{"report_id":"40861a83-0403-4b82-afed-3ed76f877fcd","version":6,"status":"done","tags":[],"date":"2025-12-22T12:03:43Z","url":{"schema":"http","addr":"mybookinglab.com/","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":0,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"mybookinglab.com/","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"title":"MyBookingLab - Home","dom":{"size":137214,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (765)","md5":"f2f337c1750d64df9dd3f9c0b099ab68","sha1":"d041fc8410350770e4921aa719e4248a9c01ac6f","sha256":"f039eee62b6b523e01e12f5c7c7d121797e4481c1845ad9f64ff3e7d4f91349d","sha512":"332f9d0cf765f2636acc99e995b30f65ed187b5bcc29a10d3dfa0092d7396895aa2824bee6ffc446f7843291c156f3f4062e0d7723a8cc1e897299290c4339b3","ssdeep":"1536:5fG8EEaegwkF12nWqIeRRrPeamKnNGFvwQWe:MF+RwamKnNGP","tlshash":"64d30e35a4f1103706d390e69a691b1bafd2d207c9274a84b7fc0be61fd7d96ca5322c","dom_hash":"domhash42d7fd2142221117d7a302973d39af9a","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"mybookinglab.com/","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":0,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-26T12:03:43Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null},"summary":[{"fqdn":"mybookinglab.com","ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":165,"request_count":55,"received_data":4241441,"sent_data":32427,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"WOW","description":"Reveal CSS animation as you scroll down a page.","website":"https://www.delac.io/WOW","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks","JavaScript graphics"]},{"name":"Moment.js","description":"Moment.js is a free and open-source JavaScript library that removes the need to use the native JavaScript Date object directly.","website":"https://momentjs.com","common_platform_enumeration":"cpe:2.3:a:momentjs:moment:*:*:*:*:*:*:*:*","icon":"Moment.js.svg","categories":["JavaScript libraries"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Slick","description":"","website":"https://kenwheeler.github.io/slick","common_platform_enumeration":"","icon":"Slick.svg","categories":["JavaScript libraries"]},{"name":"Select2","description":"Select2 is a jQuery based replacement for select boxes. It supports searching, remote data sets, and infinite scrolling of results.","website":"https://select2.org/","common_platform_enumeration":"","icon":"Select2.png","categories":["JavaScript libraries"]},{"name":"PHP:8.3.28","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-12-21T22:14:03.270461Z","alert_count":0,"request_count":2,"received_data":81926,"sent_data":1102,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.mybookinglab.com","ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":30,"request_count":10,"received_data":2196778,"sent_data":4621,"comment":"","tags":null,"fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-12-21T22:17:07.06462Z","alert_count":0,"request_count":1,"received_data":18412,"sent_data":513,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/js/jquery-3.7.1.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c9771cc3e90e18f5336eedbd0fffb2cf","sha1":"6ee8aaa3ac1f4e0ae18717a3fd26892e9f0e4cc5","sha256":"3e7501d15c3630e791c8b20392eb9dee31a9f65ce3efdde76cef5c710141ab24","sha512":"c503341fa3a7176fd10bd8cd7a5717c8faf971f87fa0c158f2d94fcd484ae3ed5031f49414dae833fb806b7365b5699c21d2e655376f69adb052b22f6f6982a7","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GK7:sHNwcv9VBQpLl88SMBQ47GK7","tlshash":"8083f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87532,"data":"","first_seen":"2023-10-13T22:05:06Z","last_seen":"2026-04-03T18:58:42.545761Z","times_seen":21243,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/js/bootstrap.bundle.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b75ae000439862b6a97d2129c85680e8","sha1":"90d15036ef48fcb336a135bae812b45669f19044","sha256":"9520018fa5d81f4e4dc9d06afb576f90cbbaba209cfcc6cb60e1464647f7890b","sha512":"8bd7047c9c14c158843c529d0b57a7cf86511818fc610a3a401c854c5f766171e2ef0682ab27b1bd10fbe52e4d553b12893bfbaca5aa1bd639785c6646c3a7d0","ssdeep":"1536:p4SMTGR2t4n+3ifBHJR9WbUHk3j8YY+PwRM3CGJI9BqQM6kF:b4Fj8GPwRM3CiI9Bt8","tlshash":"6973c6593254b4770ade45b68037420bf2265d98b24b802cb5bcadde2a7dc863277f7c","size":80420,"data":"","first_seen":"2023-03-08T16:08:57Z","last_seen":"2026-04-03T20:31:40.575428Z","times_seen":5845,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/admin/js/moment.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a77ee2ca7cfbda258cb48f7bc0af4354","sha1":"1f44c9cd0174b190e5b8e2ed00e69b9569ca446c","sha256":"1001e06aa9ca551edf57745a9e47fbd8a4d314ac9a993ce3e2d292df6a9865f6","sha512":"cb9f44e0b18a121340d26449c12653e2ae7eacd9ff9eb17e42f5f9cffcc5400605b83641c2f5c4d27c8309ce362f66df8a3817ca3cf7e6885368e294766b4c32","ssdeep":"768:l5z662L4WZNx32hhBh+wdeyue5RYvkXtxZ7AuCLpY5xZMm7tAO2Aas+cHiXLFiX:L5HWFitYkLZ7hipYnTAfAas+7LkX","tlshash":"0f53554563c1752a9626b175cdaf8c4ab63c8d1465cd8d9db60dc4ec282c83887bdefc","size":61060,"data":"","first_seen":"2025-09-19T04:17:33.240468Z","last_seen":"2025-12-22T12:03:57.866426Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"90684535f459421260927ed59f70e4c9","sha1":"388f43f170c1dcf4d7c6fb3768cf3c1db2486b04","sha256":"5949ccdf961507730b09c5211558421caf3bb3394d6a69cc7e58c016a2d2a8d0","sha512":"a61769808cdf0622d8c67c9120f918c234ea6b1345584eb2bccadd02e0ff2d344541eb2d8ef49099525043b00cfd65d5779e14c2d12d359b8742fc0a4e691f08","ssdeep":"","tlshash":"2731ca685e6254060d2b30bd298f1516ae3708075d1bb67abdcc52400f9987cdbf5fa8","size":1463,"data":"","first_seen":"2024-07-18T03:39:19Z","last_seen":"2026-04-03T04:41:22.490348Z","times_seen":330,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/js/wow.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"36050285bfeeb7395752f0f9bbc08273","sha1":"5924f7bbbf1dfa3f0926851d01f782f23a59e805","sha256":"0ec632e6ab02d4fdd514da7f5edc74aa28c9d4c71af76f1c8b93a1fba85bcc69","sha512":"bf887e087c52583114b77bfb417d7dffa0ee8634d39155af14591a24b2add9ef4c8a0c0555364122800d07a55f5f1fb0c723b39541b069a437ff558ddbf380a3","ssdeep":"96:UrZgL1xvPV6GqKgR6TYLWHFMLJA6pOROVEE1fosvGeaMozHImBaoqbl:Ury9PVfIFrlAJROVEEdos+eatzHILoA","tlshash":"750267c97a967031d75796f6833f0106b6361aeeb028047cb5b88dd57c78868523bf38","size":8415,"data":"","first_seen":"2023-03-07T01:02:45Z","last_seen":"2026-04-03T20:47:00.325125Z","times_seen":9661,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/js/iziToast.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a05a127c793145cec6b721f14fced3e5","sha1":"5d753b1c803de12f4d2217ab0d143d4dcf047010","sha256":"ac860be79a4cfe434ea68f002638f79371d9a85a3b045a1aaf10dc98df551497","sha512":"ee5a4c561a267f7a96635cb529a5e670aebe766289fe358e6b394585db4b76d5df215cad4b358a07425deaada36d4f4e42c06c2c44d9c192f03ac1afeb9bdc64","ssdeep":"384:ShKmhCPzlc5gVCPBpcG/0CEvXArKKpQi8VREgO3MrnHzxJBkHI4505P:+K5PzlcN8DXArhpQzRHO3M7TxfGIYUP","tlshash":"6a82c894722032374aa329a960ff534a3772156ca9c641a4243fcdad5b34f8939f77f8","size":18481,"data":"","first_seen":"2023-03-07T01:10:25Z","last_seen":"2026-04-03T05:20:04.742716Z","times_seen":2459,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"f2fa1ad1741b506e59159158226e9db2","sha1":"df358eadb8c1cab9e936bfd0a613c603900b83dd","sha256":"71efc061a9ca9facc59235544adefd8136e6464a7b2c2d71215530253f6df934","sha512":"caa67146a8ef96d6e6375f192b58fde3a4093ec6064e5e538f7a389bf3284a65410032ec44f932b38a81df76a992aa03222cb03c49f23d5cd732a4c0ac073c46","ssdeep":"","tlshash":"a5f0201ed1715433053735bd53da49b61e23054f58545d2a3fad01457f7dd2c10d5644","size":481,"data":"","first_seen":"2025-12-22T12:03:57.93644Z","last_seen":"2025-12-22T12:03:57.93644Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/js/select2.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"458e16b8c8afc15a6a78aea673c68d0e","sha1":"9ebaa1193adff3025cdaff7c9a65c48aed4a22a0","sha256":"5130a11b61a3fb716095a704c858023aa4169e84e2027c0fdd31d756271bcd09","sha512":"a71d259801d55081ac94bacb17990d85d49d19427293e32ce9447b5708cc4bc08f4cfcb82db4471ca5a73b151abea7b88b7cd00e3c626e25c8c02a17acd8c0b3","ssdeep":"768:voMZDhrrJ/Y6EvKqtB8Nnoc9DpPJRGookOlxNjuvSnJZdjVrMbusSzXAFo8Jw:PACno0okOvht6b5KEc","tlshash":"d363b64c7a93723502af20e6346b180922376b3e500b9668b428cded5dbdd05736bf7e","size":72483,"data":"","first_seen":"2023-03-07T01:03:46Z","last_seen":"2026-03-31T02:38:41.275335Z","times_seen":259,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/js/lightcase.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9c60ea9e71ce3358a9c747c40d1304a5","sha1":"069c083c62b28a9d096541f7631a9a6845249cc6","sha256":"6e1cddf92fb43f1e93fb6ac1999ae99e4b4efae82ece7948f588498d32d59c31","sha512":"9b670af2cddd31e64bfed8acc1d4b0e614a53c15cf0d9c02a911deabfbc4d7016a87af2d16b1c72694730cec07d3d77fc2d616cdfcdc098efe7c55c51d0fc815","ssdeep":"384:q2Wg8ilPrNskSL4PkeaBMWXOk73LL9YBFpKiFvxTViTHw10yukLTUVv:q2hNCkHkeapOkidK+vxTVwEjMF","tlshash":"92c2d83cea44f029406f62b2899b5605c23799256773f9b0e1b1c5e5dc64ac92c13fef","size":26325,"data":"","first_seen":"2023-03-08T01:01:52Z","last_seen":"2026-03-07T04:47:14.566569Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"816f61e3ad0df2eef748e2a7c5694d98","sha1":"c7dee5db3f922aae336efd4dd60cd36c2901e17b","sha256":"245a677315726f28e36b3dec60d2b26567e27a4aeb206b149b7dcbc1b8b18806","sha512":"a80d5ed014f8cfa890bf9932e995950649b37aaafad9f48f500368d0f0fb55c742dad0c247df6dffa3540853cca3c298b8ccded2bec0a5df2cab22d86b06bdac","ssdeep":"","tlshash":"be21900e68f224c10223f0be2feb5c097222459b0908de01fddd2aec6f54a1d7af1394","size":1265,"data":"","first_seen":"2025-12-22T12:03:57.937481Z","last_seen":"2025-12-22T12:03:57.937481Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/js/app.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"49d6ab7f9121c1dee0105ffa4a59c70a","sha1":"3cba7e3dffcb2d2af6c108ef33837582ca85be88","sha256":"11e23ec19147ecfdeb2ad3093fde989abcab550a325200e8c70bc6efa78894e2","sha512":"3bb0e7f772da3a1e38613270689070784bff17441be3eab4188b04a6231cafe1272e4f825452bfb7d4ce3bd8e95d817380602b193b26e15f9ca9570638a0eea3","ssdeep":"96:AL6pWIpBguSZnnLqtcRvqxgvjRK0LFtfV3XkWyL8Te9KCB7Vw5GILuLhu/CJs9o4:AL6gI70dRvqxb0DRFC5S5skCJ67","tlshash":"18126119a411317a407f23bb991a9319f7a5172bc2818e637dfc41880f3669963e1ffe","size":9286,"data":"","first_seen":"2025-12-22T12:03:57.868759Z","last_seen":"2025-12-22T12:03:57.868759Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/js/slick.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d5a61c749e44e47159af8a6579dda121","sha1":"3b41b3bc956685015a347a2238e71db29dfa0dbb","sha256":"0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740","sha512":"5ed98cb4311c373da3ede92bb47bce551e22c30683ea8fc55097baf99abe1e0702b24de48f8b9241047cc1e4364158f5a343e4e8fc182e8866db4e99ccd7ee6e","ssdeep":"768:4rkkX123A5YHi6pWzYdlNWYcx16nnYdXRRMd2KYCQCsPShb1ez7RFmYH:EPrYdlNixEePiYH","tlshash":"e513a549d205276285d721e62105c40eb3f7fb3cba22c0e475c9d3ea646ec4896d7bfa","size":42863,"data":"","first_seen":"2023-03-07T01:06:34Z","last_seen":"2026-04-03T20:30:32.029691Z","times_seen":77059,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/admin/js/daterangepicker.