoboto:400%2C700%7COpen+Sans:400%7CPoppins:400&display=swap IP142.250.74.42:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (1572) Hasha812d9819c175d32d32a3fef5c3d071f 31d90cf5163becd50a47e2a8398ebcf3c54b6f4e 10eb063b3f6ccfb6786daa7583ae83763b2abdb1f8deaf2836d2513bf9a8b682
GET /css?family=Montserrat:700%2C800%7CRoboto:400%2C700%7COpen+Sans:400%7CPoppins:400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 May 2024 06:06:47 GMT
date: Thu, 09 May 2024 06:06:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPlayfair+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Mono%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COdor+Mean+Chey%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.5.3 | 142.250.74.42 | 200 OK | 162 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPlayfair+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Mono%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COdor+Mean+Chey%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.5.3 IP142.250.74.42:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Size162 kB (161611 bytes) Hash58e7850e71e47d78679b1d42a4294232 10675190c49556451a071fc6b1c82acd98583fa5 e1c7ac75e3a57686127874320b3cc3ffc0803429a8c57b47cc51bc9e84fb059f
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPlayfair+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Mono%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COdor+Mean+Chey%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.5.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cretumfc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 May 2024 06:06:47 GMT
date: Thu, 09 May 2024 06:06:47 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|