Report - focussystems40.com

Report Overview

Visited public
2023-12-08 15:44:58
Tags
URL
focussystems40.com
Finishing URL
www.focussystems40.com/
IP / ASN
190.8.176.162
#52335 Colombia Hosting
Title
My Blog – My WordPress Blog

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
focussystems40.com	unknown	unknown	No data	No data	485 B	464 B	190.8.176.162
www.focussystems40.com	unknown	unknown	No data	No data	8.2 kB	195 kB	190.8.176.162
pixel.wp.com	2545	1997-03-28	2017-01-30 06:31:40	2023-12-08 05:16:47	580 B	239 B	192.0.76.3
stats.wp.com	2711	1997-03-28	2017-01-30 06:06:59	2023-12-08 05:16:46	838 B	17 kB	192.0.76.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed
2023-12-08	medium	focussystems40.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	From	Size	First Seen	Last Seen
	www.focussystems40.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2	ScriptElement	18 kB	2023-03-12	2025-05-06
Pretty URL www.focussystems40.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2 IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:05 Last Seen2025-05-06 14:41 Times Seen252 Hash 17021088d1e5bf6d919f1eef0e7c9edb 24009d663fa269f6e85368f0f0e314681cba36e7 149712c16718936d2b7ad4c16d10e89de23c9c3b1c157158b533b961f2bf644d Loading...

	www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.3.1	ScriptElement	2.1 kB	2023-08-09	2025-05-10
Pretty URL www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.3.1 IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33 Last Seen2025-05-10 03:18 Times Seen8029 Hash 6d3b3d63df025e97f370c5efab2c96da 78c0c8e7504f9314b2e9fd714bbab530af52f2af 8c0b5e384ae00c512f4bb1ba5e2fe622fab4bfc541c99555df38c19c329d3fe6 Loading...

	www.focussystems40.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	ScriptElement	88 kB	2023-11-03	2025-05-11
Pretty URL www.focussystems40.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-05-11 12:15 Times Seen92577 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	www.focussystems40.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-05-11
Pretty URL www.focussystems40.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-05-11 12:15 Times Seen106206 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	www.focussystems40.com/	ScriptElement	32 B	2023-03-07	2025-05-10
Pretty URL www.focussystems40.com/ IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-10 18:36 Times Seen3103 Hash f28cdba8b1a33fab7b4935482c683e17 7fb92b438ae880e659636e12f78ecca1ab9dd1a9 76d9ab1fc9999540d0f7167df3325f71fbd86160eda576cb60f285b0e65d89a9 Loading...

	www.focussystems40.com/	ScriptElement	233 B	2024-08-20	2024-08-20
Pretty URL www.focussystems40.com/ IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:21 Last Seen2024-08-20 16:21 Times Seen1 Hash 4697541062cd1c6d3f113296bc9de522 f6c20264e278c895d07de6ebf3312f9d35af0697 b2a3ddbef730649309e58043017e3612bbb123a959bd742cfbcfae405adefa29 Loading...

	www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.3.1	ScriptElement	3.0 kB	2023-08-09	2025-05-07
Pretty URL www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.3.1 IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33 Last Seen2025-05-07 14:17 Times Seen5670 Hash ac7eef7756c1ad7d9df33edae9f60e5d fb334d6bdf233b1c0b3a3658c0763e5916eda4b0 92b4feff9bb6c863075d35cd38d989cc254f99489f574338def1949904027d42 Loading...

	www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.3.1	ScriptElement	1.8 kB	2023-08-09	2025-05-07
Pretty URL www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.3.1 IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33 Last Seen2025-05-07 14:17 Times Seen6792 Hash 53e07784d8fab2f50b99ff9868124992 d8739feb2845a3fa4a8c085aeabc4eb0e6945590 1533d5bc82424a9a3ac37a7fe543925909d25715d16938b9e02c728c86fd86e8 Loading...

	www.focussystems40.com/	ScriptElement	109 B	2023-03-07	2025-05-10
Pretty URL www.focussystems40.com/ IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 21:22 Times Seen5573 Hash c3041f910d72f3447c03a53d6b8df977 d2959e0ca4bfa2ec8613d1fba8ae2399aebdd123 9b5e9931c5ad5f273f4c6eb5988506ef60471957923124b28aab2f8563e8b7fd Loading...