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"301a082257d8ef9c999a89a5222e213b","sha1":"cdaaa78ec80f20ee51086ac1d97d095df93e318a","sha256":"b0f0d81020b65b12c689681b54ab12c48cd819d64b147973e1ef76cfa76b8050","sha512":"2dfa2e70227aa8f2b8d7b8924eac16601f8b123efaf8427a0dab83a78435600ff348811089de37d9a209a7f112c0658c61d85e58ac1d599c703b6e3871c10f1b","ssdeep":"768:FyPEn1YSaTPEtf8NeAK1dKqoJdt1iajQFcSYnTZ+qovZgXRYIZzEa8RAPO7XTnT6:DNoBsG1nTZu7HU","tlshash":"14f2544767890b3395a641aa8d484646bb21863e86c74c7c3f6ce1e07caec7d01fdeb5","size":36194,"data":"","first_seen":"2025-09-19T04:17:33.242132Z","last_seen":"2025-12-22T12:03:57.917551Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d8258d18d0c760a5592118c45a1561ac","sha1":"c6ea96906bfbbf0bd829381d7332d25d9ca53885","sha256":"be7f7a16e236358f93666df12cfc19120e4e53999404a4ad9b318bd79fcdd7d9","sha512":"38704a3d04a1b2b8a03cc71a744ad529bf141d90e949f786a07da69519761759aec749b9275d54f2a8c7013f8743dcf4152797ff4cad328363f1df397b0a8d08","ssdeep":"","tlshash":"2511c48df0f0597910ab357606af84826c67e147811acb607bbd0aed3fe50499853f1d","size":1023,"data":"","first_seen":"2025-11-11T11:57:29.481723Z","last_seen":"2026-03-01T14:29:46.289366Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9a07fc9a9e4e281a3f65b12b22f51a10","sha1":"3ade00eb8aee9a4a64331474da41dc6078b6ea82","sha256":"00d5f199f199ddea0169ad74f74bc19694fcb6f8e12ee85155f95258735abca2","sha512":"9a5db27b9e2bd09f85a641951e044adaba1acd9be2dafa56b2e883250d11e827a7432ecdae66409a95e903b82bc897776ec695b1aacdc979e625f9cf285edc61","ssdeep":"","tlshash":"5b41ad6b74fa5039287bb16f49fb058e7267100f1004cf18bd4c5a841fa49a96ee0bad","size":2274,"data":"","first_seen":"2025-12-22T12:03:57.939588Z","last_seen":"2025-12-22T12:03:57.939588Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/testimonial/66a60c0ede9191722158094.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.816Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/testimonial/66a60c0ede9191722158094.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 28 Jul 2024 19:14:56 GMT\r\naccept-ranges: bytes\r\ncontent-length: 23424\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":23424,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75\", baseline, precision 8, 440x290, components 3","md5":"cd9b5eb7a0c7fa4550c6dceb9c9111fe","sha1":"20e670eae638e227141cbc79caddd651403d39b9","sha256":"26d0c58e077d9bbaed2f05e78fd1a904610100e05bf4d9546252e1014ff70ce5","sha512":"7a5eeb54cf916ea0e4a40a0a5bd3756398940d866cd470eb8210492eaf703e47a66fb1442cedcd2885dc1ff51972a4a207afcb8de4e95704dad864be1ee88470","ssdeep":"384:ZqLJy1xVoKBYUURB2Kh5XyVWlxB8qhmGvIfRzUxujHrYAeqc9jLxaCmKWg8cR/i6:ZqLQ1xVFB+B2KDXQiGYmkcRwcbrYAc9L","tlshash":"68b2d0c71d7da2712771b3c29cc2598f527ba1592e0e82b0b9f15507cd91f72b04826e","first_seen":"2025-12-22T12:03:57.838615Z","last_seen":"2025-12-22T12:03:57.838615Z","times_seen":1,"resource_available":false,"data":null}},"time_used":961,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":762,"receive":199,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/js/bootstrap.bundle.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.826Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/js/bootstrap.bundle.min.js HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 22476\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":80420,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65299)","md5":"b75ae000439862b6a97d2129c85680e8","sha1":"90d15036ef48fcb336a135bae812b45669f19044","sha256":"9520018fa5d81f4e4dc9d06afb576f90cbbaba209cfcc6cb60e1464647f7890b","sha512":"8bd7047c9c14c158843c529d0b57a7cf86511818fc610a3a401c854c5f766171e2ef0682ab27b1bd10fbe52e4d553b12893bfbaca5aa1bd639785c6646c3a7d0","ssdeep":"1536:p4SMTGR2t4n+3ifBHJR9WbUHk3j8YY+PwRM3CGJI9BqQM6kF:b4Fj8GPwRM3CiI9Bt8","tlshash":"6973c6593254b4770ade45b68037420bf2265d98b24b802cb5bcadde2a7dc863277f7c","first_seen":"2023-03-08T16:08:57Z","last_seen":"2026-04-03T20:31:40.575428Z","times_seen":5845,"resource_available":true,"data":null}},"time_used":1162,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1150,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-22T12:03:18.479Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-powered-by: PHP/8.3.28\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: no-cache, private\r\nset-cookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; expires=Mon, 22 Dec 2025 14:03:19 GMT; Max-Age=7200; path=/; secure; samesite=lax\nhotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu; expires=Mon, 22 Dec 2025 14:03:19 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure\r\ncontent-length: 13437\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Mon, 22 Dec 2025 12:03:19 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"WOW","description":"Reveal CSS animation as you scroll down a page.","website":"https://www.delac.io/WOW","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks","JavaScript graphics"]},{"name":"Moment.js","description":"Moment.js is a free and open-source JavaScript library that removes the need to use the native JavaScript Date object directly.","website":"https://momentjs.com","common_platform_enumeration":"cpe:2.3:a:momentjs:moment:*:*:*:*:*:*:*:*","icon":"Moment.js.svg","categories":["JavaScript libraries"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"Slick","description":"","website":"https://kenwheeler.github.io/slick","common_platform_enumeration":"","icon":"Slick.svg","categories":["JavaScript libraries"]},{"name":"Select2","description":"Select2 is a jQuery based replacement for select boxes. It supports searching, remote data sets, and infinite scrolling of results.","website":"https://select2.org/","common_platform_enumeration":"","icon":"Select2.png","categories":["JavaScript libraries"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"PHP:8.3.28","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":113840,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"da85e1c643997c573376596d6613267b","sha1":"1b74185ec66110ef11117a8180be95313997936f","sha256":"5fc313bbf10ed33e3f6ddbee17f57919c2d8cf7d308dd4a37b6108b35c335f51","sha512":"006ce4890dbb6b5c712e482e3f9ba91da150cd21c99da8de4cd707ede614e961dbcbaad10426fef4bde59f6c11eb7f3f84e8b9b52dcc11d2530944912fc013ee","ssdeep":"384:gSSLYKY5oqnLjCEqfsZAkNE3M4nP86N7H3J4Rl10F6mQBaVVCt6YUG1HZHbLANDn:gSZE8Ma0UEXkocvqBSL1G/vwQW8","tlshash":"22b3fd25a4f1513706d390e59a6a1b1bbfe2d207c4268a88f7fc4fe61fd3d96c913218","first_seen":"2025-12-22T12:03:57.842982Z","last_seen":"2025-12-22T12:03:57.842982Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1652,"timings":{"blocked":629,"dns":16,"connect":197,"send":0,"wait":393,"receive":1,"ssl":413},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/css/select2.min.css","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.769Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/css/select2.min.css HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:19 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 1851\r\ndate: Mon, 22 Dec 2025 12:03:19 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":15823,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (15822)","md5":"809b4f5299218eab37a7c31e4c20478b","sha1":"c9448efbf22bc6f6fbbbbfebbd656642bab13767","sha256":"907f4395f54e25a1da1181672f1a498e98b26f7bfc6dcb6c209a737472451e49","sha512":"c88d9738b88b4d0b4503d21878f5344355add0c8e6fd492694a332e13538a0d5c4c2cd0bc9ba9b89f6cef2df6b10853ae6a766b68990110f9bdd77cb7c2ccd6b","ssdeep":"192:1EaNSbuenTfc3aq6JYhKQ9CPxWqAUJKk3BcH9t39:1EueTfXnYwQ9sWqbxRcdp9","tlshash":"7c62c935bacc2235b0bf8e7f6cf1b4946729ed5fc4111b9ab8e9e194c8e04540a4b60f","first_seen":"2023-04-09T05:17:53Z","last_seen":"2026-04-03T20:59:07.005292Z","times_seen":8161,"resource_available":false,"data":null}},"time_used":392,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":392,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/property_type/684e6112483d11749967122.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/property_type/684e6112483d11749967122.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 15 Jun 2025 05:58:42 GMT\r\naccept-ranges: bytes\r\ncontent-length: 15296\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":15296,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 310x200, components 3","md5":"fc8550f3591cb5b1cb7e78623e61104c","sha1":"b06b9c19bbcb7b004514e6d66ff43ab21e541fb9","sha256":"23f877e3f8fd1f77a308722f19b0c7aec634401a119de0690a6a22ec34c255f9","sha512":"35ba392ed079a0f95bc24c4758fffa132b32a39ae7c2797289c1fc4d78afa504ceb8cdc8c7c84b7b65a7aed46bfed64e04f7b3d026439f37df376cb416e66dd9","ssdeep":"384:6hB/rOFj4kWVz0WLBGpdYpvcTB6eezo5WgCIID0vj:6hlrOJ4nzbLBGqvcTBzezo5nLr","tlshash":"8962d129e8e7970bc3194878e8d78a3639d2c764369c1cb10f20fa225cebdb5c4d4352","first_seen":"2025-12-22T12:03:57.847031Z","last_seen":"2025-12-22T12:03:57.847031Z","times_seen":1,"resource_available":false,"data":null}},"time_used":767,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":767,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/works/686100783ea0c1751187576.png","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.809Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/works/686100783ea0c1751187576.png HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 29 Jun 2025 08:59:36 GMT\r\naccept-ranges: bytes\r\ncontent-length: 129551\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":129551,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 665 x 785, 8-bit/color RGBA, non-interlaced","md5":"22d58a800ec12e1e6ac1f851e0d09663","sha1":"b2bc8973e711ed6097c374a6d9a00cbcb8ab8d7a","sha256":"1ae38ec1064a416cfef8e1dd5fd73a368bfbb9457cf911e85b4e516615d71f56","sha512":"09f41dafce10767c6c58bf2699a2aa9a8e41b2219a8f843943bc13d28d75736c258bbe1c6ba669ffbc7a8195fc1e43991079bc6adc59e17f11b7bb064e2214cf","ssdeep":"3072:tKp+G+uRD+ffW5+sr+DOkQxevFTBzSsavIap6gYVk7S7:tKquhywjr+iHc85YVT7","tlshash":"56c3125dc58a4af8d0af4ab50b1190d27c7141b585f02f6e0ab1de7d535a970b02f1ef","first_seen":"2025-12-22T12:03:57.849429Z","last_seen":"2025-12-22T12:03:57.849429Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1554,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":764,"receive":790,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/blog/thumb_68610370e3eff1751188336.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/blog/thumb_68610370e3eff1751188336.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 29 Jun 2025 09:12:16 GMT\r\naccept-ranges: bytes\r\ncontent-length: 31224\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":31224,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 183x183, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 430x275, components 3","md5":"40047a377171f0b4bbb1af578f1fa240","sha1":"65dd3dd01391a9974ca98c87c4430a6a1f42fa8e","sha256":"720743f8dc63fa80fe4febb6d3e32988fc5a8dcacff7c9136777e764c415c11f","sha512":"529c1d2e3784d604e0ddb9526c8844009f92ef5cf8b086ad2c3797ee76755dbd362dee0bf35cf854068a32a4b84a30c6bd7c308953ab25fbd19c738127bf2250","ssdeep":"768:e0mmG6F2W+JlRyRwr0NdpiuaNkIDHgvVDSF/5aC:e0TGKAWRbNjiuPIDHgv1jC","tlshash":"c7e2e01e9b54da184f6c8c334e7b47af4c91466eb092f5fad2d072806d32e744a68cc7","first_seen":"2025-12-22T12:03:57.851779Z","last_seen":"2025-12-22T12:03:57.851779Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1161,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":967,"receive":194,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/css/iziToast_custom.css","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.840Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/css/iziToast_custom.css HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 452\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":1622,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"9357db0a076fb39c51171dd008533397","sha1":"3a30fbf23506580ec8ed3e19fe91bf5c4eca491d","sha256":"08373c1b5b174aa870fe86e090d0d7fff5faf78c0d107464a3554edf8912a168","sha512":"393ceea49f00392e2e558dbadb1213bef9c2a3e7adc78104acd557b46030ae8fc146594abfc7c83355a170607ee3c09d31a3f0c252c4b38ead4f3bc41ad80cf7","ssdeep":"","tlshash":"de3108c651f228d1edcab4d44f7b6681653f5c43b1cdc865badc31488fa130538a1b78","first_seen":"2025-01-15T11:03:51.171939Z","last_seen":"2026-04-03T04:41:22.446869Z","times_seen":261,"resource_available":false,"data":null}},"time_used":1132,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1131,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/css/all.min.css","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.755Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/css/all.min.css HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:19 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 21985\r\ndate: Mon, 22 Dec 2025 12:03:19 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":102641,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (52276)","md5":"9402848c3d4bbc710c764326f8b887c9","sha1":"b6e555166eb1381392e00adcde9bf8863f16ff01","sha256":"c22cfb6520a7fdbb738632834019acf47c78b1279462c0eb4cb83bae83ecb5a7","sha512":"0d33903bd456087de9a46a9c59a100d41219382eb1c5a97012cc3d73641078021fb65f957a0a2f96779ed5cf505f84dcb6758c9f5dd36727be822326f1ed8bc0","ssdeep":"1536:iwMCMPMCMjMCM4MCMwMCM3sVMX709gbPMfjSFOTyPG9ZpgSLCJ:O709gMGFiyPG9ZiSLCJ","tlshash":"79a3a7f9e44c05d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2023-12-02T04:06:15Z","last_seen":"2026-04-03T20:39:53.280093Z","times_seen":22075,"resource_available":false,"data":null}},"time_used":394,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":196,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/blog/thumb_686103281e21a1751188264.