Report - fefasa.hn/tnn/

Report Overview

Visited public
2023-09-27 14:09:05
Tags
URL
fefasa.hn/tnn/
Finishing URL
fefasa.hn/
IP / ASN
162.243.165.201
#14061 DIGITALOCEAN-ASN
Title
FEFASA - Todo en construccion para tu proyecto

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

292

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fefasa.hn	unknown	2022-08-16	2022-09-29 04:32:02	2023-09-26 12:12:13	34 kB	2.3 MB	162.243.165.201
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-09-26 18:12:02	2.0 kB	4.2 kB	142.250.74.131
use.fontawesome.com	942	2012-10-18	2017-01-30 05:43:25	2023-09-26 18:13:04	1.5 kB	52 kB	172.64.102.11
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-09-26 23:54:24	1.0 kB	48 kB	142.250.74.163
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-09-26 22:04:41	934 B	28 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed
2023-09-27	medium	fefasa.hn	Sinkholed

ThreatFox

No alerts detected

JavaScript (47)

	URL	From	Size	First Seen	Last Seen
	fefasa.hn/	ScriptElement	96 B	2023-03-07	2025-05-10
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 22:49 Times Seen7926 Hash d8772bfb2ec7dec5262a932766aa1669 8440292e305868d90f6f15a3ea6975a3b9774f43 c19c2ee1fc048012374a6d75c822daf9b7c0d4ebef7ab8df1ab22b229a00d012 Loading...

	fefasa.hn/wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2	ScriptElement	3.3 kB	2023-08-10	2025-05-10
Pretty URL fefasa.hn/wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-10 10:02 Last Seen2025-05-10 18:29 Times Seen691 Hash 0c72b3a8834a211a4be5d7489821a3a0 793b32f0328082101ed337cce0c6790119366635 2d6b989ae5ddc43c73034aaffbc3181069557ab604799f4a6ab3bb113ceaa687 Loading...

	fefasa.hn/wp-content/plugins/iconic-woo-attribute-swatches-premium/assets/frontend/js/main.min.js?ver=1.2.7	ScriptElement	6.5 kB	2023-09-26	2023-09-29
Pretty URL fefasa.hn/wp-content/plugins/iconic-woo-attribute-swatches-premium/assets/frontend/js/main.min.js?ver=1.2.7 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-26 12:13 Last Seen2023-09-29 06:22 Times Seen4 Hash 3bb5450f4a812e47de20fac6340d9e62 c5b16a8ff5449407e3a84e8e576ed9d8b62518ab a3585f0350823032119fec2c30e83d6d190a6f9ed85dce242ae6c07a8b0bdbe5 Loading...

	fefasa.hn/wp-includes/js/hoverIntent.min.js?ver=1.10.2	ScriptElement	1.5 kB	2023-03-07	2025-05-10
Pretty URL fefasa.hn/wp-includes/js/hoverIntent.min.js?ver=1.10.2 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-05-10 23:43 Times Seen20610 Hash 8c0498e2f1f7a684a8d2a3feb934b64b 76099689ccaee466d4608da621c403b368dcae03 ed5b5df9ceacfe76857ac51964972b0b417a215b2f50e837fd6b64bad7339c40 Loading...

	fefasa.hn/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	ScriptElement	21 kB	2023-04-01	2025-05-10
Pretty URL fefasa.hn/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:26 Last Seen2025-05-10 21:20 Times Seen27222 Hash c4e68a0f3463c0bd3c39eab38815e881 0ce58644e9f3c5063a11453ff287c5ec096465a7 ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f Loading...

	fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.f0d2cbc9.js	ScriptElement	50 kB	2023-09-26	2023-09-29
Pretty URL fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.f0d2cbc9.js IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-26 12:13 Last Seen2023-09-29 06:22 Times Seen4 Hash 0b585cb9bbc963c9bf220dfbc69cef3c 73a4746c0707de1bb77f9063d31388dfa6315a0d adb928e4810b4ae650069af6d2d854ec7dc719630c7524fcd3d6827c2b3a4c98 Loading...

	fefasa.hn/	ScriptElement	102 B	2023-03-07	2025-05-10
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 23:43 Times Seen7228 Hash 336b4b067dcb50351d5e2d7c92cf1631 9709109f27eaad0c5a1e50facc142f8f197a11b6 ef2f7f28db32250196ae2c8242611a7f7159c2a539dabd40b82071b1c07561c6 Loading...

	fefasa.hn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8	ScriptElement	13 kB	2023-03-29	2025-05-10
Pretty URL fefasa.hn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:17 Last Seen2025-05-10 22:52 Times Seen12562 Hash 5bc2b1fa970f9cecb3c30c0c92c98271 7c6bb87aaa24714b7b3b3c86dd932736a80270a9 1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e Loading...

	fefasa.hn/	ScriptElement	3.3 kB	2023-09-26	2024-08-21
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-26 12:13 Last Seen2024-08-21 05:44 Times Seen4 Hash 998f147eb4e3f341587f9f9fa778213f 3b19c13b3637fbf602d1031759beb74a93ad3fb1 89a80601fa7ca370f6fcad83303b9cf373220a03960213158eb9d62fc3155ef1 Loading...

	fefasa.hn/	ScriptElement	2.3 kB	2023-03-07	2025-05-10
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 20:08 Times Seen3109 Hash 6f740b956919fbaa673bb496be184ac1 fa7d2aef8069f1be31c655fb889c897eae36757a c8d83f1bd6a850a6f197b9bcce38828132ad627358b9c2c78e7c4bef4d22c304 Loading...

	fefasa.hn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.1.0	ScriptElement	14 kB	2023-08-09	2025-05-07
Pretty URL fefasa.hn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.1.0 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 18:07 Last Seen2025-05-07 14:17 Times Seen2884 Hash c3825b9d2bb7e067a90db543db343f68 7ef77fddc64dd62688f242c7ae9ce4e9516b1eaa 70bb06a0005a4c1776d94eb9216dfb3841a5722ae2ed0c930664378b7d5c9504 Loading...

	fefasa.hn/	ScriptElement	152 B	2023-03-07	2025-05-10
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 22:52 Times Seen25333 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	fefasa.hn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.1.0	ScriptElement	1.8 kB	2023-08-09	2025-05-07
Pretty URL fefasa.hn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.1.0 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33 Last Seen2025-05-07 14:17 Times Seen6792 Hash 53e07784d8fab2f50b99ff9868124992 d8739feb2845a3fa4a8c085aeabc4eb0e6945590 1533d5bc82424a9a3ac37a7fe543925909d25715d16938b9e02c728c86fd86e8 Loading...

	fefasa.hn/	ScriptElement	407 B	2023-09-26	2024-08-21
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-26 12:13 Last Seen2024-08-21 05:44 Times Seen4 Hash b4b15d8c9b202b907b9cd2dd29f793e7 b8ff4571e8971633187b6d264e8ba8b64cfce536 94e087a623118ee7711df6c9a0e8c47cc8e06e5c655edb087be43883637a2f0b Loading...

	fefasa.hn/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6	ScriptElement	22 kB	2023-08-09	2025-05-10
Pretty URL fefasa.hn/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 16:24 Last Seen2025-05-10 22:49 Times Seen2780 Hash 62331b455760a3d587436a5aefd3ac55 a2e9dad245b08b6d5a02defbae14b15b3bb95ade f0bc0f5d0d025d1b2686d9a47780934a4e747b5f0d2e067ff64f40bae2f7d0cf Loading...

	fefasa.hn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-05-10
Pretty URL fefasa.hn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-05-10 23:43 Times Seen106161 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	fefasa.hn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.1.0	ScriptElement	2.1 kB	2023-08-09	2025-05-10
Pretty URL fefasa.hn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.1.0 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33 Last Seen2025-05-10 03:18 Times Seen8029 Hash 6d3b3d63df025e97f370c5efab2c96da 78c0c8e7504f9314b2e9fd714bbab530af52f2af 8c0b5e384ae00c512f4bb1ba5e2fe622fab4bfc541c99555df38c19c329d3fe6 Loading...

	fefasa.hn/	ScriptElement	123 B	2023-09-26	2024-08-21
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-26 12:13 Last Seen2024-08-21 05:44 Times Seen4 Hash 0856587270a1834dd04672b4e663adbc 225ae1784ec5fdc42445c9d64512f5d9263fc90e 61c0fed32ad9a3a075f0859fb637dc00d42130a7a2651911b9b54eafc9051284 Loading...

	fefasa.hn/wp-includes/js/wp-util.min.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3	ScriptElement	1.4 kB	2023-03-08	2025-05-10
Pretty URL fefasa.hn/wp-includes/js/wp-util.min.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-05-10 23:09 Times Seen18759 Hash 19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95 Loading...

	fefasa.hn/	ScriptElement	257 B	2023-09-26	2024-08-21
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-26 12:13 Last Seen2024-08-21 05:44 Times Seen4 Hash ac6f58f3f6eae63364d2043e003171f9 0b625b8a9ca743ab89e6d278975da1f4fd4faf3e 60b2b768b7954ac3014a141991a1a2c05b2823e923c1a9e3f2c653b40f6da7fa Loading...

