| heko.ro/wp-content/plugins/canvas/assets/fonts/canvas-icons.woff | 91.213.11.32 | 200 OK | 4.3 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/assets/fonts/canvas-icons.woff IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 4316, version 1.0 Hash844fdad78ef2c36012b06f2bfdf2b3ee 542193123e27544da2b1e2d3bcf098c5c605d0f5 67d85629e2ed1f3ac9a8a7d86dc49c0e9a72ff72ce43e0baef6071c912955943
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/assets/fonts/canvas-icons.woff HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://heko.ro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 4316
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff
|
|
| heko.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=9.8.4 | 91.213.11.32 | 200 OK | 10 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=9.8.4 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (10435), with no line terminators Hash535bc19ca40020871971f227877089ad c0ad4962f28f0cee21998d39977c27de284799cf b4d38ebe31a12e6c88de4f40af63dd23841c9879f168a8824aa475029ef59dd1
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=9.8.4 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:06:53 GMT
Accept-Ranges: bytes
Content-Length: 10435
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/absolute-reviews/fonts/absolute-reviews-icons.woff | 91.213.11.32 | 200 OK | 3.0 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/absolute-reviews/fonts/absolute-reviews-icons.woff IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 2964, version 1.0 Hasha7afb3881468d6f4d628bb038f92d331 f28bb36176de84857115c1ea25f0eab73db0c5d7 373bd9801efeaea7297d3754cb07c69133441d1e7dec426316ebf73f056a633f
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/absolute-reviews/fonts/absolute-reviews-icons.woff HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://heko.ro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:14 GMT
Accept-Ranges: bytes
Content-Length: 2964
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff
|
|
| heko.ro/wp-content/plugins/powerkit/assets/css/powerkit.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 26 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/assets/css/powerkit.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (819) Hasheda6f5cf68a963e6fd3923226c6e057d 9ef49cef097c54bf5796c91360b56aa7a019dbf9 82ff8015c04fe501116a1e1003a757c2963006ef484301eda1d69c146e731d4d
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/assets/css/powerkit.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 25980
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/assets/css/canvas.css?ver=2.4.0 | 91.213.11.32 | 200 OK | 27 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/assets/css/canvas.css?ver=2.4.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (939) Hashc2908d7de1f481e8637e2848d0c6f52d fc27de586143fd2ba2b11986280c34c758ab401c 2cf3af999361646783592d22ca08310f14d8aac5c8eb6e96f79b0537e28f1ce3
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/assets/css/canvas.css?ver=2.4.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 26717
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/advanced-popups/fonts/advanced-popups-icons.woff | 91.213.11.32 | 200 OK | 1.4 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/advanced-popups/fonts/advanced-popups-icons.woff IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 1372, version 1.0 Hash1f906d4ae3e358b4459b8eeb7b316267 c63e99a5ebad7ea6226143b7961636452a8ecfb5 318c46c474af05599ec3a9d9ab778c68dc21955b4109bdd40150c75f04cff167
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/advanced-popups/fonts/advanced-popups-icons.woff HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://heko.ro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2023 23:08:23 GMT
Accept-Ranges: bytes
Content-Length: 1372
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff
|
|
| heko.ro/wp-content/plugins/canvas/components/basic-elements/block-alert/block.css?ver=1681804506 | 91.213.11.32 | 200 OK | 2.1 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/basic-elements/block-alert/block.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash140961c298ca1bed605efbb5ebd14bd9 4164475e572b7b7fca05cdd0493b91468f4f4820 b5c28ade86f07f93053256214afa706842351fbaae40ec94f2eb879e72be565e
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/basic-elements/block-alert/block.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 2125
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/basic-elements/block-progress/block.css?ver=1681804506 | 91.213.11.32 | 200 OK | 3.1 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/basic-elements/block-progress/block.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash70adad1eabf923c404d611b1d8befbbb efa90083f6a4085ee04e558d84d825eee373a1d4 d4739e0d772df10f4913cb1f1680efe46a68765649f7de2a7c733a9abd807c47
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/basic-elements/block-progress/block.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 3063
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/basic-elements/block-collapsibles/block.css?ver=1681804506 | 91.213.11.32 | 200 OK | 2.1 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/basic-elements/block-collapsibles/block.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashacb7fe574e861bcf5fa5e71bcc802dd7 99a5a84b6a22e683fee28db0d1d8a400aa28400c e05c4b441ed48e59ad4f7ca2fd9460563e5560f5842677fb743862d38dea0bb1
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/basic-elements/block-collapsibles/block.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 2097
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/basic-elements/block-tabs/block.css?ver=1681804506 | 91.213.11.32 | 200 OK | 6.1 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/basic-elements/block-tabs/block.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash6ed16c9935449d7df085aac6bf321c30 244320a953925dce77fc8212de92df4c953939b9 74f4e1d4b6abdd3a891991ec1aff2a998eadb389dc3c21c5097cbefde721a229
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/basic-elements/block-tabs/block.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 6131
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 | 91.213.11.32 | 200 OK | 113 kB |
URL GET HTTP/1.1heko.ro/wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (59701) Size113 kB (113381 bytes) Hash51a8390b47aa0582cf2d9c96c5addee2 b16a640874025d085c38119a1a02a3460f83f2de 98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Wed, 03 Apr 2024 03:12:46 GMT
Accept-Ranges: bytes
Content-Length: 113381
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/layout-blocks/block-row/block-row.css?ver=1681804506 | 91.213.11.32 | 200 OK | 946 B |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/layout-blocks/block-row/block-row.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash90fcd76f8649c1b02daa37e43764b369 7a1ab1957b0a0bcb1336c5b300d5d78821365b33 0970aa8255c4100c348511d8c98516a237792e1dfeb90111e04e60842fa80e8e
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/layout-blocks/block-row/block-row.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 946
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/basic-elements/block-section-heading/block.css?ver=1681804506 | 91.213.11.32 | 200 OK | 26 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/basic-elements/block-section-heading/block.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashdb8d4ce65e30b5e5b3fc9fbb05541a8a 8335db80e73b1e3284344482c961767e8656f637 4bf65cae1eaeb23d9930887f7a7327081412f0d90fe88163d3f7eef4966a506a
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/basic-elements/block-section-heading/block.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 25677
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/justified-gallery/block/block-justified-gallery.css?ver=1681804506 | 91.213.11.32 | 200 OK | 2.4 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/justified-gallery/block/block-justified-gallery.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashc0ced8bbc999f4ac4610a27e513621b3 0faf1b40693f92f67a5ac77b8b2fe5bb0477b24e 152c7a1bf03659d3a2e9f6c55fe8c7f5152276a951933f959ef9413d1f7e87ff
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/justified-gallery/block/block-justified-gallery.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 2388
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 | 91.213.11.32 | 200 OK | 2.6 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (2630), with no line terminators Hasheade318fbed91c096467dffa56406638 69d306a2097e792f99c80a5e0bb8863260399cad d589803f3ab380582ab137b22493c2bacaa92424fa88cee212e80288cac11fbb
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2023 23:07:11 GMT
Accept-Ranges: bytes
Content-Length: 2630
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/slider-gallery/block/block-slider-gallery.css?ver=1681804506 | 91.213.11.32 | 200 OK | 747 B |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/slider-gallery/block/block-slider-gallery.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash509c164f3671552428d1e938c6a24ba1 e6f8e77368abe44060e9516a68ce59703dad2cc9 90bd0b913e4b1da553acd1a4a7b368e157ea6bc9161e93f86f2543eec62948c6
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/slider-gallery/block/block-slider-gallery.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 747
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 | 91.213.11.32 | 200 OK | 31 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (30441) Hashd3ec229e04c8634c88cc4cb3f2934c11 785cb4beecaad98329fff0a54f9a5536cda200ab 73835f9dd494931cd0562ab2d4db8aaf3d54dca375abade1794ad1a12ae0d97c
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2023 23:07:11 GMT
Accept-Ranges: bytes
Content-Length: 30603
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 | 91.213.11.32 | 200 OK | 9.2 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (9234), with no line terminators Hashd66995a1b24eaa22cc89be313f504588 10b1fc564a5049597cf58258f49af978bcb1731f b1417aa4f28e5e0576e16b98b3e8e75310c694621ef8d39a390550d39d34ad47
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:06:53 GMT
