Report - abies.co.za/excel/excel/excel.php/

Report Overview

Submitted URL
abies.co.za/excel/excel/excel.php/
IP
82.180.138.238
ASN
#0
Submitted
2023-04-29 13:23:32
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
46

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
a.omappapi.com	5418	2020-03-20	2023-04-29	811 B	71 kB	194.242.11.186
omnisnippet1.com	16560	2021-04-01	2023-04-28	844 B	112 kB	104.18.16.174
fonts.gstatic.com	unknown	2014-09-09	2023-04-29	2.6 kB	74 kB	216.58.207.227
region1.analytics.google.com	unknown	2022-03-17	2023-04-29	677 B	442 B	216.239.32.36
pixel.wp.com	2545	2017-01-30	2023-04-29	531 B	239 B	192.0.76.3
chimpstatic.com	4832	2017-04-21	2023-04-29	458 B	1.8 kB	96.6.17.210
connect.facebook.net	139	2012-05-22	2023-04-29	1.3 kB	440 kB	31.13.72.12
www.googletagmanager.com	75	2013-05-22	2023-04-29	3.0 kB	522 kB	142.250.74.168
www.google.com	7	2015-05-10	2023-04-29	2.6 kB	49 kB	216.58.211.4
mc.us3.list-manage.com	71074	2014-12-25	2023-04-20	547 B	8.3 kB	104.110.24.122
www.gstatic.com	unknown	2016-07-26	2023-04-29	2.5 kB	527 kB	142.250.74.35
www.google.no	25607	2016-04-05	2023-04-29	512 B	578 B	216.58.211.3
ocsp.pki.goog	175	2018-07-01	2023-04-29	2.7 kB	5.6 kB	142.250.74.131
downloads.mailchimp.com	11609	2012-05-23	2023-04-29	2.8 kB	108 kB	54.230.111.124
www.facebook.com	99	2012-05-21	2021-02-04	1.3 kB	712 B	31.13.72.36
stats.wp.com	2711	2017-01-30	2023-04-29	780 B	19 kB	192.0.76.3
forms.soundestlink.com	16969	2016-03-10	2023-04-28	1.1 kB	1.1 kB	104.18.31.243
fonts.googleapis.com	8877	2013-06-10	2023-04-29	516 B	17 kB	142.250.74.106
abies.co.za	unknown	2015-08-24	2023-04-29	22 kB	306 kB	82.180.138.238
c0.wp.com	6988	2018-09-24	2023-04-29	7.5 kB	293 kB	192.0.77.37

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-04-29	medium	abies.co.za/excel/excel/excel.php/
2023-04-29	medium	abies.co.za/wp-content/plugins/customer-reviews-woocommerce/css/frontend.css?ver=5.9.0
2023-04-29	medium	abies.co.za/excel/excel/excel.php/
2023-04-29	medium	abies.co.za/wp-content/plugins/user-submitted-posts/resources/usp.css?ver=20221004
2023-04-29	medium	abies.co.za/wp-content/plugins/woo-coupon-url/public/css/woo-coupon-url-public.css?ver=1.0.0
2023-04-29	medium	abies.co.za/wp-content/themes/storefront/assets/css/base/icons.css?ver=4.2.0
2023-04-29	medium	abies.co.za/wp-content/plugins/enquiry-quotation-for-woocommerce/public/js/jquery.validate.min.js?ver=6.2
2023-04-29	medium	abies.co.za/wp-content/plugins/customer-reviews-woocommerce/js/colcade.js?ver=5.9.0
2023-04-29	medium	abies.co.za/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
2023-04-29	medium	abies.co.za/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
2023-04-29	medium	abies.co.za/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.7.6.01
2023-04-29	medium	abies.co.za/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
2023-04-29	medium	abies.co.za/wp-content/themes/storefront/assets/js/woocommerce/header-cart.min.js?ver=4.2.0
2023-04-29	medium	abies.co.za/wp-content/themes/storefront/assets/js/footer.min.js?ver=4.2.0
2023-04-29	medium	abies.co.za/wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css?ver=6.2.8
2023-04-29	medium	abies.co.za/wp-content/themes/storefront/assets/css/woocommerce/woocommerce.css?ver=4.2.0
2023-04-29	medium	abies.co.za/wp-content/plugins/enquiry-quotation-for-woocommerce/public/js/pisol-enquiry-quotation-woocommerce-public.js?ver=2.2.0
2023-04-29	medium	abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.cookie.js?ver=20221004
2023-04-29	medium	abies.co.za/wp-content/themes/storefront/assets/fonts/fa-solid-900.woff2
2023-04-29	medium	abies.co.za/wp-content/uploads/2023/03/EMG134-137-1-324x324.jpeg
2023-04-29	medium	abies.co.za/?wc-ajax=get_refreshed_fragments
2023-04-29	medium	abies.co.za/wp-admin/admin-ajax.php
2023-04-29	medium	abies.co.za/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (92)

	URL	Size	First Seen	Last Seen
	abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.parsley.min.js?ver=20221004	43 kB	2023-03-07	2024-03-27
Pretty URL abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.parsley.min.js?ver=20221004 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:25:14 Last Seen2024-03-27 09:53:27 Times Seen237 Hash c18fd31524c40e32176e99350c82ccf1 81c53e2a97ae9561ebcef80b906d7b69e3665078 aefd2d314e8d3b9d7f53925a76c1ec9d70753db57f7ea6097933d6a65c9c0d29 Loading...

	abies.co.za/wp-content/plugins/customer-reviews-woocommerce/js/frontend.js?ver=5.9.0	53 kB	2023-03-08	2023-05-23
Pretty URL abies.co.za/wp-content/plugins/customer-reviews-woocommerce/js/frontend.js?ver=5.9.0 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:57:01 Last Seen2023-05-23 07:35:49 Times Seen5 Hash e9780d280fc13b6f81589108b25ca083 4b4313d8b22d12d4d0f8a68586a872837a3d675c 0dafc7f460cb39383059b94a697fb276a7f1bbe6264122626a66fd5b38ac33c4 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-M9PGGHZ	101 kB	2023-04-29	2023-04-29
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-M9PGGHZ IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:35 Last Seen2023-04-29 15:23:36 Times Seen2 Hash d9db4ea5ff5729604a07fc4e6a8325d6 963e0020867312a92ec996ba1a4d48b4a7e9fa8d c5474d1ebb597cbfe42580ddc82c93008cb740e524a7ffac11848ce1af03c7d4 Loading...

	unknown	26 B	2023-04-11	2024-04-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:13:06 Last Seen2024-04-19 21:53:27 Times Seen115767 Hash 1c862db5f2555377c2dc1e62ed7b3981 c29e6dc25c08a70995127ec13ded6f80d9a36174 27d373a6961f797edf69a80f7f24877ef85c2fc4f9f770b2540b1bf5e66823ac Loading...

	abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.cookie.js?ver=20221004	1.5 kB	2023-03-07	2024-03-27
Pretty URL abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.cookie.js?ver=20221004 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:01:28 Last Seen2024-03-27 09:53:27 Times Seen229 Hash cee4b9c27729851c088c85bd60be800e c9f53442a61a221a7bc738b98fd0c098bcc22220 855e395b5042677367cb70343b370d3dd2dffd73ee62ead09bde853244ab1b1d Loading...

	abies.co.za/excel/excel/excel.php/	32 B	2023-03-07	2024-04-19
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-19 11:19:32 Times Seen3382 Hash f28cdba8b1a33fab7b4935482c683e17 7fb92b438ae880e659636e12f78ecca1ab9dd1a9 76d9ab1fc9999540d0f7167df3325f71fbd86160eda576cb60f285b0e65d89a9 Loading...

	abies.co.za/excel/excel/excel.php/	5.7 kB	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:35 Last Seen2023-04-29 15:23:35 Times Seen1 Hash 4206fc3e60a4f33ac7d0cd589a113fda 2430a900e9431ba254b507bb4382c8d21bc5404f cabd5a33ae1667722de1b2fe100ad41656d6da62a124519fea7a3565a8f2e602 Loading...

	abies.co.za/excel/excel/excel.php/	2.2 kB	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:35 Last Seen2023-04-29 15:23:35 Times Seen1 Hash 07d9b78fd097a3b823380f9b197eca9a 2c0846cb14220200db81f8faf1e2fa3bcd029966 3affbc329d2a9c3cd8d5f09c3fb03f927ca3fa8b85bfec4f250d2e603a0e715c Loading...

	abies.co.za/excel/excel/excel.php/	338 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:35 Last Seen2023-04-29 15:23:35 Times Seen1 Hash 512a3120f0e1bc91c2ffef5f2a58a755 f0514747ba65ef56ad0bca30c811c2f0b02689e1 cbeb01a6e5d03f9574d64ae492ad7c1f7d162304a3200ebc02c4f02b4443c5b9 Loading...

	abies.co.za/wp-content/plugins/omnisend-connect/assets/js/omnisend-front-script.js?1682774562&ver=1.0.0	4.1 kB	2023-03-08	2023-04-29
Pretty URL abies.co.za/wp-content/plugins/omnisend-connect/assets/js/omnisend-front-script.js?1682774562&ver=1.0.0 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:57:19 Last Seen2023-04-29 15:23:36 Times Seen3 Hash 26bf16f02c263d76e96a03b910e66d78 e9ba7d98e51891578c00877aa78da3058b3940f6 b0c6bdb772bc63777a8fe028fe53dcc38a3ba9e79ec0bff13e25a2152fbd307b Loading...

	abies.co.za/wp-content/themes/storefront/assets/js/footer.min.js?ver=4.2.0	746 B	2023-03-08	2024-04-16
Pretty URL abies.co.za/wp-content/themes/storefront/assets/js/footer.min.js?ver=4.2.0 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:19:42 Last Seen2024-04-16 18:40:20 Times Seen245 Hash 23583a1ae8467b5b174b311b4bd5ac20 5f68f50c2d062a036964d73785655edd8346341d 56867c3320ff721098144adb54239c76f2d24c365510fd5e7a4f9b305631a6eb Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-20 02:25:43 Times Seen340513 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	abies.co.za/wp-content/plugins/customer-reviews-woocommerce/js/colcade.js?ver=5.9.0	10 kB	2023-03-07	2024-02-26
Pretty URL abies.co.za/wp-content/plugins/customer-reviews-woocommerce/js/colcade.js?ver=5.9.0 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:01:00 Last Seen2024-02-26 16:23:30 Times Seen437 Hash 24097abf1a9569f71ec6123fd2a6dc39 09bc7e30e6b5706290ec589c2d0d991c00233a6c 1f75584451d1806af31c524aed578b1efabe9eafcb303b835f5735d20da2e07d Loading...

	unknown	1.4 kB	2023-03-13	2024-04-07
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2023-03-13 21:03:45 Last Seen2024-04-07 15:50:25 Times Seen205 Hash e68dcb62dd122931d86c4b946ac90975 9708fbaba11038f655cb2cb0aa1d7b336de00e30 cba42d0ae698468bcc4dfbb1f739e41a39f20c3023f2f3047cfb3f1c245cb127 Loading...

	abies.co.za/excel/excel/excel.php/	312 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:35 Last Seen2023-04-29 15:23:35 Times Seen1 Hash 1b4bbb5d52a199cd74a1d6b000e17eec 924d30ed5096bce82f1fa71336dc17b69f09221c 0a96c25453c66266f100e3682b1701a63952a1dae41158037b516a1adbf9db7f Loading...

	abies.co.za/excel/excel/excel.php/	434 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:35 Last Seen2023-04-29 15:23:35 Times Seen1 Hash e95d80efd6fb65422c6270d0fa1dcde3 4cde4d84d6cb7afbed18aa290ecd758f5f973219 7b263a98863255c0d236f48ee88c13cc99a7ad37ad2ada8e847dfb3523bfb77d Loading...

	abies.co.za/excel/excel/excel.php/	217 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:35 Last Seen2023-04-29 15:23:35 Times Seen1 Hash 2eebff8bf46f4192e19e8602bc90e2c6 5407dfff1bcd5d08d93d5cb802a5287921f8e5d3 53e67cd5af2b2c9fdb5badbd29a08b12c36e764b097393ffd8215d646302ee08 Loading...

	c0.wp.com/c/6.2/wp-includes/js/dist/vendor/regenerator-runtime.min.js	6.6 kB	2023-03-14	2024-04-19
Pretty URL c0.wp.com/c/6.2/wp-includes/js/dist/vendor/regenerator-runtime.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:30:15 Last Seen2024-04-19 11:02:50 Times Seen37702 Hash 9a4f28a615173df36cb84be2b345816e f709263841708d9e40268f24a0072ff4fe811b35 6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r	69 B	2023-03-07	2024-04-20
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-20 00:14:28 Times Seen99087 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	abies.co.za/excel/excel/excel.php/	409 B	2023-03-07	2024-04-15
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:26:34 Last Seen2024-04-15 22:34:28 Times Seen1125 Hash 95bc814bee703ddc9c4280393a462155 e1f6d1d7088423cc61b249d46d8d210c3b8e8e2c 6daa1bbb0542d103453d155312c93a6fc3d815f303b034686e91f646e147b499 Loading...