	www.focussystems40.com/	ScriptElement	152 B	2023-03-07	2025-05-10
Pretty URL www.focussystems40.com/ IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 22:52 Times Seen25333 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	www.focussystems40.com/	ScriptElement	92 B	2023-03-13	2025-05-06
Pretty URL www.focussystems40.com/ IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 15:36 Last Seen2025-05-06 14:41 Times Seen85 Hash ac9ffcb3981f2eda229c52be1ffaf138 687a003e637655e16556ab106a421b67c20aa77d 1ab9332a75679a48df3b32d6ae089eeee0eb65020ef06df536cfd855b1b20133 Loading...

	stats.wp.com/s-202349.js	ScriptElement	9.7 kB	2023-11-06	2024-08-20
Pretty URL stats.wp.com/s-202349.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-06 03:36 Last Seen2024-08-20 20:44 Times Seen413 Hash 952f407a7745648037d962dba34a0f48 01b3d3fd6a70e66ea034cd76bc5bb443976be7bf 067b22759bfd5684834af3dde55a1205bf7af63a1355a77777c5a160bdca9b55 Loading...

	stats.wp.com/e-202349.js	ScriptElement	6.9 kB	2023-07-02	2025-03-25
Pretty URL stats.wp.com/e-202349.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-02 20:30 Last Seen2025-03-25 21:47 Times Seen6898 Hash 2567b82fc5b4900c78be291e6a957e99 114ec9e929313111ec06f33e342205c52cce5b11 ca7752fb33cf3a98c0f29bc4eec563112025da4109a0dcc69dabf5f861751258 Loading...

	www.focussystems40.com/	ScriptElement	187 B	2024-08-20	2024-08-20
Pretty URL www.focussystems40.com/ IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:21 Last Seen2024-08-20 16:21 Times Seen1 Hash e90be6173f19285271bd00dad7191306 3c66c9bbd82f3fe96d4c6c238f35b123b3b47fc7 06dd878c653c5f14ac33096479f20e6eb7f0a5b5f7d3113fe73b3c1f2fd8d623 Loading...

	www.focussystems40.com/	ScriptElement	333 B	2023-03-07	2025-05-11
Pretty URL www.focussystems40.com/ IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 02:01 Times Seen7534 Hash 3688fd64c409264431201fa55a828e81 2b7eeefaa1edf3a7621f7576b35b01c895ef5367 944433761a880eab1d567dd5389499af76aa03582c82a8aa88838e3c6c2134c6 Loading...

	www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.3.1	ScriptElement	9.6 kB	2023-08-09	2025-05-10
Pretty URL www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.3.1 IP 190.8.176.162 ASN #52335 Colombia Hosting Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33 Last Seen2025-05-10 22:49 Times Seen16257 Hash ef56117d1bb5cc41aa6bd127a49c7640 b9c2ed774177fc0fceba5cb58113024b23fe4fb7 d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620 Loading...

HTTP Transactions (20)

URL IP Response Size

focussystems40.com/

190.8.176.162

301 Moved Permanently

0 B

URL User Request GET HTTP/2
focussystems40.com/
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 08 Dec 2023 15:44:42 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-redirect-by: WordPress
location: https://www.focussystems40.com/
x-litespeed-cache: miss
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.0.2

190.8.176.162

200 OK

7.7 kB

URL GET HTTP/2
www.focussystems40.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.0.2
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
ASCII text, with very long lines (38436)
Size
7.7 kB (7732 bytes)
Hash
dac3bc08a99787138af9b083e33b363f
943167bda215c2cc27569c56952f577bb3240f6c
61efddbac8c465a7ac3b014e0bd5d26826cd2a0ad036d3cf3861edb6cb502ac3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.0.2 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: text/css
content-length: 7732
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Thu, 26 Jan 2023 23:04:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.2

190.8.176.162

200 OK

14 kB

URL GET HTTP/2
www.focussystems40.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.2
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
ASCII text, with very long lines (57084)
Size
14 kB (13607 bytes)
Hash
99ab466e0866c823ae5db517d59cebd1
5595a586cbd42b31377681b9d35293278d75d336
698b89c0da3d319754d6a837b5e6d4e6a42dc402d9ffd7559b8c4cb29c644340

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.2 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: text/css
content-length: 13607
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Tue, 07 Nov 2023 22:25:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17

190.8.176.162

200 OK

2.4 kB

URL GET HTTP/2
www.focussystems40.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
ASCII text, with very long lines (11256), with no line terminators
Size
2.4 kB (2394 bytes)
Hash
2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: text/css
content-length: 2394
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Wed, 30 Sep 2020 02:23:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.4.2