Accept-Ranges: bytes
Content-Length: 9234
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/posts/block-posts-sidebar/block-posts-sidebar.css?ver=1681804506 | 91.213.11.32 | 200 OK | 3.8 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/posts/block-posts-sidebar/block-posts-sidebar.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash2d12ae444509e54e71ea07ce6a684f0c 152270ef686080ed23cc0519d4cb4264d034a98c f58d479787605c9e219e7dffc1f9e015f7946ae68e6ec23c5ef5ddb49df5a5dc
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/posts/block-posts-sidebar/block-posts-sidebar.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 3828
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/absolute-reviews/public/css/absolute-reviews-public.css?ver=1.1.1 | 91.213.11.32 | 200 OK | 31 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/absolute-reviews/public/css/absolute-reviews-public.css?ver=1.1.1 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash7b9063ee308b4064d40031dff15429e5 bd86be98c591b0c6c783829d0d708c58a82bdb9e ef2acbcf2f24667fc857962c6c1b7cd3cc7b1c1aa35dacaa8ffad3f9f00f812d
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/absolute-reviews/public/css/absolute-reviews-public.css?ver=1.1.1 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:14 GMT
Accept-Ranges: bytes
Content-Length: 30898
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=9.8.4 | 91.213.11.32 | 200 OK | 261 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=9.8.4 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (65528), with no line terminators Size261 kB (260560 bytes) Hash6aee29488344475b6a10f198aa5e88da a62660a2f5fe983c698b8122782fcb7728a43ad2 da6ddf6fcf69c628ddc218360ef295a5964d7c27b0cbb79d917b24fb8ceb3d88
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=9.8.4 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:06:53 GMT
Accept-Ranges: bytes
Content-Length: 260560
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/advanced-popups/public/css/advanced-popups-public.css?ver=1.1.6 | 91.213.11.32 | 200 OK | 13 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/advanced-popups/public/css/advanced-popups-public.css?ver=1.1.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashd4d656aa9e0f87b3001a3299c05645a5 ba64c56f03d6ed16acc32c860b604ee9bee41fa3 c670bf4ea63ed9c8f8d6db0ed773d783e7eb47ca0d786072c5a7291fb3575ad0
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/advanced-popups/public/css/advanced-popups-public.css?ver=1.1.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2023 23:08:23 GMT
Accept-Ranges: bytes
Content-Length: 12846
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.20.0 | 91.213.11.32 | 200 OK | 29 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.20.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (29337), with no line terminators Hash4de6dfc6ff180e33262861a679d40546 8de11c7f99e413282baa349d11657ccd2c468d4f 3e61990964ebd31443be4e6598163ebd71b73b139c42d52547b8a290f7d059ca
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.20.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2023 23:07:11 GMT
Accept-Ranges: bytes
Content-Length: 29337
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/content-formatting/block-heading/block.css?ver=1681804506 | 91.213.11.32 | 200 OK | 3.8 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/content-formatting/block-heading/block.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash2972bf4f5525456a24d3aaf22081c707 0b6c85454512ccc751b340e20027d38dab110f71 31c382e30b8c9475d22c4fa4a99e4d2161e4dae0908ea520b6ef3dcf3af3663b
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/content-formatting/block-heading/block.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 3826
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/content-formatting/block-paragraph/block.css?ver=1681804506 | 91.213.11.32 | 200 OK | 3.5 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/content-formatting/block-paragraph/block.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash522e59de3580fc1f3ee222e87bfe0ea7 216bc438087212b12685e117445273c19cde2f93 20cdb567a5734aacc93a928b450d370b42eee05664df757622798bc330775d39
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/content-formatting/block-paragraph/block.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 3547
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/content-formatting/block-list/block.css?ver=1681804506 | 91.213.11.32 | 200 OK | 4.7 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/content-formatting/block-list/block.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash9a87c5a39b369cff41b4642905e530bd de066564d70162ba2d574872234ef15892f47fb0 c1cce2164f037d23a6c642ae6f9dd7ef6ccab056b7b1ff88df0f54759b7748bd
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/content-formatting/block-list/block.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 4729
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/content-formatting/block-separator/block.css?ver=1681804506 | 91.213.11.32 | 200 OK | 2.3 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/content-formatting/block-separator/block.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash92264e01ea4db0bcbf501bac0dec17db 6ff94d0707ea5c94d8af5fcc002a19cb85469683 90182bb7804c72423286cf956b1c2b3f0d1655d7206ff45c5de72f72e61e54f8
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/content-formatting/block-separator/block.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 2275
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/basic-elements/block-group/block.css?ver=1681804506 | 91.213.11.32 | 200 OK | 3.3 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/basic-elements/block-group/block.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash77cd8d6e0c9cae1050fb357ad4eb1ba9 a903c2b570c0a091254cb520db5e0fc003052d60 d1219161aa0b4acbac811198524a7bf6272afae0ae5eec52ddfdbb7fd15081f4
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/basic-elements/block-group/block.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 3255
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/canvas/components/basic-elements/block-cover/block.css?ver=1681804506 | 91.213.11.32 | 200 OK | 636 B |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/basic-elements/block-cover/block.css?ver=1681804506 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash874b768073dffe103b7984346abc72f2 6cf29d7498a15c7e2c1f779853cf480d1b799cf2 faade092315e8c7c8a038b4080a24ee764f1fcb107db6ca229927e6ca7d60807
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/basic-elements/block-cover/block.css?ver=1681804506 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 636
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/coming-soon/public/css/public-powerkit-coming-soon.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 1.4 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/coming-soon/public/css/public-powerkit-coming-soon.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hasha6fc0dae193c38b601e6710aeb7acf07 955d708271b2419ab78221a94b312b71327c1eb0 35294f3aea1be84744bb4c705cc6fbe03cd6f1f468ae5731347a52d3acff94e1
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/coming-soon/public/css/public-powerkit-coming-soon.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 1402
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/author-box/public/css/public-powerkit-author-box.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 2.5 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/author-box/public/css/public-powerkit-author-box.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash56b26b2942056e73d8f25de1cff0c27e 20049227c9e1832a542dbe434ebdc5132c6d9526 872b9355e9384f4f8d6b4b83f278a53123c1cdb0b1a0f9fca82a5ae8f23f572c
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/author-box/public/css/public-powerkit-author-box.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 2458
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/content-formatting/public/css/public-powerkit-content-formatting.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 9.2 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/content-formatting/public/css/public-powerkit-content-formatting.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash9b60c21dc2de4202b89be75a6a1f49cf e6de8939e95b876b79b3ccfe25495bfc149afeeb 1724646da775a861e2e73ef05aa2c63775da5d1779c51d9b0c8ab7f28bfaa29b
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/content-formatting/public/css/public-powerkit-content-formatting.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 9189
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/basic-elements/public/css/public-powerkit-basic-elements.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 21 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/basic-elements/public/css/public-powerkit-basic-elements.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash21f1eb909896217ad01a76b09c2c47f0 02301da9b80f75bf86cbc0101b8d077a2f5b5390 347f6cd20880fc426f1d7099177d6b448493d2af646dc89fe9a4fe4f5db5cf31
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/basic-elements/public/css/public-powerkit-basic-elements.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 21185
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/contributors/public/css/public-powerkit-contributors.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 3.0 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/contributors/public/css/public-powerkit-contributors.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash77192016b9326905f3b20f9a59c05800 66e9d6b3e7fa807b6aa5d164bc7b2a68197cd574 9cd3358120e9690cdeef256ade204e2a306d28b08abb0aa46b1a40ac55c57fef
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/contributors/public/css/public-powerkit-contributors.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 2966
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/facebook/public/css/public-powerkit-facebook.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 477 B |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/facebook/public/css/public-powerkit-facebook.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash16f234a888fe9107972a423d25b28a63 eb5457cc84075ffa87b88b6df7bf22c810c8a954 5530a14a46b88600883db7c995657dac787fc500a855e05c4000a2a4627f8159