	chimpstatic.com/mcjs-connected/js/users/50cf6e31c85ccef801a1080b1/96f9c9bbd47b2e4b1d06262c5.js	3.9 kB	2023-04-29	2023-04-29
Pretty URL chimpstatic.com/mcjs-connected/js/users/50cf6e31c85ccef801a1080b1/96f9c9bbd47b2e4b1d06262c5.js IP 96.6.17.210 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:35 Last Seen2023-04-29 15:23:36 Times Seen2 Hash 1c4a8adbaf6da6dff57735208e3f5e61 406956c7d77250efdf622b6cb60e685cd7479778 0fd15e3cbed87898bfe83cf2089f8e34d63e1c39a175543c16c0d8d328df4b43 Loading...

	c0.wp.com/p/woocommerce/7.1.0/assets/js/jquery-blockui/jquery.blockUI.min.js	9.5 kB	2023-03-08	2024-04-19
Pretty URL c0.wp.com/p/woocommerce/7.1.0/assets/js/jquery-blockui/jquery.blockUI.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:31 Last Seen2024-04-19 20:32:03 Times Seen14359 Hash 4ffc462852340d9e6b5b7b29276fcb71 5e04050e09e3f7d8107ef3b9aa9313be618c460e 18336635cd5e9edf2aff3ae18b67250684311c2a459457091b063dafba57d526 Loading...

	abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.usp.core.js?ver=20221004	7.2 kB	2023-03-07	2024-01-04
Pretty URL abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.usp.core.js?ver=20221004 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:41:37 Last Seen2024-01-04 22:06:18 Times Seen68 Hash ebbe8bd496f75359c23b1dd1c2c992f6 b766dff69683f4220c76a00354301d24e3de3f13 1a89a36d36d0b7bf6ea1b0d4ca499cb0b4f32bcc82e40a520ede9b0d17592f5f Loading...

	abies.co.za/excel/excel/excel.php/	534 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:35 Last Seen2023-04-29 15:23:35 Times Seen1 Hash 7f689c6fe4f09806b34ae558700aee1e 3a8493d9275ea69946b63771e263abfe7fdeedbf 9e004a0f3f0ba60fd367571ec7f02f29f9fd8551153d3cb4456370f4b856bc10 Loading...

	unknown	120 B	2023-04-11	2024-04-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 23:19:32 Last Seen2024-04-09 20:13:39 Times Seen541 Hash 4f08e11166d7e4f9792b4423d744bf75 fd9b7071819f521b30a1f8703946dc9682a03f7a bfd2b11bc2a2eb7c27a98eff8cbd10c75e66d784165e367e3b6bbac3b9234925 Loading...

	abies.co.za/wp-content/themes/storefront/assets/js/woocommerce/header-cart.min.js?ver=4.2.0	532 B	2023-03-08	2024-04-16
Pretty URL abies.co.za/wp-content/themes/storefront/assets/js/woocommerce/header-cart.min.js?ver=4.2.0 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:19:42 Last Seen2024-04-16 18:40:19 Times Seen250 Hash cdfe377589dff361ed91cb359104d639 7e4f75964f491fe43f5bd9ee0e5a1264a2dee799 094689ef6eef11a2e020b026c43f725f081f25d4befddc8c46cbf44f8543a824 Loading...

	www.googletagmanager.com/gtag/js?id=G-PW9EJ25SPP&l=dataLayer&cx=c	287 kB	2023-04-29	2023-04-29
Pretty URL www.googletagmanager.com/gtag/js?id=G-PW9EJ25SPP&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen2 Hash 2b8c27f4319aa5f8ba36bcba9e8d9cfd 41f1d7231e2429da76acb9ec2c54c053005797b9 bb056bab5fa0d3fca888a83e476342987fde1aa63c552c50d48d4e833853a424 Loading...

	forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=abies.co.za&shopType=api&brandID=5f9040e44c7fa4332c66901c	219 B	2023-04-29	2023-04-29
Pretty URL forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=abies.co.za&shopType=api&brandID=5f9040e44c7fa4332c66901c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash b2fee49d4a4337aefe5d08ae4c2f4a9b 57f772926e58a6fc8d4751a76ffb1ccf7b1b7f60 2e3bc1f141d430ab4378b181c6fdcb0431da92104b1b016b5a0a179ca7586380 Loading...

	www.googletagmanager.com/gtag/js?id=G-V04TR0106N&l=dataLayer&cx=c	203 kB	2023-04-29	2023-04-29
Pretty URL www.googletagmanager.com/gtag/js?id=G-V04TR0106N&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen2 Hash 14334b7c1246063099c0be22493f61d5 512c11485df5df150aa638ea7e583e5ebce868f6 a87332a1fb8e05773e9b05ef06ce642695a860f7a1749f8866eb676ec3be2ef2 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r	41 kB	2023-04-29	2023-04-29
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash 74dd70735563c5fc6641be97d56366e0 87cad223692105abff29fa75c8f195df2acba976 29e168f7a3a39c037d105b160f431af5a5849aad15742ddcbeeed73523529762 Loading...

	abies.co.za/excel/excel/excel.php/	440 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash 57bd7d153cf1d8fbf4dd7dd9f45f7080 f079c8800c23eda488d5ebf426d2e3a35a38f25e c575e6bea7dd4a41ae69098f6198f7ec565db44bf19a6c680d05d97dcb659344 Loading...

	abies.co.za/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.7.6.01	6.9 kB	2023-03-07	2024-04-16
Pretty URL abies.co.za/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.7.6.01 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:43 Last Seen2024-04-16 05:10:13 Times Seen457 Hash 4962698b494fa6c5b9a259b936853426 df655b977be8a3c9c563c837ae80693f21670f9d e23064f0de65944686ada90242a58d8c0de5ed90225c573b883640d315104c04 Loading...

	stats.wp.com/e-202317.js	9.0 kB	2023-03-07	2024-01-05
Pretty URL stats.wp.com/e-202317.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:19 Last Seen2024-01-05 09:08:33 Times Seen3233 Hash 9152c169155daa333287728cb8e4ae93 1e45a9ea1464acf983f022567cb9f669f4c77f65 82d0aae1e7b8cfc0574d6548d1f35096f5e4310321aa964ff3fdb46c4d12e302 Loading...

	www.googletagmanager.com/gtag/js?id=G-V04TR0106N	203 kB	2023-04-29	2023-04-29
Pretty URL www.googletagmanager.com/gtag/js?id=G-V04TR0106N IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen2 Hash 461290c58fbd49096279bc93e24321e3 8b784bbef1a0cb802330b4dd1fcf391d6f203afd dad169d601a257ab49072eec473c1406fec645d139dcfad197e9d047cb2606bc Loading...

	www.gstatic.com/recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/recaptcha__en.js	415 kB	2023-04-29	2023-05-29
Pretty URL www.gstatic.com/recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 08:57:37 Last Seen2023-05-29 23:29:25 Times Seen5402 Hash c76f9c57b3feba5396e3a3f8229c86de b7b7afdf9c18f9fa5dd591290a570c91e025132b 9c66aac71361951c630ee399753ce89868dda4d3f0629870a07ac96c91c00711 Loading...

	abies.co.za/excel/excel/excel.php/	266 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash 36868fde2166b842dab719268a238b89 7713cd6d6f0ad79a81e8a7637fb7fd1d8194ab6a 90ba4ada60e36b24750a42dbb07a95518f35f0912d3ac4940f2f21b29ad505fa Loading...

	abies.co.za/excel/excel/excel.php/	47 B	2023-03-07	2024-03-15
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:22:23 Last Seen2024-03-15 14:39:36 Times Seen58 Hash 8daf7c8bc4cf96b87c48fa78b2d53475 7b4b6321d211592fe12e5680f70a05d0373f1c1c 892c0d5d5d84ef38b651ea79ddbb69aa4a48316d2568463d933a460d87fc66cb Loading...

	abies.co.za/excel/excel/excel.php/sandbox%20eval%20code	147 B	2023-04-11	2024-04-20
Pretty URL abies.co.za/excel/excel/excel.php/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-20 02:25:43 Times Seen341008 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.googletagmanager.com/gtag/js?id=UA-23509768-1	120 kB	2023-04-29	2023-04-29
Pretty URL www.googletagmanager.com/gtag/js?id=UA-23509768-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen2 Hash 21744977ca286b13ba5b1073c5927f76 a987d5e67eb08ed5377aa2c5dabca8172c82c260 e66e7293c9e169f7b7f3ae88e564c9f23366b1b3080e9bca9bccaf11719cb239 Loading...

	abies.co.za/excel/excel/excel.php/	689 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash d9102af9969ae6ac03a8313fd720523c 4242afd0e4d7d6aa01336192f4e32759b8094573 692c3fc162e3a123ed681c31f1643bd1fd1d0a672bc6bf6aae989eb8acdb4c47 Loading...

	c0.wp.com/p/woocommerce/7.1.0/assets/js/frontend/add-to-cart.min.js	3.0 kB	2023-03-08	2024-04-19
Pretty URL c0.wp.com/p/woocommerce/7.1.0/assets/js/frontend/add-to-cart.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:31 Last Seen2024-04-19 10:30:00 Times Seen11345 Hash f449e3e4a7c058f7c48f57e05c788fb0 e7b0c58a1a14c14a92e452cc544b312ed91fa52e bfd861dc2936299f52adca1da826c273dced7c77ad4c33d31916ad55ab354e89 Loading...

	omnisnippet1.com/inshop/launcher-v2.js	51 kB	2023-04-29	2023-05-18
Pretty URL omnisnippet1.com/inshop/launcher-v2.js IP 104.18.16.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:36 Last Seen2023-05-18 15:17:29 Times Seen16 Hash 5a760c878c7a1ec588118ae1b17e7177 b54d717ee6bc033e5494b58f23bde3d8a6b3b7e2 126217e294a95efb75a989a093fb08ccec02ffe110e1025b3a7a9c0eafbbac24 Loading...

	abies.co.za/excel/excel/excel.php/	247 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash f1e918d24415c6565e9a8f93ae8397e8 d0cfd661e7691ad7fa2b60ad08c36d02ae4db48f e49177e4aa851fcb055677b3e03d2e0ae38efc2bbbeaf2a61eae688a40b309ea Loading...

	www.googletagmanager.com/gtag/js?id=AW-1020136149	287 kB	2023-04-29	2023-04-29
Pretty URL www.googletagmanager.com/gtag/js?id=AW-1020136149 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen2 Hash c1df2c42f8284a7f0cfbf1517b2e90c4 7899ec36c56c9a2f352507820eee5669ea065415 900efc9494a80485727553fa9bf506989eaed6eddabecf669c5be552d45ffb0f Loading...

	omnisnippet1.com/forms/main.js?v=2023-04-29T13	60 kB	2023-04-25	2023-06-06
Pretty URL omnisnippet1.com/forms/main.js?v=2023-04-29T13 IP 104.18.16.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 19:23:13 Last Seen2023-06-06 05:34:26 Times Seen178 Hash 8e166c04bc237612a594999b3bc13627 0dee279219f6ea6a6366f9ac6132603e9c12c3b9 c55c2bdada6711902295dd8b8a2aee21fa71854e81cbe94bf9ce4b19209173cd Loading...

	abies.co.za/excel/excel/excel.php/	152 B	2023-03-07	2024-04-20
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-20 00:22:51 Times Seen19853 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	c0.wp.com/p/woocommerce/7.1.0/assets/js/frontend/cart-fragments.min.js	2.9 kB	2023-03-07	2024-04-19
Pretty URL c0.wp.com/p/woocommerce/7.1.0/assets/js/frontend/cart-fragments.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-19 10:30:00 Times Seen13949 Hash 0fd625c3991a4015814cffdc88e2fc82 d7c2f53e058210ff3ea773297641008bab71a5f3 2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1 Loading...

	downloads.mailchimp.com/js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js	104 kB	2023-03-08	2023-05-05
Pretty URL downloads.mailchimp.com/js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js IP 54.230.111.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:40:08 Last Seen2023-05-05 18:15:45 Times Seen531 Hash d3149280c831cbf6538770c71a916f43 e72b88e8691c7fde33671cd95670f5378a7877ce b0755de9edee41abdef304a877ee3174f92c3429feaf7c06437822970addbb4f Loading...

	abies.co.za/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.12.1	12 kB	2023-03-07	2024-04-18
Pretty URL abies.co.za/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.12.1 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:48 Last Seen2024-04-18 02:50:18 Times Seen5597 Hash a76f61318af036823b08d73536486be6 31ff9b215dcef9151b9f4fc50ea91a9df1962102 abc9faa4970e07db7d506d6b2a98e4c86223be305c7541ced54ea2e15f99a76e Loading...