190.8.176.162

200 OK

982 B

URL GET HTTP/2
www.focussystems40.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.4.2
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
ASCII text, with very long lines (4186), with no line terminators
Size
982 B (982 bytes)
Hash
ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.4.2 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: text/css
content-length: 982
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Sat, 08 Jun 2019 07:15:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout-grid.min.css?ver=4.0.2

190.8.176.162

200 OK

1.8 kB

URL GET HTTP/2
www.focussystems40.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout-grid.min.css?ver=4.0.2
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
ASCII text, with very long lines (16351), with no line terminators
Size
1.8 kB (1787 bytes)
Hash
a31e567a899f9f25ef0436f4e14c9155
87e3f3eedec081cbaa9279169a94a6417b6941a0
ee71a6bbeb45a2ff8eb260e08c787a6dfbe5406190dbae954e32ce810d03e67b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout-grid.min.css?ver=4.0.2 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: text/css
content-length: 1787
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Thu, 26 Jan 2023 23:04:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

190.8.176.162

200 OK

30 kB

URL GET HTTP/2
www.focussystems40.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
ASCII text, with very long lines (65447)
Size
30 kB (29744 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: application/javascript
content-length: 29744
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Tue, 07 Nov 2023 22:25:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

190.8.176.162

200 OK

4.7 kB

URL GET HTTP/2
www.focussystems40.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
ASCII text, with very long lines (13479)
Size
4.7 kB (4678 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: application/javascript
content-length: 4678
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Tue, 08 Aug 2023 21:40:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.3.1

190.8.176.162

200 OK

3.3 kB

URL GET HTTP/2
www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.3.1
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
ASCII text, with very long lines (9242)
Size
3.3 kB (3277 bytes)
Hash
ef56117d1bb5cc41aa6bd127a49c7640
b9c2ed774177fc0fceba5cb58113024b23fe4fb7
d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.3.1 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: application/javascript
content-length: 3277
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Wed, 19 Jul 2023 00:53:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min.css?ver=4.0.2

190.8.176.162

200 OK

15 kB

URL GET HTTP/2
www.focussystems40.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min.css?ver=4.0.2
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
Size
15 kB (15115 bytes)
Hash
a675fd775a0337b1b215262a9b0c3b66
b555b3fb91aad70dddc4d24e27d1c43e197f8d96
8177b9d15a45a4f434457b804c59e1338a1ae1972f68464562412edbe095d9aa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min.css?ver=4.0.2 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: text/css
content-length: 15115
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Thu, 26 Jan 2023 23:04:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.3.1

190.8.176.162

200 OK

972 B

URL GET HTTP/2
www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.3.1
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
HTML document, ASCII text, with very long lines (3037), with no line terminators
Size
972 B (972 bytes)
Hash
ac7eef7756c1ad7d9df33edae9f60e5d
fb334d6bdf233b1c0b3a3658c0763e5916eda4b0
92b4feff9bb6c863075d35cd38d989cc254f99489f574338def1949904027d42

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.3.1 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: application/javascript
content-length: 972
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Wed, 19 Jul 2023 00:53:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.3.1

190.8.176.162

200 OK

893 B

URL GET HTTP/2
www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.3.1
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
ASCII text, with very long lines (1679)
Size
893 B (893 bytes)
Hash
53e07784d8fab2f50b99ff9868124992
d8739feb2845a3fa4a8c085aeabc4eb0e6945590
1533d5bc82424a9a3ac37a7fe543925909d25715d16938b9e02c728c86fd86e8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.3.1 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: application/javascript
content-length: 893
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Wed, 19 Jul 2023 00:53:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.3.1

190.8.176.162

200 OK

684 B

URL GET HTTP/2
www.focussystems40.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.3.1
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
ASCII text, with very long lines (2139), with no line terminators
Size
684 B (684 bytes)
Hash
6d3b3d63df025e97f370c5efab2c96da
78c0c8e7504f9314b2e9fd714bbab530af52f2af
8c0b5e384ae00c512f4bb1ba5e2fe622fab4bfc541c99555df38c19c329d3fe6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.3.1 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: application/javascript
content-length: 684
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Wed, 19 Jul 2023 00:53:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2

