66.29.132.60301 Moved Permanently 707 B URL User Request GET HTTP/1.1 IP 66.29.132.60:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Thu, 06 Apr 2023 14:55:25 GMT
server: LiteSpeed
location: https://chimico.co.uk/
x-turbo-charged-by: LiteSpeed
ocsp.sectigo.com/
104.18.32.68 471 B IP 104.18.32.68:0
Hash 79a8742c820d2ec0e83c9267bcbd848a
bf2bd388965326e3b13fd8fd5f8bcee886534f5f
058f078124db964ce8577dd7f2b0af5a165646da8340a998dc742757b564d91f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Apr 2023 14:55:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 03 Apr 2023 15:56:21 GMT
Expires: Mon, 10 Apr 2023 15:56:20 GMT
Etag: "bf2bd388965326e3b13fd8fd5f8bcee886534f5f"
Cache-Control: max-age=348653,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b3adf2ddae3b500-OSL
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash a831183ed4680161a8046ff0fdeca236
e370e7680a84143bc143e997710add77ab28305b
dbc4bcbffa4027b36edff5091c65b239c75e53c83cc9bb84a87b6366122043a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 14:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRed+Hat+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.2
142.250.74.106200 OK 2.9 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRed+Hat+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.2
IP 142.250.74.106:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint76:50:4C:9F:C4:BB:29:C8:41:DD:B7:8A:B7:22:AE:3E:4F:A8:04:80
ValidityMon, 13 Mar 2023 08:25:02 GMT - Mon, 05 Jun 2023 08:25:01 GMT
Hash 3a490ce4d285521da5624fa8f91a7730
d845b670a1d3ee7b89e172ef331c8f9863b11d2a
d54b398fe038207d1d26e95db3ddd23ee84122bc29741de858a7208f2241ce97
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRed+Hat+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Apr 2023 14:55:27 GMT
date: Thu, 06 Apr 2023 14:55:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.1.2
66.29.132.60200 OK 7.8 kB URL GET HTTP/2 chimico.co.uk/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.1.2
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (39300)
Hash c1c6f4df5b45d8c9263a56996236be04
ba55ffc8b34ffcba3ab75d6b571508dcd5f08068
54d47ee85f41df0e99a2ca8a7689c2133c150cca80cf7626837a9e1cf30fe2b3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.1.2 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Wed, 29 Mar 2023 15:51:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7806
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/jeg-elementor-kit/assets/css/elements/main.css?ver=2.6.1
66.29.132.60200 OK 20 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/jeg-elementor-kit/assets/css/elements/main.css?ver=2.6.1
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8b99729f1c4936d3542c0a1ac0e772ec
6b0aa16cadecfdc2e225743853484ee29ccb91bb
fb4d278e7439e715d1246f639838077023da9f95c3782be2eaf41b428bb9c2be
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/jeg-elementor-kit/assets/css/elements/main.css?ver=2.6.1 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Fri, 03 Mar 2023 09:04:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20185
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-includes/css/dist/block-library/style.min.css?ver=6.2
66.29.132.60200 OK 12 kB URL GET HTTP/2 chimico.co.uk/wp-includes/css/dist/block-library/style.min.css?ver=6.2
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (48325)
Hash fb05a8ae8ff95ea8671cff40c8e4257a
bf789c9a9aab56db81228e014d8ac6e9181662a2
0cb24d73e4771cd2aed7def8d78a9cf4ee0cef2b11e013063ae143b2c92379f7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.2 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Wed, 29 Mar 2023 22:18:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11775
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.5.1
66.29.132.60200 OK 878 B URL GET HTTP/2 chimico.co.uk/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.5.1
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
Hash 51a9519e6d91dbbf3c880cad07eacb29
3cf55904c0b00a805533ab2e23e8425e6129bf6b
5473babede3fa1c5d174a237e8c66601f7e82b550c74eeecdfae74ea315f3a1e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.5.1 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Sun, 19 Feb 2023 09:35:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 878
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=4.1.2
66.29.132.60200 OK 344 B URL GET HTTP/2 chimico.co.uk/wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=4.1.2
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (882), with no line terminators
Hash 3451c3b3d0677e5875de4c69462938cc
8ffbe1fe3f2e3fa5f47e3988b4cd645670280dc2