	abies.co.za/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	9.9 kB	2023-03-08	2024-04-18
Pretty URL abies.co.za/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-18 12:23:23 Times Seen3132 Hash dc74c9954b1944928eca0172c3b8c6b3 e9e00e587e0e28491b69563b4e768945ff2e0ed5 d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b Loading...

	c0.wp.com/p/woocommerce/7.1.0/assets/js/js-cookie/js.cookie.min.js	1.8 kB	2023-03-07	2024-04-19
Pretty URL c0.wp.com/p/woocommerce/7.1.0/assets/js/js-cookie/js.cookie.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-19 20:32:03 Times Seen21566 Hash d0a6d8547c66b0d7b0172466558d1208 ff93916519c7b9483251f609e4d29f38c30a66e3 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612 Loading...

	abies.co.za/wp-content/plugins/enquiry-quotation-for-woocommerce/public/js/pisol-enquiry-quotation-woocommerce-public.js?ver=2.2.0	7.1 kB	2023-03-29	2024-01-18
Pretty URL abies.co.za/wp-content/plugins/enquiry-quotation-for-woocommerce/public/js/pisol-enquiry-quotation-woocommerce-public.js?ver=2.2.0 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:54:04 Last Seen2024-01-18 17:30:55 Times Seen14 Hash f58ac736cf5a10de570a1c73fca6d392 86ce1f9a78f98b5588fddceabaff4951e55f2e2b 3510dc6f65752690602626a7a53c7aa59023a23af0c09f50dbbf41f8b644ded2 Loading...

	abies.co.za/excel/excel/excel.php/	83 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash 2a242916f8e4bb45c6427993ec6a0b28 eb2fec369ff150f9a65934ae5eb130c20ae94d49 8b2c27749abb025f41b5feb63f2fc92525753614855275595473eec964fb964b Loading...

	abies.co.za/excel/excel/excel.php/	112 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash 02ace5818e482d4319979739380b107e ccc995adb66650a3dfc80447d73bdb7f106f349e fe48236713b9e37e02f60181604787d9480ee28a20963c8919faa754c562a222 Loading...

	unknown	52 B	2023-04-11	2024-04-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 23:19:32 Last Seen2024-04-09 20:13:39 Times Seen532 Hash 2832937f0c103d72ad5c0745ebf78761 4ee4911a9ba7fdfde6318015acd530ee99e8dd5f 6b12099472bb29ee3f96ae683e0ac5debd857d316123fb1a6a0c062dcf8636e6 Loading...

	connect.facebook.net/signals/plugins/identity.js?v=2.9.102	65 kB	2023-03-08	2024-02-19
Pretty URL connect.facebook.net/signals/plugins/identity.js?v=2.9.102 IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:50 Last Seen2024-02-19 23:40:48 Times Seen4401 Hash ed5d6caf417fab681343bc3414babc55 410ba8d8866d7c7df41f21526345cfb7426386f2 7e86f52cb0d423805ec541a4bccae5156a01fbe36355e6d798a450593212651f Loading...

	c0.wp.com/c/6.2/wp-includes/js/jquery/jquery.min.js	90 kB	2023-03-29	2024-04-19
Pretty URL c0.wp.com/c/6.2/wp-includes/js/jquery/jquery.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:52:25 Last Seen2024-04-19 20:32:03 Times Seen102836 Hash 0e850a69bc7fd0acc2e92ce6eee87959 8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a Loading...

	c0.wp.com/p/woocommerce/7.1.0/assets/js/frontend/woocommerce.min.js	2.1 kB	2023-03-07	2024-04-19
Pretty URL c0.wp.com/p/woocommerce/7.1.0/assets/js/frontend/woocommerce.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-19 20:32:03 Times Seen22363 Hash b72c1cbb1530a011a27bd9800f26765a 27b825c5d8255f33b8427a059d4545ebd65e1746 a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8 Loading...

	abies.co.za/excel/excel/excel.php/	89 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash 45d7c7676d6191ce53a17349876acb9e 0f692c28aa8e8607c1355e012f749b5e3e852ff3 20cd78ab5bb2c1ea2c25ee6b246105170e92e5574ffec6ba4993d5b031a07ebc Loading...

	abies.co.za/excel/excel/excel.php/	228 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash 831a0d203b573e0f39ddc265edb4a54d 91dbf3f3a945c45597db54b68475126c7ad7d7e0 7b3ed0762b34560b985bce27bc9cc946aac4e6156555275007dcf58d84902077 Loading...

	abies.co.za/excel/excel/excel.php/	109 B	2023-03-07	2024-04-19
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-19 01:22:20 Times Seen4190 Hash c3041f910d72f3447c03a53d6b8df977 d2959e0ca4bfa2ec8613d1fba8ae2399aebdd123 9b5e9931c5ad5f273f4c6eb5988506ef60471957923124b28aab2f8563e8b7fd Loading...

	connect.facebook.net/signals/config/612811310598675?v=2.9.102&r=stable	386 kB	2023-04-29	2023-04-29
Pretty URL connect.facebook.net/signals/config/612811310598675?v=2.9.102&r=stable IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen2 Hash b59f63ef552c4cf8c9918c27d911beb8 e5b78e63a0d8ca7834d36fe132ef6a17774e4317 fbbc981ed2e53d51636740299ff2554c79cb5f8018a79b64eba121664f2ccb80 Loading...

	c0.wp.com/c/6.2/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js	8.2 kB	2023-03-13	2024-04-20
Pretty URL c0.wp.com/c/6.2/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:32:06 Last Seen2024-04-20 00:20:00 Times Seen50552 Hash dda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4 Loading...

	mc.us3.list-manage.com/subscribe/form-settings?u=50cf6e31c85ccef801a1080b1&id=d282416568&u=50cf6e31c85ccef801a1080b1&id=d282416568&c=dojo_request_script_callbacks.dojo_request_script0	13 kB	2023-04-29	2023-04-29
Pretty URL mc.us3.list-manage.com/subscribe/form-settings?u=50cf6e31c85ccef801a1080b1&id=d282416568&u=50cf6e31c85ccef801a1080b1&id=d282416568&c=dojo_request_script_callbacks.dojo_request_script0 IP 104.110.24.122 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen2 Hash f7191377016a4b488a675f98b55412a4 e9b00deb80643654079b2cd68cdf6e5988d1fcce e275596151486b792f02346d8058b4a5fb4a8c31ed8d2b628edc1cde7788fba2 Loading...

	abies.co.za/excel/excel/excel.php/	268 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash 93afedb19ae1fb3a0a5264edb1454d42 b7a9c33c38e917c9bf009162b1483750ea037d3b 01a2627f3628fff6b803023e3a47ee9b1995da1d38385132058ee1acab6af6e4 Loading...

	abies.co.za/excel/excel/excel.php/	491 B	2023-03-07	2024-04-10
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:50 Last Seen2024-04-10 00:36:22 Times Seen2042 Hash eda0861d93eea53c3286b2fd93d2e42d 979767d815a8847b00fe1d45a5757fdf67b8ca1b 6e799f88d7836b96f8d81538a375039937e497b6a103bd1d259dfef980fdf926 Loading...

	abies.co.za/excel/excel/excel.php/	214 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash 480d50229e2ef6c873226ef8339b97ad 7cd66930ad8d5e5ccc366aebbdb4b1f88cbe760e 17d6478d10fdd5e0bd47a04de26136c2a1ac7cda37ea3de23fefdcc81c094421 Loading...

	abies.co.za/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	12 kB	2023-03-08	2024-04-18
Pretty URL abies.co.za/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-18 12:23:25 Times Seen3477 Hash 1f9968a7c7a2a02491393fb9d4103dae 0032c8a6a692e6f072b2cef20828449402fdd57d f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49 Loading...

	www.googletagmanager.com/gtag/js?id=AW-1020136149&l=dataLayer&cx=c	287 kB	2023-04-29	2023-04-29
Pretty URL www.googletagmanager.com/gtag/js?id=AW-1020136149&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen2 Hash 678bd785a04e66f9e2d641d1c4ae61d1 755f9886d4ada304208a0a748b1701b21c06a2c0 154166ffe6c414cf947ee0032a549fda336522adbb0d2c5d45636bf2c9eb8168 Loading...

	downloads.mailchimp.com/js/signup-forms/popup/unique-methods/embed.js	222 kB	2023-03-09	2023-05-05
Pretty URL downloads.mailchimp.com/js/signup-forms/popup/unique-methods/embed.js IP 54.230.111.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:55:07 Last Seen2023-05-05 18:15:45 Times Seen482 Hash 3281ba63652083b7a938a78b62fe19d4 024aa7bed69a65808312ee82f37b2bacfba0968f 8b6b9460628f90ea3198218e3960a034c3078088dd324864708c48c5810e1b28 Loading...

	abies.co.za/wp-content/plugins/woo-coupon-url/public/js/woo-coupon-url-public.js?ver=1.0.0	838 B	2023-03-07	2024-04-20
Pretty URL abies.co.za/wp-content/plugins/woo-coupon-url/public/js/woo-coupon-url-public.js?ver=1.0.0 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:06 Last Seen2024-04-20 00:20:00 Times Seen3752 Hash 49cea0a781874a962879c2caca9bc322 72c1650de2b93ef320d2db873fbb473fe360269c 57a50c99a31ef4e89e86664e96f6dfbdde163a2eb96e88b3b492c49aa4be2f37 Loading...

	abies.co.za/excel/excel/excel.php/	99 B	2023-03-07	2024-04-02
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:10:31 Last Seen2024-04-02 13:27:01 Times Seen75 Hash 33f9973cb87038eea67113f18acefe81 4336f805f21e02619eb7ef68ce4e9adcdfce905c 02524b160ec3732b8debe9234df656b9c28c152bd180c20401ea1d7d4655151a Loading...

	www.google.com/recaptcha/api.js?render=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&ver=3.0	884 B	2023-04-29	2023-04-29
Pretty URL www.google.com/recaptcha/api.js?render=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&ver=3.0 IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen2 Hash 977c5afcaf281e06f1c931e310a3a46f 030e028438743e5a03de48383a50312d9ce0967e ae3dcb9e5e6c8f6fb5c4afe55054af0a83b558adb4aa71cb659c96a7fa90e0be Loading...

	abies.co.za/wp-content/themes/storefront/assets/js/navigation.min.js?ver=4.2.0	3.0 kB	2023-03-08	2024-04-16
Pretty URL abies.co.za/wp-content/themes/storefront/assets/js/navigation.min.js?ver=4.2.0 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:19:42 Last Seen2024-04-16 18:40:19 Times Seen332 Hash fef57079575f2a7cdfb249f9e952deb4 91e236266d1facdf85eaba41e1914bd5fe7446e3 dcad52d8ba066abbc3db5a3c4e73fef0c5afa6edb378f40d2d1ac6e41745e7e2 Loading...

	abies.co.za/wp-content/plugins/enquiry-quotation-for-woocommerce/public/js/jquery.validate.min.js?ver=6.2	24 kB	2023-04-18	2024-04-12
Pretty URL abies.co.za/wp-content/plugins/enquiry-quotation-for-woocommerce/public/js/jquery.validate.min.js?ver=6.2 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-18 03:05:39 Last Seen2024-04-12 07:48:24 Times Seen189 Hash c3e306808b406721cdf6d2eaac5992cb 1dad8bc59723994cb6bb1ba1b016413624b3db3a d91628dfbf17e485030bf0780da21020eac2872927023347b04255024d5f9116 Loading...

	abies.co.za/excel/excel/excel.php/	214 B	2023-03-07	2024-04-19
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:06:32 Last Seen2024-04-19 18:13:11 Times Seen989 Hash f82bb6a69a4493d7b599f566b44dab8c c0605d565ca54c714acd5917c3dbd03c13bcea7d acfb1edfb9b23791a1a109ee24592571c5009a4f341d28d96c86055752e97214 Loading...

	abies.co.za/wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js?ver=5cf11c421167aee95e6c	6.9 kB	2023-03-08	2024-03-02
Pretty URL abies.co.za/wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js?ver=5cf11c421167aee95e6c IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:51:07 Last Seen2024-03-02 14:19:23 Times Seen185 Hash 37aadaf2e517a76541bad9da566ed5be 06d94f9f615c59d85ffed50477d8a1efcf72d669 a17a84ba741867d730a41da798d9b8be81bfd545a5b22bcdf164f5c798d079c3 Loading...

	c0.wp.com/c/6.2/wp-includes/js/jquery/jquery-migrate.min.js	13 kB	2023-03-07	2024-04-19
Pretty URL c0.wp.com/c/6.2/wp-includes/js/jquery/jquery-migrate.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:52 Last Seen2024-04-19 20:32:03 Times Seen76171 Hash 5cfa2b481de6e87c2190a0e3538515d8 0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68 9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3 Loading...