190.8.176.162

200 OK

4.2 kB

URL GET HTTP/2
www.focussystems40.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
ASCII text, with very long lines (18114), with no line terminators
Size
4.2 kB (4227 bytes)
Hash
17021088d1e5bf6d919f1eef0e7c9edb
24009d663fa269f6e85368f0f0e314681cba36e7
149712c16718936d2b7ad4c16d10e89de23c9c3b1c157158b533b961f2bf644d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: application/javascript
content-length: 4227
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Thu, 26 Jan 2023 23:04:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

pixel.wp.com/g.gif?v=ext&blog=214732231&post=0&tz=0&srv=www.focussystems40.com&j=1%3A12.9&host=www.focussystems40.com&ref=&fcp=0&rand=0.3517909225901351

192.0.76.3

200 OK

50 B

URL GET HTTP/2
pixel.wp.com/g.gif?v=ext&blog=214732231&post=0&tz=0&srv=www.focussystems40.com&j=1%3A12.9&host=www.focussystems40.com&ref=&fcp=0&rand=0.3517909225901351
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.focussystems40.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
GIF image data, version 89a, 6 x 5\012- data
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&blog=214732231&post=0&tz=0&srv=www.focussystems40.com&j=1%3A12.9&host=www.focussystems40.com&ref=&fcp=0&rand=0.3517909225901351 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.focussystems40.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen-grid.min.css?ver=4.0.2

190.8.176.162

200 OK

796 B

URL GET HTTP/2
www.focussystems40.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen-grid.min.css?ver=4.0.2
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
ASCII text, with very long lines (6005), with no line terminators
Size
796 B (796 bytes)
Hash
c2d207510c5633f57dcd4c31128227b9
dbbf10a9297e3f4b6300a01bc88fe517a3024d22
2cef1c0962160f3be4c3207528d2993a37be6b7916119defe7ba7ea255c81b2c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen-grid.min.css?ver=4.0.2 HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: text/css
content-length: 796
cache-control: public, max-age=604800
expires: Fri, 15 Dec 2023 15:44:43 GMT
last-modified: Thu, 26 Jan 2023 23:04:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.focussystems40.com/favicon.ico

190.8.176.162

404 Not Found

1.2 kB

URL GET HTTP/2
www.focussystems40.com/favicon.ico
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Requested by
https://www.focussystems40.com/
Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: text/html
content-length: 1238
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

stats.wp.com/s-202349.js

192.0.76.3

200 OK

9.7 kB

URL GET HTTP/2
stats.wp.com/s-202349.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.focussystems40.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (9943), with no line terminators
Size
9.7 kB (9706 bytes)
Hash
41c8533b774dd50d50a93986dc559d26
5f9beece974a105477db9dae544fbc499fa877f9
57515dea9e5f17e0ca68d25b1c53ef4e3eb4891cb641fa72b37f0c5cb270381d

HTTP Headers

GET /s-202349.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: application/javascript
last-modified: Wed, 01 Nov 2023 13:38:52 GMT
vary: Accept-Encoding
etag: W/"654254ec-25ea"
content-encoding: br
expires: Sat, 30 Nov 2024 21:59:05 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

www.focussystems40.com/

190.8.176.162

200 OK

99 kB

URL User Request GET HTTP/2
www.focussystems40.com/
IP
190.8.176.162:443
ASN
#52335 Colombia Hosting

Certificate
IssuerLet's Encrypt
Subjectwww.focussystems40.com
Fingerprint89:2E:47:DD:51:E2:02:BD:65:A0:33:4F:75:C7:7B:DA:F0:1A:63:F5
ValidityWed, 01 Nov 2023 05:09:28 GMT - Tue, 30 Jan 2024 05:09:27 GMT

File type

Size
99 kB (98620 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.focussystems40.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:42 GMT
content-type: text/html; charset=utf-8
last-modified: Fri, 08 Dec 2023 09:44:57 GMT
content-encoding: br
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

stats.wp.com/e-202349.js

192.0.76.3

200 OK

6.9 kB

URL GET HTTP/2
stats.wp.com/e-202349.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.focussystems40.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (7100), with no line terminators
Size
6.9 kB (6931 bytes)
Hash
530c085c7457919e6f6a76c67b3419ad
4c4929f20e73b6f41fe3474669bfea17b36fe49d
5db8b724469197930b66337c5a9ff7301c4ad5a52e7fc3134b4a568f45199aed

HTTP Headers

GET /e-202349.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.focussystems40.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 15:44:43 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/13576-1684461103136.7104
content-encoding: br
expires: Sat, 30 Nov 2024 21:59:05 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by