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.818Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/blog/thumb_686103281e21a1751188264.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 29 Jun 2025 09:11:04 GMT\r\naccept-ranges: bytes\r\ncontent-length: 27547\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":27547,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 183x183, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 430x275, components 3","md5":"a7dadf5dc1194dec7bfc89924724195e","sha1":"4c87e6420cd4cebc5a26fb0ac111e5a689f1c4ba","sha256":"512c925d8b32d5812d5701d51451a9ea29dd285cc9cb0613cf66012b959b0772","sha512":"85ad2c869af0779c8d457fa87b75bbfbf44c17b09452d8542ead6e0502f5fb4270deb5423e76e08c1f4e18fc7938e40fdf4f997d7f0d91d413d5b6ca139bb527","ssdeep":"384:eFLTKUXFFCs6FkuMuALfRbntzvgW7vYeiHKMq9Ko5xAappa:eFfFF6FkRuALlZYKMq9K1apg","tlshash":"37c2f102b062aeb4b3b6d79f4dc06998c462c6b52f4b0bfab79c0616607cdf6489c54d","first_seen":"2025-12-22T12:03:57.857307Z","last_seen":"2025-12-22T12:03:57.857307Z","times_seen":1,"resource_available":false,"data":null}},"time_used":966,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":965,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.374Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://mybookinglab.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 16 Dec 2025 19:22:36 GMT\r\nexpires: Wed, 16 Dec 2026 19:22:36 GMT\r\ncache-control: public, max-age=31536000\r\nage: 492044\r\nlast-modified: Tue, 18 Nov 2025 19:00:07 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-03T20:29:56.816779Z","times_seen":713030,"resource_available":false,"data":null}},"time_used":136,"timings":{"blocked":59,"dns":1,"connect":7,"send":0,"wait":8,"receive":9,"ssl":48},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/banner/684c55ae0dd581749833134.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.386Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/banner/684c55ae0dd581749833134.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Fri, 13 Jun 2025 16:45:34 GMT\r\naccept-ranges: bytes\r\ncontent-length: 432961\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":432961,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 1920x1195, components 3","md5":"16f49672e9097cdd3dee5971a4362e63","sha1":"4cc9b7c5d34b47fdd48a10b01ef78eff244281e4","sha256":"719890e97a438e141357a1ce05adb600b6c7bd4ba2c7d29e8c46cb4e1bd3bbbc","sha512":"ff29118d272398501fedf9ed9c1e334c02e2bc276331962c9ffdc9e6789a210c7a16a0e76478f05455aa06cff5b2edcfbe317d0c72682d4de409b031949baf37","ssdeep":"6144:7Be5MTcFWW4yOc+iCIukVP9gbyExju8gqySTGD0N8nIQ9ZfBfg8BLirfgJ:M5MTDY+iNukVlgbji+7uPfe8BLiMJ","tlshash":"4794236a0ee3083b6f1d20bc4e4624ea4af659544b8ce7b4f7507fcec89e9b4e755600","first_seen":"2025-12-22T12:03:57.861042Z","last_seen":"2025-12-22T12:03:57.861042Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1012,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":727,"receive":285,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/webfonts/fa-brands-400.woff2","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/webfonts/fa-brands-400.woff2 HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/assets/global/css/all.min.css\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: font/woff2\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-length: 117372\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":117372,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 117372, version 773.768","md5":"b6356c957274676e6571c1ff5e11c9a8","sha1":"4022f95e001d734ca8f082b8e7627abd205609ec","sha256":"3a8924cd5203a28628716aedb5cef0943da4c3b44e3ffcee90ab06387b41c490","sha512":"83de79c74480fafc62cdac4012ff2a129d8701772ee16216c3d9488826ac21a9c2f8a416fe3208a61bfea7e12c24ac1cc2d26f6d22bd2b0ba39a22d630238b59","ssdeep":"3072:U3JKgVzg5ybfXYe5W59JPQaPWKSsx/DBMnVnqedkAFqPQTzIBIOK2vDMF:IVM5A5GJPQaH/NMtBkAvcnYF","tlshash":"c4b312f88b7ac9a5e304e67b55e4613555a0aec8b180f35453be7c2c221e10dc67afe3","first_seen":"2023-12-02T04:06:15Z","last_seen":"2026-04-03T20:39:53.304814Z","times_seen":18085,"resource_available":false,"data":null}},"time_used":822,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":588,"receive":234,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/blog/thumb_686103484ca6b1751188296.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.819Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/blog/thumb_686103484ca6b1751188296.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 29 Jun 2025 09:11:36 GMT\r\naccept-ranges: bytes\r\ncontent-length: 24883\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":24883,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 183x183, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 430x275, components 3","md5":"c33c48b072056f9accd0997af4fd68e9","sha1":"012ca4a4ceccd39a4bbc258c1850abfd99cc7a8a","sha256":"4bc416026cbb94fc5e473ec499a674f0cea8b3fb2a8ee1a04d7a63f68468ea24","sha512":"722b720e13bff57531ff022828fb6b173631877af7279d930690789aa584d8d436c1ab1c48d5f47b83713ddea221fbfae95040225bf4f372c2e3dd6cb109676b","ssdeep":"768:ewRQN83WobAb0miwctMxovaYDbQ4FzrmaHT6:ewRuOjcjGMK7DbFFGae","tlshash":"21b2e16d3ec3639d6a28b54f031d00b1da930c7b21beb2e74a45f4db48b5d5803d4997","first_seen":"2025-12-22T12:03:57.864641Z","last_seen":"2025-12-22T12:03:57.864641Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1161,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":966,"receive":195,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/admin/js/moment.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.834Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/admin/js/moment.min.js HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 17480\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":61060,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (37999)","md5":"a77ee2ca7cfbda258cb48f7bc0af4354","sha1":"1f44c9cd0174b190e5b8e2ed00e69b9569ca446c","sha256":"1001e06aa9ca551edf57745a9e47fbd8a4d314ac9a993ce3e2d292df6a9865f6","sha512":"cb9f44e0b18a121340d26449c12653e2ae7eacd9ff9eb17e42f5f9cffcc5400605b83641c2f5c4d27c8309ce362f66df8a3817ca3cf7e6885368e294766b4c32","ssdeep":"768:l5z662L4WZNx32hhBh+wdeyue5RYvkXtxZ7AuCLpY5xZMm7tAO2Aas+cHiXLFiX:L5HWFitYkLZ7hipYnTAfAas+7LkX","tlshash":"0f53554563c1752a9626b175cdaf8c4ab63c8d1465cd8d9db60dc4ec282c83887bdefc","first_seen":"2025-09-19T04:17:33.240468Z","last_seen":"2025-12-22T12:03:57.866426Z","times_seen":3,"resource_available":true,"data":null}},"time_used":1149,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1140,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/js/app.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.836Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/templates/basic/js/app.js HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Tue, 30 Jul 2024 17:04:22 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 1918\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":9286,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"49d6ab7f9121c1dee0105ffa4a59c70a","sha1":"3cba7e3dffcb2d2af6c108ef33837582ca85be88","sha256":"11e23ec19147ecfdeb2ad3093fde989abcab550a325200e8c70bc6efa78894e2","sha512":"3bb0e7f772da3a1e38613270689070784bff17441be3eab4188b04a6231cafe1272e4f825452bfb7d4ce3bd8e95d817380602b193b26e15f9ca9570638a0eea3","ssdeep":"96:AL6pWIpBguSZnnLqtcRvqxgvjRK0LFtfV3XkWyL8Te9KCB7Vw5GILuLhu/CJs9o4:AL6gI70dRvqxb0DRFC5S5skCJ67","tlshash":"18126119a411317a407f23bb991a9319f7a5172bc2818e637dfc41880f3669963e1ffe","first_seen":"2025-12-22T12:03:57.868759Z","last_seen":"2025-12-22T12:03:57.868759Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1139,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1139,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.mybookinglab.com/assets/images/static/wildlife.avif","fqdn":"www.mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.400Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/static/wildlife.avif HTTP/1.1\r\nHost: www.mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/avif\r\nlast-modified: Sun, 31 Aug 2025 14:22:58 GMT\r\naccept-ranges: bytes\r\ncontent-length: 124743\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":124743,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"5e0eb2cada1a8153e175a4b753aecba1","sha1":"3f6af39fa35a4fc9b35500adff39c931ed357402","sha256":"0b5fe62b481222d179527c069a535277feb3aede7b634d1f0213a2184f8ba075","sha512":"ce180ab0f4ef6bd5dcbae596905731fd54fefeb2cee516e310291e421694820d6cc75c57f607c3da5ab5b8fd488c995fb8fce2507477724e38ece52e5205cb74","ssdeep":"3072:tMSBCE1KJp2uo89vbh//6thC5TErFqVU+XyYtIJTk2735:pjqk891/kCZErFqxeJIE35","tlshash":"39c3125e576290fbe02e89b7dcdb4f94932a756b3ad0826f3f4c6c9805c548f4a0e0e5","first_seen":"2025-12-22T12:03:57.871353Z","last_seen":"2025-12-22T12:03:57.871353Z","times_seen":1,"resource_available":false,"data":null}},"time_used":968,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":724,"receive":244,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.mybookinglab.com/assets/images/static/boat.avif","fqdn":"www.mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.403Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/static/boat.avif HTTP/1.1\r\nHost: www.mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/avif\r\nlast-modified: Sun, 31 Aug 2025 14:23:07 GMT\r\naccept-ranges: bytes\r\ncontent-length: 220845\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":220845,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"a7a722d41c0bc621b2b508d9818ca7cb","sha1":"7636167cc818fa71117d7461299222b1f0c4466f","sha256":"6266489ab9b2afc89dd24b7088430809ba8af5dd7851eace6aa0c2831593db5e","sha512":"fd4bf187e189e608d15152427e2a48850b5f46453c655c2a8e5c003d30e02ee60c80c03d5aff458e59d7f3a8d706d2f13265c8afbe4b30b5176687c0160067e6","ssdeep":"6144:amugRsxOY7DvpCGtMZDtK1TorbnCc8c3WOc:zugRsVFdtMZDXrOJWWOc","tlshash":"c8241299a346ad93d802a735f1448fc2539fe984d89734a9b2ec74cd14aa4c8b3e59c8","first_seen":"2025-12-22T12:03:57.872894Z","last_seen":"2025-12-22T12:03:57.872894Z","times_seen":1,"resource_available":false,"data":null}},"time_used":964,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":724,"receive":240,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/admin/css/daterangepicker.css","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.774Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/admin/css/daterangepicker.css HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:19 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 1517\r\ndate: Mon, 22 Dec 2025 12:03:19 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":8374,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"03edf64cf5492545669a35683ab2f4a3","sha1":"2dae51f4b2e0f4191fc35b566feb4449296b20d0","sha256":"01c3df283f1115d0a09303cc157a7faaa7ce22a9af61cb44fc4dd03d2dbd6585","sha512":"47aee151c8088132f2bf0028cbb155db9ca6100464138fa113ff9aec7c2baaac18cb71e03f8aa33c1b71a9095ea9710b32aaecb2322b5e209cc83dee37e89a89","ssdeep":"192:SAcpCEw2wkUUdUKy9qOwwFQXiJbFSVLdHYu7iki:WqKy9qOwwFQXiJbFgRHYu7iki","tlshash":"64025c6de9630d43113f85745bd5a98f3a8b09d3d04adc2a7bc8364cdf0aa7809c9b85","first_seen":"2025-12-22T12:03:57.874611Z","last_seen":"2025-12-22T12:03:57.874611Z","times_seen":1,"resource_available":false,"data":null}},"time_used":391,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":391,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/language/6892d55ac79b81754453338.png","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.789Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/language/6892d55ac79b81754453338.png HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 06 Aug 2025 04:08:59 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1005\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":1005,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"ff9085aa40ad53e417d46cf053144fdd","sha1":"2fa3fb12245e1b388457da719c36252d744c6a5f","sha256":"d33f22e0dd80b192bd4f45694bfe0fc5c131832fea482d27ab5939f317575b6e","sha512":"924c381a3a2a7c2be080a9569e9116e232493c8b3f0a4968fc051f4916f27841d4c93e9e0b27452fe6b40f1bf17ad954256fa0b9289065434faf8228dbc09c02","ssdeep":"","tlshash":"4611a57013d000beb4ee32f2521ea3ad0a2766e0477a59bfa892d865a3db5c45de2180","first_seen":"2025-12-22T12:03:57.876527Z","last_seen":"2025-12-22T12:03:57.876527Z","times_seen":1,"resource_available":false,"data":null}},"time_used":584,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":584,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/images/bg/ele-bg.png","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.798Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/templates/basic/images/bg/ele-bg.png HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 02 May 2021 19:46:22 GMT\r\naccept-ranges: bytes\r\ncontent-length: 138673\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":138673,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1920 x 1006, 8-bit colormap, non-interlaced","md5":"080d58639d847530872d899edb06e0ab","sha1":"83ca1ac59f126198a1355b3d56d13d1c4556a758","sha256":"79ff5887d8fbfc7948f954523d853a6666629a0c66a559b46e404331e5ffaf53","sha512":"5f27d3be070ef94033667fcc745e62c564b6a8e409a04176871abe956440bd81ca0e70686f3c245a85f1fdaa4c736ed98245b8ed2960524d8b2528c5cd0ca1a7","ssdeep":"3072:LoOqzUlk52+EoHT2BSkfScLoyQbrYgICd/vEXXfvXs3H9:L0A1ZoEXfS4ErN3ZEnfvy9","tlshash":"92d31297570e9b87f6b0b97ff5888dee65eb98b6a2c3520309017421e141a7090bf47e","first_seen":"2025-12-22T12:03:57.878812Z","last_seen":"2025-12-22T12:03:57.878812Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1394,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":575,"receive":819,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/testimonial/66a60c28b981b1722158120.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.812Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/testimonial/66a60c28b981b1722158120.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 28 Jul 2024 19:15:22 GMT\r\naccept-ranges: bytes\r\ncontent-length: 21063\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":21063,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75\", baseline, precision 8, 440x290, components 3","md5":"928bbdcc3110212df4acb5b442cd9970","sha1":"9aa1c8f92c31d092bd9d1d5fbd492ead792ad4f7","sha256":"f6487168d6d974ba9308c7096f38e2e00cd3d5cec5e0eb891eee1a170d769202","sha512":"e85737f7face1ba960a7267d6265ef511d6ad7c88976ee9280102a250f9ca0589cf23006db4218e547e4eed48c7dbcceff0183ddbba829272f7d0e23617104d5","ssdeep":"384:ZqS4Ukg8kwaTcB8WmTHIAuzQ3sIBSoQqp4nJxmoQCD3CRRWW61dAvtATK0IL4u:Zn4KbLDInQ3xUxnPfWruKbL4u","tlshash":"ac92d0234e6971003f50d17dac6ee153e1e37da52728f435ed6056c2da02cbb7a58b19","first_seen":"2025-12-22T12:03:57.880555Z","last_seen":"2025-12-22T12:03:57.880555Z","times_seen":1,"resource_available":false,"data":null}},"time_used":961,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":763,"receive":198,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/logo_icon/logo.png","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:21.507Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/logo_icon/logo.png HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:21 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 02 Nov 2025 09:57:42 GMT\r\naccept-ranges: bytes\r\ncontent-length: 32097\r\ndate: Mon, 22 Dec 2025 12:03:21 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":32097,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 649 x 125, 8-bit/color RGBA, non-interlaced","md5":"90a6fb1d6dfc12f3613c1579c26a69e6","sha1":"79593cd320ce0635960147d92737ed039dfd4b12","sha256":"0edfd167789761d540b11c1b4c17309c50649005b086396d504d91df90544a4a","sha512":"b5c22a04b0663d353ccd730addb416b06ba501888438e9c0f26d42c8aa1e57f893a522e423c40630a97b9b1336cafce8adc257f0e267bbf0d3fe7844fa4bc24e","ssdeep":"768:45WShnlIUa228WhSQc3nHt0mWGNUxHzM+Gkq3znh:4YShGUaR8qMHt0VG2hfu3zh","tlshash":"ace2e1cdd6329fec903cde1ada65cf2ec69066a030e6b1bd4d1179158972ecacecd142","first_seen":"2025-12-22T12:03:57.881777Z","last_seen":"2025-12-22T12:03:57.881777Z","times_seen":1,"resource_available":false,"data":null}},"time_used":200,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/css/lightcase.css","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.765Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/templates/basic/css/lightcase.css HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:19 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 11 Mar 2018 22:00:00 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 2679\r\ndate: Mon, 22 Dec 2025 12:03:19 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":17010,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (428)","md5":"47bb79d38842b5965d7d01ce368245b5","sha1":"11bcd957b711313e07ee94df4f4f6cec7999dd97","sha256":"aab6e866a6276f56fe5a1be1b5c098376d9c74d805a49de843c83c4d39c4582b","sha512":"51b344829148a869006f2bf1a0ba458299c7fa4fd8e2770e95ca693f3c54ed41b3f596abb3844061dc6b84b7b8f2077bc015400f3f6f3e241ac1bd7568aebd4b","ssdeep":"384:YnwUwsWGkVK0H420JltKwGK9K6wKVKgDKHKmK4ZKcJK1KDyKV0KhFKogAKoCI3zk:fDgME0/qtJHUlNG9vIr+","tlshash":"cc723235ba50038362738107a7f5f91a2714e23be886eda575c9906cafc0bb534937f9","first_seen":"2023-05-12T05:47:21Z","last_seen":"2026-04-03T12:21:19.786618Z","times_seen":185,"resource_available":false,"data":null}},"time_used":393,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":393,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.mybookinglab.com/assets/images/static/italy.webp","fqdn":"www.mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.791Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/static/italy.webp HTTP/1.1\r\nHost: www.mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/webp\r\nlast-modified: Sun, 31 Aug 2025 14:13:30 GMT\r\naccept-ranges: bytes\r\ncontent-length: 237380\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":237380,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"3bd4a0f124065573c9ea023086cd80d7","sha1":"1d660562a94276278a3fe7593b0455be6521f608","sha256":"303997c5126ef31bf50eba20735bfca11beb5081f7c80b8ca67a2c7a0ca11ec4","sha512":"070a3877e26902b1a1f42946b6c84114746b2c877171fb8754698ed9635a8c657478dd7920a14f402c69589670934deea264c7fed237e6b328ddbb8e8675bcb5","ssdeep":"3072:Uc607mVfQ8pFa5DjgX9441dvZYTV6jEGrJzO217Hfkv8KGZhlnd7zyd/PunELet8:EISQ8uhcvZQD4HfWAXtypw8","tlshash":"023423407e4de298dc64a93e4ff691ef51778024fa89c29e11e8ad1436f34e483b2177","first_seen":"2025-12-22T12:03:57.885092Z","last_seen":"2025-12-22T12:03:57.885092Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1558,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1129,"receive":429,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/property_type/684e612f13ed01749967151.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.800Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/property_type/684e612f13ed01749967151.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 15 Jun 2025 05:59:11 GMT\r\naccept-ranges: bytes\r\ncontent-length: 11175\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":11175,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 310x200, components 3","md5":"7cdd68a427477e47c4af9cc36358a0ea","sha1":"f5b873bf4c7771b970bba822fe987ff6abeb583d","sha256":"6cb6867fd90cfa5c91067c947b6a53d85c151dd23829b70d6975679b7eacec25","sha512":"c8a8ded71248d97aa589d302a8f8b17980a3abee30c1037825e0b56cb267454201ae7d3758709db2846248ca5e816e28b0282e6bc8b244ebd14a37fc513173fa","ssdeep":"192:cjeTKUJgkTShcbO65t4q2J5PA0EfLZxKIHmYIcIKVeZN39BeeU9LnlUkdamhS0:6eTKUJgezOi4qg5Fm1mYxVw9BeblUpm3","tlshash":"9c32b07ae82552d02b1e5b2300c2871e222e0bd453d1a1fa5b7b15a1cd94c31a5fed64","first_seen":"2025-12-22T12:03:57.886314Z","last_seen":"2025-12-22T12:03:57.886314Z","times_seen":1,"resource_available":false,"data":null}},"time_used":767,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":767,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/css/main.css","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.776Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/templates/basic/css/main.css HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:19 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 08 Aug 2025 15:39:45 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 16677\r\ndate: Mon, 22 Dec 2025 12:03:19 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":129985,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text, with CRLF line terminators","md5":"dd66a55a1153d6ab6752fe7f13b93bff","sha1":"685ceddbd2fb99261f30b0201c9b6054628b12cc","sha256":"c4f18bf1dab42681471ae0338fdcf502336a80dbc1b5a977c21dda9ab8d0e8c3","sha512":"8a8751eac02e3bab9313f0719df92ee7a9fd89467b28b565377336642e97874fe0b0f2eb6cdc58aae3194ab201c61b0149efc4ecaac09ccc6cbb1a403dfc7526","ssdeep":"384:nOIJ1d2/4AiICyBzuwC35/e3WAjBVbs0JshHPMNB5zoT7yjQGwHwccXeo5f/Tijq:nt1d2RZh6AjBVb2ENB5kteU17/4hazy","tlshash":"e2c3a56cdd0210462237df68abf24b58fb6950638a0206bc7bdd72454ff45f886a9ecd","first_seen":"2025-12-22T12:03:57.887665Z","last_seen":"2025-12-22T12:03:57.887665Z","times_seen":1,"resource_available":false,"data":null}},"time_used":392,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":391,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/images/bg/ele-bg2.png","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.799Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/templates/basic/images/bg/ele-bg2.png HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 02 May 2021 19:46:22 GMT\r\naccept-ranges: bytes\r\ncontent-length: 136697\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":136697,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1920 x 1006, 8-bit colormap, non-interlaced","md5":"eb1539661c7a29109eaa6889e56f91c6","sha1":"19e54c0bc88f362917a458f6a319f943c5ab8a32","sha256":"45ed9d126e569bb7dd1238d22993322df298ad59c968edb817125beb85312c33","sha512":"e56abfcd6b797716504db640a892b26700f38e07f341db39e67a75672346afaa4635bc7355ff553cc0fda1ce511e0741e68972760bc8c31233be7fa07e490b52","ssdeep":"3072:Lw9K0CQ5y5Ydh7wNHyIBAayNOekUu7WjJ/oNaAlab:LTNQIqh7wteaqODUPJ/J","tlshash":"7ad312638f64b12bd7b73dba7c4e003114e0bbf0f40d01026616b5626a57edb9f94b2a","first_seen":"2025-12-22T12:03:57.889329Z","last_seen":"2025-12-22T12:03:57.889329Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1381,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":767,"receive":614,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/blog/thumb_6861035b6a2281751188315.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.820Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/blog/thumb_6861035b6a2281751188315.