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/facebook/public/css/public-powerkit-facebook.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 477
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/inline-posts/public/css/public-powerkit-inline-posts.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 3.7 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/inline-posts/public/css/public-powerkit-inline-posts.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashbdbbd34e834b699abb8d690fb492dea1 d7003a2bacd621fa305e7b37fc7edbf2a0ac3a91 d0364a8643c1531b82bf9d55d51693f899d46fd61afa65a07cd7033e11f4306e
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/inline-posts/public/css/public-powerkit-inline-posts.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 3680
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/featured-categories/public/css/public-powerkit-featured-categories.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 4.9 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/featured-categories/public/css/public-powerkit-featured-categories.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash8f884b79e6a3674e415078029f48b0d2 15e6dcef1c679218797008c3ae9120bd2eddd03f 172790fe3c83b2f57db2095b32efe1437d2bfd47b97ed2b5686bc3ec2258c1db
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/featured-categories/public/css/public-powerkit-featured-categories.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 4908
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/instagram/public/css/public-powerkit-instagram.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 5.3 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/instagram/public/css/public-powerkit-instagram.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash82bef9505ddee265b0414d0a10fd5dcf 298abc00ad798025d3f6a2f4bd709df825a1bdca a0de710afef1c2feaf0c4969f1bf294a6279286cf70e9e7880c100d6752858ee
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/instagram/public/css/public-powerkit-instagram.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 5343
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/lightbox/public/css/glightbox.min.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 14 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/lightbox/public/css/glightbox.min.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (13785), with no line terminators Hashd5e0b3e55dd94af81580abcfb4585fb1 5db50f4b0a19a304d4f58e39cbbb22e7df17e25d 9c300b6fbfe6d373e1f53b2f0d33cf9df86d9310cc60531ad231cee97aca2bf0
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/lightbox/public/css/glightbox.min.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 13785
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/justified-gallery/public/css/public-powerkit-justified-gallery.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 2.6 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/justified-gallery/public/css/public-powerkit-justified-gallery.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash143c8314b8e287dd53981b0990b3bd46 a084429b9a943385737fb8724b1ea2ab114f5201 ae84d8ecece64009771372aaea7941fe8e801bca007275da0c536b652533266a
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/justified-gallery/public/css/public-powerkit-justified-gallery.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 2580
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/lightbox/public/css/public-powerkit-lightbox.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 1.4 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/lightbox/public/css/public-powerkit-lightbox.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashe3633201bf910e72910bfd6ac930b66a 370c7fc13d99bad8438d6ace500e3ee44a1fd021 e2cd3d65c33ec48aaa53bd85eea545423f11711568b68948b845448ddf56d383
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/lightbox/public/css/public-powerkit-lightbox.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 1418
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/opt-in-forms/public/css/public-powerkit-opt-in-forms.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 3.2 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/opt-in-forms/public/css/public-powerkit-opt-in-forms.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash2e1bed5c308ed5f4b7b00920b83897f1 791ba2195f17618bcbe3d452d21a6e346f692188 190c55c270ec5e3ba40904a45caef4d9c03de6d213475bfa293b6236570fb455
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/opt-in-forms/public/css/public-powerkit-opt-in-forms.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 3211
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/pinterest/public/css/public-powerkit-pinterest.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 2.1 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/pinterest/public/css/public-powerkit-pinterest.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash148daa33eba9dfd40259bd5cf11f5624 1e5539ee8630029357546a43105f32cf9f9fe297 df782a5abaa307fc8aecbb7096d148294940dde521190347d1b5090d5df2d5ce
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/pinterest/public/css/public-powerkit-pinterest.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 2061
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/posts/public/css/public-powerkit-widget-posts.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 2.7 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/posts/public/css/public-powerkit-widget-posts.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashb47643567776f182620a42e0e7adec6d aa8c454590096186b8b04efadfe39513b05d0942 39f781e151f895b59250d716ad54dfbac769b67f0f3e9edd6fd51379b9b46edd
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/posts/public/css/public-powerkit-widget-posts.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 2714
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/scroll-to-top/public/css/public-powerkit-scroll-to-top.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 1.1 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/scroll-to-top/public/css/public-powerkit-scroll-to-top.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash1c5f9e4cabbd7d00b68e072dd50c743c 3f82742958314c9c849e96c40458fbb9efaa5641 c208f932d9a1c8ea23299037b4a0a8dc08c8746203f2241390b1494aa01ed7d2
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/scroll-to-top/public/css/public-powerkit-scroll-to-top.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 1101
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/slider-gallery/public/css/public-powerkit-slider-gallery.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 717 B |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/slider-gallery/public/css/public-powerkit-slider-gallery.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash02c12e91e1cffab075b67c996d78c8a3 c1a1af8ec7d1c666983f32ea8706246b32819078 826c330d2f48c69a7caf21e4a6c8ada44f5eedd508d5689d7de32085e2d505ab
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/slider-gallery/public/css/public-powerkit-slider-gallery.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 717
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/table-of-contents/public/css/public-powerkit-table-of-contents.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 3.5 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/table-of-contents/public/css/public-powerkit-table-of-contents.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash491676df5ccc7763593ca73ea542b3e9 0ce49b31c2629bd138b37fd6393fad128afec803 df19891eb1979bed5bad1a5b827ee6e1c5766de50b95b375c96f65b64e7d7430
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/table-of-contents/public/css/public-powerkit-table-of-contents.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 3530
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/share-buttons/public/css/public-powerkit-share-buttons.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 73 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/share-buttons/public/css/public-powerkit-share-buttons.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash3d1e044dafecccf53fb2f7684338238e 670d75797329c2931067a4182a4eda51e5f1f381 a9c8c9a37641484b70c3f306d5bdbddec691a1c219ae95cb3dceac43b0560324
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/share-buttons/public/css/public-powerkit-share-buttons.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 73109
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/widget-about/public/css/public-powerkit-widget-about.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 1.5 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/widget-about/public/css/public-powerkit-widget-about.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash14c56c9e29ce5615bc240b9769bb5e56 b209c98bfbf3ed9bfeb5b39313534c05bf7261d3 1328007b840201e2485f2d1f6479f510823bbc7ae7ccc6b657d27eedf128fa85
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/widget-about/public/css/public-powerkit-widget-about.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 1490
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/social-links/public/css/public-powerkit-social-links.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 153 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/social-links/public/css/public-powerkit-social-links.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Size153 kB (152763 bytes) Hashb7a7d7f4758bef8845f2093146cd94a7 0988bf408b466f9cc9aa61b2792dfea484c94c4d 3b274ccab22ae80e2b294f5c99ad5519b374e77c6298a1ba82949374fd778b82
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/social-links/public/css/public-powerkit-social-links.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 152763