4f6bdfd0a626ab45f0ef60de99c73adafde68d55d3a4bbf4723ba3ddcf045420
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=4.1.2 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Thu, 21 Jul 2022 16:10:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 344
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
66.29.132.60200 OK 259 B URL GET HTTP/2 chimico.co.uk/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
Hash 49736e2d926fb2846e2df8fc0a1b69f8
0c415addd3603df8843209de4fc448ef5c443761
be091ce2d9948f24a59c9d1578557cd92e8180e2318dc0a21308ca180071f8d0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Thu, 23 Feb 2023 10:12:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 259
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.18.0
66.29.132.60200 OK 3.6 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.18.0
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (19317)
Hash c4f01ce6a2c3bcbc1d7c32ceee8b57df
92a765247003f249a66ed8bee5ee25d35fac546f
8fe15b57e722e0b9404ae5a70f5e30149a3433a39c770f9b348b9a32eea9e215
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.18.0 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Tue, 07 Feb 2023 14:02:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3646
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.12.1
66.29.132.60200 OK 10 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.12.1
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (65496)
Hash d620bc3c417185e66fd932af57277616
beaef3847a929a63ec91a6572e3078ea0a7523bd
1c9b02484eb48ae2fc65c79caff64b19f77870aa765bc627d2d931d3a2fbcd94
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.12.1 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Sun, 02 Apr 2023 17:33:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9968
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5
66.29.132.60200 OK 4.2 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (16214)
Hash e12efaedcf2884239f94e7919175df55
ee7ef434161165424717a25a78b7ba1aa0e4c1ec
9cad1424937ae8b2c8ceac32fbdaa86e7ffb9583c03d27d9642dac277cd948d7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Tue, 07 Feb 2023 14:02:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4248
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/elementor/css/post-6.css?ver=1680489373
66.29.132.60200 OK 305 B URL GET HTTP/2 chimico.co.uk/wp-content/uploads/elementor/css/post-6.css?ver=1680489373
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1099), with no line terminators
Hash da24cc973440f35fd2315a28c153f2f5
7c66bde4c1495b436f5e145651817e23994658d1
55a0e9988e3d49f632ce3b5491d1a1a7d5960249ae45cc6a2a64def8e815b973
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-6.css?ver=1680489373 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Mon, 03 Apr 2023 02:36:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 305
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/elementor/css/global.css?ver=1680486857
66.29.132.60200 OK 1.3 kB URL GET HTTP/2 chimico.co.uk/wp-content/uploads/elementor/css/global.css?ver=1680486857
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (6697)
Hash 1f3427ed838b286913d772387cd1b12e
468046352f36b2e9d7c186b63e06912ba214c87e
42d31f80d35b13f5fdd78577c626a093feb2a659145b4a7717b08d1bcd3cff81
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/global.css?ver=1680486857 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Mon, 03 Apr 2023 01:54:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1277
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/elementor/css/post-7.css?ver=1680619417
66.29.132.60200 OK 2.5 kB URL GET HTTP/2 chimico.co.uk/wp-content/uploads/elementor/css/post-7.css?ver=1680619417
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (30531), with no line terminators
Hash 83dff56ac2c5e2112eb68d31b92f60d4
4f113cd0df2e2aaec34eb3e4b255a89d9a6917f4
f2702343ab935896c884c65b37acd4c1091a396b4e9367c170b3754da1b02bc1
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-7.css?ver=1680619417 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Tue, 04 Apr 2023 14:43:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2542
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
66.29.132.60200 OK 7.4 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash 806afc62d640eb03fccbd5fe46ed8666
31259bb9e403fbe379125ea0c562ac11d76dc4d7
f7ceb3661377e98e71ccebe4d91336ac77e4e62a84bff79a1e6f865f3d00c26f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Thu, 23 Feb 2023 10:12:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7374
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/elementor/css/post-51.css?ver=1680486857