	fefasa.hn/	ScriptElement	135 B	2023-03-07	2025-05-10
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 22:52 Times Seen29337 Hash 3f82b089cf163a5417b3edb4687151f7 28436f92ab540ff08b12fdefddc7da67ba0f04f7 5ba9af6f12e99663f8f04285ef3d4ffd4cdbca820bccbc2dda9c40f805b5a850 Loading...

	fefasa.hn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	ScriptElement	16 kB	2023-07-22	2025-05-07
Pretty URL fefasa.hn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-22 18:30 Last Seen2025-05-07 14:22 Times Seen9381 Hash 94dfdbe80f36b3be63ce74ff1135b996 5e05077d99e736af42b2da70e428e7f7df556dd4 4c0ced2cb3830d045cdd74f745fd4d6dcb082d8edd3a9fe46e39295e30cb8032 Loading...

	fefasa.hn/wp-includes/js/underscore.min.js?ver=1.13.4	ScriptElement	19 kB	2023-03-08	2025-05-10
Pretty URL fefasa.hn/wp-includes/js/underscore.min.js?ver=1.13.4 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-05-10 23:09 Times Seen20826 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	fefasa.hn/	ScriptElement	301 B	2024-08-21	2024-08-21
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 05:40 Last Seen2024-08-21 05:40 Times Seen1 Hash 80d39064edaeb3cdacd2206814798e69 6e07fd246ae9073523d994770a05e8e391543516 25d8a7e5862608d5f6d5bd2080f965535b55b82e1bfb27d15e9d398fffef3b5c Loading...

	fefasa.hn/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.17	ScriptElement	323 kB	2023-09-26	2023-09-29
Pretty URL fefasa.hn/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.17 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-26 12:13 Last Seen2023-09-29 06:22 Times Seen4 Hash 46ba0dd90bc5eed0cff0262287c7eadc d5db4c860495518b97a966cf668e2f88db4012f7 14c8d02270278c65f88b536e219cb0cd88e56e0a023d59053b5362226c71c9a0 Loading...

	fefasa.hn/wp-content/plugins/woocommerce-fac-gateways/js/tipr.min.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3	ScriptElement	1.2 kB	2023-09-26	2023-09-29
Pretty URL fefasa.hn/wp-content/plugins/woocommerce-fac-gateways/js/tipr.min.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-26 12:13 Last Seen2023-09-29 06:22 Times Seen4 Hash be9696b376b1b9a1fc51112386f05684 f6075c446909dd7db552c5296c5ab55e933530a8 249824c420a2df3bfdedf5fd4bcda2a1122c258f05962205261f90becd293a7b Loading...

	fefasa.hn/wp-content/themes/flatsome/assets/js/flatsome.js?ver=8d32fe071187c00e5c8eae51dcdefdd9	ScriptElement	56 kB	2023-09-26	2023-09-29
Pretty URL fefasa.hn/wp-content/themes/flatsome/assets/js/flatsome.js?ver=8d32fe071187c00e5c8eae51dcdefdd9 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-26 12:13 Last Seen2023-09-29 06:22 Times Seen4 Hash d09c1cd5ee5564a338ef03cf2972499b d20521bfebc59b871c6c9107900207e025843e0f 63663d9ab9b654019a12e7aa18e965cac5e712abb72faaa1b1ada7d654ff0878 Loading...

	fefasa.hn/	ScriptElement	1.1 kB	2023-09-26	2024-08-21
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-26 12:13 Last Seen2024-08-21 05:44 Times Seen4 Hash 860cf47b1fdcfe9a26050ea6d9d3f95b 5e497a15a80fe741a379681e77333dd2d4d575aa 4659a4197c9d8d8aa8e8b39f7c30f63b60f83b504a376b135d8816bb0ea2f271 Loading...

	fefasa.hn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.1.0	ScriptElement	9.6 kB	2023-08-09	2025-05-10
Pretty URL fefasa.hn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.1.0 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33 Last Seen2025-05-10 22:49 Times Seen16257 Hash ef56117d1bb5cc41aa6bd127a49c7640 b9c2ed774177fc0fceba5cb58113024b23fe4fb7 d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620 Loading...

	fefasa.hn/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.29.4	ScriptElement	7.2 kB	2023-04-11	2025-05-05
Pretty URL fefasa.hn/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.29.4 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 14:01 Last Seen2025-05-05 14:18 Times Seen546 Hash cf4ccbf3bb2ce36100c99edb058f6f4c 6741cfea61a7b995b3638b5bb59e3a809883e311 3650505bcdc0bf7865ef59099868f380ddc1a1ffe71644dec9d18fcd1d2e48e0 Loading...

	fefasa.hn/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8	ScriptElement	11 kB	2023-08-06	2025-05-07
Pretty URL fefasa.hn/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-06 14:15 Last Seen2025-05-07 10:06 Times Seen7001 Hash 6ce86c3105139cb3c80913e6a3696a96 c55c7be10b31a773c7c9f6f393f382b89c318db4 5fe46d2da01452067736578431f6c6e8116a24e616f58c72d9d81fdb2c7c9569 Loading...

	fefasa.hn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.1.0	ScriptElement	3.0 kB	2023-08-09	2025-05-07
Pretty URL fefasa.hn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.1.0 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33 Last Seen2025-05-07 14:17 Times Seen5670 Hash ac7eef7756c1ad7d9df33edae9f60e5d fb334d6bdf233b1c0b3a3658c0763e5916eda4b0 92b4feff9bb6c863075d35cd38d989cc254f99489f574338def1949904027d42 Loading...

	fefasa.hn/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.js?ver=3.10.2	ScriptElement	2.0 kB	2023-09-26	2023-09-29
Pretty URL fefasa.hn/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.js?ver=3.10.2 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-26 12:13 Last Seen2023-09-29 06:22 Times Seen4 Hash 50a4c5facbd83b2a774bbd466777d06d 45f3cdebf8206d7cebb1dd2a6fe87397d8026e71 5d4949ab696c8e247037c20e6099a822cdd7e01a6fbaa5ac52605cc9c232b497 Loading...

	fefasa.hn/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.15.6	ScriptElement	16 kB	2023-03-09	2023-09-29
Pretty URL fefasa.hn/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.15.6 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:13 Last Seen2023-09-29 06:22 Times Seen4 Hash cc3b1725811cbf62aaad3d5815c06150 f3f1c9b7e3223dc938e2c6799b767daa2ae7a8d8 34c7819bbb362332c81a242a27d53a708ebaa58052fbf1d28268d3b9e4580465 Loading...

	fefasa.hn/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0	ScriptElement	15 kB	2023-03-07	2025-05-10
Pretty URL fefasa.hn/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 22:44 Times Seen6131 Hash 157f18464a93eab7fb62a7f3e618ac2c f47727e80d529d6e4941fea32f2e8a8ee5008b8a 9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306 Loading...

	fefasa.hn/	ScriptElement	2.2 kB	2023-09-26	2024-08-21
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-26 12:13 Last Seen2024-08-21 05:44 Times Seen4 Hash 61b8473dd910a9ead7d4ea7c820afb66 a26660f99e2d8d2efdf9687f85e550348d693c2f ff1cbe555e49fbef0dfac09c0387a515db0b9fdbfa7345a7a430f5257e06071d Loading...

	fefasa.hn/wp-includes/js/jquery/jquery.min.js?ver=3.7.0	ScriptElement	88 kB	2023-06-13	2025-05-10
Pretty URL fefasa.hn/wp-includes/js/jquery/jquery.min.js?ver=3.7.0 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-13 23:41 Last Seen2025-05-10 20:59 Times Seen26127 Hash ff04dd1ef5c67998d8652330c0441689 5e6ff5bd5240181a8bdea983837f39ac231dac4d 5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164 Loading...

	fefasa.hn/	ScriptElement	1.6 kB	2024-08-21	2024-08-21
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 05:40 Last Seen2024-08-21 05:40 Times Seen1 Hash f92da8b4c6f1cbfc66b2559bc45dbdc5 20cb4ebefec0f9a00ec9d9a3c8a2951dba7e31ab bd1f30544fad35619a29065e373bf9306c9e736a852208f6f873fcaa82ec2bd7 Loading...

	fefasa.hn/	ScriptElement	96 B	2023-03-07	2025-05-10
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 23:09 Times Seen11485 Hash eb3a538fd2a39c22198e72c3b9f498a7 c966ebdbd2701a0980a85671126664f3892d4f1e ac233233e7bcaf806041b243578fab081dced8a045d9a82756410da9ea2382a1 Loading...

	fefasa.hn/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2	ScriptElement	8.2 kB	2023-03-13	2025-05-10
Pretty URL fefasa.hn/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:32 Last Seen2025-05-10 18:00 Times Seen29749 Hash dda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4 Loading...

	fefasa.hn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11	ScriptElement	6.6 kB	2023-03-14	2025-05-10
Pretty URL fefasa.hn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:30 Last Seen2025-05-10 11:08 Times Seen12771 Hash 9a4f28a615173df36cb84be2b345816e f709263841708d9e40268f24a0072ff4fe811b35 6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6 Loading...