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 29 Jun 2025 09:11:55 GMT\r\naccept-ranges: bytes\r\ncontent-length: 21234\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":21234,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 183x183, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 430x275, components 3","md5":"b6193e83ebfcbe0c353304881e53fe4b","sha1":"1bb4820695f19e0cb098eb8d20e09850912a3cba","sha256":"db45f50ba1752b7065ad23c8369e91d4c71ca396350c319d02dd94c5ba38cf18","sha512":"b998803a5bf3d16e9c2d526f2fca560e08edea1f84d32fe8f9d0177da80c8bbc411d594cd73469b25e59705dce1ea7d5fb3ff7662f75dee29e7aff9ac80aaafd","ssdeep":"384:eiR2HxPiLXEdlbyV8eleG/IzkonAHXobnvpFQdXT0bDzUgJMQVdPCPlEogxb4Vjs:ew2piLXEdl4FeG/IIoWq3QdXwDPMQrCe","tlshash":"2c92e076a05842281f24c552ad37877d20e27e033b228bcae99417f1929bcf3d15e778","first_seen":"2025-12-22T12:03:57.89095Z","last_seen":"2025-12-22T12:03:57.89095Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1161,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":967,"receive":194,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Playfair+Display:wght@400;500;600;700\u0026family=Roboto:wght@400;500\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.155Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css2?family=Playfair+Display:wght@400;500;600;700\u0026family=Roboto:wght@400;500\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 22 Dec 2025 12:03:20 GMT\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":17726,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"8fb9791132c8d3912de53ba256ca7ee2","sha1":"0f37546c77b653d065d338c21e3b51f68c270f1c","sha256":"32b34bb6dae364d9b8f76a837e804e0748c361e495a87d7ba273424f82b22a75","sha512":"980a0ad9eae1c7f19363cf7ca8efb3c5e1fad3ff60db4750423fe85b05da4a1c022a17b0fc2af6c3a0f29e47f06e107900e503e3eb94c02d9573c8674a671c43","ssdeep":"384:JL2R/W2v/2bv26S2R/P2vG2b226F2R/Y2v52bp26E2R/J2vI2b42NKfMK1KWK6Kx:9aOw/0veaHwG02xaww50pAahwI046TcI","tlshash":"04822da1041790009b834cd223cfbf35fd6f62507041d1b9abfd6b9aaccbc66926971d","first_seen":"2025-12-22T12:03:57.892515Z","last_seen":"2025-12-22T12:03:57.892515Z","times_seen":1,"resource_available":false,"data":null}},"time_used":184,"timings":{"blocked":82,"dns":1,"connect":7,"send":0,"wait":20,"receive":0,"ssl":70},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/webfonts/fa-solid-900.woff2","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.555Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/assets/global/css/all.min.css\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: font/woff2\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-length: 156496\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":156496,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 156496, version 773.768","md5":"6c4eee562650e53cee32496bdfbe534b","sha1":"1aae708e3b94ee981b452a918d28ed037fbb5e18","sha256":"9fc85f3a4544ab0d570c7f8f9bbb88db8d92c359b2707580ea8b07c75673eae2","sha512":"ebcb5a2e2a908228f77ecd03b45491778cad73ddc39fa3a6334b129aaf9fa36c16c0307aeaad74d77f616b5b34aac52d91e9f4816945253dc9a826ddd71f4d12","ssdeep":"3072:OvM6gZMLmY8uGpjVnlooQ+GQs8jic0f/KkMdE:OU65LoP5QSsuic0f/cdE","tlshash":"8ce31200d620498d9978fd5b2a1fa1ffa7a939c95ed210bad3c30cb93257143bbc2556","first_seen":"2023-12-02T04:06:15Z","last_seen":"2026-04-03T20:26:40.216945Z","times_seen":31956,"resource_available":false,"data":null}},"time_used":857,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":586,"receive":271,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/language/660b94fa876ac1712035066.png","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.787Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/language/660b94fa876ac1712035066.png HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-length: 772\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":772,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"942a21b1e81a5311d07f73297a703047","sha1":"b99b72497f3aa5722940353425500cf3fba93488","sha256":"2475ac5d777c954b0d01225c637e53d65337402bb6dd4cb29ae2f4bee7ced4d6","sha512":"14f788a52e131114a10df5ecb9330b24ad8cfd87ac4f1de124b071a2cd5b75ac7924c17da3f99518cef8758db04054f7be289e904bdbaaaafd761dbfc4773215","ssdeep":"","tlshash":"630141d5d354524198b91eb9205740219630c2a2ce9e6bba093194379e1ce92265c394","first_seen":"2025-03-04T08:36:16.683249Z","last_seen":"2026-03-24T05:08:41.851925Z","times_seen":76,"resource_available":false,"data":null}},"time_used":584,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":584,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/property/6892ce54b15fb1754451540.png","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.806Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/property/6892ce54b15fb1754451540.png HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 06 Aug 2025 03:39:00 GMT\r\naccept-ranges: bytes\r\ncontent-length: 376329\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":376329,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 445 x 350, 8-bit/color RGBA, non-interlaced","md5":"e9ac1d8d0b97153db373b83b6cfb2bb8","sha1":"e17c515595622bf71a8fe4d26ef039c8b04e4330","sha256":"1696b6b11ed89d5882737f3720becfe28c1bb4d56c7e30e914041067976c04b6","sha512":"f1fd7edd3868dbd00defdc146b6e49f6cf130460fe6b451311b4b60078f779812581f8cc8ee698d0eb9a0a5c4556a2827796e1e5d2c061395298935239037d67","ssdeep":"6144:dMXNWXyvYdPck0RKAVPQt7OUvheL27h5zbClbNoK4DgigtaQMp6:dMXMZWRKAVG7vhe67TbClJoL0iKMp6","tlshash":"188423401ba3407857094b9769e228aff34d23b7b5093e8b98c29fc9de9d5ee53c2705","first_seen":"2025-12-22T12:03:57.895461Z","last_seen":"2025-12-22T12:03:57.895461Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1597,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":767,"receive":830,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/js/jquery-3.7.1.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.825Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/js/jquery-3.7.1.min.js HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 29737\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":87532,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"c9771cc3e90e18f5336eedbd0fffb2cf","sha1":"6ee8aaa3ac1f4e0ae18717a3fd26892e9f0e4cc5","sha256":"3e7501d15c3630e791c8b20392eb9dee31a9f65ce3efdde76cef5c710141ab24","sha512":"c503341fa3a7176fd10bd8cd7a5717c8faf971f87fa0c158f2d94fcd484ae3ed5031f49414dae833fb806b7365b5699c21d2e655376f69adb052b22f6f6982a7","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GK7:sHNwcv9VBQpLl88SMBQ47GK7","tlshash":"8083f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-10-13T22:05:06Z","last_seen":"2026-04-03T18:58:42.545761Z","times_seen":21243,"resource_available":true,"data":null}},"time_used":1163,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1149,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/js/slick.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.828Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/templates/basic/js/slick.min.js HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Wed, 04 Oct 2017 16:49:30 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 10097\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":42863,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (42862)","md5":"d5a61c749e44e47159af8a6579dda121","sha1":"3b41b3bc956685015a347a2238e71db29dfa0dbb","sha256":"0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740","sha512":"5ed98cb4311c373da3ede92bb47bce551e22c30683ea8fc55097baf99abe1e0702b24de48f8b9241047cc1e4364158f5a343e4e8fc182e8866db4e99ccd7ee6e","ssdeep":"768:4rkkX123A5YHi6pWzYdlNWYcx16nnYdXRRMd2KYCQCsPShb1ez7RFmYH:EPrYdlNixEePiYH","tlshash":"e513a549d205276285d721e62105c40eb3f7fb3cba22c0e475c9d3ea646ec4896d7bfa","first_seen":"2023-03-07T01:06:34Z","last_seen":"2026-04-03T20:30:32.029691Z","times_seen":77059,"resource_available":true,"data":null}},"time_used":1147,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1147,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/js/iziToast.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.842Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/js/iziToast.min.js HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 4784\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":18481,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (18398)","md5":"a05a127c793145cec6b721f14fced3e5","sha1":"5d753b1c803de12f4d2217ab0d143d4dcf047010","sha256":"ac860be79a4cfe434ea68f002638f79371d9a85a3b045a1aaf10dc98df551497","sha512":"ee5a4c561a267f7a96635cb529a5e670aebe766289fe358e6b394585db4b76d5df215cad4b358a07425deaada36d4f4e42c06c2c44d9c192f03ac1afeb9bdc64","ssdeep":"384:ShKmhCPzlc5gVCPBpcG/0CEvXArKKpQi8VREgO3MrnHzxJBkHI4505P:+K5PzlcN8DXArhpQzRHO3M7TxfGIYUP","tlshash":"6a82c894722032374aa329a960ff534a3772156ca9c641a4243fcdad5b34f8939f77f8","first_seen":"2023-03-07T01:10:25Z","last_seen":"2026-04-03T05:20:04.742716Z","times_seen":2459,"resource_available":true,"data":null}},"time_used":1132,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1132,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.mybookinglab.com/assets/images/static/hicking.avif","fqdn":"www.mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.398Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/static/hicking.avif HTTP/1.1\r\nHost: www.mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/avif\r\nlast-modified: Sun, 31 Aug 2025 14:22:54 GMT\r\naccept-ranges: bytes\r\ncontent-length: 259257\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":259257,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"012620c1bb4580a69fe8f320cee01835","sha1":"4c597fa8aee80d00171afd1f07e23630ce7b7975","sha256":"ccebfd834b4038ee325e218e95a7152e2ef21ef41982739e21805026ba4c6a01","sha512":"5cc1fc8dfe104cc47c792047a03bde4b25dad103d883af5643b289372689f4dbd67949d7b52fb52fefbb14796df272a61653a400deb02d5e53b99a8eeedfbe74","ssdeep":"6144:vNuY4K0r9ww/2Tr6nFDQwcS76T823iIs77s1Folfy4/ST1:vNu7M6pw2w82SI91a8","tlshash":"f544231607623b71c6b5e035b7210504fb6f62164e37f2e03cea9da431a1bab41d7e79","first_seen":"2025-12-22T12:03:57.901776Z","last_seen":"2025-12-22T12:03:57.901776Z","times_seen":1,"resource_available":false,"data":null}},"time_used":958,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":718,"receive":240,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/logo_icon/favicon.png","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:21.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/logo_icon/favicon.png HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:21 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 13 Jun 2025 16:37:15 GMT\r\naccept-ranges: bytes\r\ncontent-length: 55313\r\ndate: Mon, 22 Dec 2025 12:03:21 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":55313,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 255 x 255, 8-bit/color RGBA, non-interlaced","md5":"05cedfc4c3b66475e67bfb5bef439d87","sha1":"d2e8a659959be6ad8db83ba4479efc82418aec5d","sha256":"b4aa9cf174dbe672c2e458b04c3df8654d410be635daa9737acd2125007d95ae","sha512":"dcc8810aa2a3ab3e1c7ce4e71f4d1d026e854ce26f052cece2c009b7165d9157a20ba348b49bcd59c540dbdc059fc5f321147b67f7e1fed83c40d57ccd651e5c","ssdeep":"1536:gXaYiWH1JhiZV1YabnxEUBrUKwbBqcXMZGsJEuFKY:gXSC1JAZDYe3UThc5JUY","tlshash":"5b43f15dfc4b8c551798392cfe9c5891c5c2621703499dc6e2ec44ef3dce2ac1eb6a2a","first_seen":"2025-12-22T12:03:57.904225Z","last_seen":"2025-12-22T12:03:57.904225Z","times_seen":1,"resource_available":false,"data":null}},"time_used":201,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":199,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.mybookinglab.com/assets/images/static/srilanka.jpg","fqdn":"www.mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.796Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/static/srilanka.jpg HTTP/1.1\r\nHost: www.mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 31 Aug 2025 14:13:47 GMT\r\naccept-ranges: bytes\r\ncontent-length: 83041\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":83041,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 583x777, components 3","md5":"292116b7ad6cf09e38de70425af0b486","sha1":"d3673fcd4d2b1ed269afd472b35aa6753d8777af","sha256":"d60dd90257fec5ee17bc43ecd5ac8d6d453b3e0b7a11b5c92d2973eb120a6e39","sha512":"bb6293fd6d0cfab75164cc00b83296fbe64020b454b572435d8ac9728ee9bb4da6fd7d6fa7311d15f95a2ee183919352f35bbd79fc3b02f4104f0d0d9b22a546","ssdeep":"1536:Wm8IBp+bbpO/jL7+3gfRZ1T1ArXHVlVTmPpIdrHbbsbXHv6GPpwlGeU:Wml7cdMb+3gfvlar3VlVTmqbs7PDulGV","tlshash":"0a8312303919ee82997cde731270c5b772ae1f8ae50b65eb10db66e3078e1c570562e3","first_seen":"2025-12-22T12:03:57.905705Z","last_seen":"2025-12-22T12:03:57.905705Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1343,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1130,"receive":213,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/property_type/684c5a61451011749834337.