66.29.132.60200 OK 602 B URL GET HTTP/2 chimico.co.uk/wp-content/uploads/elementor/css/post-51.css?ver=1680486857
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (2233)
Hash 82b0dea407cb6881469854b69e2bc21d
6dba018c2338b3864424a610b1056da572b606ad
bfda27ba25c05ac61b21d887296474c5a08cb9dae238277639c104f2344a880d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-51.css?ver=1680486857 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Mon, 03 Apr 2023 01:54:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 602
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/elementor/css/post-116.css?ver=1680486858
66.29.132.60200 OK 1.1 kB URL GET HTTP/2 chimico.co.uk/wp-content/uploads/elementor/css/post-116.css?ver=1680486858
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (7457), with no line terminators
Hash 5f887bc1c3eaf48b20963aeb4b28462d
0916e5e35cd978260a924bfb2cc49a9d8418226c
3a072f216a16d1b34a3f0e991b12a07d9aefba4d5684a9d066dbb3663ce5092d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-116.css?ver=1680486858 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Mon, 03 Apr 2023 01:54:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1076
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/ultimate-addons-for-contact-form-7/assets/css/uacf7-frontend.css?ver=6.2
66.29.132.60200 OK 66 B URL GET HTTP/2 chimico.co.uk/wp-content/plugins/ultimate-addons-for-contact-form-7/assets/css/uacf7-frontend.css?ver=6.2
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
Hash 3ed63c1b858db03e35044bbc62e65446
f7f2f42d866ef9202b61fbcd3bff171b2754bf97
5b431cd3e46b1b838277b94d965395353337d85e6671485b4ce10c11ec6dc31e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-addons-for-contact-form-7/assets/css/uacf7-frontend.css?ver=6.2 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Mon, 12 Dec 2022 12:21:24 GMT
accept-ranges: bytes
content-length: 66
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
66.29.132.60200 OK 283 B URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (491)
Hash 453a93dc816be89f942ebb253ff199fb
01563d6019803e3ff2a94c5397e7e771ee6f440d
36beebcd3778e04c8973faa581d07c7e7dc0bac2a77f637379e7d110383ab5d7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 283
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/ultimate-addons-for-contact-form-7/addons/column/grid/columns.css?ver=6.2
66.29.132.60200 OK 264 B URL GET HTTP/2 chimico.co.uk/wp-content/plugins/ultimate-addons-for-contact-form-7/addons/column/grid/columns.css?ver=6.2
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
Hash b1d0a45291852358eb6fe9b07266a23a
e80778779d275041dc48a31a95f4f743c353039b
59fe708b728eb72a5fdeba6153666a51cd6e95dd1f4569df3beb12e292ccb74c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-addons-for-contact-form-7/addons/column/grid/columns.css?ver=6.2 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Mon, 05 Dec 2022 13:53:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 264
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-includes/js/jquery/jquery.min.js?ver=3.6.3
66.29.132.60200 OK 30 kB URL GET HTTP/2 chimico.co.uk/wp-includes/js/jquery/jquery.min.js?ver=3.6.3
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash edd33e7444ef66e0552f7e2becaf81cd
4b84a041981fff16d9450af2544299152961095c
d83841e9d909efd5f1abe66e214968372f96a292e355db980bb2b3e0115ec903
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.3 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Wed, 29 Mar 2023 22:18:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30376
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
66.29.132.60200 OK 286 B URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (483)
Hash 8828fa3c5bdcfa66615714a2b8c9d807
4f556d0b005ac7754af607418df445f8cf98e8b1
16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
66.29.132.60200 OK 12 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (57726)
Hash f463afd8661ddc733305df1f0cbdaff2
77262f0209e75e340eb7014aba9cd8d69966032f
c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
66.29.132.60200 OK 859 B URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (9881)
Hash f35fed207266a2342cbdb9447d64cd92
9c892831cd6e29c508329f9fbbab215d2ad18ccc
aa07016f59817d2291221e154acfb98627fa1760a8f5f90c88b25bc767ca2be7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Sun, 02 Apr 2023 17:33:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 859
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
66.29.132.60200 OK 4.6 kB URL GET HTTP/2 chimico.co.uk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (13326)