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/powerkit/modules/twitter/public/css/public-powerkit-twitter.css?ver=2.8.6 | 91.213.11.32 | 200 OK | 3.4 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/twitter/public/css/public-powerkit-twitter.css?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashf288aa46b90136439f2d01dc7e751df5 9276041151b4d0070831f28f9e537733d54c215e 1abefa72cea29ec6b9e8028a25d7257782bea5dc154007d088048c423545649c
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/twitter/public/css/public-powerkit-twitter.css?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 3440
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
|
|
| | 91.213.11.32 | 200 OK | 185 kB |
URL User Request GET HTTP/1.1IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (10284) Size185 kB (184675 bytes) Hash70ce0cd1e282190ed92b74c999bfdb16 76e9ac630ace16612ec55984e4c9514561987ae6 b4d3001264ed56321ce12e5aae1c0006cc71b192ce9b8f17d374ce5492dda236
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:41 GMT
Server: Apache
Link: <https://heko.ro/wp-json/>; rel="https://api.w.org/", <https://heko.ro/wp-json/wp/v2/pages/3132>; rel="alternate"; type="application/json", <https://heko.ro/>; rel=shortlink
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| heko.ro/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.6.0 | 91.213.11.32 | 200 OK | 18 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.6.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (17572), with no line terminators Hashb21773acf35229baacbdcd9dcae6fc8d cee51d25ca4048595a645451b66c437a55aee3eb 29934ab52db572c893d40563016fedd46dc3da5bb231af5d5b187e7fe66be9d0
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.6.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:06:53 GMT
Accept-Ranges: bytes
Content-Length: 17572
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.6.0 | 91.213.11.32 | 200 OK | 75 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.6.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (65534), with no line terminators Hash3771146a6c13cd738d210ecc2bd35ab5 fb3c3d0b2178b3c08cec7c5eec99b9beebf7dbe6 509be74020caaaf83a87d9b552b8ff49bc79efd821240a94ad4f7c48acefaf1e
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.6.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:06:53 GMT
Accept-Ranges: bytes
Content-Length: 74669
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 91.213.11.32 | 200 OK | 14 kB |
URL GET HTTP/1.1heko.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Wed, 09 Aug 2023 03:10:33 GMT
Accept-Ranges: bytes
Content-Length: 13577
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/themes/blueprint/style.css?ver=1.0.7 | 91.213.11.32 | 200 OK | 397 kB |
URL GET HTTP/1.1heko.ro/wp-content/themes/blueprint/style.css?ver=1.0.7 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (651) Size397 kB (397363 bytes) Hasha3631d2637f2fb6609e28695b03aaea5 85d236003fcf7380d5cb5f2f90e88d304fd180ec dc96733143a987580e5326e1772d00ca17646c726e5bf6df6cf06f01d5a4ca4e
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/blueprint/style.css?ver=1.0.7 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2023 08:55:00 GMT
Accept-Ranges: bytes
Content-Length: 397363
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/themes/blueprint/assets/css/woocommerce.css?ver=1.0.7 | 91.213.11.32 | 200 OK | 55 kB |
URL GET HTTP/1.1heko.ro/wp-content/themes/blueprint/assets/css/woocommerce.css?ver=1.0.7 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashac7714ad076e553b9fd5517fd8db8ed1 df5ff26df4ee0c7473cd6a81df24e656dba03a4a 3ebfc0f287b2cb887bac6e8deae223e851c62ce2b03a8db8a791e6ffc5d5bfa8
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/blueprint/assets/css/woocommerce.css?ver=1.0.7 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:52:38 GMT
Accept-Ranges: bytes
Content-Length: 55283
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 91.213.11.32 | 200 OK | 88 kB |
URL GET HTTP/1.1heko.ro/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Wed, 08 Nov 2023 03:19:34 GMT
Accept-Ranges: bytes
Content-Length: 87553
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/advanced-popups/public/js/advanced-popups-public.js?ver=1.1.6 | 91.213.11.32 | 200 OK | 11 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/advanced-popups/public/js/advanced-popups-public.js?ver=1.1.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hashccabeeca3ba484c6222d597982455605 fcd323b6b3402a76c40003a3d441a6f8a62ef8f9 2b6482ccd356cc8ec8beb9afa3be6345da7906ef1bb3bba546a39e6394902b91
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/advanced-popups/public/js/advanced-popups-public.js?ver=1.1.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2023 23:08:23 GMT
Accept-Ranges: bytes
Content-Length: 10705
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/canvas/components/basic-elements/block-alert/public-block-alert.js?ver=2.4.0 | 91.213.11.32 | 200 OK | 236 B |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/basic-elements/block-alert/public-block-alert.js?ver=2.4.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash9494041597a17c7a748823c8691ee099 bb8aa285da84d67310f189d557583a1b9043fbd8 832ab1b4aa67dc13f7bd3a4edadfd0f2e41a421400eb6249ae5d7548d0a0fb60
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/basic-elements/block-alert/public-block-alert.js?ver=2.4.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:43 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 236
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/canvas/components/basic-elements/block-collapsibles/public-block-collapsibles.js?ver=2.4.0 | 91.213.11.32 | 200 OK | 755 B |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/basic-elements/block-collapsibles/public-block-collapsibles.js?ver=2.4.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashc8596f2ab8ce123e2f6b9b81c11b093c bab4919341a76631404083fc62269e96d1ed5439 1a2c518645f351b7c0a5d4750a977bea702f9b35b7b8bad0246caf2a15da8444
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/basic-elements/block-collapsibles/public-block-collapsibles.js?ver=2.4.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 755
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/canvas/components/basic-elements/block-tabs/public-block-tabs.js?ver=2.4.0 | 91.213.11.32 | 200 OK | 736 B |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/basic-elements/block-tabs/public-block-tabs.js?ver=2.4.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash1c42fe4000d63da973c7554171d88c02 fff917f817d3e71f1bb25f95a67fbe1035db43c2 aca64aad202a0caa0622d7a5ccc762dd41c00f30607c549f16e5bfce44a3e32d
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/basic-elements/block-tabs/public-block-tabs.js?ver=2.4.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 736
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/canvas/components/justified-gallery/block/jquery.justifiedGallery.min.js?ver=2.4.0 | 91.213.11.32 | 200 OK | 18 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/justified-gallery/block/jquery.justifiedGallery.min.js?ver=2.4.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18351) Hash324107c3ac9cca7338e80e2aebe94d95 1ee6a7df2ab845a5b18df766d902322cd429bc78 47d0390fea1660753108946b180abe68897b889f6b448d0adc0f10f508661ed8
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/justified-gallery/block/jquery.justifiedGallery.min.js?ver=2.4.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 18511
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-includes/js/imagesloaded.min.js?ver=5.0.0 | 91.213.11.32 | 200 OK | 5.5 kB |
URL GET HTTP/1.1heko.ro/wp-includes/js/imagesloaded.min.js?ver=5.0.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (4358) Hash6823120876c9afc8929418c9a6f8e343 90b0adb37d70ffec5f9189c36bb0027c310c9502 b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Wed, 08 Nov 2023 03:19:34 GMT
Accept-Ranges: bytes
Content-Length: 5520
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/canvas/components/justified-gallery/block/public-block-justified-gallery.js?ver=2.4.0 | 91.213.11.32 | 200 OK | 1.7 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/justified-gallery/block/public-block-justified-gallery.js?ver=2.4.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash1231428ea1b345cbd776e7987c8dc267 a31df482dea593dab3eb1d7e94a60e6a2aa46f19 8a9ecdb41088e36f1f44732089683e2cd0baabd42f40de94ada612c371461f3c
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/justified-gallery/block/public-block-justified-gallery.js?ver=2.4.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 1698
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/canvas/components/slider-gallery/block/flickity.pkgd.min.js?ver=2.4.0 | 91.213.11.32 | 200 OK | 54 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/slider-gallery/block/flickity.pkgd.min.js?ver=2.4.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (54075) Hashbc1df878e688edc76053ce7ed8ff4298 d26daf331b624b13ecdb3ffe08e1721614d1726e 407c57f44df9370aa9daf3f6db4458de526dfaf6c825c9017b1206537c91aca9
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/slider-gallery/block/flickity.pkgd.min.js?ver=2.4.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 54076
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/canvas/components/slider-gallery/block/public-block-slider-gallery.js?ver=2.4.0 | 91.213.11.32 | 200 OK | 2.3 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/canvas/components/slider-gallery/block/public-block-slider-gallery.js?ver=2.4.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash8db79b5f8a77a43d671d57e214bb5d94 c82ae3907c9b36fdb6b9cbe07a080e7dfb8f9472 62ab2ed25887f741906e8d20701a2dcef183af815995d32ed5abca3076ee3bde
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/canvas/components/slider-gallery/block/public-block-slider-gallery.js?ver=2.4.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:06 GMT
Accept-Ranges: bytes
Content-Length: 2321
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 | 91.213.11.32 | 200 OK | 15 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (14924), with no line terminators Hash157f18464a93eab7fb62a7f3e618ac2c f47727e80d529d6e4941fea32f2e8a8ee5008b8a 9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2023 23:07:11 GMT
Accept-Ranges: bytes
Content-Length: 14927