	abies.co.za/excel/excel/excel.php/	141 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash 0c8524369148dfa81d08794f2b437c20 8bce881b9ee2689ad21214df5b766c426ec8bea7 0306190d90612703158ac945a50bc38add872dbbb36809be6577a3b9e9b09a76 Loading...

	abies.co.za/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4	999 B	2023-03-07	2024-04-18
Pretty URL abies.co.za/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4 IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:28 Last Seen2024-04-18 13:42:00 Times Seen11011 Hash 6a0e8318d42803736d2fafcc12238026 c955314a7e0a9a9871329b0f042c8f0b5df49a78 2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c Loading...

	stats.wp.com/s-202317.js	9.4 kB	2023-03-07	2024-03-07
Pretty URL stats.wp.com/s-202317.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-03-07 00:14:50 Times Seen3354 Hash 82d763decfeb58a330f075ecd1bfbec4 9834c21e75bcf80d52c98bf55641f2bd92e200d3 7faf2fee5a715e1668f517f67a4b21cddd539b978678ce1bfd48a597044079e1 Loading...

	a.omappapi.com/app/js/api.min.js	51 kB	2023-04-26	2023-10-24
Pretty URL a.omappapi.com/app/js/api.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-26 04:04:27 Last Seen2023-10-24 05:00:50 Times Seen339 Hash a8bb72621a98cef3cfee7f9db03ccb57 9bf1a382ba0ee755eff423fc7829fe08676812a5 b240f6825e701e2e5dd89198a9153002cb17bd3c6ca617acab792a681bb0a8f4 Loading...

	connect.facebook.net/en_US/fbevents.js	110 kB	2023-04-17	2024-04-08
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-17 18:58:22 Last Seen2024-04-08 20:17:10 Times Seen5676 Hash 015af5024271c9655f72c45f912cce5b e327dba21e229a32f15e29cd3f184089c729ed4b 091ba5711e7f397eca67fb1da60968a88be608d2f4fb80955ef74f645b6e898b Loading...

	abies.co.za/excel/excel/excel.php/	185 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash b2b9384aa0dd8ef5e557be11b01200ef 0603b93e8f8effe60efb9b5d4f2b9ffaac3c8590 16b2f92580ec551b9992a2bf12d52d62e2ce0e2f917b2f4b6b74c75d6ecc530f Loading...

	abies.co.za/excel/excel/excel.php/	483 B	2023-04-29	2023-04-29
Pretty URL abies.co.za/excel/excel/excel.php/ IP 82.180.138.238 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash cabaf5ee30502f37c6db05509931beb6 0832f9d87014409e735c0d501eba71bfba8b97e6 7f30b04d1c0d8ab95af25c019b7b2a37bdc202862ea7663e9dc36c61289a1c0c Loading...

	c0.wp.com/c/6.2/wp-includes/js/dist/vendor/wp-polyfill.min.js	18 kB	2023-04-05	2024-04-19
Pretty URL c0.wp.com/c/6.2/wp-includes/js/dist/vendor/wp-polyfill.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 02:48:12 Last Seen2024-04-19 20:39:51 Times Seen31356 Hash e495a4709e3eae31c67f8263f25d2d39 d43ba6a092e4823a71f3bff75d5ed279a481636b 1c1fef6e6b4f9832603850b9b6562e74d9a6a3700ba836efe88facc577121e8b Loading...

		Size	First Seen	Last Seen
	#1 Eval - 5980748dcfa65ba08010a400673edfc0	16 kB	2023-04-19	2023-04-30
Pretty Observations First Seen2023-04-19 13:41:14 Last Seen2023-04-30 08:56:14 Times Seen374 Hash 5980748dcfa65ba08010a400673edfc0 590d14571325a38d5130ad3cdb3a5188d13c2bad 7eb25f68235dbbae5f3835264fc9919e9fb2303689e9d7a7190112f4880c69a2 Loading...

	#2 Eval - 2b5cfc5bce5d769ae8e5bfeb9bbd2264	22 B	2023-04-19	2023-04-30
Pretty Observations First Seen2023-04-19 13:41:14 Last Seen2023-04-30 08:56:14 Times Seen374 Hash 2b5cfc5bce5d769ae8e5bfeb9bbd2264 375356947df2aa4b3fa3b28bd9f999a005101dc4 71dadbe8ed1d8b57cde79885958ad13dac1c9bc2bd5bf2f02eda55d439b7b8f3 Loading...

	#3 Eval - 03d7a0a16ef1fad90707db2fda2a4fa1	64 B	2023-04-19	2023-04-30
Pretty Observations First Seen2023-04-19 13:41:14 Last Seen2023-04-30 08:56:14 Times Seen373 Hash 03d7a0a16ef1fad90707db2fda2a4fa1 2a5fb017442d61d1531323a66a520568e6c81024 b6532ff25ee6de217c46a86fb24cd186cfc5e6c7a82a16cfbb073e521e6f99d5 Loading...

	#4 Eval - f240bf36621e344fa641a3743fc13720	17 kB	2023-04-29	2023-04-29
Pretty Observations First Seen2023-04-29 15:23:36 Last Seen2023-04-29 15:23:36 Times Seen1 Hash f240bf36621e344fa641a3743fc13720 f1bb5e286c5d96f5d870d7e43b2cf9b3dc6f1da1 e75827105d389e5ad45ee24d4ca3ddab8c9c23e11725c321b2d557e15b946c84 Loading...

	#5 Eval - d3d930befe1196584b1b3f0bfcca057d	22 B	2023-04-19	2023-04-30
Pretty Observations First Seen2023-04-19 13:41:14 Last Seen2023-04-30 08:56:14 Times Seen374 Hash d3d930befe1196584b1b3f0bfcca057d 9f7a010a0f3bc2f6fb529077b205999753be2f87 3ccede682339ab7465f72e16ef1f62c8acca15e22b5b56da18a07f6b1b934754 Loading...

		Size	First Seen	Last Seen
	#1 Write - 996bc9da85e4bfe72b59138c9d8fd906	158 B	2023-03-07	2023-05-05
Pretty Observations First Seen2023-03-07 01:10:49 Last Seen2023-05-05 18:15:45 Times Seen392 Hash 996bc9da85e4bfe72b59138c9d8fd906 b2db98e22b035fcb8fda176b2e2ef4b341e8fdbc d1167e3b70947916f421c7e95057bdf8910f7ba485e3716107c9fa1cf6403437 Loading...

HTTP Transactions (111)

URL IP Response Size

abies.co.za/excel/excel/excel.php/

82.180.138.238

301 Moved Permanently

707 B

URL User Request GET HTTP/1.1
abies.co.za/excel/excel/excel.php/
IP
82.180.138.238:80
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /excel/excel/excel.php/ HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sat, 29 Apr 2023 13:23:14 GMT
server: LiteSpeed
location: https://abies.co.za/excel/excel/excel.php/
platform: hostinger
content-security-policy: upgrade-insecure-requests

c0.wp.com/c/6.2/wp-includes/css/classic-themes.min.css

192.0.77.37

200 OK

291 B

URL GET HTTP/2
c0.wp.com/c/6.2/wp-includes/css/classic-themes.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text
Size
291 B (291 bytes)
Hash
1a0804b1a9d09705657f91fe7cad4c5a
feeece6f0b3e0bcf090547c475329a2772f6b26b
dcd9f488bd62ba0ee403b07a97e40b9ffd63a0eff61091588c913b16d5153d48

HTTP Headers

GET /c/6.2/wp-includes/css/classic-themes.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: text/css
content-length: 291
last-modified: Mon, 13 Feb 2023 20:50:19 GMT
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
349b00ea9a63ac4ed4c42c15ce317b10
6b0e8b36784144453355cae6573a91bfbc10f920
48f5a4b64cbac135a8908db6819699b554dff900208c1cd5ca5e2a181673a9ad

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Apr 2023 13:23:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

abies.co.za/wp-content/themes/storefront/assets/css/base/gutenberg-blocks.css?ver=4.2.0

82.180.138.238

200 OK

3.3 kB

URL GET HTTP/2
abies.co.za/wp-content/themes/storefront/assets/css/base/gutenberg-blocks.css?ver=4.2.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (42946)
Size
3.3 kB (3276 bytes)
Hash
a907dcb976f10c7057e190b03e44dd9a
1fcce9e8174c9d04f8c614b3c6a90f8112724fe0
790655d968942d8dd0b0f471e7421438c7a39c8e18be1615d50c85ef41f4e73a

HTTP Headers

GET /wp-content/themes/storefront/assets/css/base/gutenberg-blocks.css?ver=4.2.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 04:40:12 GMT
etag: "a7c3-6380472c-1ff63055cb77d309;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3276
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/customer-reviews-woocommerce/css/frontend.css?ver=5.9.0

82.180.138.238

200 OK

8.8 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/customer-reviews-woocommerce/css/frontend.css?ver=5.9.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
Unicode text, UTF-8 text
Size
8.8 kB (8788 bytes)
Hash
aa220e85bf789b0669928a5e7f712318
a2fcc58d587ac21f5c7b6156ff90327866f46b8b
541e7a8cb31a70844b62444191b0671c0212b7ed50d4e746d56544c15be02cfc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/customer-reviews-woocommerce/css/frontend.css?ver=5.9.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 04:41:20 GMT
etag: "10346-63804770-f1a49cfbc11c2617;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8788
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/customer-reviews-woocommerce/css/badges.css?ver=5.9.0

82.180.138.238

200 OK

2.6 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/customer-reviews-woocommerce/css/badges.css?ver=5.9.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text
Size
2.6 kB (2627 bytes)
Hash
c5e0590e9d16624b8aeec52257bb18eb
a64d27d40d054e5dc3fa348a1ada33c6eedba09b
2980142a6ba89a2e97db7ab6265406d6c33e4cbcb6e247d8a13eae431a9f12ff

HTTP Headers

GET /wp-content/plugins/customer-reviews-woocommerce/css/badges.css?ver=5.9.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 04:41:20 GMT
etag: "4426-63804770-97c88cc4de9ad12d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2627
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/excel/excel/excel.php/

82.180.138.238

301 Moved Permanently

26 kB

URL User Request GET HTTP/1.1
abies.co.za/excel/excel/excel.php/
IP
82.180.138.238:80
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9795), with CRLF, LF line terminators
Size
26 kB (26112 bytes)
Hash
7ef0b700b37004d4cd3598060f6abe34
6912d399c873696332b47bed8a3aab3094b20ff4
f34b602c567e8a9d2b5e0856be83d2bbe753bfb5ddfd58ab32cd0c5ff447e62f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /excel/excel/excel.php/ HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://abies.co.za/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/enquiry-quotation-for-woocommerce/public/css/pisol-enquiry-quotation-woocommerce-public.css?ver=2.2.0

82.180.138.238

200 OK

734 B

URL GET HTTP/2
abies.co.za/wp-content/plugins/enquiry-quotation-for-woocommerce/public/css/pisol-enquiry-quotation-woocommerce-public.css?ver=2.2.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with CRLF line terminators
Size
734 B (734 bytes)
Hash
8ea0d77ab0c36d572e77762be456c89e
b9af75aa8a16978453adb059916c4ec84659082a
0f49c1c7c574b85f5c17ec8f92ca7e892a906a5eb9792f616cd274506dd70f18

HTTP Headers

GET /wp-content/plugins/enquiry-quotation-for-woocommerce/public/css/pisol-enquiry-quotation-woocommerce-public.css?ver=2.2.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 04:41:34 GMT
etag: "c9c-6380477e-f3b25771afcf313b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 734
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/user-submitted-posts/resources/usp.css?ver=20221004

82.180.138.238

200 OK

2.6 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/user-submitted-posts/resources/usp.css?ver=20221004
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (9848)
Size
2.6 kB (2566 bytes)
Hash
0264c2b9688c0160e1ccad33f85a9a40
bb702e1e26c1eadc42269381bcce904fb3718680
9b074712be2a75847f79ae22a472497c7df28f1d477a37fac19dca3bd7f4dde4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/user-submitted-posts/resources/usp.css?ver=20221004 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Fri, 04 Nov 2022 15:02:11 GMT
etag: "345c-63652973-5fea7720623d6b74;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2566
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/woo-coupon-url/public/css/woo-coupon-url-public.css?ver=1.0.0

82.180.138.238

200 OK

98 B

URL GET HTTP/2
abies.co.za/wp-content/plugins/woo-coupon-url/public/css/woo-coupon-url-public.css?ver=1.0.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text
Size
98 B (98 bytes)
Hash
e6094661d8923e95b233019ebff7c8f0
cfd836d385d475baffee45d85cfeb9bb36e70d9e
547dda3c14b284819be511be1e410da94a5efc6ccc4a9afe1c75394f9333191a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woo-coupon-url/public/css/woo-coupon-url-public.css?ver=1.0.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Sun, 18 Aug 2019 19:57:40 GMT
etag: "62-5d59adb4-2e4267204aa37c34;;;"
accept-ranges: bytes
content-length: 98
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.21.0