	fefasa.hn/wp-content/plugins/popup-maker/assets/js/site.min.js?defer&ver=1.18.2	ScriptElement	70 kB	2023-03-13	2025-04-05
Pretty URL fefasa.hn/wp-content/plugins/popup-maker/assets/js/site.min.js?defer&ver=1.18.2 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 21:34 Last Seen2025-04-05 23:38 Times Seen376 Hash 862eb67247282bfd584fb1a93e05dac4 64f45be78dea59b1fbf8d658068489e202ccbdca 8c09f40aa9ac3105f86ea363d58ad2a81f5d5741b810786a1a6291e7dd9d43ad Loading...

	fefasa.hn/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=7a63f7aa2c4bbf851812535d8e4e7958	ScriptElement	18 kB	2023-09-26	2023-09-29
Pretty URL fefasa.hn/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=7a63f7aa2c4bbf851812535d8e4e7958 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-26 12:13 Last Seen2023-09-29 06:22 Times Seen4 Hash e3f29fed57fc36440acd908f7c90d5d4 bd0f245c21d4a9d8bac2713aa86bb7726dedfb49 b7946fd0da547664fbba53f7ccdc5a3b44008836335b4ee2b5163fd2abd64c27 Loading...

	fefasa.hn/	ScriptElement	482 B	2023-03-07	2025-05-10
Pretty URL fefasa.hn/ IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:23 Last Seen2025-05-10 14:00 Times Seen221 Hash fea3970d3abe53a88b209e8bf27ed8d3 133c87d30a45d9ade53fda3916eab4edee63b8ee 6b4b60b1961ce0bd2c350666273a2cc15738634587c8d9877fff2a77f4ddbcd6 Loading...

	fefasa.hn/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.17	ScriptElement	119 kB	2023-09-26	2023-09-29
Pretty URL fefasa.hn/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.17 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-26 12:13 Last Seen2023-09-29 06:22 Times Seen4 Hash 7167bb81e28fabab0a351eac7ee26d59 aa81820b8483adb24c5a84cc786c81dcfd5ffeeb 36234e9f5d051d68d3488751748792e3eb8f58005270ca3120e9c7644fa12a14 Loading...

	fefasa.hn/wp-content/plugins/woocommerce-fac-gateways/js/fac-custome.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3	ScriptElement	1.1 kB	2023-09-26	2023-09-29
Pretty URL fefasa.hn/wp-content/plugins/woocommerce-fac-gateways/js/fac-custome.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-26 12:13 Last Seen2023-09-29 06:22 Times Seen4 Hash e542725fe6c73a88c9ee6d7720d9a556 7e7d94d37649f4d074b836841fecb6833b0a3fe1 cc76ad3ca9ee0e60aad76d01b804d1b41096b4c30189c62f84fa80eae4efdc24 Loading...

	fefasa.hn/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.25.0	ScriptElement	25 kB	2023-04-19	2025-05-07
Pretty URL fefasa.hn/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.25.0 IP 162.243.165.201 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-19 20:53 Last Seen2025-05-07 11:34 Times Seen1706 Hash 32f353893906d18e1fc351066e4b263a c8ed65fffa387077fe4ba700b7913bbb59f90436 80d7254b4e01cf17bf56254fc3698a81ce127553bc9eac47ef24b9e2a94cad8f Loading...

HTTP Transactions (86)

URL IP Response Size

fefasa.hn/tnn/

162.243.165.201

302 Found

0 B

URL User Request GET HTTP/1.1
fefasa.hn/tnn/
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tnn/ HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Wed, 27 Sep 2023 14:08:45 GMT
Server: Apache
Location: /
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

fefasa.hn/

162.243.165.201

200 OK

226 B

URL User Request GET HTTP/1.1
fefasa.hn/
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
226 B (226 bytes)
Hash
7cea6e8f0cf9501800a1390db07dbad4
084004242f162d1b7904e94f40e049150445d136
772899a568e1db3c44f3671c8cf8d662956cd67967fbb3f27cdf895ee8de995b

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Wed, 27 Sep 2023 14:08:47 GMT
Server: Apache
Location: https://fefasa.hn/
Content-Length: 226
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

fefasa.hn/

162.243.165.201

200 OK

173 kB

URL User Request GET HTTP/1.1
fefasa.hn/
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5211), with CRLF, LF line terminators
Size
173 kB (172699 bytes)
Hash
56a8f19ce4f6ddc7f1c7e98af1de7722
23440d1d6bcc7197003bf9c61271fefd704a1f5a
6d8c4ffc79246f58c7f600c1ed8f3474d1c0690a2b71c47d3ea5b29066e47115

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:45 GMT
Server: Apache
Link: <https://fefasa.hn/wp-json/>; rel="https://api.w.org/", <https://fefasa.hn/wp-json/wp/v2/pages/13847>; rel="alternate"; type="application/json", <https://fefasa.hn/>; rel=shortlink
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

fefasa.hn/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/css/main.css?ver=3.29.4

162.243.165.201

200 OK

1.3 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/css/main.css?ver=3.29.4
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (1255), with no line terminators
Size
1.3 kB (1255 bytes)
Hash
8c2817ec680d79f24431d04bad361a2e
d1883943f6cb6a108a1cf7104a7f28a976b738f9
5471bef2b0f10e8c804122e970c5669c17c1ec97d24a67d8107c12d9d2f23a76

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/css/main.css?ver=3.29.4 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:49:25 GMT
Accept-Ranges: bytes
Content-Length: 1255
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff52e45784a45798b40d6d9feb912438
3efa53511758ea8597e7ffe0bbb9e7343a1102b6
280a37a14ea94283ef151c84b79ebd80c3e52cdac8f94208df994a970f592689

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 14:08:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff52e45784a45798b40d6d9feb912438
3efa53511758ea8597e7ffe0bbb9e7343a1102b6
280a37a14ea94283ef151c84b79ebd80c3e52cdac8f94208df994a970f592689

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 14:08:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fefasa.hn/wp-content/plugins/iconic-woo-attribute-swatches-premium/assets/frontend/css/flatsome.min.css?ver=1.2.7

162.243.165.201

200 OK

277 B

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/iconic-woo-attribute-swatches-premium/assets/frontend/css/flatsome.min.css?ver=1.2.7
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with no line terminators
Size
277 B (277 bytes)
Hash
8ef513c3ec3a7aafd955d0e41b45f741
8776678e95200f802cb97780bafe16c21a3e6868
e3bf31e45232ccf6de927e4de51d84bcf64d0b02251e02118a312ce967bcd801

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/iconic-woo-attribute-swatches-premium/assets/frontend/css/flatsome.min.css?ver=1.2.7 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Sun, 26 Jul 2020 22:35:24 GMT
Accept-Ranges: bytes
Content-Length: 277
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

fefasa.hn/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.17

162.243.165.201

200 OK

60 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.17
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size
60 kB (59946 bytes)
Hash
7f1d3cdee6e67c584ec3df2772391f2b
a5a8f3a0942914d0db18e574742f5b5ad85bd77d
8215fb8f99029767d8081516dd5c245f65f3a5c3bd78fdec0d9889b0f549703f

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.17 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Sun, 26 Jul 2020 22:35:20 GMT
Accept-Ranges: bytes
Content-Length: 59946
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

fefasa.hn/wp-content/plugins/bew-menu-cart/assets/css/bew-woocommerce.css?ver=c6d4f54ff5f7e221a70cdd46daa396b3

162.243.165.201

200 OK

9.5 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/bew-menu-cart/assets/css/bew-woocommerce.css?ver=c6d4f54ff5f7e221a70cdd46daa396b3
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with CRLF line terminators
Size
9.5 kB (9531 bytes)
Hash
f6234477f66b1c42cd068735625d423e
62b80a5428275aaef5f26effde3820f026d65d62
f542c02465190d81d2f03c3afa9e285e2ef15a6876568ce4465ef470677fbe32

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/bew-menu-cart/assets/css/bew-woocommerce.css?ver=c6d4f54ff5f7e221a70cdd46daa396b3 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Wed, 29 Jul 2020 04:29:01 GMT
Accept-Ranges: bytes
Content-Length: 9531
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

fefasa.hn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8

162.243.165.201

200 OK

2.9 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text
Size
2.9 kB (2859 bytes)
Hash
0e4a098f3f6e3faede64db8b9da80ba2
65b9b3c849f3fbdd783ddbfb183616ff55c7ee53
ab21762c3f447aa08cbefd5ea3866165f925bd5058a9ae19e23721462de6fb60

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:49:43 GMT
Accept-Ranges: bytes
Content-Length: 2859
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

fefasa.hn/wp-content/plugins/iconic-woo-attribute-swatches-premium/assets/frontend/css/main.min.css?ver=1.2.7