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.802Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/property_type/684c5a61451011749834337.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Fri, 13 Jun 2025 17:05:37 GMT\r\naccept-ranges: bytes\r\ncontent-length: 13129\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":13129,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 310x200, components 3","md5":"6eac4f1e2afcdbbfbf4be78953bacafc","sha1":"e72f4b921f03e8f42aba1feb503c081339179ee7","sha256":"6698e2568fb07d51095f79c7ec10d79df67df593361cef4e9d48792ddf5a0f7c","sha512":"a9585485b7a847051f316b7b9964b6304e4d902a12bd7f8676d5f9e7cd890b0fad367c94fae8729d15821319a7b5b073e80f2e23b8fff6550d46849e38dcc417","ssdeep":"192:cjQZ99r6udGbH3ziY346QvPcinIqg7iOkpvfRtD6h/xDJex4PDyDBVXOrS:6wj+u4bjiii0J7iOkVfbDmpDsOLmmrS","tlshash":"1b42d096ba5ecd13f712b1fe9a2829b194c8944042e56f745b884727affec79170ce0c","first_seen":"2025-12-22T12:03:57.906951Z","last_seen":"2025-12-22T12:03:57.906951Z","times_seen":1,"resource_available":false,"data":null}},"time_used":767,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":767,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/works/68610078249e41751187576.png","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.807Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/works/68610078249e41751187576.png HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 29 Jun 2025 08:59:36 GMT\r\naccept-ranges: bytes\r\ncontent-length: 117754\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":117754,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 575 x 755, 8-bit/color RGBA, non-interlaced","md5":"28c30f93059cc6061adb3404d966ca04","sha1":"e2318787581969872912f18d073f9d8694da8180","sha256":"1aafe14a136738010f78c17276905c09bea660ceac1b7a27f970828f829fd276","sha512":"d12e3b5d2bea5bcaeff3245732127f87c6831cb3453eab65c7e782f74f3a31ed35e596ff3f0527acd7225149439bcd7a5cf31e7d2cd41b79930a035c92bf34c9","ssdeep":"3072:WqgQSZQOI1CB/SjzHlSSX1KLodkGmJkIgvq:WqTKXIJ1lKLIF39vq","tlshash":"aab312f60cd8670af5237c7b589302a717e7b0d46875f743e2a60324257e29e7427a87","first_seen":"2025-12-22T12:03:57.908177Z","last_seen":"2025-12-22T12:03:57.908177Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1381,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":766,"receive":615,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.mybookinglab.com/assets/images/static/beach.avif","fqdn":"www.mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.396Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/static/beach.avif HTTP/1.1\r\nHost: www.mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/avif\r\nlast-modified: Sun, 31 Aug 2025 14:22:49 GMT\r\naccept-ranges: bytes\r\ncontent-length: 139014\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":139014,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"74cc9e877672bf903e3423bbc971753f","sha1":"9d952098fa9d9b37c73baa87e82d57faca27f8eb","sha256":"61c22a438cf96ab6c718af31463992166a50fdee1939e4c72d92bc9f8f6bd1d7","sha512":"7170dfc1914bd3951fdb92a617bbaa80768a437cb37955561813ca8ee824b8ed7aacc976b2ec3ffa294cde536db9f819a6493e7ff6d265b7037b9b6817c07c5f","ssdeep":"3072:A5y62lUz/w2tjrEZZXR6lTKTq5vRSyAcVwwS9yTeaHvH5kt:A8rla/w2t0ZZXIxrOyH+t","tlshash":"e3d312432876beeceec842352839cfcd6520c6ca2a9ab7d60012757f94d01ff1959e76","first_seen":"2025-12-22T12:03:57.909177Z","last_seen":"2025-12-22T12:03:57.909177Z","times_seen":1,"resource_available":false,"data":null}},"time_used":963,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":719,"receive":244,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.mybookinglab.com/assets/images/static/baloon.jpg","fqdn":"www.mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.401Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/static/baloon.jpg HTTP/1.1\r\nHost: www.mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 31 Aug 2025 14:23:03 GMT\r\naccept-ranges: bytes\r\ncontent-length: 127592\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":127592,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 880x927, components 3","md5":"f4353043f1f81fbd58c5eaf14bc5b90a","sha1":"15db8a494e23f02c40ee0b34280309a69207ecc4","sha256":"79799940bc3e38b6d8098458614bc6bfc5acdc1014a892a97419a9f0e24bc098","sha512":"ae2cb5457b7a0fd0edfa2458cc75025eb3c50c228e93e05d1dd5a8d0f53cf03f892899141ce2b04f7e398dcc01faab41d5edc8206926de6c9765afa12bffb932","ssdeep":"3072:Vt2mI3rc1E/q1+eDg7uTFBgkJd9NexW89M8z:6c1EkDg0j1Jd9NePKs","tlshash":"e5c3134f72e6ae95c17e69790f679630e353cdb481d80e327866cd3a701a32c7152c97","first_seen":"2025-12-22T12:03:57.910156Z","last_seen":"2025-12-22T12:03:57.910156Z","times_seen":1,"resource_available":false,"data":null}},"time_used":971,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":724,"receive":247,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/css/custom.css","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.781Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/templates/basic/css/custom.css HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:19 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 12 Aug 2024 18:56:18 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 2338\r\ndate: Mon, 22 Dec 2025 12:03:19 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":10810,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"28d500ad6e2e8266363232c5efb68b17","sha1":"0be15c42ea959ab91e9994ea7fda2b97b380db6b","sha256":"1b598745f58031fedf007b3c554aa4c23ee89afa9a8cfeba2b335a56dd3d6b41","sha512":"59f1501408bb6a5bcbe19a2990e86acb34c5d1a19d4da6a3f497256ff48f01e129f3e79642a03a9ddc5e45aee7ff3d443b75702f9c7586cb943ea2b58e36cba7","ssdeep":"192:QmbFy9JgcnfrF6FGFoFNFEcW5QI3O62KtNFhXFpe2rFTF/2r2jq1j95b2Xk8FGwm:QKSgOrF6FGFoFNFq+4NFhXFptrFTF+C6","tlshash":"9b2223e27ad80124702fda596cf2e6a4732c9546e50ecdb4b7e0305c9e843e95573e4f","first_seen":"2025-12-22T12:03:57.911365Z","last_seen":"2025-12-22T12:03:57.911365Z","times_seen":1,"resource_available":false,"data":null}},"time_used":584,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":583,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.mybookinglab.com/assets/images/static/maldives.avif","fqdn":"www.mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.792Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/static/maldives.avif HTTP/1.1\r\nHost: www.mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/avif\r\nlast-modified: Sun, 31 Aug 2025 14:13:35 GMT\r\naccept-ranges: bytes\r\ncontent-length: 691370\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":691370,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"8c758c78ff680756d5ecd2d09c0e76e8","sha1":"8c698a24582b8d9affcdb442b616422bb923460a","sha256":"21287a7a3ab6410ed92acf9b99894b51587a1affaad2818b0b8ca7297c2e713b","sha512":"6e6ad611a1b481bbd6005d918c3de14b698565997478094d00465a0335fad19b4f5a95ec8e4ddc2a24e45f492bc8b0709665459b8921ddf2e47b736bd3eb75fc","ssdeep":"12288:xuuhkLcGo9rCHpcbOuspSl6zpR7VhdR+BYHnF00Odcm6nlVpPk0CO:0HLcGcCJcbOHR7VJGYHcdcmQV/j","tlshash":"22e423bf5ec48501dc5345fa1ba23991c120f2a8d75bea5376f042cd26be728afe590c","first_seen":"2025-12-22T12:03:57.912567Z","last_seen":"2025-12-22T12:03:57.912567Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1640,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1133,"receive":507,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/js/select2.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.833Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/js/select2.min.js HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 18555\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":72483,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (64125)","md5":"458e16b8c8afc15a6a78aea673c68d0e","sha1":"9ebaa1193adff3025cdaff7c9a65c48aed4a22a0","sha256":"5130a11b61a3fb716095a704c858023aa4169e84e2027c0fdd31d756271bcd09","sha512":"a71d259801d55081ac94bacb17990d85d49d19427293e32ce9447b5708cc4bc08f4cfcb82db4471ca5a73b151abea7b88b7cd00e3c626e25c8c02a17acd8c0b3","ssdeep":"768:voMZDhrrJ/Y6EvKqtB8Nnoc9DpPJRGookOlxNjuvSnJZdjVrMbusSzXAFo8Jw:PACno0okOvht6b5KEc","tlshash":"d363b64c7a93723502af20e6346b180922376b3e500b9668b428cded5dbdd05736bf7e","first_seen":"2023-03-07T01:03:46Z","last_seen":"2026-03-31T02:38:41.275335Z","times_seen":259,"resource_available":true,"data":null}},"time_used":1152,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1147,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/footer/68610c33c92551751190579.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.410Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/footer/68610c33c92551751190579.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 29 Jun 2025 09:49:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 176478\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":176478,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 183x183, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 1920x840, components 3","md5":"1be8d34f9fd5dba0a746fd62c86bc546","sha1":"df68418d525fbb8eaa5d7420dfac094d1e5d8ddd","sha256":"16f239d6fd5cac5c7bad074df3d077d202fc3f174032bfc4e3a88d3a93a95f02","sha512":"5531087552895e4f71686abb4c8bd2636ca4283f47f203b69f6452c7423d90d37157c8367d0682500989e355cde87356cc7cb025265cf52e029f1ec73c553ce3","ssdeep":"3072:dtfZSFtiBVgAZxQws7P6plimw1xUE3NKqbVYgZxZLMBMLDeQuoYWHCzM+mnbmAMZ:LYipZy/7SplifxUMNKfWQBMLDGWHCw+j","tlshash":"e004128795518ef2dde903f0fe966e493b800a1c28f656f0e1f6cf6c75e6314649a80e","first_seen":"2025-12-22T12:03:57.914572Z","last_seen":"2025-12-22T12:03:57.914572Z","times_seen":1,"resource_available":false,"data":null}},"time_used":965,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":717,"receive":248,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/fonts/la-solid-900.woff2","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.418Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/fonts/la-solid-900.woff2 HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/assets/global/css/line-awesome.min.css\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: font/woff2\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-length: 96752\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":96752,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 96752, version 1.0","md5":"36fc297902c9a2e857858baa6ac25f2c","sha1":"89d9531c0c70a8751dff83c1917baab1f16a2071","sha256":"10a68e01209d939afa9318ee71601b0a6e10f025d4cd6d98a492d340b73941fb","sha512":"c5711d5027762fbc8d352dfdf64094958348b873671c891e8c5cf701a569c3bad672a380db7fad76692bf79dc9235b37f76b6f42f73698c9f85d2c7a23aa62fd","ssdeep":"1536:H8wZeXMjWqtJeAAHBX6ANib7HTYJv+Nr1ScHQjn6t/k5LBNCMAG35y:H8hXMjWeeVHtA7evKr1Xwelk51N4Gw","tlshash":"1f930257f0921be097c688990e189035cd39fd71397fe9f4e603ae4cc361927e52a4b6","first_seen":"2023-04-05T18:32:05Z","last_seen":"2026-04-03T20:54:01.277168Z","times_seen":10884,"resource_available":false,"data":null}},"time_used":916,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":710,"receive":206,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/css/slick.css","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.768Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/templates/basic/css/slick.css HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:19 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 04 Oct 2017 16:49:30 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 483\r\ndate: Mon, 22 Dec 2025 12:03:19 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":1776,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"f38b2db10e01b1572732a3191d538707","sha1":"a94a059b3178b4adec09e3281ace2819a30095a4","sha256":"de1e399b07289f3b0a8d35142e363e128124a1185770e214e25e58030dad48e5","sha512":"c11e283612c11dfeec9a3cb42b8a2acdd5ae99dfabe7ffba40efef0dd6bbe8c5b98ae8383d3eeff3a168124c922097eddd703401ee9ac6122f1ebab09bbf7737","ssdeep":"","tlshash":"c931294845b389468416808d5fd7ca6d2bfff0130829e199ba8d1306cfce7d8a9c26b2","first_seen":"2023-04-05T08:37:21Z","last_seen":"2026-04-03T20:30:14.327368Z","times_seen":52092,"resource_available":false,"data":null}},"time_used":392,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":392,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/admin/js/daterangepicker.