82.180.138.238

200 OK

5.5 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.21.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (33185)
Size
5.5 kB (5484 bytes)
Hash
791ef806de34f11a2215fb4548bc0621
395999de1524e858097809b09a81183570167ba4
d809d52cddba03e43d8ce3b59b626c8547fab25fdd6d3ec2e61073c0aa33b4b6

HTTP Headers

GET /wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.21.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 04:40:39 GMT
etag: "81a2-63804747-23fd695589c864c1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5484
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/themes/storefront/style.css?ver=4.2.0

82.180.138.238

200 OK

8.0 kB

URL GET HTTP/2
abies.co.za/wp-content/themes/storefront/style.css?ver=4.2.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (38376)
Size
8.0 kB (8041 bytes)
Hash
e0549d07173a638f139b5cefac13c891
e7e7be6f9b864e7e061cce801518bebe3b71bdcc
985a0f48df94d1229c2905501e6a4a0ed959414452049a0727bdf1260c248a36

HTTP Headers

GET /wp-content/themes/storefront/style.css?ver=4.2.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 04:40:12 GMT
etag: "9e32-6380472c-fb86cef2362a43fc;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8041
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/themes/storefront/assets/css/base/icons.css?ver=4.2.0

82.180.138.238

200 OK

14 kB

URL GET HTTP/2
abies.co.za/wp-content/themes/storefront/assets/css/base/icons.css?ver=4.2.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (50742)
Size
14 kB (14103 bytes)
Hash
48e2a6dec662f32b16b4201ac88ed6a5
2b3f52235823601acca71fc0b788735d2835e452
1840afc64f143fefa04f8445e8f345817fdd5b08d2c068628924bf2f626c532d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/storefront/assets/css/base/icons.css?ver=4.2.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 04:40:12 GMT
etag: "1398b-6380472c-bb9524f5fb04c11e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14103
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/enquiry-quotation-for-woocommerce/public/js/jquery.validate.min.js?ver=6.2

82.180.138.238

200 OK

7.5 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/enquiry-quotation-for-woocommerce/public/js/jquery.validate.min.js?ver=6.2
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
Unicode text, UTF-8 text, with very long lines (24304), with CRLF line terminators
Size
7.5 kB (7532 bytes)
Hash
184325517c503e06f12658fa3f6b0242
3b793968a249ed39b161471b2b0609e1da07d2f7
2e9f83a81e40e03d122d7ef84a39dcbe14b1504374f1c46bf9b54bd6a6cefe7c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/enquiry-quotation-for-woocommerce/public/js/jquery.validate.min.js?ver=6.2 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 04:41:34 GMT
etag: "5f7e-6380477e-fc75895c7ace8146;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7532
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.usp.core.js?ver=20221004

82.180.138.238

200 OK

1.9 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.usp.core.js?ver=20221004
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text
Size
1.9 kB (1917 bytes)
Hash
f411bcc4c78413c557d5648a9f84b6fc
7fd08e20a4e6b6f7421548172f6ebe91790299cd
37b76ed1155e242fd57e06450e7cb30e55b94ddfe0d4caafb324c4955ada7522

HTTP Headers

GET /wp-content/plugins/user-submitted-posts/resources/jquery.usp.core.js?ver=20221004 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Nov 2022 15:02:11 GMT
etag: "1bf6-63652973-356bcb37cb7d33f8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1917
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/customer-reviews-woocommerce/js/frontend.js?ver=5.9.0

82.180.138.238

200 OK

7.8 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/customer-reviews-woocommerce/js/frontend.js?ver=5.9.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (325)
Size
7.8 kB (7809 bytes)
Hash
87312f0c4e72a8c036f5110b7afd4873
75ccdee11ee1e0edef9a202b750bdae9f531437d
b76c90905509296f4bdc1e9b97bfbfd3b5286b6cfcd140409930d2c223674986

HTTP Headers

GET /wp-content/plugins/customer-reviews-woocommerce/js/frontend.js?ver=5.9.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 04:41:20 GMT
etag: "ce3e-63804770-965efcc7b169d9c9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7809
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/customer-reviews-woocommerce/js/colcade.js?ver=5.9.0

82.180.138.238

200 OK

2.9 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/customer-reviews-woocommerce/js/colcade.js?ver=5.9.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text
Size
2.9 kB (2945 bytes)
Hash
702d36a13e34d2472526e901f4839b5d
392bf713b8c0ecc6da6baeae67112524acae3f17
ae760a8ca0d01fff3fce534d356b5df4df7b7ca88c7ada0e3d543fd86a238b21

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/customer-reviews-woocommerce/js/colcade.js?ver=5.9.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 04:41:20 GMT
etag: "2886-63804770-14748d87c4b6c904;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2945
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

82.180.138.238

200 OK

2.8 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (9937), with no line terminators
Size
2.8 kB (2804 bytes)
Hash
ec7238c60c24c09734a4887b3cb06f5e
55bb11e5fb3c05334109fe40c8e38ed179c878ed
9a5c575c76b9fe64756ac253a87e3af029278e95da9b41de2f3ec561bdc6dd1a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Nov 2022 14:57:02 GMT
etag: "26d1-6365283e-ebe070e0507b0c6a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2804
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

82.180.138.238

200 OK

3.7 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
HTML document, ASCII text, with very long lines (12310), with no line terminators
Size
3.7 kB (3697 bytes)
Hash
673c595d373033b610ed9008ea0916b0
0afe5abe4d3e7cc10ab9a03f6ad0679adeb8e507
8126bf2da42d137568c63f2c4c88194ef71ebc0cb9e3de2c132138c8a5ec452a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Nov 2022 14:57:02 GMT
etag: "3016-6365283e-ada1f6189d0e3320;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3697
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/omnisend-connect/assets/js/omnisend-front-script.js?1682774562&ver=1.0.0

82.180.138.238

200 OK

1.0 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/omnisend-connect/assets/js/omnisend-front-script.js?1682774562&ver=1.0.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
Unicode text, UTF-8 text
Size
1.0 kB (1047 bytes)
Hash
699049815cb2ec95f949b1778ffb995e
5898cacdb4705913a06e0d94fb82bb1a3c40d4f8
0d943d19a902bd6c1a096a4056352e5c9e75a3dc4caa56eb42b7a169a11eff0d

HTTP Headers

GET /wp-content/plugins/omnisend-connect/assets/js/omnisend-front-script.js?1682774562&ver=1.0.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 04:43:14 GMT
etag: "101d-638047e2-378c240a7160c202;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1047
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.7.6.01

82.180.138.238

200 OK

2.0 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.7.6.01
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (6854), with no line terminators
Size
2.0 kB (1990 bytes)
Hash
af32dafff91299144edb3b57de97268d
f08a457fbdbc2034c44a88ce57d3f9a98a000aab
6cffd92668542839e403ba49e414545ca92a4997001ea01b0ec6b7c5f65cf27d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.7.6.01 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Nov 2022 14:59:38 GMT
etag: "1ac6-636528da-1a7283b9115229a0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1990
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/themes/storefront/assets/js/navigation.min.js?ver=4.2.0

82.180.138.238

200 OK

846 B

URL GET HTTP/2
abies.co.za/wp-content/themes/storefront/assets/js/navigation.min.js?ver=4.2.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (3025)
Size
846 B (846 bytes)
Hash
4eecde4ba51023d62b16575ed9b142b4
9c1c35822d2f538c554a727ae10cc5e4ef933c79
654298230fa2d01ea45a3f44f72e7a6bd852d553af3f634e5cf5b726f9c18c8f

HTTP Headers

GET /wp-content/themes/storefront/assets/js/navigation.min.js?ver=4.2.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 04:40:12 GMT
etag: "bd2-6380472c-d198d00879ac0bec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 846
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/7.1.0/packages/woocommerce-blocks/build/wc-blocks-style.css

192.0.77.37

200 OK

23 kB

URL GET HTTP/2
c0.wp.com/p/woocommerce/7.1.0/packages/woocommerce-blocks/build/wc-blocks-style.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size
23 kB (22594 bytes)
Hash
8b2a73eef147c5f5695998b92565bff6
43dae4006ce2b549c6558249993369ba6b99ba62
8d0266bf85451d75add60cebce8b1a095c4c1cc9289a24081a419fcc6c70bd0a

HTTP Headers

GET /p/woocommerce/7.1.0/packages/woocommerce-blocks/build/wc-blocks-style.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 03 Nov 2022 16:38:34 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/7.1.0/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css

192.0.77.37

200 OK

2.2 kB

URL GET HTTP/2
c0.wp.com/p/woocommerce/7.1.0/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (10435), with no line terminators
Size
2.2 kB (2227 bytes)
Hash
358b6af095a217ab3a81be0ee261babd
a08ec17b9cf6c99af162d3a0c95f6912bc51d214
64008f1c9a2e3a64b6b465459cf24bd253158f6e9221883c24253ba8a1117c1f

HTTP Headers

GET /p/woocommerce/7.1.0/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 24 Aug 2022 20:12:33 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
349b00ea9a63ac4ed4c42c15ce317b10
6b0e8b36784144453355cae6573a91bfbc10f920
48f5a4b64cbac135a8908db6819699b554dff900208c1cd5ca5e2a181673a9ad

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Apr 2023 13:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

c0.wp.com/p/woocommerce/7.1.0/assets/js/frontend/cart-fragments.min.js

192.0.77.37

200 OK

1.4 kB

URL GET HTTP/2
c0.wp.com/p/woocommerce/7.1.0/assets/js/frontend/cart-fragments.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (2938), with no line terminators
Size
1.4 kB (1406 bytes)
Hash
3a67dd73de87ae1495d651b99b2edf75
973440cb1c5d81c704c5c9c28931051165456adb
6a1f470c1bbaa6272389482a50ec18808a6ad2e3fde0f5355c48abfc192e6ee7

HTTP Headers

GET /p/woocommerce/7.1.0/assets/js/frontend/cart-fragments.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 23 Nov 2021 22:30:13 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js?ver=5cf11c421167aee95e6c

82.180.138.238

200 OK

2.2 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js?ver=5cf11c421167aee95e6c
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (6875), with no line terminators
Size
2.2 kB (2212 bytes)
Hash
2b61294c00a7ffd5c23bdcdd52d414ea
3a7bd9d2d19c240d78dcc3214e980e19358df9de
a46dfccc2a37947096d9c09bc759f444b13dbb299cfb23e76223dbdb3117f498

HTTP Headers

GET /wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js?ver=5cf11c421167aee95e6c HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Mon, 23 Jan 2023 04:45:15 GMT
etag: "1adb-63ce10db-6fc5d9d26231e1e2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2212
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4

82.180.138.238

200 OK

439 B

URL GET HTTP/2
abies.co.za/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (999), with no line terminators
Size
439 B (439 bytes)
Hash
48557ae2759e292179c3f387b0ae4030
35fbacc402929aaa2ac835f268275fc01848e463
b2d66eafabc104a1b628f391e4f0b17804ce7e2bf1c96d732c6bfce50a6170f5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Nov 2022 14:57:02 GMT
etag: "3e7-6365283e-3c9cc3f322750ebf;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 439
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/themes/storefront/assets/js/woocommerce/header-cart.min.js?ver=4.2.0

82.180.138.238

200 OK

256 B

URL GET HTTP/2
abies.co.za/wp-content/themes/storefront/assets/js/woocommerce/header-cart.min.js?ver=4.2.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (531)
Size
256 B (256 bytes)
Hash
7378611850d2f39a4d3c7503994615b5
bbb766f88a9984560455151897864d51ed9dba41
9019874d2530985b637aa360c4e488881f23e5048f1d414a399bbc8f722ad844

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/storefront/assets/js/woocommerce/header-cart.min.js?ver=4.2.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 04:40:12 GMT
etag: "214-6380472c-28e757159368efa9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 256
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/themes/storefront/assets/js/footer.min.js?ver=4.2.0

82.180.138.238

200 OK

328 B

URL GET HTTP/2
abies.co.za/wp-content/themes/storefront/assets/js/footer.min.js?ver=4.2.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (745)
Size
328 B (328 bytes)
Hash
8c810699d0d272942d74c8cf747876b2
ceceb11008672e8fd973d7b45dbed7f2d2fe4c51
1b54c9b0ebf7e1b7256245b448531ecbd07531daef17cb0a18b487163060aed3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/storefront/assets/js/footer.min.js?ver=4.2.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 04:40:12 GMT
etag: "2ea-6380472c-1a033f7d9974bfb6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 328
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/uploads/2019/06/cropped-Logo-1.jpg

82.180.138.238

200 OK

22 kB

URL GET HTTP/2
abies.co.za/wp-content/uploads/2019/06/cropped-Logo-1.jpg
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 576x250, components 3\012- data
Size
22 kB (21713 bytes)
Hash
e57a4585793f4db54c43c7f2b970f1b1
8cfd2ef02f1ca4f5890e94cbd50f3e9e737693d5
0c2c9e0fa056b427eda8838efe7e367d4b021cd44c9ced083c55b4a26ba3fec3