162.243.165.201

200 OK

7.8 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/iconic-woo-attribute-swatches-premium/assets/frontend/css/main.min.css?ver=1.2.7
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (7793), with no line terminators
Size
7.8 kB (7793 bytes)
Hash
5ee369a382f2e50623810e9f00cd59e7
59b2385734b3b25fa9af0c9feb8ceb58c370a223
b4d7c400c9745ad4db18fe609de9c461a500825fc6c481a955b17c43548d1e9e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/iconic-woo-attribute-swatches-premium/assets/frontend/css/main.min.css?ver=1.2.7 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Sun, 26 Jul 2020 22:35:24 GMT
Accept-Ranges: bytes
Content-Length: 7793
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

fefasa.hn/wp-content/plugins/woocommerce-fac-gateways/css/tipr.css?ver=c6d4f54ff5f7e221a70cdd46daa396b3

162.243.165.201

200 OK

1.6 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/woocommerce-fac-gateways/css/tipr.css?ver=c6d4f54ff5f7e221a70cdd46daa396b3
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with CRLF line terminators
Size
1.6 kB (1558 bytes)
Hash
dc42f55d4f1be51bb37840332eaae3d6
baf681db4de3410f46dbe17a3457b77338350a5d
927499a9deba996a7e4e0b05d1869cc69cda2fc7b229a12a54dfe63a3ccdef81

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce-fac-gateways/css/tipr.css?ver=c6d4f54ff5f7e221a70cdd46daa396b3 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Fri, 03 Jul 2020 21:01:11 GMT
Accept-Ranges: bytes
Content-Length: 1558
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

fefasa.hn/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0

162.243.165.201

200 OK

31 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (30999 bytes)
Hash
008e0bb5ebfa7bc298a042f95944df25
93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c
c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 15:07:33 GMT
Accept-Ranges: bytes
Content-Length: 30999
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

fefasa.hn/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.css?ver=3.10.2

162.243.165.201

200 OK

3.9 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.css?ver=3.10.2
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
Unicode text, UTF-8 text
Size
3.9 kB (3943 bytes)
Hash
5a45fdce9f71ac20783629f05f107537
2fe144c7ebb424b70c3a088dea124d1cfac6ab1a
1252f264488726b9fc723b1f99384a1b43b80f0f29adb5b35aaaa2a88017efb5

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.css?ver=3.10.2 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 04:54:41 GMT
Accept-Ranges: bytes
Content-Length: 3943
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

fefasa.hn/wp-content/plugins/popup-maker/assets/css/pum-site.min.css?ver=1.18.2

162.243.165.201

200 OK

7.5 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/popup-maker/assets/css/pum-site.min.css?ver=1.18.2
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (7454), with no line terminators
Size
7.5 kB (7454 bytes)
Hash
3ab705ec477e79810ee37da1a88d028e
b7216e8c58b9990f58b8670f9a3374cbbad4d859
00c79f73596b16ec7ca8129b4764e00b28a6d63c2750998adacd4570b176a232

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/popup-maker/assets/css/pum-site.min.css?ver=1.18.2 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:42:09 GMT
Accept-Ranges: bytes
Content-Length: 7454
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff52e45784a45798b40d6d9feb912438
3efa53511758ea8597e7ffe0bbb9e7343a1102b6
280a37a14ea94283ef151c84b79ebd80c3e52cdac8f94208df994a970f592689

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 14:08:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fefasa.hn/wp-includes/css/dashicons.min.css?ver=c6d4f54ff5f7e221a70cdd46daa396b3

162.243.165.201

200 OK

59 kB

URL GET HTTP/1.1
fefasa.hn/wp-includes/css/dashicons.min.css?ver=c6d4f54ff5f7e221a70cdd46daa396b3
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (58981)
Size
59 kB (59016 bytes)
Hash
d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dashicons.min.css?ver=c6d4f54ff5f7e221a70cdd46daa396b3 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 20:44:12 GMT
Accept-Ranges: bytes
Content-Length: 59016
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

fefasa.hn/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.15.6

162.243.165.201

200 OK

24 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.15.6
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
Unicode text, UTF-8 text, with very long lines (24034), with no line terminators
Size
24 kB (24037 bytes)
Hash
4802d738779367a3330060b8a79bb66f
b3a04525a8d01de65e0b60eff70a71d60a561cd1
e6006e6ccf3c1cd13a50ed644576d46f6b611654ccebb5167eea874aa23616bd

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.15.6 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 04:54:41 GMT
Accept-Ranges: bytes
Content-Length: 24037
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css

fefasa.hn/wp-content/themes/flatsome-child/style.css?ver=3.0

162.243.165.201

200 OK

303 B

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome-child/style.css?ver=3.0
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text
Size
303 B (303 bytes)
Hash
97ea2d751f6f88abaa4144804c209088
fe7deabd8c4a06e58816fd9424e17ad884cf778f
61971a06f7ba6959fa232b1137d1de182bf156368ca45164f90dfb1a48941ab3

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome-child/style.css?ver=3.0 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 04:55:42 GMT
Accept-Ranges: bytes
Content-Length: 303
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

fefasa.hn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

162.243.165.201

200 OK

14 kB

URL GET HTTP/1.1
fefasa.hn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 20:44:12 GMT
Accept-Ranges: bytes
Content-Length: 13577
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/woocommerce-fac-gateways/js/tipr.min.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3

162.243.165.201

200 OK

1.2 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/woocommerce-fac-gateways/js/tipr.min.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1184 bytes)
Hash
be9696b376b1b9a1fc51112386f05684
f6075c446909dd7db552c5296c5ab55e933530a8
249824c420a2df3bfdedf5fd4bcda2a1122c258f05962205261f90becd293a7b

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce-fac-gateways/js/tipr.min.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:25:32 GMT
Accept-Ranges: bytes
Content-Length: 1184
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/woocommerce-fac-gateways/js/fac-custome.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3

162.243.165.201

200 OK

1.1 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/woocommerce-fac-gateways/js/fac-custome.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text
Size
1.1 kB (1053 bytes)
Hash
e542725fe6c73a88c9ee6d7720d9a556
7e7d94d37649f4d074b836841fecb6833b0a3fe1
cc76ad3ca9ee0e60aad76d01b804d1b41096b4c30189c62f84fa80eae4efdc24

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce-fac-gateways/js/fac-custome.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:11:35 GMT
Accept-Ranges: bytes
Content-Length: 1053
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-includes/js/jquery/jquery.min.js?ver=3.7.0

162.243.165.201

200 OK

88 kB

URL GET HTTP/1.1
fefasa.hn/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (65447)
Size
88 kB (87482 bytes)
Hash
ff04dd1ef5c67998d8652330c0441689
5e6ff5bd5240181a8bdea983837f39ac231dac4d
5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 20:44:12 GMT
Accept-Ranges: bytes
Content-Length: 87482
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.17

162.243.165.201

200 OK

119 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.17
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (41022), with CRLF line terminators
Size
119 kB (119388 bytes)
Hash
7167bb81e28fabab0a351eac7ee26d59
aa81820b8483adb24c5a84cc786c81dcfd5ffeeb
36234e9f5d051d68d3488751748792e3eb8f58005270ca3120e9c7644fa12a14

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.17 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:19:43 GMT
Accept-Ranges: bytes
Content-Length: 119388
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.17

162.243.165.201

200 OK

323 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.17
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (56545)
Size
323 kB (323044 bytes)
Hash
46ba0dd90bc5eed0cff0262287c7eadc
d5db4c860495518b97a966cf668e2f88db4012f7
14c8d02270278c65f88b536e219cb0cd88e56e0a023d59053b5362226c71c9a0

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.17 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:05:18 GMT
Accept-Ranges: bytes
Content-Length: 323044
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

use.fontawesome.com/releases/v5.13.1/css/all.css

172.64.102.11

200 OK

20 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.13.1/css/all.css
IP
172.64.102.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fefasa.hn/
Certificate
IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint23:04:2D:9B:C5:BA:9D:AA:AC:6A:FD:14:B0:96:18:D6:EB:A5:B3:65
ValidityFri, 01 Sep 2023 05:27:58 GMT - Thu, 30 Nov 2023 05:27:57 GMT

File type
ASCII text, with very long lines (58749)
Size
20 kB (19956 bytes)
Hash
870dbf9e3d22ee9d7cd21acc620e107b
61e37af38389d10e3ec44b0f5f05b10978c23768
d9716994f96b14296dd1b21d3e0a73f07ee88e7935d07ebdc51a9df7eb934a10

HTTP Headers

GET /releases/v5.13.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fefasa.hn
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 14:08:49 GMT
content-type: text/css
x-amz-id-2: 2lPRPYH8V4F9UQ75lETg4rc4lVO9vzvL5oYdCohfXCo+/W0WSuyNgIxixtUxks9tARRO55N8vEs=
x-amz-request-id: 5SN4FJX9PFGCT6NM
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:39:01 GMT
etag: W/"870dbf9e3d22ee9d7cd21acc620e107b"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 186627
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bzf84jzRGgtp%2BBzlyAY1ztGa3%2BgRuShnpf2UQtzvQLn2rc%2BMbBjI3svnzYrCibiqkaa53o3ggXlG2eaSiJXoriGHUMzebtxKxP%2B4bBRsGW%2BoJy9Lc76CA1U1Ed864i7p71GMillB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d45225bf5d53a2-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.13.1/css/v4-shims.css