Hash 568016071783b5bf3c5258bf25f7b8a8
8906e1f88561cace5403446edbb94d6ac6b84928
a31775416df1c287f423ade3554bf255281a718a3fe4193aff196a46532ccb09
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Wed, 29 Mar 2023 22:18:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4603
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/jeg-elementor-kit/lib/jeg-framework/assets/css/jeg-dynamic-styles.css?ver=1.2.9
66.29.132.60200 OK 0 B URL GET HTTP/2 chimico.co.uk/wp-content/plugins/jeg-elementor-kit/lib/jeg-framework/assets/css/jeg-dynamic-styles.css?ver=1.2.9
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/jeg-elementor-kit/lib/jeg-framework/assets/css/jeg-dynamic-styles.css?ver=1.2.9 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Fri, 03 Mar 2023 09:04:44 GMT
accept-ranges: bytes
content-length: 0
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/jeg-elementor-kit/assets/js/tiny-slider/tiny-slider.css?ver=2.9.3
66.29.132.60200 OK 630 B URL GET HTTP/2 chimico.co.uk/wp-content/plugins/jeg-elementor-kit/assets/js/tiny-slider/tiny-slider.css?ver=2.9.3
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (2123)
Hash f130fdcc13c0237a9032086760919f70
bca8f44e010db594ce9e9c3ecb2712eed4ae9842
05309151f1b177afe4188bbe54948d42aa2a72d3656efb51e0707520b100f204
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/jeg-elementor-kit/assets/js/tiny-slider/tiny-slider.css?ver=2.9.3 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: text/css
last-modified: Fri, 03 Mar 2023 09:04:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 630
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.1.2
66.29.132.60200 OK 4.6 kB URL GET HTTP/2 chimico.co.uk/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.1.2
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (20585), with no line terminators
Hash 8dd973f94636f084686579e1624ba96d
a1c5ef814439c1b2fc50410467e13aa76f4b9802
81bb50d9ea51c9a099286d92e23d73cdd413b2395b8e26312cbbb122361108c7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.1.2 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Tue, 28 Mar 2023 09:47:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4645
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1
66.29.132.60200 OK 3.9 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (12943), with no line terminators
Hash 007b7b6a6e576c7aa003619c0e1b7b74
66ec33a94340dc91bac5595bd433fdc7239932d4
cc44376768a8859382d5caa2f08f02390ef47b5604049d5f7c123708dbdca91a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Fri, 24 Mar 2023 06:33:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3918
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1
66.29.132.60200 OK 2.9 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (10241), with no line terminators
Hash c4cd434426e906ed4cf86740421b2e86
6f03e5a5f30263e765a817b9a82b81a85e257c24
01e6ee5907e83eed116ae6c7822f8707e76bf0758143e8a370327f26d64b9115
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Fri, 24 Mar 2023 06:33:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2894
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.12.1
66.29.132.60200 OK 2.0 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.12.1
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (4918)
Hash 34ac91780b58be64862643957c22f4d3
c33b087b3bfc404f5e70b3416ccc0c61d27ab086
6807d465808222f385f450243abc38721bdc2630cb374d73bd29f0367d8e0b64
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.12.1 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Sun, 02 Apr 2023 17:33:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2048
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.12.1
66.29.132.60200 OK 13 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.12.1
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (42247)
Hash 7a6755f72ad66339b9578571aa87f4a6
4bd05f7896f5bc0def4882cbc3a6cf81941d1351
f9b15a6f71ac809bff3d24fe8826003170dd340c079afea99c317a1757ceb8be
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.12.1 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Sun, 02 Apr 2023 17:33:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12673
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
66.29.132.60200 OK 2.9 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (12198), with no line terminators
Hash 869caa171b68cbec9fee5abbfb944ee8
f237e485e41f88b77384cfdb880f9d5a8f46eac8
25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2017 21:35:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2867
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/jeg-elementor-kit/assets/js/elements/sticky-element.js?ver=2.6.1