HTTP Headers

GET /wp-content/uploads/2019/06/cropped-Logo-1.jpg HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: image/jpeg
last-modified: Sun, 18 Aug 2019 20:26:43 GMT
etag: "54d1-5d59b483-a1245d660428b397;;;"
accept-ranges: bytes
content-length: 21713
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/themes/storefront/assets/css/jetpack/widgets.css?ver=4.2.0

82.180.138.238

200 OK

225 B

URL GET HTTP/2
abies.co.za/wp-content/themes/storefront/assets/css/jetpack/widgets.css?ver=4.2.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text
Size
225 B (225 bytes)
Hash
4d06a0feec07dd75e1020e3436656f86
764f79c346dc904580e3e0a6736741d295f6ecc1
740d7969a944fb665035e6a8b8416cd4f119a8a98eda6fa2114003ccabd63823

HTTP Headers

GET /wp-content/themes/storefront/assets/css/jetpack/widgets.css?ver=4.2.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 04:40:12 GMT
etag: "e1-6380472c-44bc12561ccd17a6;;;"
accept-ranges: bytes
content-length: 225
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-23509768-1

142.250.74.168

200 OK

46 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-23509768-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT

File type
ASCII text, with very long lines (2295)
Size
46 kB (46406 bytes)
Hash
eb5e11bf3bb65bbcdf292d7ebe2637a7
7471dbeefd30c721b60c5cf1af9b56b3c8e0d464
67ce10754b218d7f2c904c5032f32a64bc9fe6d8e269b569126d3692a51d6a2f

HTTP Headers

GET /gtag/js?id=UA-23509768-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Apr 2023 13:23:16 GMT
expires: Sat, 29 Apr 2023 13:23:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46406
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css?ver=6.2.8

82.180.138.238

200 OK

11 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css?ver=6.2.8
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
Unicode text, UTF-8 text, with very long lines (32561)
Size
11 kB (11280 bytes)
Hash
cbd4d9834bc820476f45b68e2a410f9f
71d437f1450328e48af3cd6bc684c99744ddb01a
ab612eb2927871a0c4ce7b830893df4d657e828ae5875d2d89dd331b1866b711

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css?ver=6.2.8 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Mon, 23 Jan 2023 04:45:15 GMT
etag: "7f34-63ce10db-494fb28b68726dab;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11280
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/themes/storefront/assets/css/woocommerce/woocommerce.css?ver=4.2.0

82.180.138.238

200 OK

8.4 kB

URL GET HTTP/2
abies.co.za/wp-content/themes/storefront/assets/css/woocommerce/woocommerce.css?ver=4.2.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (58499)
Size
8.4 kB (8379 bytes)
Hash
541817f6a7867dc3b304a9b45f5fca52
bb9297765e1085e1c4cbcc8cb7beeaebe75673fb
199f1b0b23256d4678432f6096d64218c0b177431e2896c7c086f77cfaed0aeb

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/storefront/assets/css/woocommerce/woocommerce.css?ver=4.2.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 04:40:12 GMT
etag: "e499-6380472c-3c6647f570506b0e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8379
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.12.1

82.180.138.238

200 OK

3.0 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.12.1
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (1577)
Size
3.0 kB (3019 bytes)
Hash
0d41b562fe01cd514551650f82a9a7c7
09ba820fe6effbab1e52825d9416e35961505e17
c47da64db995614d56f30813af15d996671e992d0663860b4e8c866c5fc069ed

HTTP Headers

GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.12.1 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Mon, 23 Jan 2023 04:38:19 GMT
etag: "2e7a-63ce0f3b-e97ad75465fd5d0c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3019
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/enquiry-quotation-for-woocommerce/public/js/pisol-enquiry-quotation-woocommerce-public.js?ver=2.2.0

82.180.138.238

200 OK

1.9 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/enquiry-quotation-for-woocommerce/public/js/pisol-enquiry-quotation-woocommerce-public.js?ver=2.2.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text
Size
1.9 kB (1905 bytes)
Hash
a74ed0c17dd116d615ec938dcee2b6a6
48cb257ff346124e2d3d873849f4600c0c4b828b
3a8e626e036799d308fd4dded833d76a7dbe2cf39cdb1ce9f9c8afeeadccd012

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/enquiry-quotation-for-woocommerce/public/js/pisol-enquiry-quotation-woocommerce-public.js?ver=2.2.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 04:41:34 GMT
etag: "1bda-6380477e-4e2676cc4cb10341;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1905
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.cookie.js?ver=20221004

82.180.138.238

200 OK

662 B

URL GET HTTP/2
abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.cookie.js?ver=20221004
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (1464)
Size
662 B (662 bytes)
Hash
88db04ac5f4ed4965803f207913ce719
6684e40b6444bd5ab3b26c01ea4b2bd025e96c90
d0fc5e54f13ba900a37e0b5249df4233fcbf31417dbc34e986da32eef5add40b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/user-submitted-posts/resources/jquery.cookie.js?ver=20221004 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Nov 2022 15:02:11 GMT
etag: "5db-63652973-712badb5bd956f4f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 662
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.parsley.min.js?ver=20221004

82.180.138.238

200 OK

12 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/user-submitted-posts/resources/jquery.parsley.min.js?ver=20221004
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (32016)
Size
12 kB (11862 bytes)
Hash
a523294a0bcc774e0155469314616cba
451cc6badf25e468d44eea76ff8b7555af1012b0
f2294d573be192dba967d4f6414331a8b8303ad7c932df095dabe7e5254050b3

HTTP Headers

GET /wp-content/plugins/user-submitted-posts/resources/jquery.parsley.min.js?ver=20221004 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Nov 2022 15:02:11 GMT
etag: "a7a2-63652973-d97bb8b3ac8deb92;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11862
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/woo-coupon-url/public/js/woo-coupon-url-public.js?ver=1.0.0

82.180.138.238

200 OK

412 B

URL GET HTTP/2
abies.co.za/wp-content/plugins/woo-coupon-url/public/js/woo-coupon-url-public.js?ver=1.0.0
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text
Size
412 B (412 bytes)
Hash
cfea02226eb845d2ec88b1f257748212
94e1b9269866b244b792271f3f63f8aaa1231827
1902a64e5f6578e5cb4ccf03e9659882da3a0ab9215b8a3877937491d5fd6067

HTTP Headers

GET /wp-content/plugins/woo-coupon-url/public/js/woo-coupon-url-public.js?ver=1.0.0 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: application/x-javascript
last-modified: Sun, 18 Aug 2019 19:57:40 GMT
etag: "346-5d59adb4-28f6389bc47b45bf;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 412
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js?render=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&ver=3.0

216.58.211.4

200 OK

585 B

URL GET HTTP/2
www.google.com/recaptcha/api.js?render=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&ver=3.0
IP
216.58.211.4:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC3:7C:54:CD:86:09:A4:3E:2C:6D:EC:7C:FA:65:7B:3E:64:CB:10:E0
ValidityMon, 03 Apr 2023 08:25:07 GMT - Mon, 26 Jun 2023 08:25:06 GMT

File type
ASCII text, with very long lines (884), with no line terminators
Size
585 B (585 bytes)
Hash
12d4c100183dbc710341c7618d195138
753e99a50affe3ff9040ba427f1dd5ded3cd13a8
3f530d02510bd442288142ecd412b00e4af0771434e30aea07e8fe387f942dcb

HTTP Headers

GET /recaptcha/api.js?render=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
expires: Sat, 29 Apr 2023 13:23:16 GMT
date: Sat, 29 Apr 2023 13:23:16 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-V04TR0106N

142.250.74.168

200 OK

73 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-V04TR0106N
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT

File type
ASCII text, with very long lines (6408)
Size
73 kB (72651 bytes)
Hash
82fb6d708ee8e4c41a1504553be37b10
1f2bb069f59cfe0bfa45a36d4b3c2fd05ae49ad3
f0aa391b5d46dddecb4ff706ff0d0afffaa57c4f9bdbcd1edea2ff34d3ccf3c5

HTTP Headers

GET /gtag/js?id=G-V04TR0106N HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Apr 2023 13:23:16 GMT
expires: Sat, 29 Apr 2023 13:23:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72651
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-1020136149

142.250.74.168

200 OK

96 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=AW-1020136149
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT

File type
ASCII text, with very long lines (4509)
Size
96 kB (95652 bytes)
Hash
99c68ffc198678afdf4a48f55d8c5b3e
731ef5992f54cdcd119b1a46b450546549b680a2
cff27bef92607e196044e9720e6948394eb21f406e9ae0c0d7c7a44b33596dfa

HTTP Headers

GET /gtag/js?id=AW-1020136149 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Apr 2023 13:23:16 GMT
expires: Sat, 29 Apr 2023 13:23:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95652
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

c0.wp.com/c/6.2/wp-includes/css/dist/block-library/style.min.css

192.0.77.37

200 OK

12 kB

URL GET HTTP/2
c0.wp.com/c/6.2/wp-includes/css/dist/block-library/style.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (48325)
Size
12 kB (12199 bytes)
Hash
710f3fddf31c1709f28f93631f942289
e8fb43cc48a56026f2aefb14e7814c2831ab35bb
5f1cfd2e093ab36452829e6b7ea4fad8d5caa3fd187950816e6eae99790d1fb7

HTTP Headers

GET /c/6.2/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 10 Mar 2023 00:22:37 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9b761c5e7e0b046b93f3ccd34531738
50928fe5d0503626a39e4ffa84e2510a8f0cd6c6
202d386f6a398911ece7f60e6d837058a5e4ff826d44c5284bfad88a670943db

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Apr 2023 13:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0e2edc7318815f12177dfd79065c6299
484f56d61668515322998f99be4f48080aa1a649
f082168ddb5681eaf256e5fab5f62a74c49f7054efc0de90054f262834a54f2f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Apr 2023 13:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-V04TR0106N&l=dataLayer&cx=c

142.250.74.168

200 OK

73 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-V04TR0106N&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT

File type
ASCII text, with very long lines (6408)
Size
73 kB (72722 bytes)
Hash
dd2aacc2b24f0a1768ab1e341ec2b180
9c1a0caaf060116d3af69c80dd1ca9e7d0887244
b784538df060bcea9f7e1fb841aabe5df384b531ddd5bcb30c6550b5eff7abb3

HTTP Headers

GET /gtag/js?id=G-V04TR0106N&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Apr 2023 13:23:16 GMT
expires: Sat, 29 Apr 2023 13:23:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72722
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-PW9EJ25SPP&l=dataLayer&cx=c

142.250.74.168

200 OK

96 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-PW9EJ25SPP&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT

File type
ASCII text, with very long lines (4509)
Size
96 kB (95643 bytes)
Hash
3b6fcb7047325c566637a452aa677e48
c954dada9a93fa8f233cec0745adb56232c27351
5071ab878300c8abf3887a47287971a00bcd9f153b4380cfde8d45a4a8dace9f

HTTP Headers

GET /gtag/js?id=G-PW9EJ25SPP&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Apr 2023 13:23:16 GMT
expires: Sat, 29 Apr 2023 13:23:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95643
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=AW-1020136149&l=dataLayer&cx=c

142.250.74.168

200 OK

96 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=AW-1020136149&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT

File type
ASCII text, with very long lines (4509)
Size
96 kB (95634 bytes)
Hash
d38d50c77ec23ce2cf09060ea944f1de
3174dfc3c81ee74a32b66d8908fa7e88723cde1a
5148c1a35402ae6631b27b48b2311fbfb714033cd83c088bb435d3a2fcd78a94

HTTP Headers

GET /gtag/js?id=AW-1020136149&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Apr 2023 13:23:16 GMT
expires: Sat, 29 Apr 2023 13:23:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95634
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

pixel.wp.com/g.gif?v=ext&blog=164261667&post=0&tz=2&srv=abies.co.za&j=1%3A11.5.1&host=abies.co.za&ref=&fcp=0&rand=0.1785484592781541

192.0.76.3

200 OK

50 B

URL GET HTTP/2
pixel.wp.com/g.gif?v=ext&blog=164261667&post=0&tz=2&srv=abies.co.za&j=1%3A11.5.1&host=abies.co.za&ref=&fcp=0&rand=0.1785484592781541
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
GIF image data, version 89a, 6 x 5\012- data
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&blog=164261667&post=0&tz=2&srv=abies.co.za&j=1%3A11.5.1&host=abies.co.za&ref=&fcp=0&rand=0.1785484592781541 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:16 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78277714787f60c98d14ca184d909256
8ec0ff400ed5a9a8a3466ecbf5d0a5a8cec425ff
90b0bd639c7fc628261850166b7c7a0a10fd87be7d17a23d6a49a5bcea4cf881

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Apr 2023 13:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-M9PGGHZ

142.250.74.168

200 OK

39 kB

URL GET HTTP/3
www.googletagmanager.com/gtm.js?id=GTM-M9PGGHZ
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT

File type
ASCII text, with very long lines (2295)
Size
39 kB (39425 bytes)
Hash
de7e607f40204f93c88955df05b7630d
39caac48e24b9e24c1b7716d259166972cdad060
b27564e7971af5d6b05cc819d2d38499ccffc78894c4465d7c88b08d14f26107

HTTP Headers

GET /gtm.js?id=GTM-M9PGGHZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Apr 2023 13:23:16 GMT
expires: Sat, 29 Apr 2023 13:23:16 GMT
cache-control: private, max-age=900
last-modified: Sat, 29 Apr 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 39425
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78277714787f60c98d14ca184d909256
8ec0ff400ed5a9a8a3466ecbf5d0a5a8cec425ff
90b0bd639c7fc628261850166b7c7a0a10fd87be7d17a23d6a49a5bcea4cf881

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Apr 2023 13:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78277714787f60c98d14ca184d909256
8ec0ff400ed5a9a8a3466ecbf5d0a5a8cec425ff
90b0bd639c7fc628261850166b7c7a0a10fd87be7d17a23d6a49a5bcea4cf881

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Apr 2023 13:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2

216.58.207.227

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Size
13 kB (13036 bytes)
Hash
0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0

HTTP Headers

GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://abies.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Apr 2023 17:39:39 GMT
expires: Sun, 21 Apr 2024 17:39:39 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
age: 589417
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2

216.58.207.227

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12956, version 1.0\012- data
Size
13 kB (12956 bytes)
Hash
1c772d9d0531b187db80bcfc199c1786
c0c04fb334190e10dffed0dcc5c817c2a6041a15
122854df4f39cf922db317714c2ff0eccab27a1028c14a5aa2211f48b7e0eade

HTTP Headers

GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://abies.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12956
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Apr 2023 07:50:07 GMT
expires: Sun, 28 Apr 2024 07:50:07 GMT
cache-control: public, max-age=31536000
age: 19989
last-modified: Wed, 27 Apr 2022 16:54:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2

216.58.207.227

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Size
13 kB (13052 bytes)
Hash
7cf79fbd1df848510d7352274efc2401
5540b5a26cc7dfe25294c4eabe011e2c6cd60143
bc9a16cd945457ad9463cdaed95129b01c589466978dfee3d019d9c604b2171a

HTTP Headers

GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://abies.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Apr 2023 16:07:49 GMT
expires: Sun, 21 Apr 2024 16:07:49 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:09:03 GMT
content-type: font/woff2
age: 594927
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78277714787f60c98d14ca184d909256
8ec0ff400ed5a9a8a3466ecbf5d0a5a8cec425ff
90b0bd639c7fc628261850166b7c7a0a10fd87be7d17a23d6a49a5bcea4cf881

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Apr 2023 13:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

chimpstatic.com/mcjs-connected/js/users/50cf6e31c85ccef801a1080b1/96f9c9bbd47b2e4b1d06262c5.js

96.6.17.210

200 OK

1.2 kB

URL GET HTTP/1.1
chimpstatic.com/mcjs-connected/js/users/50cf6e31c85ccef801a1080b1/96f9c9bbd47b2e4b1d06262c5.js
IP
96.6.17.210:443
ASN
#16625 AKAMAI-AS

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerDigiCert Inc
Subjectwildcardsan.us15.list-manage.com
FingerprintBC:30:B2:9F:2F:A4:DF:B4:9F:C1:CC:A8:FD:DB:40:44:24:C3:79:6E
ValidityTue, 15 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type
ASCII text
Size
1.2 kB (1221 bytes)
Hash
b9d1138ee48605f38e15449c2d7ef5c5
e7980192f47766970aedbdc96459a1da395c9319
ea10901f3c40698e519ae66b56068f4e816f714230454e1f572508705387988a

HTTP Headers

GET /mcjs-connected/js/users/50cf6e31c85ccef801a1080b1/96f9c9bbd47b2e4b1d06262c5.js HTTP/1.1
Host: chimpstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: XAucQi4s3OYDz/H0vVu6PxHl103NyZ7HrwYgagK8OnzzEATGXelgnBFHzuKsFPbguFSjHbLlBg0=
x-amz-request-id: 1TR56Q5CMK97QCY3
Last-Modified: Wed, 25 May 2022 07:26:32 GMT
ETag: "1c4a8adbaf6da6dff57735208e3f5e61"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
X-EdgeConnect-MidMile-RTT: 0, 0, 6
X-EdgeConnect-Origin-MEX-Latency: 107, 396, 107
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1771
Expires: Sat, 29 Apr 2023 13:52:47 GMT
Date: Sat, 29 Apr 2023 13:23:16 GMT
Content-Length: 1221
Connection: keep-alive

abies.co.za/wp-content/themes/storefront/assets/fonts/fa-solid-900.woff2

82.180.138.238

200 OK

79 kB

URL GET HTTP/3
abies.co.za/wp-content/themes/storefront/assets/fonts/fa-solid-900.woff2
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
Web Open Font Format (Version 2), TrueType, length 79444, version 331.524\012- data
Size
79 kB (79444 bytes)
Hash
b15db15f746f29ffa02638cb455b8ec0
75a88815c47a249eadb5f0edc1675957f860cca7
7f4d3fd0a705dbf8403298aad91d5de6972e6b5d536068eba8b24954a5a0a8c7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/storefront/assets/fonts/fa-solid-900.woff2 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Alt-Used: abies.co.za
Connection: keep-alive
Referer: https://abies.co.za/wp-content/themes/storefront/assets/css/base/icons.css?ver=4.2.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:16 GMT
content-type: font/woff2
last-modified: Fri, 25 Nov 2022 04:40:12 GMT
etag: "13654-6380472c-eac8597a71d6c742;;;"
accept-ranges: bytes
content-length: 79444
date: Sat, 29 Apr 2023 13:23:16 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

abies.co.za/wp-content/uploads/2023/03/EMG134-137-1-324x324.jpeg

82.180.138.238

200 OK

15 kB

URL GET HTTP/3
abies.co.za/wp-content/uploads/2023/03/EMG134-137-1-324x324.jpeg
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 324x324, components 3\012- data
Size
15 kB (14590 bytes)
Hash
26bd9158c4ccc44861bc131f8d17aaba
8911ec23458e2cfb118419a8e02e25147a7f3d80
ed4bef4a077e74d44993a099d58038006d9cfe2f49383d5e8f0ec90645ab7422

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2023/03/EMG134-137-1-324x324.jpeg HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: abies.co.za
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:16 GMT
content-type: image/jpeg
last-modified: Thu, 02 Mar 2023 05:14:59 GMT
etag: "38fe-640030d3-4a16a1ce3dcb1a0;;;"
accept-ranges: bytes
content-length: 14590
date: Sat, 29 Apr 2023 13:23:16 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

c0.wp.com/c/6.2/wp-includes/js/mediaelement/wp-mediaelement.min.css

192.0.77.37

200 OK

3.5 kB

URL GET HTTP/2
c0.wp.com/c/6.2/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (4186), with no line terminators
Size
3.5 kB (3502 bytes)
Hash
3e8d977f7599fa786ac9290bd26bbaba
032c0e743c79144cccb49559460d94d49bee0a2e
69d877c39b92b40381552990335d4d51ca576789e7f2955ce47f192fdc1ce486

HTTP Headers

GET /c/6.2/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

downloads.mailchimp.com/js/signup-forms/popup/unique-methods/embed.js

54.230.111.124

200 OK

72 kB

URL GET HTTP/1.1
downloads.mailchimp.com/js/signup-forms/popup/unique-methods/embed.js
IP
54.230.111.124:443
ASN
#16509 AMAZON-02

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerAmazon
Subjectdownloads.mailchimp.com
Fingerprint71:CA:F4:D1:5C:6A:B9:FA:41:B9:63:28:DB:BB:2F:BE:05:00:31:46
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 03 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65526)
Size
72 kB (71592 bytes)
Hash
4d48139575116f9d33db566759116fcf
a2edd062d616a926e8c8d407791385d6eead860e
91cfdd7c2f5f844a58b90f249a5f2a584a3fef0f2ae1359f5b69898b833e0aa3

HTTP Headers

GET /js/signup-forms/popup/unique-methods/embed.js HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 18:27:57 GMT
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 29 Apr 2023 04:50:18 GMT
ETag: W/"3281ba63652083b7a938a78b62fe19d4"
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NON3b9YVo3TYHEnsWtu_8XjlBtcHjmNpDXDQuCQwWiCSPNzu3wMieQ==
Age: 34427
Vary: Accept-Encoding, Origin

region1.analytics.google.com/g/collect?v=2&tid=G-PW9EJ25SPP&gtm=45be34q0&_p=1467274424&_gaz=1&cid=644208025.1682774596&ul=en-us&sr=1280x1024&_s=1&sid=1682774596&sct=1&seg=0&dl=https%3A%2F%2Fabies.co.za%2Fexcel%2Fexcel%2Fexcel.php%2F&dt=Page%20not%20found%20-%20Abies%20Dress%20Fabric&en=page_view&_fv=1&_ss=1

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-PW9EJ25SPP&gtm=45be34q0&_p=1467274424&_gaz=1&cid=644208025.1682774596&ul=en-us&sr=1280x1024&_s=1&sid=1682774596&sct=1&seg=0&dl=https%3A%2F%2Fabies.co.za%2Fexcel%2Fexcel%2Fexcel.php%2F&dt=Page%20not%20found%20-%20Abies%20Dress%20Fabric&en=page_view&_fv=1&_ss=1
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-PW9EJ25SPP&gtm=45be34q0&_p=1467274424&_gaz=1&cid=644208025.1682774596&ul=en-us&sr=1280x1024&_s=1&sid=1682774596&sct=1&seg=0&dl=https%3A%2F%2Fabies.co.za%2Fexcel%2Fexcel%2Fexcel.php%2F&dt=Page%20not%20found%20-%20Abies%20Dress%20Fabric&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://abies.co.za
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://abies.co.za
date: Sat, 29 Apr 2023 13:23:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/7.1.0/assets/js/js-cookie/js.cookie.min.js

192.0.77.37

200 OK

1.4 kB

URL GET HTTP/2
c0.wp.com/p/woocommerce/7.1.0/assets/js/js-cookie/js.cookie.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (1668)
Size
1.4 kB (1371 bytes)
Hash
a8ce72009bac7581ee985186e72330fa
f5dc87aaf37498866835eee2a4954c8c4e87490d
f0411f0465024066193d9da83f558e64b90f00022a728f5368a0193fb9b2c2b5

HTTP Headers

GET /p/woocommerce/7.1.0/assets/js/js-cookie/js.cookie.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 19 Jan 2021 23:55:30 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/recaptcha__en.js

142.250.74.35

200 OK

165 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
ASCII text, with very long lines (769)
Size
165 kB (165374 bytes)
Hash
4f020318bb92055ba415ec245a4c869c
0bb97d09e3fd758853e68398af9e12177c4cac21
41f3c9603c902be24cc4ae971fee6dd64deeb52f24e511241941ce209129b313

HTTP Headers

GET /recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://abies.co.za
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 165374
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Apr 2023 20:51:49 GMT
expires: Sat, 27 Apr 2024 20:51:49 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 24 Apr 2023 20:17:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 59488
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

28 kB

URL GET HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint7C:DF:6E:28:E3:74:69:9C:05:F7:76:06:46:71:31:83:84:2F:4B:1F
ValiditySun, 05 Feb 2023 00:00:00 GMT - Sat, 06 May 2023 23:59:59 GMT

File type
ASCII text, with very long lines (64347)
Size
28 kB (27967 bytes)
Hash
a87c36d1a3dddc5a08c471677af0fbc8
323ef631fc1311fe867817b43aafd14d738db4d4
7ec3e0e66c4aa93ece2d74df9cdf419f2d1f1b38eb38a393f29b4537ad48ad02

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: uXrnSKxeZOZF13ugMJvGKretnrKLrqu9+1Hv6985QMKdjBGR5Y8ZeLNkvO1rTDpRy9MXmmbjypgnf1eMW/1rMA==
content-length: 27967
x-fb-trip-id: 1904183273
date: Sat, 29 Apr 2023 13:23:17 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-PW9EJ25SPP&cid=644208025.1682774596&gtm=45be34q0&aip=1&z=1590071491

216.58.211.3

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-PW9EJ25SPP&cid=644208025.1682774596&gtm=45be34q0&aip=1&z=1590071491
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
FingerprintA5:D0:38:67:8E:62:86:24:29:BC:82:07:2E:29:1E:0B:C8:29:09:29
ValidityMon, 03 Apr 2023 08:27:03 GMT - Mon, 26 Jun 2023 08:27:02 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-PW9EJ25SPP&cid=644208025.1682774596&gtm=45be34q0&aip=1&z=1590071491 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 29 Apr 2023 13:23:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/7.1.0/assets/js/jquery-blockui/jquery.blockUI.min.js