172.64.102.11

200 OK

15 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.13.1/css/v4-shims.css
IP
172.64.102.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fefasa.hn/
Certificate
IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint23:04:2D:9B:C5:BA:9D:AA:AC:6A:FD:14:B0:96:18:D6:EB:A5:B3:65
ValidityFri, 01 Sep 2023 05:27:58 GMT - Thu, 30 Nov 2023 05:27:57 GMT

File type
ASCII text, with very long lines (26516)
Size
15 kB (14978 bytes)
Hash
5d1e5c927a8fb7edbfc1ec49aaac854a
2b720cda391bce31e913612184b9358d2e2e482d
674ab4482e5bb41fbecca5b78646fc6174cd15dececf6918db05e08f29599711

HTTP Headers

GET /releases/v5.13.1/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fefasa.hn
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 14:08:49 GMT
content-type: text/css
x-amz-id-2: zrKzNlOuHvsNmPfmJtQFtI3+Tzopy7f9Xvq+TARVXz6V/t+9fdG/ibySzSTYZ/tZPrJUdtNMnPo=
x-amz-request-id: SWBDC996A9XT05SG
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:39:01 GMT
etag: W/"5d1e5c927a8fb7edbfc1ec49aaac854a"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 100545
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=haxXAF6O35l595C9DGLTZfkyviqc8g9DXcrEBdYE1ftqUAX6Wozr7Vm3Z3UHjSxPE1zhTbOcgzo3IP8EEpAORkqwOPldB9a%2BdqilAAg3k%2BVh5nnOXWNenX64ZqZgyqjsmdtP2tJu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d45225bf5b53a2-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fefasa.hn/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.15.6

162.243.165.201

200 OK

178 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.15.6
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
178 kB (178001 bytes)
Hash
ed118ba32d919597ca2f2e4525bb9461
48f2bc6421ca1e3c7afbb390db63498c1b82dd37
72a13bccab12c9598bf774cead80dae7cd16899e87c967875b57e2ece023e1a9

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.15.6 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:49 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 04:54:41 GMT
Accept-Ranges: bytes
Content-Length: 178001
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

fefasa.hn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8

162.243.165.201

200 OK

13 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
HTML document, ASCII text, with very long lines (12943), with no line terminators
Size
13 kB (12943 bytes)
Hash
5bc2b1fa970f9cecb3c30c0c92c98271
7c6bb87aaa24714b7b3b3c86dd932736a80270a9
1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:49:43 GMT
Accept-Ranges: bytes
Content-Length: 12943
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.1.0

162.243.165.201

200 OK

9.6 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.1.0
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (9242)
Size
9.6 kB (9636 bytes)
Hash
ef56117d1bb5cc41aa6bd127a49c7640
b9c2ed774177fc0fceba5cb58113024b23fe4fb7
d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.1.0 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:50:19 GMT
Accept-Ranges: bytes
Content-Length: 9636
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.1.0

162.243.165.201

200 OK

3.0 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.1.0
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
HTML document, ASCII text, with very long lines (3037), with no line terminators
Size
3.0 kB (3037 bytes)
Hash
ac7eef7756c1ad7d9df33edae9f60e5d
fb334d6bdf233b1c0b3a3658c0763e5916eda4b0
92b4feff9bb6c863075d35cd38d989cc254f99489f574338def1949904027d42

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.1.0 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:50:19 GMT
Accept-Ranges: bytes
Content-Length: 3037
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.1.0

162.243.165.201

200 OK

2.1 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.1.0
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (2139), with no line terminators
Size
2.1 kB (2139 bytes)
Hash
6d3b3d63df025e97f370c5efab2c96da
78c0c8e7504f9314b2e9fd714bbab530af52f2af
8c0b5e384ae00c512f4bb1ba5e2fe622fab4bfc541c99555df38c19c329d3fe6

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.1.0 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:50:19 GMT
Accept-Ranges: bytes
Content-Length: 2139
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.1.0

162.243.165.201

200 OK

1.8 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.1.0
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (1679)
Size
1.8 kB (1845 bytes)
Hash
53e07784d8fab2f50b99ff9868124992
d8739feb2845a3fa4a8c085aeabc4eb0e6945590
1533d5bc82424a9a3ac37a7fe543925909d25715d16938b9e02c728c86fd86e8

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.1.0 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:50:19 GMT
Accept-Ranges: bytes
Content-Length: 1845
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2

162.243.165.201

200 OK

3.3 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (3029)
Size
3.3 kB (3313 bytes)
Hash
0c72b3a8834a211a4be5d7489821a3a0
793b32f0328082101ed337cce0c6790119366635
2d6b989ae5ddc43c73034aaffbc3181069557ab604799f4a6ab3bb113ceaa687

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:50:19 GMT
Accept-Ranges: bytes
Content-Length: 3313
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/iconic-woo-attribute-swatches-premium/assets/frontend/js/main.min.js?ver=1.2.7

162.243.165.201

200 OK

6.5 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/iconic-woo-attribute-swatches-premium/assets/frontend/js/main.min.js?ver=1.2.7
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (6540)
Size
6.5 kB (6541 bytes)
Hash
3bb5450f4a812e47de20fac6340d9e62
c5b16a8ff5449407e3a84e8e576ed9d8b62518ab
a3585f0350823032119fec2c30e83d6d190a6f9ed85dce242ae6c07a8b0bdbe5

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/iconic-woo-attribute-swatches-premium/assets/frontend/js/main.min.js?ver=1.2.7 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 06:42:23 GMT
Accept-Ranges: bytes
Content-Length: 6541
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2

162.243.165.201

200 OK

8.2 kB

URL GET HTTP/1.1
fefasa.hn/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (8171), with no line terminators
Size
8.2 kB (8171 bytes)
Hash
dda652db133fddb9b80a05c6d1b5c540
60c8514c57a5db2980c4b046b0dd479bd427357b
c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 20:44:12 GMT
Accept-Ranges: bytes
Content-Length: 8171
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11

162.243.165.201

200 OK

6.6 kB

URL GET HTTP/1.1
fefasa.hn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (6607), with no line terminators
Size
6.6 kB (6607 bytes)
Hash
9a4f28a615173df36cb84be2b345816e
f709263841708d9e40268f24a0072ff4fe811b35
6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 20:44:12 GMT
Accept-Ranges: bytes
Content-Length: 6607
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-includes/js/hoverIntent.min.js?ver=1.10.2

162.243.165.201

200 OK

1.5 kB

URL GET HTTP/1.1
fefasa.hn/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (1464)
Size
1.5 kB (1499 bytes)
Hash
8c0498e2f1f7a684a8d2a3feb934b64b
76099689ccaee466d4608da621c403b368dcae03
ed5b5df9ceacfe76857ac51964972b0b417a215b2f50e837fd6b64bad7339c40

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 20:44:12 GMT
Accept-Ranges: bytes
Content-Length: 1499
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

162.243.165.201

200 OK

16 kB

URL GET HTTP/1.1
fefasa.hn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
Unicode text, UTF-8 text, with very long lines (16142), with no line terminators
Size
16 kB (16146 bytes)
Hash
94dfdbe80f36b3be63ce74ff1135b996
5e05077d99e736af42b2da70e428e7f7df556dd4
4c0ced2cb3830d045cdd74f745fd4d6dcb082d8edd3a9fe46e39295e30cb8032

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 20:44:12 GMT
Accept-Ranges: bytes
Content-Length: 16146
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/themes/flatsome/assets/js/flatsome.js?ver=8d32fe071187c00e5c8eae51dcdefdd9

162.243.165.201

200 OK

56 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/assets/js/flatsome.js?ver=8d32fe071187c00e5c8eae51dcdefdd9
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (55673)
Size
56 kB (55674 bytes)
Hash
d09c1cd5ee5564a338ef03cf2972499b
d20521bfebc59b871c6c9107900207e025843e0f
63663d9ab9b654019a12e7aa18e965cac5e712abb72faaa1b1ada7d654ff0878

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/assets/js/flatsome.js?ver=8d32fe071187c00e5c8eae51dcdefdd9 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:13:17 GMT
Accept-Ranges: bytes
Content-Length: 55674
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.js?ver=3.10.2

162.243.165.201

200 OK

2.0 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.js?ver=3.10.2
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text
Size
2.0 kB (1991 bytes)
Hash
50a4c5facbd83b2a774bbd466777d06d
45f3cdebf8206d7cebb1dd2a6fe87397d8026e71
5d4949ab696c8e247037c20e6099a822cdd7e01a6fbaa5ac52605cc9c232b497

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.js?ver=3.10.2 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:24:57 GMT
Accept-Ranges: bytes
Content-Length: 1991
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.15.6

162.243.165.201

200 OK

16 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.15.6
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (12801)
Size
16 kB (15962 bytes)
Hash
cc3b1725811cbf62aaad3d5815c06150
f3f1c9b7e3223dc938e2c6799b767daa2ae7a8d8
34c7819bbb362332c81a242a27d53a708ebaa58052fbf1d28268d3b9e4580465