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.20.0 | 91.213.11.32 | 200 OK | 25 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.20.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (25294), with no line terminators Hash32f353893906d18e1fc351066e4b263a c8ed65fffa387077fe4ba700b7913bbb59f90436 80d7254b4e01cf17bf56254fc3698a81ce127553bc9eac47ef24b9e2a94cad8f
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.20.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2023 23:07:11 GMT
Accept-Ranges: bytes
Content-Length: 25294
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1 | 91.213.11.32 | 200 OK | 13 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (12943), with no line terminators Hash5bc2b1fa970f9cecb3c30c0c92c98271 7c6bb87aaa24714b7b3b3c86dd932736a80270a9 1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:24 GMT
Accept-Ranges: bytes
Content-Length: 12943
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 | 91.213.11.32 | 200 OK | 21 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (21310), with no line terminators Hashf3d7b1578081c9cf982cfbc29f514836 fdb6b04b917b9a1c72e3cf2da686c2584d3fd50f c0f874276d38c6d9e43767d76a15de39506461b268a3cbf19fc8218f3ec8631a
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:06:53 GMT
Accept-Ranges: bytes
Content-Length: 21310
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1 | 91.213.11.32 | 200 OK | 10 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (10241), with no line terminators Hash7be65ac27024c7b5686f9d7c49690799 241ada4a86443adc5623d1a3a8018a96d9de6d5a 52db930f81d97113dde679cac624cb5435b56d4ac486e91a0b6692d2cb615a84
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:24 GMT
Accept-Ranges: bytes
Content-Length: 10241
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/powerkit/modules/basic-elements/public/js/public-powerkit-basic-elements.js?ver=4.0.0 | 91.213.11.32 | 200 OK | 1.2 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/basic-elements/public/js/public-powerkit-basic-elements.js?ver=4.0.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash19797153253587e539dd957d2bcbee62 fe2a160f94181cd646460f1770cdcf66ab768a74 32879ecf9aea0b36eb97887c282c3edf857d3dab33fe098fd4047be1c0edeb4a
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/basic-elements/public/js/public-powerkit-basic-elements.js?ver=4.0.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 1231
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/powerkit/modules/lightbox/public/js/public-powerkit-lightbox.js?ver=2.8.6 | 91.213.11.32 | 200 OK | 4.4 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/lightbox/public/js/public-powerkit-lightbox.js?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash82e2804dde5de667d079991617ab016d 8b47c51d8005c591d228c769addd25cf96761220 e8b9704ac1420eca9d1fc12052ec43b1dc680cc85ddfa8c82387291fcce90c10
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/lightbox/public/js/public-powerkit-lightbox.js?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 4419
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/powerkit/modules/justified-gallery/public/js/public-powerkit-justified-gallery.js?ver=2.8.6 | 91.213.11.32 | 200 OK | 1.7 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/justified-gallery/public/js/public-powerkit-justified-gallery.js?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash38afdcf7b8c6c72e2a31371b16d6428a 6a5c3c35d55eb25dda5577cca3a2eb70c9eb083e e6888cd690ab2b9c9361b3e1bdccdfa37be04374c5ab731d7651bbcae5eab6c9
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/justified-gallery/public/js/public-powerkit-justified-gallery.js?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 1688
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/powerkit/modules/lightbox/public/js/glightbox.min.js?ver=2.8.6 | 91.213.11.32 | 200 OK | 56 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/lightbox/public/js/glightbox.min.js?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (56222), with no line terminators Hash2c8b54832f234f81bb1ecd75549fd014 58238d71cb1f3b00e872803d7965024188b8736e 267ab4a5ea85c601950cdb29b6e278c024b3e1be38d2ba27d2c39523c2e34741
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/lightbox/public/js/glightbox.min.js?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 56222
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/powerkit/modules/scroll-to-top/public/js/public-powerkit-scroll-to-top.js?ver=2.8.6 | 91.213.11.32 | 200 OK | 507 B |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/scroll-to-top/public/js/public-powerkit-scroll-to-top.js?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash80986b3cf233a8b3a20a4d74abed8e42 82ae791a3dc7f7df75880f1252b361d032bae8e6 f5d1555ca1d1736e61e55fa9abd975a91b48490c4582944fe2d23c22b20b817f
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/scroll-to-top/public/js/public-powerkit-scroll-to-top.js?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 507
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/powerkit/modules/opt-in-forms/public/js/public-powerkit-opt-in-forms.js?ver=2.8.6 | 91.213.11.32 | 200 OK | 1.4 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/opt-in-forms/public/js/public-powerkit-opt-in-forms.js?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash189383a5529c6f2c5d4e817e62be94bd d39706288332ed76710e72eacd100ceab6902fa4 565637476a6f33a1187e3dc40aa6f65fda018dd1ed19f088490bdd2c2076b6d8
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/opt-in-forms/public/js/public-powerkit-opt-in-forms.js?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 1361
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/powerkit/modules/pinterest/public/js/public-powerkit-pin-it.js?ver=2.8.6 | 91.213.11.32 | 200 OK | 4.7 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/pinterest/public/js/public-powerkit-pin-it.js?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash56baee2d89658381539638f92617c7f1 f97b9cf4a906e92d9c558530081356c2cebe753d 9ebf830ab30802bb8a6e9929e4ab59ef403ee5d98aebe086b9f3615a09fad3b4
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/pinterest/public/js/public-powerkit-pin-it.js?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 4698
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/powerkit/modules/share-buttons/public/js/public-powerkit-share-buttons.js?ver=2.8.6 | 91.213.11.32 | 200 OK | 3.1 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/share-buttons/public/js/public-powerkit-share-buttons.js?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hash05b96c20890a4a304340285ec077260c a62a6c5ba94174e8221ea330b54eadc03ef46035 d4da2752a0c926a286a5ed2627348471eb7fc863524622afdfe5314759be02fa
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/share-buttons/public/js/public-powerkit-share-buttons.js?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 3087
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/powerkit/modules/table-of-contents/public/js/public-powerkit-table-of-contents.js?ver=2.8.6 | 91.213.11.32 | 200 OK | 2.8 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/table-of-contents/public/js/public-powerkit-table-of-contents.js?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash10fab575908559d3d6a0316c2cad2efd 9ad19950bdb77bd75552f52db6c74da07b1ff777 6abe50ef3e60504ea153ca28d383b84b8b184428f316d1038feebd6282463d52
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/table-of-contents/public/js/public-powerkit-table-of-contents.js?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 2838
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.6.0 | 91.213.11.32 | 200 OK | 9.5 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.6.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (9111) Hash4ffc462852340d9e6b5b7b29276fcb71 5e04050e09e3f7d8107ef3b9aa9313be618c460e 18336635cd5e9edf2aff3ae18b67250684311c2a459457091b063dafba57d526
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.6.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:06:53 GMT
Accept-Ranges: bytes
Content-Length: 9505
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/powerkit/modules/slider-gallery/public/js/public-powerkit-slider-gallery.js?ver=2.8.6 | 91.213.11.32 | 200 OK | 2.3 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/modules/slider-gallery/public/js/public-powerkit-slider-gallery.js?ver=2.8.6 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash3e7d8bc24ad3905c4d3e6370f1213cfc 72267a5076cb9fefd764f6fc10872384358ea5ac 50c65d09bcac0e138d268b7ddb4bbad014becccdba7c1eb07af05cf4dff244c0
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/modules/slider-gallery/public/js/public-powerkit-slider-gallery.js?ver=2.8.6 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 2317
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.6.0 | 91.213.11.32 | 200 OK | 3.3 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.6.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (3348), with no line terminators Hashe09d0a7957add97c513826830e6403b4 3117426317e6869cd8b0d4da05dfd0a6dea1e8a4 ef9bed3d9990450b643ec6710ede27b28f7411250c06132dc1afb0a7aae0c0aa
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.6.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:06:53 GMT
Accept-Ranges: bytes
Content-Length: 3348
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.6.0 | 91.213.11.32 | 200 OK | 1.8 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.6.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1668) Hashd0a6d8547c66b0d7b0172466558d1208 ff93916519c7b9483251f609e4d29f38c30a66e3 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.6.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:06:53 GMT
Accept-Ranges: bytes
Content-Length: 1834
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.6.0 | 91.213.11.32 | 200 OK | 2.1 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.6.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2139), with no line terminators Hashb72c1cbb1530a011a27bd9800f26765a 27b825c5d8255f33b8427a059d4545ebd65e1746 a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.6.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:06:53 GMT