66.29.132.60200 OK 1.4 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/jeg-elementor-kit/assets/js/elements/sticky-element.js?ver=2.6.1
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (4449), with no line terminators
Hash c50bad5ab175fe87d91734630bcae77f
a7918304c533f097d1f43d9a7057ba6c32f6eb50
d91b9b3e8b4a4da2e9d842e5d977b390da6b002ffc28f89e592e1535922e39d0
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/jeg-elementor-kit/assets/js/elements/sticky-element.js?ver=2.6.1 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Fri, 03 Mar 2023 09:04:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1407
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.12.1
66.29.132.60200 OK 12 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.12.1
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (40551)
Hash 8950f03b82683a4f817185e4e39847b2
a37319bf84170293e66f7aeb1ab287521ea83a7d
378ba0cd02633779e2d5ef01ab8db3233b9e34d738735b3e5f5f1cc7e7a49b32
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.12.1 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Sun, 02 Apr 2023 17:33:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11874
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
66.29.132.60200 OK 3.6 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
Hash f5cc445bac69ba3d60941ce27ea238dc
54eb89f0c70490da82e812766631cd67eb9be29a
32a0f1b26f9430afc3f9283e9f8a5c4df7910627b2a75ba58e1fe58b03cc41f3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Thu, 23 Feb 2023 10:12:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3600
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/jeg-elementor-kit/assets/js/elements/testimonials.js?ver=2.6.1
66.29.132.60200 OK 1.1 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/jeg-elementor-kit/assets/js/elements/testimonials.js?ver=2.6.1
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (2697), with no line terminators
Hash aa37c4d7d2a92db0a1b9e5d75cfe9ea2
a1445b287072a22dcc77ca1ea7eb782d89bd5bae
8a257d80cf3a3e108c7f17edf40d0b33d93ca9ed36e9802e380ec34afd747a41
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/jeg-elementor-kit/assets/js/elements/testimonials.js?ver=2.6.1 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Fri, 03 Mar 2023 09:04:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1082
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
66.29.132.60200 OK 6.8 kB URL GET HTTP/2 chimico.co.uk/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 76cbade628b12876a508de3bc038351b
91bf663ad27c21ba900f394ee42c351ad7005ed1
55f1b82cc31c818d2a6a14cc5ec9d6b54145ffa701c208ac27189e629a8dfd77
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Wed, 29 Mar 2023 22:18:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6801
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/2023/02/cropped-New-Project.png
66.29.132.60200 OK 34 kB URL GET HTTP/2 chimico.co.uk/wp-content/uploads/2023/02/cropped-New-Project.png
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type PNG image data, 1451 x 275, 8-bit/color RGBA, non-interlaced\012- data
Hash 198e4354c237e7d0448e4e91155fe6aa
289e03e114cf7129774789af0b3f61410f7c2064
7e74244ddd16fed6fe2d162d9dfd76efe0ea05a272784c291f565bb04b1721c9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/02/cropped-New-Project.png HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: image/png
last-modified: Thu, 23 Feb 2023 10:45:21 GMT
accept-ranges: bytes
content-length: 34011
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/2023/02/New-Project-1.png
66.29.132.60200 OK 39 kB URL GET HTTP/2 chimico.co.uk/wp-content/uploads/2023/02/New-Project-1.png
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type PNG image data, 1458 x 292, 8-bit/color RGBA, non-interlaced\012- data
Hash 83190caa400bb59dbefee3abe4f0be28
f808985febcf724fd2f9639c85d34009844529af
4512c69afc3fa1f1e0f3e3decb2822dda8d9c365bce4491b9701b10a5fbbeb9b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/02/New-Project-1.png HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: image/png
last-modified: Thu, 23 Feb 2023 12:03:55 GMT
accept-ranges: bytes
content-length: 39365
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/jeg-elementor-kit/assets/js/tiny-slider/tiny-slider.js?ver=2.9.3
66.29.132.60200 OK 12 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/jeg-elementor-kit/assets/js/tiny-slider/tiny-slider.js?ver=2.9.3
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (32011), with no line terminators
Hash acee186408b6b98ca11cba0fd66c4e60
ad1925ece3ad00d355ef93375005af0be48953af