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.15.6 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 06:39:54 GMT
Accept-Ranges: bytes
Content-Length: 15962
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b8902f031110680f998035e374a958e9
767e9ea86658a88e719c016c6ccbe8ef246b33d3
ed12c8b2a987840c4a1676bbb40a6577017544b3bacab0f24ab0d60033a31b3b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 14:08:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fefasa.hn/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

162.243.165.201

200 OK

21 kB

URL GET HTTP/1.1
fefasa.hn/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
21 kB (21438 bytes)
Hash
c4e68a0f3463c0bd3c39eab38815e881
0ce58644e9f3c5063a11453ff287c5ec096465a7
ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 20:44:12 GMT
Accept-Ranges: bytes
Content-Length: 21438
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=7a63f7aa2c4bbf851812535d8e4e7958

162.243.165.201

200 OK

18 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=7a63f7aa2c4bbf851812535d8e4e7958
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (18421)
Size
18 kB (18422 bytes)
Hash
e3f29fed57fc36440acd908f7c90d5d4
bd0f245c21d4a9d8bac2713aa86bb7726dedfb49
b7946fd0da547664fbba53f7ccdc5a3b44008836335b4ee2b5163fd2abd64c27

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/assets/js/woocommerce.js?ver=7a63f7aa2c4bbf851812535d8e4e7958 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:02:35 GMT
Accept-Ranges: bytes
Content-Length: 18422
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2

142.250.74.163

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://fefasa.hn/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fefasa.hn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 26 Sep 2023 11:05:47 GMT
expires: Wed, 25 Sep 2024 11:05:47 GMT
cache-control: public, max-age=31536000
age: 97383
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fefasa.hn/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0

162.243.165.201

200 OK

15 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Size
15 kB (14927 bytes)
Hash
157f18464a93eab7fb62a7f3e618ac2c
f47727e80d529d6e4941fea32f2e8a8ee5008b8a
9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:50:56 GMT
Accept-Ranges: bytes
Content-Length: 14927
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6

162.243.165.201

200 OK

22 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
HTML document, ASCII text, with very long lines (21612), with no line terminators
Size
22 kB (21612 bytes)
Hash
62331b455760a3d587436a5aefd3ac55
a2e9dad245b08b6d5a02defbae14b15b3bb95ade
f0bc0f5d0d025d1b2686d9a47780934a4e747b5f0d2e067ff64f40bae2f7d0cf

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:50:19 GMT
Accept-Ranges: bytes
Content-Length: 21612
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.25.0

162.243.165.201

200 OK

25 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.25.0
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
HTML document, ASCII text, with very long lines (25294), with no line terminators
Size
25 kB (25294 bytes)
Hash
32f353893906d18e1fc351066e4b263a
c8ed65fffa387077fe4ba700b7913bbb59f90436
80d7254b4e01cf17bf56254fc3698a81ce127553bc9eac47ef24b9e2a94cad8f

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.25.0 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:50:56 GMT
Accept-Ranges: bytes
Content-Length: 25294
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

use.fontawesome.com/releases/v5.13.1/webfonts/fa-regular-400.woff2

172.64.102.11

200 OK

14 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.13.1/webfonts/fa-regular-400.woff2
IP
172.64.102.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fefasa.hn/
Certificate
IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint23:04:2D:9B:C5:BA:9D:AA:AC:6A:FD:14:B0:96:18:D6:EB:A5:B3:65
ValidityFri, 01 Sep 2023 05:27:58 GMT - Thu, 30 Nov 2023 05:27:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13596, version 331.589\012- data
Size
14 kB (13596 bytes)
Hash
5c674c9216c06ede2f618aa58ae71116
f31f61126938f879dab593a1323d080a86e0e745
de5fb40e0689f154902213527781c2fb83cddcbf8f622a1384f1e2a7e7693b21

HTTP Headers

GET /releases/v5.13.1/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fefasa.hn
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 14:08:50 GMT
content-type: font/woff2
content-length: 13596
x-amz-id-2: XICosEnBlfN6avPa50oqSsMU2vz9unyRBejZHEczKeVLf4H2IoB5KI5DE9CEBCXiPuC0zoKexwg=
x-amz-request-id: JH3MZGSZGFY52DCP
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:39:23 GMT
etag: "5c674c9216c06ede2f618aa58ae71116"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 186626
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fTU4fHLaNPzCRmFPYl2dRiqW%2BDyMaD8woiOvgbFp9bTH2fH22QEyXYPHenDHKsGQkW%2Bos50M3VELf9oqYazEhS60pQkqSp3CS4USaqPtwYlJKdMZRTs0EIu0M4Hb83%2F9gcTzIRQq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d4522bff9c53a2-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b8902f031110680f998035e374a958e9
767e9ea86658a88e719c016c6ccbe8ef246b33d3
ed12c8b2a987840c4a1676bbb40a6577017544b3bacab0f24ab0d60033a31b3b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 14:08:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fefasa.hn/wp-includes/js/underscore.min.js?ver=1.13.4

162.243.165.201

200 OK

19 kB

URL GET HTTP/1.1
fefasa.hn/wp-includes/js/underscore.min.js?ver=1.13.4
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (18798)
Size
19 kB (18833 bytes)
Hash
f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 20:44:12 GMT
Accept-Ranges: bytes
Content-Length: 18833
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/popup-maker/assets/js/site.min.js?defer&ver=1.18.2

162.243.165.201

200 OK

70 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/popup-maker/assets/js/site.min.js?defer&ver=1.18.2
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
70 kB (69665 bytes)
Hash
862eb67247282bfd584fb1a93e05dac4
64f45be78dea59b1fbf8d658068489e202ccbdca
8c09f40aa9ac3105f86ea363d58ad2a81f5d5741b810786a1a6291e7dd9d43ad

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/popup-maker/assets/js/site.min.js?defer&ver=1.18.2 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:42:09 GMT
Accept-Ranges: bytes
Content-Length: 69665
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-includes/js/wp-util.min.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3

162.243.165.201

200 OK

1.4 kB

URL GET HTTP/1.1
fefasa.hn/wp-includes/js/wp-util.min.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (1391)
Size
1.4 kB (1426 bytes)
Hash
19d386c9004e54941c1cc61d357efa5d
0a77594006c8d86fdcc0adbc2b9aecaef3869586
3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=c6d4f54ff5f7e221a70cdd46daa396b3 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 20:44:12 GMT
Accept-Ranges: bytes
Content-Length: 1426
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.1.0

162.243.165.201

200 OK

14 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.1.0
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (13786), with no line terminators
Size
14 kB (13786 bytes)
Hash
c3825b9d2bb7e067a90db543db343f68
7ef77fddc64dd62688f242c7ae9ce4e9516b1eaa
70bb06a0005a4c1776d94eb9216dfb3841a5722ae2ed0c930664378b7d5c9504

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.1.0 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:50:19 GMT
Accept-Ranges: bytes
Content-Length: 13786
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2?v=3.15.6

162.243.165.201

200 OK

6.8 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2?v=3.15.6
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 6752, version 1.0\012- data
Size
6.8 kB (6752 bytes)
Hash
fea1aeac745dbd246870467857e90f02
b9f8ea8bd9d496f5706b306bc0e777b6a9906b27
343b461359461daad66cca6ae40315cd78bf58ebe79eca9af84596d3d873c209

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2?v=3.15.6 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 04:54:41 GMT
Accept-Ranges: bytes
Content-Length: 6752
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2

fonts.googleapis.com/css?family=Montserrat:100

142.250.74.106

200 OK

24 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Montserrat:100
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://fefasa.hn/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
gzip compressed data, max compression\012- data
Size
24 kB (24111 bytes)
Hash
bfa0c333444c41a203d3f03f6b35a58d
255462a82a1f685a1afc16c6d995dc78e4462f2c
2f45af69a7fce66ce529ae2ee434952ea67f6ff9a0d138c44edf9e209b49407e

HTTP Headers

GET /css?family=Montserrat:100 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 27 Sep 2023 14:08:49 GMT
date: Wed, 27 Sep 2023 14:08:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b8902f031110680f998035e374a958e9
767e9ea86658a88e719c016c6ccbe8ef246b33d3
ed12c8b2a987840c4a1676bbb40a6577017544b3bacab0f24ab0d60033a31b3b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 14:08:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fefasa.hn/wp-content/uploads/2022/08/settings-4-line-1.png

162.243.165.201

200 OK

3.3 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2022/08/settings-4-line-1.png
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3330 bytes)
Hash
7160a8629d56810721b51367eac96335
dbebf34503b83fe5c9df07d5b3d12f5b194cee6c
c9eb6e12b081849f5853a9f636b6d33a262a48a8565bfcc09e98eb6e3ea327e3