Accept-Ranges: bytes
Content-Length: 2139
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.6.0 | 91.213.11.32 | 200 OK | 3.3 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.6.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (3286), with no line terminators Hash10d8361765efe3b24c83f4a33485881b 7fae319ccbaf80d67a3c733dcab9af1e0186d2db 2d115c5658b92a6e72d1b0f56b9ffa678ab3746f7ff5646b047110fe3b3bed96
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.6.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:06:53 GMT
Accept-Ranges: bytes
Content-Length: 3286
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/themes/blueprint/assets/js/scripts.js?ver=1.0.7 | 91.213.11.32 | 200 OK | 83 kB |
URL GET HTTP/1.1heko.ro/wp-content/themes/blueprint/assets/js/scripts.js?ver=1.0.7 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (378) Hash16f855a205998f53f4e599f8625c14b7 ffe978d888d15e55e08a0c2795a9408ec6d05e0f 8c6c1e88342449b5f92c9da15dfb85083ac364f1f1b96ea3ae7473fde59ea2d4
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/blueprint/assets/js/scripts.js?ver=1.0.7 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:52:38 GMT
Accept-Ranges: bytes
Content-Length: 82572
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-700.woff2 | 91.213.11.32 | 200 OK | 41 kB |
URL GET HTTP/1.1heko.ro/wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-700.woff2 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 41360, version 1.0 Hash6c78892bf7202f9c0a4e0c6ceaa84f7f 2fbcef3619c71bdf22f181985779481323e42173 6a9e77302d2269936710aff68a87f14384d24232cf2e05fb12719a32473d263a
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-700.woff2 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:52:38 GMT
Accept-Ranges: bytes
Content-Length: 41360
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| heko.ro/wp-content/plugins/lightweight-cookie-notice/public/assets/js/production/general.js?ver=1.19 | 91.213.11.32 | 200 OK | 51 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/lightweight-cookie-notice/public/assets/js/production/general.js?ver=1.19 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (50593), with no line terminators Hash3d77867ce41a727bd94e2ff5a01e17d4 120c1178192844287e76f137cc07d8128431dd43 51369fd58cf5acc0a768afa39a8eca6c838835728c3482dbe66d95c5f6c9358d
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/lightweight-cookie-notice/public/assets/js/production/general.js?ver=1.19 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Fri, 29 Sep 2023 12:55:05 GMT
Accept-Ranges: bytes
Content-Length: 50593
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| heko.ro/wp-content/themes/blueprint/assets/static/icon-fonts/icons.ttf | 91.213.11.32 | 200 OK | 15 kB |
URL GET HTTP/1.1heko.ro/wp-content/themes/blueprint/assets/static/icon-fonts/icons.ttf IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icons Hash5fba13e16a0ca2726885c841a52b2cf0 be37cc15522aa845b602b3940b1b2f1a05ea8535 90366c7b05ce2230185af416759659b2ddc4c196e162b866ed8029084c7a373e
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/blueprint/assets/static/icon-fonts/icons.ttf HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/wp-content/themes/blueprint/style.css?ver=1.0.7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:52:38 GMT
Accept-Ranges: bytes
Content-Length: 14684
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: font/ttf
|
|
| heko.ro/wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-500.woff2 | 91.213.11.32 | 200 OK | 41 kB |
URL GET HTTP/1.1heko.ro/wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-500.woff2 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 41368, version 1.0 Hash9e31786c1963ed732fb18fcf1ca98ece 508a381a077743211f4a508ae5b313cd3b6650fe 465eea6f8006c63dc9856d7bf08c4184b616bd38ef776be35bc110eb890f950e
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-500.woff2 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:52:38 GMT
Accept-Ranges: bytes
Content-Length: 41368
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| heko.ro/wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-regular.woff2 | 91.213.11.32 | 200 OK | 40 kB |
URL GET HTTP/1.1heko.ro/wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-regular.woff2 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 40396, version 1.0 Hash082c372d53a98e539fdad4f152b25b48 53ac38b80626a800be243aecd307e8fa19f4fcda 558b258dd60252a33cbd734c4fb66c7ae4ffa3bf9660b225aba3ecd5dffe86a4
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-regular.woff2 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:52:38 GMT
Accept-Ranges: bytes
Content-Length: 40396
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| heko.ro/wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-600.woff2 | 91.213.11.32 | 200 OK | 41 kB |
URL GET HTTP/1.1heko.ro/wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-600.woff2 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 41248, version 1.0 Hash4d22072ea304b24279a61b76c09aeb67 f38a47872dbdf670517fe78830b1e3b632fec24d cd1f9ec0a09d6a57a6bda07ac3dae5a4c842b2716a361c9a17018b8070b6cc97
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-600.woff2 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:52:38 GMT
Accept-Ranges: bytes
Content-Length: 41248
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| heko.ro/wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-300.woff2 | 91.213.11.32 | 200 OK | 41 kB |
URL GET HTTP/1.1heko.ro/wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-300.woff2 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 40668, version 1.0 Hash3e05aaf77dc06144ef4ca3dd5876c887 8a82cef7a531a2c918cf795176dbd98f8ccb5870 60aed6d084957dffbef231c164b02324eb4bb0a0d1e20aa08731e20b032b46fa
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/blueprint/assets/static/fonts/plus-jakarta-sans-300.woff2 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:52:38 GMT
Accept-Ranges: bytes
Content-Length: 40668
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| heko.ro/wp-content/plugins/powerkit/assets/fonts/powerkit-icons.woff | 91.213.11.32 | 200 OK | 26 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/powerkit/assets/fonts/powerkit-icons.woff IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 26332, version 1.0 Hash14e55dbc3a9c5963c597014487df92a8 6346e3675cc6771d1bb9bdf3afebc5f01f7a8ea3 7cf2e089c67a6b91fa4dd2e569ddc7d7fe97a33ff39a971b24e239d9f6fc498a
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/powerkit/assets/fonts/powerkit-icons.woff HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/wp-content/plugins/powerkit/assets/css/powerkit.css?ver=2.8.6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 07:55:11 GMT
Accept-Ranges: bytes
Content-Length: 26332
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: font/woff
|
|
| heko.ro/wp-content/uploads/2023/04/banner-heko-hp3.jpg | 91.213.11.32 | 200 OK | 58 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2023/04/banner-heko-hp3.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 1384x400, components 3 Hashcc3d155bd1dd6ddebb4d714994ce0e63 e68dd905ed579bca13efcf85396dc1551194cb65 57029ba2a3caa745edbbd59be2a2afe72e4bea66d1e923b77570f1d5ca96fb6c
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/banner-heko-hp3.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:42:08 GMT
Accept-Ranges: bytes
Content-Length: 57889
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/2023/04/logo-heko-1.png | 91.213.11.32 | 200 OK | 77 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2023/04/logo-heko-1.png IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 1292 x 374, 8-bit/color RGBA, non-interlaced Hash093c1640e64282aa21f542185a6303cc 0ba51eeb983b4264db6d4106ec7659ecc517df14 eb2818f4e6d3c12bfd0a2cd37c84346dc6a241a9b2fb04a9d9af5aa5405cc9cd
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/logo-heko-1.png HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2023 08:41:42 GMT
Accept-Ranges: bytes
Content-Length: 76967
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/png
|
|
| heko.ro/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.6.0 | 91.213.11.32 | 200 OK | 7.0 kB |
URL GET HTTP/1.1heko.ro/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.6.0 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (7043), with no line terminators Hash456663a286a204386735fd775542a59e 0a61620b88f4ae0fa7d71e2c7a014ea2c3ab5749 a7a83e60e7e3b8cadeed69327ba498b4cd68605db6e408729fa1b946758e7501
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.6.0 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:06:53 GMT
Accept-Ranges: bytes
Content-Length: 7043
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: text/css
|
|
| heko.ro/wp-content/uploads/2023/04/wall-heko-1024x683.jpg | 91.213.11.32 | 200 OK | 55 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2023/04/wall-heko-1024x683.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1024x683, components 3 Hashe7d44105f296a480aa9f0b7043d8f120 674021a5fc5845e6771b461eaf05c379b35a0834 d5b530ee711fa3a9791c430a74dd6172a6ec4be0ed0122f0187f0d14d50832ce
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/wall-heko-1024x683.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:13:04 GMT
Accept-Ranges: bytes
Content-Length: 54859
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/2023/04/icon.png | 91.213.11.32 | 200 OK | 2.3 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2023/04/icon.png IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashc6c687c427715acf8645f89bf9d53cc6 a346f5d77ddecc4e347eb71b9e2bb2173b00c15d f5d3802f48e559ecfd5894a0006dcdcc0e2b0b57b017e27028ccbc44a366f2aa
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/icon.png HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 09:52:07 GMT
Accept-Ranges: bytes
Content-Length: 2286
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/png
|
|
| heko.ro/wp-content/uploads/2020/02/istorie2.jpg | 91.213.11.32 | 200 OK | 49 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2020/02/istorie2.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 396x265, components 3 Hasha3e18a2931db23bf7a71e4547f524c65 27356b9693ac4837d79ef7503f477912de646a0b 878d7b097c8aa5f2b47a212df8d5fe22d413c318c92d3b1849cffd87b869d8cf