a00093112d892296f999ee58ef236b2f2b8a5388b97d9b5bb7bbf1c98660b1e9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/jeg-elementor-kit/assets/js/tiny-slider/tiny-slider.js?ver=2.9.3 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:27 GMT
content-type: application/javascript
last-modified: Fri, 03 Mar 2023 09:04:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12401
date: Thu, 06 Apr 2023 14:55:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f25a33cf299f20681d501796c9686bd7
5ea0e3637b225927662729aba105154e12840581
ab17592cd61d9809424d6a178da2c2a3ecfa3a0369e71fd311ca2bcc5c6e468e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 14:55:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://chimico.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 10:31:23 GMT
expires: Wed, 03 Apr 2024 10:31:23 GMT
cache-control: public, max-age=31536000
age: 188645
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f25a33cf299f20681d501796c9686bd7
5ea0e3637b225927662729aba105154e12840581
ab17592cd61d9809424d6a178da2c2a3ecfa3a0369e71fd311ca2bcc5c6e468e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 14:55:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://chimico.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Apr 2023 11:09:06 GMT
expires: Fri, 05 Apr 2024 11:09:06 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 13582
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/redhatdisplay/v14/8vIQ7wUr0m80wwYf0QCXZzYzUoTg_T6h.woff2
142.250.74.35200 OK 29 kB URL GET HTTP/2 fonts.gstatic.com/s/redhatdisplay/v14/8vIQ7wUr0m80wwYf0QCXZzYzUoTg_T6h.woff2
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 28964, version 1.0\012- data
Hash 4b9f3c6c8298eda8f3d47b63aa300277
7ced89a14b86a7ba68a3c91af1d0741132fddaff
1dbe80d2c777c173f7f7b2fe368fbdd6b3de977c9e02548b03d15cc441a80a69
GET /s/redhatdisplay/v14/8vIQ7wUr0m80wwYf0QCXZzYzUoTg_T6h.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://chimico.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28964
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 11:03:07 GMT
expires: Wed, 03 Apr 2024 11:03:07 GMT
cache-control: public, max-age=31536000
age: 186741
last-modified: Mon, 15 Aug 2022 17:54:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash bd859d4305710ed48b80ff5552f8da71
0314a8f4f9352ffab5c46dac76991603586025f6
e0b8489937a8abf1099a2fe6d60716f47ce30d156b1d1ac6dccf8f5859cf5580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 14:55:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash bd859d4305710ed48b80ff5552f8da71
0314a8f4f9352ffab5c46dac76991603586025f6
e0b8489937a8abf1099a2fe6d60716f47ce30d156b1d1ac6dccf8f5859cf5580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 14:55:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/redhatdisplay/v14/8vIQ7wUr0m80wwYf0QCXZzYzUoTg_T6h.woff2
142.250.74.35200 OK 29 kB URL GET HTTP/2 fonts.gstatic.com/s/redhatdisplay/v14/8vIQ7wUr0m80wwYf0QCXZzYzUoTg_T6h.woff2
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 28964, version 1.0\012- data
Hash 4b9f3c6c8298eda8f3d47b63aa300277
7ced89a14b86a7ba68a3c91af1d0741132fddaff
1dbe80d2c777c173f7f7b2fe368fbdd6b3de977c9e02548b03d15cc441a80a69
GET /s/redhatdisplay/v14/8vIQ7wUr0m80wwYf0QCXZzYzUoTg_T6h.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://chimico.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28964
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 11:03:07 GMT
expires: Wed, 03 Apr 2024 11:03:07 GMT
cache-control: public, max-age=31536000
age: 186741
last-modified: Mon, 15 Aug 2022 17:54:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/redhatdisplay/v14/8vIQ7wUr0m80wwYf0QCXZzYzUoTg_T6h.woff2
142.250.74.35200 OK 29 kB URL GET HTTP/2 fonts.gstatic.com/s/redhatdisplay/v14/8vIQ7wUr0m80wwYf0QCXZzYzUoTg_T6h.woff2
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 28964, version 1.0\012- data
Hash 4b9f3c6c8298eda8f3d47b63aa300277
7ced89a14b86a7ba68a3c91af1d0741132fddaff
1dbe80d2c777c173f7f7b2fe368fbdd6b3de977c9e02548b03d15cc441a80a69
GET /s/redhatdisplay/v14/8vIQ7wUr0m80wwYf0QCXZzYzUoTg_T6h.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://chimico.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28964
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 11:03:07 GMT
expires: Wed, 03 Apr 2024 11:03:07 GMT
cache-control: public, max-age=31536000
age: 186741
last-modified: Mon, 15 Aug 2022 17:54:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
142.250.74.35200 OK 7.7 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://chimico.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 10:35:12 GMT
expires: Wed, 03 Apr 2024 10:35:12 GMT