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.835Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/admin/js/daterangepicker.min.js HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 7494\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":36194,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (35855)","md5":"301a082257d8ef9c999a89a5222e213b","sha1":"cdaaa78ec80f20ee51086ac1d97d095df93e318a","sha256":"b0f0d81020b65b12c689681b54ab12c48cd819d64b147973e1ef76cfa76b8050","sha512":"2dfa2e70227aa8f2b8d7b8924eac16601f8b123efaf8427a0dab83a78435600ff348811089de37d9a209a7f112c0658c61d85e58ac1d599c703b6e3871c10f1b","ssdeep":"768:FyPEn1YSaTPEtf8NeAK1dKqoJdt1iajQFcSYnTZ+qovZgXRYIZzEa8RAPO7XTnT6:DNoBsG1nTZu7HU","tlshash":"14f2544767890b3395a641aa8d484646bb21863e86c74c7c3f6ce1e07caec7d01fdeb5","first_seen":"2025-09-19T04:17:33.242132Z","last_seen":"2025-12-22T12:03:57.917551Z","times_seen":5,"resource_available":true,"data":null}},"time_used":1141,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1141,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/css/bootstrap.min.css","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.751Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/css/bootstrap.min.css HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:19 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 24629\r\ndate: Mon, 22 Dec 2025 12:03:19 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":194900,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65306)","md5":"a535cda6f21335f130c892d0444a7902","sha1":"95c895180f4103e47281f2dc59524adc05b22dcf","sha256":"ef110c50e64cb77ff4adcec1cff87821f8bb31e56ccf14d85a8bcce0eb65e19e","sha512":"bf30a7e68070b7617a7fc9d84bf73512dc00f48625e23d092493889fe912ec53e42297e1e903b3880e088d5c8089d8648c3bfb85fa5d2a3907d35c72a10c3a1e","ssdeep":"1536:htGg9JfWgeQK5wlP72qgOfI3N9LsqkVkpz600I4lp:htGg9JfWD9kVkpz600I4lp","tlshash":"711482d6f190307d98a7c2499591fefd866fa585d7120aaaf0137b6807ca7c30963ecc","first_seen":"2023-06-18T01:05:12Z","last_seen":"2026-04-03T14:57:06.131769Z","times_seen":487,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/logo_icon/logo.png","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.786Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/logo_icon/logo.png HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 02 Nov 2025 09:57:42 GMT\r\naccept-ranges: bytes\r\ncontent-length: 32097\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":32097,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 649 x 125, 8-bit/color RGBA, non-interlaced","md5":"90a6fb1d6dfc12f3613c1579c26a69e6","sha1":"79593cd320ce0635960147d92737ed039dfd4b12","sha256":"0edfd167789761d540b11c1b4c17309c50649005b086396d504d91df90544a4a","sha512":"b5c22a04b0663d353ccd730addb416b06ba501888438e9c0f26d42c8aa1e57f893a522e423c40630a97b9b1336cafce8adc257f0e267bbf0d3fe7844fa4bc24e","ssdeep":"768:45WShnlIUa228WhSQc3nHt0mWGNUxHzM+Gkq3znh:4YShGUaR8qMHt0VG2hfu3zh","tlshash":"ace2e1cdd6329fec903cde1ada65cf2ec69066a030e6b1bd4d1179158972ecacecd142","first_seen":"2025-12-22T12:03:57.881777Z","last_seen":"2025-12-22T12:03:57.881777Z","times_seen":1,"resource_available":false,"data":null}},"time_used":585,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":584,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.mybookinglab.com/assets/images/static/dubai.avif","fqdn":"www.mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.793Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/static/dubai.avif HTTP/1.1\r\nHost: www.mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/avif\r\nlast-modified: Sun, 31 Aug 2025 14:13:44 GMT\r\naccept-ranges: bytes\r\ncontent-length: 133731\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":133731,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"512d347fe9ba458a01c0cb52f4a79ffa","sha1":"6ab1103de2fcd23c3a13ecca6fe7944baaeb17fb","sha256":"8ffe828ecde580f5df94126de8c50aa1e81df40bcaad80aac26f0e152c70f08e","sha512":"2e19f035e394fce792cac81b6f490c9216ddb60f337d89f868bd202b47a21c057c778888dccb6a62d7a8ba2dad0178068c6f7fe5ee1f6cdbb9858753b0c00682","ssdeep":"3072:gUQ7C/hI4xMjsBbO9OND1LDputN6wqQ9Z0jG6QdtEi3oczsX0:eCp/xKwhDDputzq0Z06tQi1S0","tlshash":"4cd312213e24e546e4de6d72fc483e2e837263147b66db0da52b8e094c0d2f80e76c5d","first_seen":"2025-12-22T12:03:57.920093Z","last_seen":"2025-12-22T12:03:57.920093Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1530,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1129,"receive":401,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/blog/thumb_6861049a4e8d31751188634.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.823Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/blog/thumb_6861049a4e8d31751188634.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 29 Jun 2025 09:17:14 GMT\r\naccept-ranges: bytes\r\ncontent-length: 20203\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":20203,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 183x183, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 430x275, components 3","md5":"3669552d5742087f7c114d818cf4e5ea","sha1":"7017cb78c71fc61c151aa511482968bd7375c5dd","sha256":"7ae07b4e01542b0888c99cd492778b0ac5124f06d59b2dad02580800fef1f08e","sha512":"70e33815e01713c3581347c09ce33495280fad597acdf41ab70b2409a8ab6a0e5f4950fdf27fa89004ec027cb8f4b4464f4416ca68dd4088eba05c91da0e6681","ssdeep":"384:e9wniYiWb5VtNoggqSfvFZgeVtISxxafGZHiQRrpY074iGqCKELO435y:e91YVydeeifIiQRi07rnEaiy","tlshash":"ff92d02cc69af2067b02066b2526b957431c848563b0ac7bba21cdfc4bf5eb0dd4bb41","first_seen":"2025-12-22T12:03:57.921756Z","last_seen":"2025-12-22T12:03:57.921756Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1161,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":966,"receive":195,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/js/wow.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.830Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/templates/basic/js/wow.min.js HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Tue, 16 Jun 2020 10:34:44 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 2572\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":8415,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (8385)","md5":"36050285bfeeb7395752f0f9bbc08273","sha1":"5924f7bbbf1dfa3f0926851d01f782f23a59e805","sha256":"0ec632e6ab02d4fdd514da7f5edc74aa28c9d4c71af76f1c8b93a1fba85bcc69","sha512":"bf887e087c52583114b77bfb417d7dffa0ee8634d39155af14591a24b2add9ef4c8a0c0555364122800d07a55f5f1fb0c723b39541b069a437ff558ddbf380a3","ssdeep":"96:UrZgL1xvPV6GqKgR6TYLWHFMLJA6pOROVEE1fosvGeaMozHImBaoqbl:Ury9PVfIFrlAJROVEEdos+eatzHILoA","tlshash":"750267c97a967031d75796f6833f0106b6361aeeb028047cb5b88dd57c78868523bf38","first_seen":"2023-03-07T01:02:45Z","last_seen":"2026-04-03T20:47:00.325125Z","times_seen":9661,"resource_available":true,"data":null}},"time_used":1149,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1149,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.mybookinglab.com/assets/images/static/thailand.jpg","fqdn":"www.mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.797Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/static/thailand.jpg HTTP/1.1\r\nHost: www.mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 31 Aug 2025 14:13:52 GMT\r\naccept-ranges: bytes\r\ncontent-length: 176596\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":176596,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 736x1108, components 3","md5":"8d8930f02e17a8be08220915c8322bdb","sha1":"efa46b163ea4fcb95a858464a35ddf4c2d973a35","sha256":"8e9410e44f6f3c01f5d18e6c27d10b68b0f917617d44da8d3e9ddec50c7942b2","sha512":"b66c96da433d0fca0ed1534e55ccc3e6714670e5c8139441f2abe972a17d3e8376ddba036467c2a0f69c9b598fc95275eb86e4074e3f71c0e06a6f05cb9ac8b7","ssdeep":"3072:giHEZVnHC3ENEpMjQgjVSUjzk+AEGK34nH+s+dWpRHEOfZ2RMJCm4NgAmMEPIf/:gFZVu5MdQgzTIK3Iz+dsxTB2dXRFOIf/","tlshash":"dc04129af395ca72c46993b4bffd2759433bd56883d12b8d23c694489c101f7fa41922","first_seen":"2025-12-22T12:03:57.923685Z","last_seen":"2025-12-22T12:03:57.923685Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1336,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1130,"receive":206,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"www.mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/css/iziToast.min.css","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.838Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/css/iziToast.min.css HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 9933\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":41500,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (41419)","md5":"ca2f839e9a41207ce4d486b75b0dc926","sha1":"398acaa4eca2baa749a90175fe24d3c2a35f19ca","sha256":"20b2776eaee552defc7c9b25bfef14a891f0dd4a12ac7320d689d749e1ca0fa7","sha512":"d9feb978fe3c1c26cbb2efb380a70eeb7501f5631343a998abfc84766f9a6d2f1e521cee40bcff6b381515a7a1d8fb4726af583502ee23549934757766257f5c","ssdeep":"384:pV5zpPVWahj8Ik/4kYip7pHRiJhkgL6LlG1oLzlRCPoA50UhLoMPFPsR4lweGbzi:zPVNhlHgppGf1oWQA1","tlshash":"711345fd15f0124454c6ab4296da6a980e3fcd9770ea1cef32cd344b8b46b9e136532b","first_seen":"2023-04-10T01:39:17Z","last_seen":"2026-04-03T05:20:04.753216Z","times_seen":1716,"resource_available":false,"data":null}},"time_used":1131,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1130,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/property/684c5ab6299641749834422.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.805Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/property/684c5ab6299641749834422.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Fri, 13 Jun 2025 17:07:02 GMT\r\naccept-ranges: bytes\r\ncontent-length: 30073\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":30073,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 445x350, components 3","md5":"47a8ba45d2d99472c0b39fd374ed84ea","sha1":"3512885d3baff8809034323c9e562d8861ea486c","sha256":"8374efe10dcdadd108379b76e3e15a94e80973faa1531799fa083366279d8156","sha512":"c63c47db3e55c0b69f697aebb79ac9d9d000b1d45325b102de0247c03b2a8cd9e4d089d3a724fb17705d70686826d75e73273aa4cc6ec98af4d744a279b89460","ssdeep":"768:EXazBa1gm2pBfrQGY+hmKo45S0ip4QFyI3Ulu5fglD5RkWP:EXMaQBfs+hNoCQFf3wu545RkU","tlshash":"afd2e0b12bf37b7bf381151b923520d69543a6daf6086f308f0901b6af85dfa2cd8151","first_seen":"2025-12-22T12:03:57.925316Z","last_seen":"2025-12-22T12:03:57.925316Z","times_seen":1,"resource_available":false,"data":null}},"time_used":964,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":767,"receive":197,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/blog/thumb_686104b1bcb691751188657.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/blog/thumb_686104b1bcb691751188657.