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/settings-4-line-1.png HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 25 Aug 2022 14:15:23 GMT
Accept-Ranges: bytes
Content-Length: 3330
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png

fefasa.hn/wp-content/uploads/2022/08/stack-line-1.png

162.243.165.201

200 OK

4.2 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2022/08/stack-line-1.png
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size
4.2 kB (4208 bytes)
Hash
3e997173eb19a2f545017713476dd574
9554cb496e092d899cc7d7c05fcdc193f37329e0
731ead702e9c3de1d8f7b63808b967c8099f9af8495685be77241138a9c1c664

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/stack-line-1.png HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 25 Aug 2022 14:15:25 GMT
Accept-Ranges: bytes
Content-Length: 4208
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

fefasa.hn/wp-content/uploads/2022/08/computer-line.png

162.243.165.201

200 OK

1.0 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2022/08/computer-line.png
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size
1.0 kB (1028 bytes)
Hash
f204009b06d428c2aaa24f70d710a982
d622c592d07768bb46fcbaab51d3d1ef48a88834
591b1529c3ebe6743aea94657f0c35aed10e3bed387dd26cffd9fa1aec3de1eb

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/computer-line.png HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 25 Aug 2022 14:15:24 GMT
Accept-Ranges: bytes
Content-Length: 1028
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

fefasa.hn/wp-content/uploads/2021/02/637477701021564033LAMINA20ALUZINC20NATURAL-247x296.jpg

162.243.165.201

200 OK

10 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2021/02/637477701021564033LAMINA20ALUZINC20NATURAL-247x296.jpg
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 247x296, components 3\012- data
Size
10 kB (10499 bytes)
Hash
8519d4a9208cbfcc0847d21c8f768561
69d0d959442d5065b069700cbfaced9426445766
6a307a47710feb075daff4b9615d41686d72846001e5dd82be0e8dbef5087f5e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/02/637477701021564033LAMINA20ALUZINC20NATURAL-247x296.jpg HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 04:55:05 GMT
Accept-Ranges: bytes
Content-Length: 10499
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

fefasa.hn/wp-content/uploads/2022/10/fefasa-logo-1024x259.png

162.243.165.201

200 OK

93 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2022/10/fefasa-logo-1024x259.png
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
PNG image data, 1024 x 259, 8-bit/color RGBA, non-interlaced\012- data
Size
93 kB (92818 bytes)
Hash
928ed95448be860cb318a9d91b88d0f7
31224271fcdaea0d87ffcacb4b460e1a11ddb565
7f6abd27a702ad03c5921974f83511167aebfda7e92e3eb935da5fe164c0e189

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/10/fefasa-logo-1024x259.png HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Sat, 08 Oct 2022 04:37:25 GMT
Accept-Ranges: bytes
Content-Length: 92818
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

fefasa.hn/wp-content/uploads/2020/07/637309870137936041TORNILLO20YESO20PB-247x296.jpg

162.243.165.201

200 OK

5.9 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2020/07/637309870137936041TORNILLO20YESO20PB-247x296.jpg
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 247x296, components 3\012- data
Size
5.9 kB (5852 bytes)
Hash
b73c3202f85dd2b03f31ffc37ec5a833
75765e67052b6716cf934dede24536a435cdf311
02e6e575547ee93cdfe584b01f9a0ccc68adedb9338663a370b5240609ff2d2a

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/07/637309870137936041TORNILLO20YESO20PB-247x296.jpg HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 05:07:41 GMT
Accept-Ranges: bytes
Content-Length: 5852
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

fefasa.hn/wp-content/uploads/2020/07/637309931819049377brahman-247x296.jpg

162.243.165.201

200 OK

15 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2020/07/637309931819049377brahman-247x296.jpg
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 247x296, components 3\012- data
Size
15 kB (15246 bytes)
Hash
ab49b4e6c47fa2fcbe5ba8cdcf26cbd2
1e007c0427a5c317f4ad82a9ee2f2c3bda0b573a
bce388390d2ace175f0296bfde8f909d0e56c0fc6ef0b8ce5263b055906c5420

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/07/637309931819049377brahman-247x296.jpg HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 04:59:04 GMT
Accept-Ranges: bytes
Content-Length: 15246
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg

fefasa.hn/wp-content/uploads/2021/02/637493441514276456PUA20VAQUERO-247x296.jpg

162.243.165.201

200 OK

28 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2021/02/637493441514276456PUA20VAQUERO-247x296.jpg
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 247x296, components 3\012- data
Size
28 kB (27612 bytes)
Hash
56a803c27fa652c3c946a8aa3b2a6726
fa1ee676110424e0ba6b7f451c47aa9608a0a314
7fe91ad43f0b16517fc0aa1adef8c8845a4d32b5ce4fe734863d7705a573a424

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/02/637493441514276456PUA20VAQUERO-247x296.jpg HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 04:55:03 GMT
Accept-Ranges: bytes
Content-Length: 27612
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

fefasa.hn/wp-content/uploads/2021/02/637493296603748178105130005-247x296.jpg

162.243.165.201

200 OK

11 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2021/02/637493296603748178105130005-247x296.jpg
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 247x296, components 3\012- data
Size
11 kB (10631 bytes)
Hash
b6b43bc254b61f1605eb09042b2a1e6c
ad4975c8448b6ed2692bf71b458d6a57b9f8bf83
24e627d71387099302b57bb1b8101c4b3c4edac6f2d4c4c1d3c1ab4acc02c85e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/02/637493296603748178105130005-247x296.jpg HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 04:55:04 GMT
Accept-Ranges: bytes
Content-Length: 10631
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg

fefasa.hn/wp-content/uploads/2020/07/63730994030690396345814-247x296.jpg

162.243.165.201

200 OK

7.7 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2020/07/63730994030690396345814-247x296.jpg
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 247x296, components 3\012- data
Size
7.7 kB (7738 bytes)
Hash
b49afc3bd63de1d57e262a62b5254db0
aed7f8a4c05fcdfe577f1c510cbfee35d3d94eb5
83b61757222fcb316565ad1162399d0c0f1e116335d8c76d9f32f2bd3809cb5c

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/07/63730994030690396345814-247x296.jpg HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 04:58:17 GMT
Accept-Ranges: bytes
Content-Length: 7738
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.countup.fe2c1016.js

162.243.165.201

200 OK

4.8 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.countup.fe2c1016.js
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (4772)
Size
4.8 kB (4773 bytes)
Hash
d1785263aecd394fbdcf0252bb683136
0f9fdebf03d3d032920239456fd96f420d1db445
67c6a306b666adecd1156a608c0b53f6b62a91fd096e037939b0c09b83527c68

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/assets/js/chunk.countup.fe2c1016.js HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:25:06 GMT
Accept-Ranges: bytes
Content-Length: 4773
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.sticky-sidebar.a58a6557.js

162.243.165.201

200 OK

11 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.sticky-sidebar.a58a6557.js
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (10851)
Size
11 kB (10852 bytes)
Hash
968268b3b04c02b81bb55be1753e8645
552d557ab4b0c9ec9793867d2bff92455d731559
239896557edc19dd751d4fa72b568df8863bf38d859b9007e14ee19ed27ae22b

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/assets/js/chunk.sticky-sidebar.a58a6557.js HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:00:28 GMT
Accept-Ranges: bytes
Content-Length: 10852
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.tooltips.29144c1c.js

162.243.165.201

200 OK

17 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.tooltips.29144c1c.js
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (16877)
Size
17 kB (16878 bytes)
Hash
58f158ad228faff540e4d4527243fb02
257e66ad28d13bd62142fde8600a6cce141feccf
bd66110dd97bacf971df112d646beca31cc2b2fe463610b70b01155b2576669c

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/assets/js/chunk.tooltips.29144c1c.js HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:26:53 GMT
Accept-Ranges: bytes
Content-Length: 16878
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.vendors-popups.947eca5c.js

162.243.165.201

200 OK

20 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.vendors-popups.947eca5c.js
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (20238)
Size
20 kB (20239 bytes)
Hash
4c1650d9959306f77f7d45f1e2a52a99
d38d796e2ff897dc6caf140a05b3e42437a89d40
19f83d88a393d10a236c14a4489e816dacdbfb59abf3592b3a35a8daa29e56b4

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/assets/js/chunk.vendors-popups.947eca5c.js HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:17:07 GMT
Accept-Ranges: bytes
Content-Length: 20239
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.f0d2cbc9.js

162.243.165.201

200 OK

50 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.f0d2cbc9.js
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (49649)
Size
50 kB (49650 bytes)
Hash
0b585cb9bbc963c9bf220dfbc69cef3c
73a4746c0707de1bb77f9063d31388dfa6315a0d
adb928e4810b4ae650069af6d2d854ec7dc719630c7524fcd3d6827c2b3a4c98

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/assets/js/chunk.vendors-slider.f0d2cbc9.js HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:51 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:15:19 GMT
Accept-Ranges: bytes
Content-Length: 49650
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/uploads/2022/09/banner-desk-1.jpg

162.243.165.201

200 OK

126 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2022/09/banner-desk-1.jpg
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x650, components 3\012- data
Size
126 kB (125880 bytes)
Hash
21875281dcea5082188f442626c096a9
b29a975a7fb2ee9ba1ad5c39891801c02587e268
a4c23615a8162686e82ee54c3aca241e79a3479039237361d9b4211e6d6f7dbc