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/02/istorie2.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 08:18:49 GMT
Accept-Ranges: bytes
Content-Length: 48712
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/2023/04/misiune-principii-800x500.jpg | 91.213.11.32 | 200 OK | 62 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2023/04/misiune-principii-800x500.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 800x500, components 3 Hashfee9816575c26137e320866d4adbaeab 83f0ca57611ec8ef12cc702469e860be897c3367 9e391ad9e3d7a237c325e6e344d466ff4efcecbb54ff3e3972ec139e63d08a68
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/misiune-principii-800x500.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2023 07:23:49 GMT
Accept-Ranges: bytes
Content-Length: 61869
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/2023/04/logo-heko-light.png | 91.213.11.32 | 200 OK | 54 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2023/04/logo-heko-light.png IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 1292 x 374, 8-bit/color RGBA, non-interlaced Hash5346bb037273fdf98dcce71b132b337d 720c13e29df45562bea94302d32d572c5de74437 2cfeb43011eb62c6200c25d1f322e808c8b0c9e7b5f7bbc431be7360f354c655
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/logo-heko-light.png HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 09:51:41 GMT
Accept-Ranges: bytes
Content-Length: 54014
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Content-Type: image/png
|
|
| heko.ro/wp-content/uploads/images/poza_categorie_incalzire_in_pardoseala-1.jpg | 91.213.11.32 | 200 OK | 79 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/images/poza_categorie_incalzire_in_pardoseala-1.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 545x300, components 3 Hashec2892e4edfab4689ff83976b50f29a6 b1151a3eab7f1ac9122e10729febd8b2fefb5a8e 9c9499b90756e791f28651acc1e39dd79432389533bc441afc5e3174ba64e4c9
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/images/poza_categorie_incalzire_in_pardoseala-1.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2023 14:00:13 GMT
Accept-Ranges: bytes
Content-Length: 78642
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/images/poza_categorie_tevi_si_fitinguri_multistrat-11.jpg | 91.213.11.32 | 200 OK | 46 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/images/poza_categorie_tevi_si_fitinguri_multistrat-11.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 545x300, components 3 Hashb31cd40466c269d888776651a4122f8a caf3924b35c8c3485685a2d83cefb03c7539f19f f53ac811381f1cdd7d53a51b39fc93d51760a5386c1d6515a585379980c4cc33
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/images/poza_categorie_tevi_si_fitinguri_multistrat-11.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Fri, 22 Sep 2023 07:54:46 GMT
Accept-Ranges: bytes
Content-Length: 45508
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/images/tevi-ppr-cat1.jpg | 91.213.11.32 | 200 OK | 103 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/images/tevi-ppr-cat1.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 545x300, components 3 Size103 kB (102574 bytes) Hash7cb80e6de6794a0d4d0738488b2b7d00 6916bc64ec11eb708b7ab86ae54ac0d2aca09d48 4d5123d0e7c63303b380e8d54d32a9b02f2918aa05f7d51aa9398ac6bd52339b
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/images/tevi-ppr-cat1.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Wed, 18 Oct 2023 09:36:11 GMT
Accept-Ranges: bytes
Content-Length: 102574
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/images/ropb-category.jpg | 91.213.11.32 | 200 OK | 72 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/images/ropb-category.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 545x300, components 3 Hash50efeb8a2bd8d2d38ba951902497b391 e8f9602fbb04cd61c54a504da9fcd910a323352d 83e4122c1544e83ded57b38ebd7f4fd43613c5002fac12ae970c2cfee4b5501e
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/images/ropb-category.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Fri, 05 May 2023 08:10:35 GMT
Accept-Ranges: bytes
Content-Length: 72427
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/images/categ-radiatoare-design.jpg | 91.213.11.32 | 200 OK | 71 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/images/categ-radiatoare-design.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 545x300, components 3 Hash11e4967acef166527091e05888662b1d f34486b7bacbc9c5f69eb25c68e3767201d7e28e 3e0d1dbf4c6a185decb4330d6d119ac2bc9476a174556e14619460928997eddb
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/images/categ-radiatoare-design.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2023 14:02:46 GMT
Accept-Ranges: bytes
Content-Length: 70722
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/images/poza-articol-scurgeri.jpg | 91.213.11.32 | 200 OK | 73 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/images/poza-articol-scurgeri.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 940x517, components 3 Hash66853a889005c1254c2126cc0d545cda 409deab09f8caaf9345f641d46a9a133cc2d5fe0 fa8cccb2476de1e2cd1bd02c13277e7059834b3c4092255e61856692ab9611ed
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/images/poza-articol-scurgeri.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Fri, 05 May 2023 08:32:40 GMT
Accept-Ranges: bytes
Content-Length: 72722
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/images/ssu-category.jpg | 91.213.11.32 | 200 OK | 131 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/images/ssu-category.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 545x300, components 3 Size131 kB (130748 bytes) Hash189c9f21a2c7d5be75432c03a3d4042c bead7a55ba34144c401c8a5da91e95f51ccf711b 36b37410218213d5eee39bd840b12f4e7013bba86883ff3c6560f011cecf8944
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/images/ssu-category.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Fri, 05 May 2023 08:37:47 GMT
Accept-Ranges: bytes
Content-Length: 130748
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/images/elemente-fixare1.jpg | 91.213.11.32 | 200 OK | 120 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/images/elemente-fixare1.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 545x300, components 3 Size120 kB (119921 bytes) Hashfe81185eb4f7301e5dc7c319970ea9cf e9dd5b33e200b0d5c6604001d82570a74c0a3b05 f8854f3c7aa26640d7b73f03ddbfb4fd58488582fa6c12007a582db8e6b32a1b
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/images/elemente-fixare1.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Fri, 05 May 2023 08:38:38 GMT
Accept-Ranges: bytes
Content-Length: 119921
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/images/poze-portocaliu-categ-robineti.jpg | 91.213.11.32 | 200 OK | 137 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/images/poze-portocaliu-categ-robineti.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 545x300, components 3 Size137 kB (137180 bytes) Hashc2479656e4e8d095ef457fe3df4a4e46 fe732cdfc6dca915f2aae0ad35a00698ce4a53c7 9f5fe41f78abf7105c737b886282df761dbf5915c03153f777cdcef09af8bac9
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/images/poze-portocaliu-categ-robineti.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Fri, 01 Mar 2024 09:00:58 GMT
Accept-Ranges: bytes
Content-Length: 137180
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/images/ccs-category.jpg | 91.213.11.32 | 200 OK | 189 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/images/ccs-category.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 545x300, components 3 Size189 kB (188554 bytes) Hashdd4cfecf3b6046995e7a3e64111089e4 908b3b81b55beb31cc6c6b8d4688d92d3c8ad0c3 7e29bb4aabf822d5710a5702077dd7565bb4584b232a1d31b5416dc0291c55c0
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/images/ccs-category.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Fri, 05 May 2023 08:30:03 GMT
Accept-Ranges: bytes
Content-Length: 188554
Keep-Alive: timeout=5, max=78
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 | 91.213.11.32 | 200 OK | 19 kB |
URL GET HTTP/1.1heko.ro/wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Wed, 03 Apr 2024 03:12:46 GMT
Accept-Ranges: bytes
Content-Length: 18726
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| assets.pinterest.com/js/pinit.js?ver=6.5.3 | 2.18.172.195 | 200 OK | 203 B |
URL GET HTTP/2assets.pinterest.com/js/pinit.js?ver=6.5.3 IP2.18.172.195:443
CertificateIssuerDigiCert Inc Subject*.pinterest.com Fingerprint8E:D1:BC:9A:53:E5:51:57:5E:48:5E:22:82:8C:60:F8:74:F0:08:AC ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (361), with no line terminators Hash9e724ccab52ce087d92250b1e06ef0ee 8000043a1fb8735345f8b27c65b85331099aed8d 3faadebc89cdb21d11634a032816f152462d1cb8903eb21d0642501fcad065de
GET /js/pinit.js?ver=6.5.3 HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: "62d32c28f14783b94192cd8d35bc010d"
content-encoding: br
accept-ranges: bytes
content-type: application/javascript; charset=utf-8
content-length: 203
cache-control: max-age=296
alt-svc: h3=":443"; ma=600
vary: Accept-Encoding, Origin
akamai-x-true-ttl: 300
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| heko.ro/wp-content/uploads/2023/04/icon.png | 91.213.11.32 | 200 OK | 2.3 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2023/04/icon.png IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashc6c687c427715acf8645f89bf9d53cc6 a346f5d77ddecc4e347eb71b9e2bb2173b00c15d f5d3802f48e559ecfd5894a0006dcdcc0e2b0b57b017e27028ccbc44a366f2aa
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/icon.png HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 09:52:07 GMT
Accept-Ranges: bytes
Content-Length: 2286
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/png
|
|
| heko.ro/wp-content/uploads/2023/04/icon-80x80.png | 91.213.11.32 | 200 OK | 2.5 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2023/04/icon-80x80.png IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced Hashfb9b9a2778f6d97a9fc9162cf91ea167 84ed03df0efbd8d231d37fe75ba672f80b5e8118 ec56d1716bffb05ae1a379092f56e94f6281d604fa4f9f80e0f120adfb985712