cache-control: public, max-age=31536000
age: 188416
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash bd859d4305710ed48b80ff5552f8da71
0314a8f4f9352ffab5c46dac76991603586025f6
e0b8489937a8abf1099a2fe6d60716f47ce30d156b1d1ac6dccf8f5859cf5580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 14:55:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
chimico.co.uk/wp-content/uploads/2023/02/Orthopedic-Implants1.webp
66.29.132.60200 OK 31 kB URL GET HTTP/2 chimico.co.uk/wp-content/uploads/2023/02/Orthopedic-Implants1.webp
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 735x470, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d96466ad56e01e6ed9c45f5e15ef0698
2bd82610bb27caf242f7e5a8dd584766fb721224
b438adb4e3230f1a0741cb742b49c828245b00e36cb92df4a4913a9324d06b67
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/02/Orthopedic-Implants1.webp HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/wp-content/uploads/elementor/css/post-7.css?ver=1680619417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:28 GMT
content-type: image/webp
last-modified: Thu, 23 Feb 2023 10:17:31 GMT
accept-ranges: bytes
content-length: 30738
date: Thu, 06 Apr 2023 14:55:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
66.29.132.60200 OK 13 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://chimico.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:28 GMT
content-type: font/woff2
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-length: 13276
date: Thu, 06 Apr 2023 14:55:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
66.29.132.60200 OK 601 B URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1320)
Hash 19267a295da35405b101c3a6e0de7291
2b6dd228c979e8938cb1facebffc83ebd3978def
9e979daa17d93ca9fb3a15853b2d08242ee0d09b03406ff503d9272c3cc76430
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:28 GMT
content-type: application/javascript
last-modified: Sun, 02 Apr 2023 17:33:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 601
date: Thu, 06 Apr 2023 14:55:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
66.29.132.60200 OK 78 kB URL GET HTTP/2 chimico.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://chimico.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:28 GMT
content-type: font/woff2
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-length: 78196
date: Thu, 06 Apr 2023 14:55:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
66.29.132.60301 Moved Permanently 335 kB URL User Request GET HTTP/1.1 IP 66.29.132.60:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (46745), with CRLF, LF line terminators
Size 335 kB (334791 bytes)
Hash 700134d1620f2332561c914b387534ce
e9688e9c669de7f5da9c00a86148c130078523a5
c2b686409b1d90e033142ba1a7fa47027006496d38f17345fb5b68df31d37cfc
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://chimico.co.uk/wp-json/>; rel="https://api.w.org/", <https://chimico.co.uk/wp-json/wp/v2/pages/7>; rel="alternate"; type="application/json", <https://chimico.co.uk/>; rel=shortlink
etag: "320511-1680733170;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
date: Thu, 06 Apr 2023 14:55:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/2023/02/woman-patient-dentist_1303-9355.jpg
66.29.132.60200 OK 192 kB URL GET HTTP/2 chimico.co.uk/wp-content/uploads/2023/02/woman-patient-dentist_1303-9355.jpg
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1380x920, components 3\012- data
Size 192 kB (191751 bytes)
Hash 1b9088b8f570ca98d0e29c21695a65a7
d71c244b33db8da9bd961896e4d973578381ee99
acb639bfe18deebb81766fb162eb15e5baf13d54d609413a6906ca62d25c3f24
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/02/woman-patient-dentist_1303-9355.jpg HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/wp-content/uploads/elementor/css/post-7.css?ver=1680619417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:28 GMT
content-type: image/jpeg
last-modified: Thu, 23 Feb 2023 10:17:30 GMT
accept-ranges: bytes
content-length: 191751
date: Thu, 06 Apr 2023 14:55:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/2023/02/person-protective-suit-getting-ready-disinfect-room_23-2148848560-1.jpg
66.29.132.60200 OK 262 kB URL GET HTTP/2 chimico.co.uk/wp-content/uploads/2023/02/person-protective-suit-getting-ready-disinfect-room_23-2148848560-1.jpg
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, orientation=upper-left, xresolution=62, yresolution=70, resolutionunit=2], baseline, precision 8, 1380x920, components 3\012- data
Size 262 kB (262429 bytes)
Hash 9941d01fdc9d0e5e21ae036c3710effb
2f6e9168bf4bd4e7d94e6e62f4c3315bfce5228b