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/09/banner-desk-1.jpg HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:51 GMT
Server: Apache
Last-Modified: Mon, 19 Sep 2022 15:39:09 GMT
Accept-Ranges: bytes
Content-Length: 125880
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/jpeg

fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.f0d2cbc9.js

162.243.165.201

200 OK

50 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.f0d2cbc9.js
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (49649)
Size
50 kB (49650 bytes)
Hash
0b585cb9bbc963c9bf220dfbc69cef3c
73a4746c0707de1bb77f9063d31388dfa6315a0d
adb928e4810b4ae650069af6d2d854ec7dc719630c7524fcd3d6827c2b3a4c98

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/flatsome/assets/js/chunk.vendors-slider.f0d2cbc9.js HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Wed, 13 Sep 2023 07:15:19 GMT
Accept-Ranges: bytes
Content-Length: 49650
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

fefasa.hn/wp-content/uploads/2020/07/637309909440766226TORNILLO20YESO20PB-247x296.jpg

162.243.165.201

200 OK

5.9 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2020/07/637309909440766226TORNILLO20YESO20PB-247x296.jpg
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 247x296, components 3\012- data
Size
5.9 kB (5852 bytes)
Hash
b73c3202f85dd2b03f31ffc37ec5a833
75765e67052b6716cf934dede24536a435cdf311
02e6e575547ee93cdfe584b01f9a0ccc68adedb9338663a370b5240609ff2d2a

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/07/637309909440766226TORNILLO20YESO20PB-247x296.jpg HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:51 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 05:01:06 GMT
Accept-Ranges: bytes
Content-Length: 5852
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg

fefasa.hn/wp-content/uploads/2020/07/637309875417179415TORNILLO20YESO20PB-247x296.jpg

162.243.165.201

200 OK

5.9 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2020/07/637309875417179415TORNILLO20YESO20PB-247x296.jpg
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 247x296, components 3\012- data
Size
5.9 kB (5852 bytes)
Hash
b73c3202f85dd2b03f31ffc37ec5a833
75765e67052b6716cf934dede24536a435cdf311
02e6e575547ee93cdfe584b01f9a0ccc68adedb9338663a370b5240609ff2d2a

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/07/637309875417179415TORNILLO20YESO20PB-247x296.jpg HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:51 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 05:07:11 GMT
Accept-Ranges: bytes
Content-Length: 5852
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

fefasa.hn/wp-content/uploads/2022/10/cropped-fefasa-favicon-192x192.png

162.243.165.201

200 OK

13 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2022/10/cropped-fefasa-favicon-192x192.png
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12827 bytes)
Hash
d753dc1fbeae1ae4739d5915f3d51e5d
e89579a31e4777ef70b3b30950c5f2e9d0522281
01062a236862e0b539fbf1a7bed53ba366e48d297e4681662a6f439eeb83d7ef

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/10/cropped-fefasa-favicon-192x192.png HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:51 GMT
Server: Apache
Last-Modified: Sat, 08 Oct 2022 04:38:31 GMT
Accept-Ranges: bytes
Content-Length: 12827
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/png

fefasa.hn/wp-content/uploads/2022/10/cropped-fefasa-favicon-32x32.png

162.243.165.201

200 OK

1.2 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2022/10/cropped-fefasa-favicon-32x32.png
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1212 bytes)
Hash
2da44b0f517a1f953b1c63dfe7ec80f0
3bd5d692e33fd3a31ff191ce84f8b9c8c25fe1d5
5798d967b6680ca63c2539655a0dc41232fd487286bdd6914abec4ed7c548506

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/10/cropped-fefasa-favicon-32x32.png HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:51 GMT
Server: Apache
Last-Modified: Sat, 08 Oct 2022 04:38:31 GMT
Accept-Ranges: bytes
Content-Length: 1212
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

fefasa.hn/

162.243.165.201

200 OK

173 kB

URL User Request GET HTTP/1.1
fefasa.hn/
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5211), with CRLF, LF line terminators
Size
173 kB (172724 bytes)
Hash
045c377e0cb5525b17e71bdddddcb596
17a74bfe0d8c3f08853ad4960a6e52f6f979f6f5
10b22ec732d502f64ce590940690168e0374f364e2294900b7f0904d96047f19

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:48 GMT
Server: Apache
Link: <https://fefasa.hn/wp-json/>; rel="https://api.w.org/", <https://fefasa.hn/wp-json/wp/v2/pages/13847>; rel="alternate"; type="application/json", <https://fefasa.hn/>; rel=shortlink
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

fefasa.hn/wp-json/pum/v1/analytics/?event=open&pid=13976&_cache=1695823732155

162.243.165.201

204 No Content

0 B

URL GET HTTP/1.1
fefasa.hn/wp-json/pum/v1/analytics/?event=open&pid=13976&_cache=1695823732155
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-json/pum/v1/analytics/?event=open&pid=13976&_cache=1695823732155 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 204 No Content
Date: Wed, 27 Sep 2023 14:08:51 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Robots-Tag: noindex
Link: <https://fefasa.hn/wp-json/>; rel="https://api.w.org/"
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-WP-Total, X-WP-TotalPages, Link
Access-Control-Allow-Headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
Set-Cookie: PHPSESSID=da4c89861ef3308a54ea3e84aa4c6b75; path=/; secure; HttpOnly
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive

fefasa.hn/wp-content/uploads/2022/10/Fefasa-desk-2-25.jpg

162.243.165.201

200 OK

142 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/uploads/2022/10/Fefasa-desk-2-25.jpg
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x650, components 3\012- data
Size
142 kB (142185 bytes)
Hash
091ede6fc96a94caf3e8e8c3a2a2768f
0d404151866dce4a0d1d71de94976841645c5906
0890767df0d04889f3e468f03265e5aad2063dfe64f5e7bcf0365199681a3bcc

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/10/Fefasa-desk-2-25.jpg HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Cookie: PHPSESSID=da4c89861ef3308a54ea3e84aa4c6b75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:57 GMT
Server: Apache
Last-Modified: Mon, 24 Oct 2022 17:07:22 GMT
Accept-Ranges: bytes
Content-Length: 142185
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg

fefasa.hn/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.29.4

162.243.165.201

200 OK

7.2 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.29.4
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (7568), with no line terminators
Size
7.2 kB (7194 bytes)
Hash
9773b524bd2206437ea6eea201bff6cc
f993e43228ec5fa33d13afd4cc34176b12f36867
bf2d3f34f9204a2bb4bc7d4cbbc6e16190aa1c2d3f918ba84bc323c81502f3e6

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.29.4 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:49:25 GMT
Accept-Ranges: bytes
Content-Length: 7194
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

fonts.googleapis.com/css?family=Lato%3Aregular%2C700%2C400%2C700%7CDancing+Script%3Aregular%2C400&display=swap&ver=3.9

142.250.74.106

200 OK

2.8 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Lato%3Aregular%2C700%2C400%2C700%7CDancing+Script%3Aregular%2C400&display=swap&ver=3.9
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://fefasa.hn/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
ASCII text, with very long lines (2886), with no line terminators
Size
2.8 kB (2823 bytes)
Hash
edf2effe431c7eccb4a65a08be0b18d0
da0fb13899754ec64ec78305d7d34d514b53ad8e
f5078cc41beb94f954c9aba0d56c6728454a487a7bdbd5481bf6ed51f226f25d

HTTP Headers

GET /css?family=Lato%3Aregular%2C700%2C400%2C700%7CDancing+Script%3Aregular%2C400&display=swap&ver=3.9 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 27 Sep 2023 14:08:49 GMT
date: Wed, 27 Sep 2023 14:08:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

142.250.74.163

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://fefasa.hn/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fefasa.hn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 26 Sep 2023 23:22:53 GMT
expires: Wed, 25 Sep 2024 23:22:53 GMT
cache-control: public, max-age=31536000
age: 53157
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fefasa.hn/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8

162.243.165.201

200 OK

11 kB

URL GET HTTP/1.1
fefasa.hn/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8
IP
162.243.165.201:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://fefasa.hn/
Certificate
IssuerLet's Encrypt
Subjectfefasa.hn
Fingerprint22:03:24:B1:E7:C3:B6:F1:42:72:71:B5:00:B1:73:7D:A9:21:FC:43
ValidityThu, 03 Aug 2023 03:57:10 GMT - Wed, 01 Nov 2023 03:57:09 GMT

File type
ASCII text, with very long lines (10770), with no line terminators
Size
11 kB (10770 bytes)
Hash
6ce86c3105139cb3c80913e6a3696a96
c55c7be10b31a773c7c9f6f393f382b89c318db4
5fe46d2da01452067736578431f6c6e8116a24e616f58c72d9d81fdb2c7c9569

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8 HTTP/1.1
Host: fefasa.hn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fefasa.hn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:08:50 GMT
Server: Apache
Last-Modified: Thu, 14 Sep 2023 14:49:43 GMT
Accept-Ranges: bytes
Content-Length: 10770
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (47)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by