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/icon-80x80.png HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:44 GMT
Server: Apache
Last-Modified: Tue, 18 Apr 2023 09:52:07 GMT
Accept-Ranges: bytes
Content-Length: 2476
Keep-Alive: timeout=5, max=77
Connection: Keep-Alive
Content-Type: image/png
|
|
| heko.ro/wp-content/uploads/2023/04/distribution-page-800x500.jpg | 91.213.11.32 | 200 OK | 33 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2023/04/distribution-page-800x500.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 800x500, components 3 Hash3ed2770480e99dc61048438b2c16b268 405fdb2f2057734f70f31d44a8f17d1e2ca9f0bc 043f504b562059ec96084d5383eec958984956e6243e17c384a4ef31c94c68d4
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/distribution-page-800x500.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Cookie: _color_system_schema=default
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:45 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2023 07:23:51 GMT
Accept-Ranges: bytes
Content-Length: 33169
Keep-Alive: timeout=5, max=76
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/2023/04/parteneriate-strategice-page-800x500.jpg | 91.213.11.32 | 200 OK | 72 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2023/04/parteneriate-strategice-page-800x500.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 800x500, components 3 Hashb017e7eeef86c46f2685246eb38b80e9 0e70489b3a954b61fe25710844b383e73a518461 8b59bf9bb15df168774f2349b5e0bbec0039c4cab09b8f45744b441c1081769f
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/parteneriate-strategice-page-800x500.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Cookie: _color_system_schema=default
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:45 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2023 07:23:53 GMT
Accept-Ranges: bytes
Content-Length: 71845
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/2023/04/poza-sertizare-articol1-800x500.jpg | 91.213.11.32 | 200 OK | 50 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2023/04/poza-sertizare-articol1-800x500.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 800x500, components 3 Hash25fe5e43833fe45f22c83d2512720877 1aa056eaa33d321bc7fd0d7d4dee441389e87f7a 8342ca1892d161b6e13d159da1d88ce3eb7ea0300ffc9883a6e18d2d1f446cf4
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/poza-sertizare-articol1-800x500.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Cookie: _color_system_schema=default
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:45 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2023 07:23:41 GMT
Accept-Ranges: bytes
Content-Length: 49598
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/2020/02/economisirea-apei.jpg | 91.213.11.32 | 200 OK | 124 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2020/02/economisirea-apei.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 545x358, components 3 Size124 kB (123780 bytes) Hash565127a852b6cf833e955ae2a9523031 6ec9f4c1e645efd8bf3d9a86e466dd2e62c8e5f3 323737ff78c9a28dcea5d2cc4fc1a64ea001d462a0f482500991c78870aa2348
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/02/economisirea-apei.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Cookie: _color_system_schema=default
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:45 GMT
Server: Apache
Last-Modified: Wed, 26 Apr 2023 06:41:09 GMT
Accept-Ranges: bytes
Content-Length: 123780
Keep-Alive: timeout=5, max=78
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/2020/02/articol-baterii-moderne.jpg | 91.213.11.32 | 200 OK | 89 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2020/02/articol-baterii-moderne.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 545x358, components 3 Hash198d9e0884edad544c8fe7b2b08e6920 a03f60cdd7f147303ed55a1c59ffb109abf97750 b3cbc4193ba399d64acce10ff571d38d3705ada49b8f2189dd93d5ded66f03c3
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/02/articol-baterii-moderne.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Cookie: _color_system_schema=default
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:45 GMT
Server: Apache
Last-Modified: Wed, 26 Apr 2023 06:36:07 GMT
Accept-Ranges: bytes
Content-Length: 88607
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/2020/02/FERRO_FREYA_CU_PEOPLE_01_BFR41B-scaled-768x512.jpg | 91.213.11.32 | 200 OK | 52 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2020/02/FERRO_FREYA_CU_PEOPLE_01_BFR41B-scaled-768x512.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 768x512, components 3 Hashca22e7c9997a54da5e4f17aea21483d5 74a23a5fc44bde9a12e85ad4bb89565aad1c4f0c f695c8a797fa8e8c199610a09bd274ab999744cb69e77104fd7f8ad7a1a3dd6e
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/02/FERRO_FREYA_CU_PEOPLE_01_BFR41B-scaled-768x512.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Cookie: _color_system_schema=default
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:45 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2023 07:23:33 GMT
Accept-Ranges: bytes
Content-Length: 52068
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/images/poza_categorie_distribuitoare_incalzire_pard_si_accesorii-1.jpg | 91.213.11.32 | 200 OK | 84 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/images/poza_categorie_distribuitoare_incalzire_pard_si_accesorii-1.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 545x300, components 3 Hashc27074519140e5a6514a90fc66442f85 36af4988151059d0d99ecf2f1c7aa48ea15c0ce0 59a24830d9a70a11bdaae47cad94ef2a7675511377ef6b3e7ecf6405436cc449
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/images/poza_categorie_distribuitoare_incalzire_pard_si_accesorii-1.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Cookie: _color_system_schema=default
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:45 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2023 13:56:14 GMT
Accept-Ranges: bytes
Content-Length: 83783
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| heko.ro/wp-content/uploads/2023/04/poza-articol-automatizare-incalzire-pardoseala-800x500.jpg | 91.213.11.32 | 200 OK | 64 kB |
URL GET HTTP/1.1heko.ro/wp-content/uploads/2023/04/poza-articol-automatizare-incalzire-pardoseala-800x500.jpg IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 800x500, components 3 Hashfef96a4467a4a35f28cc7cca65108c60 21b0ecadc8d9aafea847a1d88742dcef3bb6e82c f6567b0ed44fd90f20b0f4fe9c731c69bee93877dc18bee74733bf7c5a095148
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/poza-articol-automatizare-incalzire-pardoseala-800x500.jpg HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Cookie: _color_system_schema=default
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:45 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2023 07:23:45 GMT
Accept-Ranges: bytes
Content-Length: 63865
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| assets.pinterest.com/js/pinit_main.js?0.6179441888511591 | 2.18.172.195 | 200 OK | 19 kB |
URL GET HTTP/3assets.pinterest.com/js/pinit_main.js?0.6179441888511591 IP2.18.172.195:443
CertificateIssuerDigiCert Inc Subject*.pinterest.com Fingerprint8E:D1:BC:9A:53:E5:51:57:5E:48:5E:22:82:8C:60:F8:74:F0:08:AC ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (32016) Hash980b58b2bf6b18e45583fc3d1d05e145 90fd7a45d8ab0672d45ecaa9a4b7f430ffe1d149 20f0315c97ff7007f2e7a94d659e094a7efc01b8306da53987538c1101489e0e
GET /js/pinit_main.js?0.6179441888511591 HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
etag: "3725764cf05d1a0938de73d398772331"
content-encoding: br
accept-ranges: bytes
content-type: application/javascript; charset=utf-8
content-length: 18679
cache-control: max-age=241
alt-svc: h3=":443"; ma=600
quic-version: 0x00000001
vary: Accept-Encoding, Origin
akamai-x-true-ttl: 300
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
|
|
| heko.ro/?wc-ajax=get_refreshed_fragments | 91.213.11.32 | 200 OK | 233 B |
URL POST HTTP/1.1heko.ro/?wc-ajax=get_refreshed_fragments IP91.213.11.32:443
CertificateIssuercPanel, Inc. Subjectheko.ro Fingerprint67:A3:D2:CD:1E:65:17:68:A7:D0:65:B2:F1:D1:AF:D3:B1:AA:07:BE ValidityFri, 19 Apr 2024 00:00:00 GMT - Thu, 18 Jul 2024 23:59:59 GMT
Hashf1086936e33078e2fde6b475949dc767 d7e050e4fc325cb661d5a7638a8181e03774d18d 5976884af182ee8ebd6c1061de9882b0ba667f3c772b45be72a638c860d73d60
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: heko.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://heko.ro/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 18
Origin: https://heko.ro
DNT: 1
Connection: keep-alive
Cookie: _color_system_schema=default
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 09:54:45 GMT
Server: Apache
Access-Control-Allow-Origin: https://heko.ro
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Robots-Tag: noindex
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
|
|
| log.pinterest.com/?type=pidget&guid=B51NkUokYxEM&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fheko.ro%2F&viaSrc=canonical | 151.101.192.84 | 400 Bad Request | 0 B |
URL GET HTTP/2log.pinterest.com/?type=pidget&guid=B51NkUokYxEM&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fheko.ro%2F&viaSrc=canonical IP151.101.192.84:443
CertificateIssuerDigiCert Inc Subject*.pinterest.com Fingerprint4D:02:6D:A8:DF:FA:2E:1C:D3:43:46:EF:CF:92:F1:7A:41:8F:BA:0B ValidityMon, 31 Jul 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?type=pidget&guid=B51NkUokYxEM&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fheko.ro%2F&viaSrc=canonical HTTP/1.1
Host: log.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://heko.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-envoy-upstream-service-time: 0
server: envoy
x-pinterest-rid: 9866016211454942
accept-ranges: bytes
date: Fri, 10 May 2024 09:54:46 GMT
via: 1.1 varnish
x-served-by: cache-hel1410024-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1715334886.481718,VS0,VE48
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
alt-svc: h3=":443";ma=600
content-length: 0
X-Firefox-Spdy: h2
|
|