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 29 Jun 2025 09:17:37 GMT\r\naccept-ranges: bytes\r\ncontent-length: 24916\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":24916,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 183x183, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 430x275, components 3","md5":"681624ae865410b0bd3047ebcbb15739","sha1":"a8d49ed9b81bc0ee396b979614dd6804768ab5c0","sha256":"e4da951eefe6f4285311ff731c35d7d765eee78363f605f022c4c15398c39465","sha512":"704b7014423f907fd770031bdf316b05fc10911a39a7150147f8833a2f3c85c8f080d8454dadae8f932cdae19a31f0acd66b266d228326711269ba3b303500a5","ssdeep":"768:efi+2dE93jrgsYSrrrBIe+SYXqZEJPz2R5LMPb:efiOCTSrr1Ie+SY6ZE9z2TMT","tlshash":"4cb2e1968c11010d4fab456225ee6abdb5bba171f0ec16f70c2adc98e008dae3277265","first_seen":"2025-12-22T12:03:57.926462Z","last_seen":"2025-12-22T12:03:57.926462Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1161,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1146,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/js/lightcase.min.js","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.831Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/templates/basic/js/lightcase.min.js HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Mon, 08 Feb 2021 18:00:30 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 6348\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":26325,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (26325), with no line terminators","md5":"9c60ea9e71ce3358a9c747c40d1304a5","sha1":"069c083c62b28a9d096541f7631a9a6845249cc6","sha256":"6e1cddf92fb43f1e93fb6ac1999ae99e4b4efae82ece7948f588498d32d59c31","sha512":"9b670af2cddd31e64bfed8acc1d4b0e614a53c15cf0d9c02a911deabfbc4d7016a87af2d16b1c72694730cec07d3d77fc2d616cdfcdc098efe7c55c51d0fc815","ssdeep":"384:q2Wg8ilPrNskSL4PkeaBMWXOk73LL9YBFpKiFvxTViTHw10yukLTUVv:q2hNCkHkeapOkidK+vxTVwEjMF","tlshash":"92c2d83cea44f029406f62b2899b5605c23799256773f9b0e1b1c5e5dc64ac92c13fef","first_seen":"2023-03-08T01:01:52Z","last_seen":"2026-03-07T04:47:14.566569Z","times_seen":42,"resource_available":true,"data":null}},"time_used":1148,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1147,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/top_trip/6860fd39ad2fe1751186745.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.406Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/top_trip/6860fd39ad2fe1751186745.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 29 Jun 2025 08:45:45 GMT\r\naccept-ranges: bytes\r\ncontent-length: 106187\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":106187,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 1920x1090, components 3","md5":"107abd675ad18ee759ff9752167a1f36","sha1":"174abdf6662a2ee1964ee369f5944e72ce7ad390","sha256":"ea98cba4d64d17d816a43a8b72e52d8ee2db46a514eb7fc301f5c8f3edac814a","sha512":"4157bb96f418c8b1a7d5c939db3aae149a959ad3d9826e4e5be92e82678448deeefce662f077e719dc91224c4156da7a7901843d040578568961ab88574abc48","ssdeep":"1536:YGPPXmHvc6zQoIQifsLCuV5d8AKtqyV9qNaeD0lOWeWKmuqZRTrocu/:PP+RtrifsLr5iVqyV9uP0lCWLHnox","tlshash":"7ca38d07cc598b83e45983f9be070dbd6e1a1748f9927bfe50725ecb3e545220c8b16a","first_seen":"2025-12-22T12:03:57.928008Z","last_seen":"2025-12-22T12:03:57.928008Z","times_seen":1,"resource_available":false,"data":null}},"time_used":920,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":724,"receive":196,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/video/684e681df1cce1749968925.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.408Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/video/684e681df1cce1749968925.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 15 Jun 2025 06:28:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 389323\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":389323,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 1920x1280, components 3","md5":"94a74f4fd4ce8d6d82bedd1deccfb37a","sha1":"b6491f9332eef75138feb25c8113213a90cbea04","sha256":"06a76bf0ec1d91b9382957aea9dc7ee802d5ca270bffacc01e64a7209c2fe178","sha512":"fb605aef734dd12bee7cd63dc13eeb239ca472f6c1282c9ef83d98e867ec1d47eb86afe89e072ca2e9c5717115f1eeb3f1645d9ea29ced34baf66743273472e3","ssdeep":"6144:BlHuC/w6Q+6za4nC/gZU3w3PpqXtETlcMfRdsGhTvqc7RtFfR4hgyNAFOqzoIQU9:bOGl6OEZMwhqm9ns2eyZ4pyFDzkh4xtf","tlshash":"2b84236371061b06b56ec3da7dcb59c44091aa49af604ecdfe98f4613520cecfa2cb9d","first_seen":"2025-12-22T12:03:57.928724Z","last_seen":"2025-12-22T12:03:57.928724Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1000,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":718,"receive":282,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.414Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://mybookinglab.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 16 Dec 2025 19:22:36 GMT\r\nexpires: Wed, 16 Dec 2026 19:22:36 GMT\r\ncache-control: public, max-age=31536000\r\nage: 492044\r\nlast-modified: Tue, 18 Nov 2025 19:00:07 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-03T20:29:56.816779Z","times_seen":713030,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":32,"dns":1,"connect":7,"send":0,"wait":8,"receive":6,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/global/css/line-awesome.min.css","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.762Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/global/css/line-awesome.min.css HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:19 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 27 Jun 2024 21:00:02 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 15174\r\ndate: Mon, 22 Dec 2025 12:03:19 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":89729,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"73db02545cf13e8c82b51b62782df0d6","sha1":"c1bd14187b6dcb36efad21e51711f8941801de0f","sha256":"ce61a18cf084f15003798340044643f329ac5f90045acb2d9e778368bd799854","sha512":"bde6d4962ab1ad5901cb782e70c842966c903fd3a7fc701641d2835d168095bfc52ae4dbc648cf294caa54ec40706c050e46bbf5e4c5f985f07e47b5877ff07e","ssdeep":"768:1b+0d/C5eXnu2nnY8G3104xUse1LN9abc4VNRvTdgBngf79IcjJv5IopdU6:1b+754u2nOW4xUse1exx7HD9hU6","tlshash":"cd938abbd52d69c4b321c847bf4133b92886f56daaa20d50f28f544cacc269612e4f7d","first_seen":"2023-04-05T07:54:02Z","last_seen":"2026-04-03T20:54:01.288254Z","times_seen":6251,"resource_available":false,"data":null}},"time_used":394,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":393,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/templates/basic/css/color.php?color=1c7aa2","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.783Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/templates/basic/css/color.php?color=1c7aa2 HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-powered-by: PHP/8.3.28\r\ncontent-type: text/css;charset=UTF-8\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:19 GMT\r\ncontent-length: 990\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Mon, 22 Dec 2025 12:03:19 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"PHP:8.3.28","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":4011,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (979), with CRLF line terminators","md5":"817e7653d5fcdb1d562c20c04092bfb5","sha1":"2db17c3277c4510e9da0f90932db230c0ec24676","sha256":"eed0a1f3db1634da1aa39bb65e58f6a1b06b1a35165e2b0d7f6a06cf5cc2f200","sha512":"a87c83ccfccd4368e4995b308331c2df496397b956b8dbf79d1a2b3372e57b2def03637d18185b118459679ac584406e0ed15022e945cb6f19178035374c4530","ssdeep":"","tlshash":"fa8164b9a2db10379356cc7f2874d9714fadedd4c4044af9b9b5512c89c12a81f2310f","first_seen":"2025-12-22T12:03:57.930319Z","last_seen":"2025-12-22T12:03:57.930319Z","times_seen":1,"resource_available":false,"data":null}},"time_used":584,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":584,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/testimonial/66a60c4184f2d1722158145.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.810Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/testimonial/66a60c4184f2d1722158145.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 28 Jul 2024 19:15:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 18965\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":18965,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75\", baseline, precision 8, 440x290, components 3","md5":"45f2b4cdfd3be947d381ac9e66d9d98a","sha1":"7d59f208859a21c6152a15b20cab29b89dd45b7e","sha256":"682ffcaf0cf597bd30552f62a016b8d1f4f90deaa2eed9ac5e0bfc7bd2deaaea","sha512":"862e159e9776c9cb307a8726d02e86b53f56f65797af2234e234db46651fe2007a55eb43b47662f708723a29eef1c23d01829a9d777de3977ea2bb9301a38858","ssdeep":"384:Z1LdgXM6tXchVuYcK1GGIlpngn67wNx3dTV9EzQ9VuInOqsIp2:Z1xQXGurY67wj3VTEk/uP","tlshash":"a782c0b96102d5fccf0b0ddad99e09bdb9dc5a4e29a0b6397dbf00c14111e3489b9e5c","first_seen":"2025-12-22T12:03:57.931858Z","last_seen":"2025-12-22T12:03:57.931858Z","times_seen":1,"resource_available":false,"data":null}},"time_used":961,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":763,"receive":198,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/frontend/works/6860fec9241e81751187145.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:20.407Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/frontend/works/6860fec9241e81751187145.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 29 Jun 2025 08:52:25 GMT\r\naccept-ranges: bytes\r\ncontent-length: 241603\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":241603,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 1920x1090, components 3","md5":"5ecc09c1a4ecb9d569eee59920679c79","sha1":"c71e769179fd009896d996eed7fadef20cdd7cc7","sha256":"f0c639ed4197b1fa2f91ff1a8ef17393fefade17a7002da0977d887e3b37a014","sha512":"dae0bb5592d46722d3d2f5c04e9edd91585f924ed2b324a38c3fc0263d01d77f8b4b7060c81d8b8c372a3a69d5a0ad80ac01267c17e1941f016c6d5e40ab4cdf","ssdeep":"3072:7ASfjQ+zwPkzZGffShNqiNsdCzaagEF5pmTfrUTNRO5eFPo3Mdx6ZTGAOrFKLFf7:7ASk+f3xpEzoTrjJdx6ZTGJrAyhg1J","tlshash":"70342258099c1aea17468e76f602f94ad181af8c4471a8534533cd88e7fbfadbfc0139","first_seen":"2025-12-22T12:03:57.933251Z","last_seen":"2025-12-22T12:03:57.933251Z","times_seen":1,"resource_available":false,"data":null}},"time_used":980,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":724,"receive":256,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mybookinglab.com/assets/images/property/684e64eaded4b1749968106.jpg","fqdn":"mybookinglab.com","domain":"mybookinglab.com","tld":"com"},"ip":{"addr":"209.74.67.24","port":443,"asn":22612,"as":"NAMECHEAP-NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mybookinglab.com/","date":"2025-12-22T12:03:19.803Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mybookinglab.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 12 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:A7:6E:A8:4C:EC:AA:48:67:1A:7D:E6:0C:2F:88:EC:E7:DE:92:60","sha256":"7C:72:A6:E4:D3:D1:B9:C3:61:39:8E:C7:23:77:B2:B1:DD:CA:40:59:A3:78:A9:48:CD:CF:CB:2A:7A:3C:41:80"}}},"request":{"raw":"GET /assets/images/property/684e64eaded4b1749968106.jpg HTTP/1.1\r\nHost: mybookinglab.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mybookinglab.com/\r\nCookie: XSRF-TOKEN=jToEuw52ykokhELBuJ5DLe534BTpxfCtN9l5FkjU; hotellab_session=edSL1qkVnzWNlWshkcWZv8deva1QYX6evS16rtvu\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 29 Dec 2025 12:03:20 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 15 Jun 2025 06:15:07 GMT\r\naccept-ranges: bytes\r\ncontent-length: 27717\r\ndate: Mon, 22 Dec 2025 12:03:20 GMT\r\nserver: LiteSpeed\r\nx-turbo-charged-by: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":27717,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75\", baseline, precision 8, 445x350, components 3","md5":"aea579eec39b464d7ece77e9cb8a1b9e","sha1":"cfe83ba88a6f35443f4d9b0579ff124dce07d56e","sha256":"a3d610e438c3a58f288268526e87b860a56bbe70265c1f48251754d68ccc9de0","sha512":"6a0573b64e7c1e151e1213b771a528822447634464f4ecbac27eef1bcd71ee83d2634d8f4380496ffe15e5d3029c0b6c881d21815105fb65122cb32cf71e9f1c","ssdeep":"768:ExMpCs2yfzOOUZSX8zbG+WflExQ/7nKyi:ExYC2bOO4Sszb0fX7S","tlshash":"93c2e1b5bc36730487b8b1fd36c70a25516757183a607e3452d19cecb49aeb3e5081be","first_seen":"2025-12-22T12:03:57.934735Z","last_seen":"2025-12-22T12:03:57.934735Z","times_seen":1,"resource_available":false,"data":null}},"time_used":963,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":767,"receive":196,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"mybookinglab.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}}]}