e9f449a465d552c745d394a0a31cb353c17eaacd051830286a790ec4a0f56a71
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/02/person-protective-suit-getting-ready-disinfect-room_23-2148848560-1.jpg HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/wp-content/uploads/elementor/css/post-7.css?ver=1680619417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:28 GMT
content-type: image/jpeg
last-modified: Thu, 23 Feb 2023 10:17:32 GMT
accept-ranges: bytes
content-length: 262429
date: Thu, 06 Apr 2023 14:55:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/2023/02/8.jpg
66.29.132.60200 OK 216 kB URL GET HTTP/2 chimico.co.uk/wp-content/uploads/2023/02/8.jpg
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 682x737, components 3\012- data
Size 216 kB (216297 bytes)
Hash d9d79df814b339b5f55168075fe1b703
555bc7a47daf6b8ea1f3b74dc9e149087d617f1c
df6c9823d5940ef335434e15cb231b661573ad9ce55ebb74c8d5c52d2985d3d9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/02/8.jpg HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:28 GMT
content-type: image/jpeg
last-modified: Thu, 23 Feb 2023 11:55:08 GMT
accept-ranges: bytes
content-length: 216297
date: Thu, 06 Apr 2023 14:55:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/2023/02/thumb-gettyimages-1295941446-bt-1536x1536-1.jpg
66.29.132.60200 OK 346 kB URL GET HTTP/2 chimico.co.uk/wp-content/uploads/2023/02/thumb-gettyimages-1295941446-bt-1536x1536-1.jpg
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=6, manufacturer=BeFunky, orientation=upper-left, xresolution=94, yresolution=102, resolutionunit=2, software=BeFunky Photo Editor], baseline, precision 8, 1536x929, components 3\012- data
Size 346 kB (345765 bytes)
Hash fbadfaa32378fb1d9848fba4afe2c0eb
577cfd58c87b7f3419d90427bf92c6110e66dd04
58f6c4a67e8a2a42b6ec36249d7a22cdd1892443f2a0e18bb967f9069d8e9811
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/02/thumb-gettyimages-1295941446-bt-1536x1536-1.jpg HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/wp-content/uploads/elementor/css/post-116.css?ver=1680486858
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:28 GMT
content-type: image/jpeg
last-modified: Thu, 23 Feb 2023 10:23:32 GMT
accept-ranges: bytes
content-length: 345765
date: Thu, 06 Apr 2023 14:55:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/2023/02/Medical-Equipment-1.jpg
66.29.132.60200 OK 839 kB URL GET HTTP/2 chimico.co.uk/wp-content/uploads/2023/02/Medical-Equipment-1.jpg
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1220x791, components 3\012- data
Size 839 kB (838770 bytes)
Hash 998156a90a513b1ef8f5be709e7cb2af
3c29a3b8a6d89e80f123175c96b6491938c3d24a
3feab41576d52ce5ae8efb51c753c4d03d5d2702c0e991f288f0e74f903df6b7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/02/Medical-Equipment-1.jpg HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/wp-content/uploads/elementor/css/post-7.css?ver=1680619417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:28 GMT
content-type: image/jpeg
last-modified: Thu, 23 Feb 2023 10:17:31 GMT
accept-ranges: bytes
content-length: 838770
date: Thu, 06 Apr 2023 14:55:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/favicon.ico
66.29.132.60404 Not Found 1.2 kB URL GET HTTP/2 chimico.co.uk/favicon.ico
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Thu, 06 Apr 2023 14:55:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
chimico.co.uk/wp-content/uploads/2023/02/clean-medical-background_53876-97927-2.png
66.29.132.60200 OK 312 kB URL GET HTTP/2 chimico.co.uk/wp-content/uploads/2023/02/clean-medical-background_53876-97927-2.png
IP 66.29.132.60:443
Certificate IssuerSectigo Limited
Subjectchimico.co.uk
Fingerprint31:F9:BA:9F:23:8D:88:D9:FB:E4:DE:CA:94:31:D3:55:30:8D:75:18
ValidityThu, 23 Feb 2023 00:00:00 GMT - Fri, 23 Feb 2024 23:59:59 GMT
File type PNG image data, 1380 x 920, 8-bit/color RGBA, non-interlaced\012- data
Size 312 kB (312327 bytes)
Hash 0d15e31c8af75bfb754bcf4eb591c87f
9c82dc887b6a42073c5f19e8d3e40b5ff5809da3
de66a1455f29417474e41dba9b5e569a3d611cbcf67cf6f50362077b7782de5e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/02/clean-medical-background_53876-97927-2.png HTTP/1.1
Host: chimico.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chimico.co.uk/wp-content/uploads/elementor/css/post-7.css?ver=1680619417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 13 Apr 2023 14:55:28 GMT
content-type: image/png
last-modified: Thu, 23 Feb 2023 11:39:33 GMT
accept-ranges: bytes
content-length: 312327
date: Thu, 06 Apr 2023 14:55:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2