192.0.77.37

200 OK

3.7 kB

URL GET HTTP/2
c0.wp.com/p/woocommerce/7.1.0/assets/js/jquery-blockui/jquery.blockUI.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (9111)
Size
3.7 kB (3719 bytes)
Hash
cc2a60baaa1e28d5a2332b6f263386bf
af55e979276eb17997e4475fb8f7a27e22d70d5e
04e4efba6c0a012cc78487f2759528c9bdbeb139699827bb5cd3df68ff171fae

HTTP Headers

GET /p/woocommerce/7.1.0/assets/js/jquery-blockui/jquery.blockUI.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 18 Oct 2022 20:34:37 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

abies.co.za/wp-content/uploads/2019/06/cropped-LogoSquare2-192x192.png

82.180.138.238

200 OK

23 kB

URL GET HTTP/3
abies.co.za/wp-content/uploads/2019/06/cropped-LogoSquare2-192x192.png
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
23 kB (23248 bytes)
Hash
354a1ec05bed3a462a67c7e44aea885f
1eb1d0f7f600372831ef8dc43804164544f9d9b9
c6f0cf4aabd95358d5ec1562300964b1bdb64ca9221fe6cf56c8510265c59281

HTTP Headers

GET /wp-content/uploads/2019/06/cropped-LogoSquare2-192x192.png HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: abies.co.za
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; soundestID=20230429132316-o6TDieTluoXJn3E2DdNChQhOxusZOKmtqgfrS6Kv42HILINec; omnisendSessionID=ZFMzCA7WkwWTbv-20230429132316; _ga_V04TR0106N=GS1.1.1682774596.1.0.1682774596.0.0.0; _ga=GA1.1.644208025.1682774596; _ga_PW9EJ25SPP=GS1.1.1682774596.1.0.1682774596.60.0.0; _gcl_au=1.1.1669256620.1682774596
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:17 GMT
content-type: image/png
last-modified: Sun, 18 Aug 2019 20:09:28 GMT
etag: "5ad0-5d59b078-5ab0af435dcda26d;;;"
accept-ranges: bytes
content-length: 23248
date: Sat, 29 Apr 2023 13:23:17 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

abies.co.za/wp-content/uploads/2019/06/cropped-LogoSquare2-32x32.png

82.180.138.238

200 OK

1.2 kB

URL GET HTTP/3
abies.co.za/wp-content/uploads/2019/06/cropped-LogoSquare2-32x32.png
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1176 bytes)
Hash
fc3b8b5ce7140988cbc4adc309b6c39d
eac1a03f277c06c26a864bbdcccdba15024623d2
8df6ec69d33bd766263816c70369901ebe4b2120354b01eb413fd269b728e7fd

HTTP Headers

GET /wp-content/uploads/2019/06/cropped-LogoSquare2-32x32.png HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: abies.co.za
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; soundestID=20230429132316-o6TDieTluoXJn3E2DdNChQhOxusZOKmtqgfrS6Kv42HILINec; omnisendSessionID=ZFMzCA7WkwWTbv-20230429132316; _ga_V04TR0106N=GS1.1.1682774596.1.0.1682774596.0.0.0; _ga=GA1.1.644208025.1682774596; _ga_PW9EJ25SPP=GS1.1.1682774596.1.0.1682774596.60.0.0; _gcl_au=1.1.1669256620.1682774596
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:17 GMT
content-type: image/png
last-modified: Sun, 18 Aug 2019 20:12:05 GMT
etag: "498-5d59b115-a8c910bf86f98f21;;;"
accept-ranges: bytes
content-length: 1176
date: Sat, 29 Apr 2023 13:23:17 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

abies.co.za/?wc-ajax=get_refreshed_fragments

82.180.138.238

200 OK

356 B

URL POST HTTP/3
abies.co.za/?wc-ajax=get_refreshed_fragments
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
JSON data\012- , ASCII text, with very long lines (704), with no line terminators
Size
356 B (356 bytes)
Hash
2f31a7f6dbc2320685990f7e8bf9d7d4
b86a01918349915777ef30712c48326420e2b1a9
d0baa673dc6dd6bd331af4fd6d376c2d7dcd9c0ba285cac78de40ce6dcf7c6b3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://abies.co.za
Alt-Used: abies.co.za
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; soundestID=20230429132316-o6TDieTluoXJn3E2DdNChQhOxusZOKmtqgfrS6Kv42HILINec; omnisendSessionID=ZFMzCA7WkwWTbv-20230429132316; _ga_V04TR0106N=GS1.1.1682774596.1.0.1682774596.0.0.0; _ga=GA1.1.644208025.1682774596; _ga_PW9EJ25SPP=GS1.1.1682774596.1.0.1682774596.60.0.0; _gcl_au=1.1.1669256620.1682774596
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
x-powered-by: PHP/7.4.33
set-cookie: wp_woocommerce_session_39537dedb7a3363de16cdd6747461b43=t_0cd248c6761719a8f1eab47c53da35%7C%7C1682947396%7C%7C1682943796%7C%7Cd4e079d2e0d01648a5c6479d6dbb2327; expires=Mon, 01-May-2023 13:23:16 GMT; Max-Age=172799; path=/; HttpOnly; secure
access-control-allow-origin: https://abies.co.za
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
x-litespeed-tag: 4fd_HTTP.200,4fd_HTTP.200
content-type: application/json; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-litespeed-cache-control: no-cache
content-length: 356
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Apr 2023 13:23:17 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r

216.58.211.4

200 OK

27 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r
IP
216.58.211.4:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (41430)
Size
27 kB (26930 bytes)
Hash
6e273faf37021acdb188d9dffb5ba4fe
ba3d9783d897a76726738d5b7ec56023fa61ab4b
84dad3fd1a8d08d9bb7e6697cb32af9e7e71dd130e65ffde66538295809b45fa

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: https://abies.co.za/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 29 Apr 2023 13:23:17 GMT
content-security-policy: script-src 'nonce-kMvVBXXZLU0uk_pg_qZGFQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 26930
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

abies.co.za/wp-admin/admin-ajax.php

82.180.138.238

200 OK

127 B

URL POST HTTP/3
abies.co.za/wp-admin/admin-ajax.php
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
127 B (127 bytes)
Hash
aa0eda06bdc43b256d911769057896ef
1be3fc14fed2b42de201eab24f482f1e2d3a0e7f
82037225896e7583c2333771aa5d01a5b3059b91f776d49790e63d2317348638

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://abies.co.za
Alt-Used: abies.co.za
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; soundestID=20230429132316-o6TDieTluoXJn3E2DdNChQhOxusZOKmtqgfrS6Kv42HILINec; omnisendSessionID=ZFMzCA7WkwWTbv-20230429132316; _ga_V04TR0106N=GS1.1.1682774596.1.0.1682774596.0.0.0; _ga=GA1.1.644208025.1682774596; _ga_PW9EJ25SPP=GS1.1.1682774596.1.0.1682774596.60.0.0; _gcl_au=1.1.1669256620.1682774596
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://abies.co.za
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-litespeed-cache-control: no-cache
content-length: 127
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Apr 2023 13:23:17 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

connect.facebook.net/signals/plugins/identity.js?v=2.9.102

31.13.72.12

200 OK

21 kB

URL GET HTTP/3
connect.facebook.net/signals/plugins/identity.js?v=2.9.102
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint7C:DF:6E:28:E3:74:69:9C:05:F7:76:06:46:71:31:83:84:2F:4B:1F
ValiditySun, 05 Feb 2023 00:00:00 GMT - Sat, 06 May 2023 23:59:59 GMT

File type
ASCII text, with very long lines (60008)
Size
21 kB (20722 bytes)
Hash
4ab212d67df0d744f74a6f6a257b2653
7844504c6b52741b4467b98856b2da4d2e276630
6b5ed11f9d9bfad094e0177b6339804dbdccfece80ea0636343349543ca69c63

HTTP Headers

GET /signals/plugins/identity.js?v=2.9.102 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: connect.facebook.net
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: j3pYE+rr0AWiMlMKEavbKOpK1HKzX0FLCgfrAkUcLnUBUB/1PRAPMAvhFcCON+8FbA3RDHNhGGg9GyhmDM8WQg==
content-length: 20722
date: Sat, 29 Apr 2023 13:23:17 GMT
alt-svc: h3=":443"; ma=86400
priority: u=3,i

www.gstatic.com/recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
ASCII text, with very long lines (56403), with no line terminators
Size
25 kB (24605 bytes)
Hash
a42c6333a13e5376af95f46fd9c7b627
57a98e519a44915e39a0cb6f23812adfa6611e67
62bff9dd0379da44f9d7f739af671bb6b243c016b49c7146b431ae9e6b9cb41b

HTTP Headers

GET /recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.gstatic.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Apr 2023 09:34:26 GMT
expires: Sun, 28 Apr 2024 09:34:26 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 24 Apr 2023 20:17:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 13731
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/recaptcha__en.js

142.250.74.35

200 OK

165 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
ASCII text, with very long lines (769)
Size
165 kB (165374 bytes)
Hash
4f020318bb92055ba415ec245a4c869c
0bb97d09e3fd758853e68398af9e12177c4cac21
41f3c9603c902be24cc4ae971fee6dd64deeb52f24e511241941ce209129b313

HTTP Headers

GET /recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.gstatic.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 165374
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Apr 2023 20:51:49 GMT
expires: Sat, 27 Apr 2024 20:51:49 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 24 Apr 2023 20:17:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 59488
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mc.us3.list-manage.com/subscribe/form-settings?u=50cf6e31c85ccef801a1080b1&id=d282416568&u=50cf6e31c85ccef801a1080b1&id=d282416568&c=dojo_request_script_callbacks.dojo_request_script0

104.110.24.122

6.1 kB

URL GET
mc.us3.list-manage.com/subscribe/form-settings?u=50cf6e31c85ccef801a1080b1&id=d282416568&u=50cf6e31c85ccef801a1080b1&id=d282416568&c=dojo_request_script_callbacks.dojo_request_script0
IP
104.110.24.122:0
ASN
#16625 AKAMAI-AS

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerDigiCert Inc
Subjectwildcardsan.list-manage.com
FingerprintE8:D7:63:51:A8:58:2A:46:78:9F:A4:57:6C:BA:F5:A0:50:D7:9F:75
ValidityMon, 27 Jun 2022 00:00:00 GMT - Thu, 29 Jun 2023 23:59:59 GMT

File type
ASCII text, with very long lines (12687), with no line terminators
Size
6.1 kB (6113 bytes)
Hash
5db8b37a02635a5828f919aa48c7a542
85a1c05b5300d8d328f28ab28d0013555bf08300
66d2274038bc8e36a33d5cf0a1b475e4e6c6dc9c9396509d24b5577c5f2ce6f3

HTTP Headers

GET /subscribe/form-settings?u=50cf6e31c85ccef801a1080b1&id=d282416568&u=50cf6e31c85ccef801a1080b1&id=d282416568&c=dojo_request_script_callbacks.dojo_request_script0 HTTP/1.1
Host: mc.us3.list-manage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
content-type: application/json; charset=utf-8
content-length: 6113
x-ua-compatible: IE=edge,chrome=1
referrer-policy: same-origin
content-encoding: gzip
cache-control: max-age=300
expires: Sat, 29 Apr 2023 13:28:17 GMT
date: Sat, 29 Apr 2023 13:23:17 GMT
vary: Accept-Encoding
set-cookie: _mcid=1.64444bc8ec45e4a3d90372434eb56e2c.7d63a4d9c072e521ffbc3f623cabb36c959e275def0e16b804328db2098583ff; expires=Sun, 28-Apr-2024 13:23:17 GMT; Max-Age=31536000; path=/
_mc_anon_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_abck=F59026C3C2F28C92B891F2310479F006~-1~YAAQrU0kF4G6S6GHAQAAfKAuzQnWZz4d7FkAdE72TFCiagkSCDgVFT9eAy5PqITucVYNqutrTzo4BJc18cKovrGtSox8d6MjNuOVRXRf3K8ZHrSkC2wX9Pyf7/jXAmWr13JC8O6vqFpoj/Jdfv8+ALlB3R48JKe6tKS17aK+sUo23vab/IGO7u1JsdZfnYHzgZNcWU8kJLeeV/QyLdOmoR+ZY9kOr3URDBeM28yPKvDWQtyML61UA3enj942Xj5xkpIQpvbvw7oGr22Eck04sbs83Wpa5vYW0rExLgV3POBPF4XjDONjDLFQx8xkSDrcb6fBNqri5cZie0bjkRZgGgHD1a9RrjYvY/YsxfGO4cSokB6toftlsf+RH299Z4UbOg==~-1~-1~-1; Domain=.list-manage.com; Path=/; Expires=Sun, 28 Apr 2024 13:23:17 GMT; Max-Age=31536000; SameSite=None; Secure
ak_bmsc=04D336919D9B8A7B23F1C551C6AA74AA~000000000000000000000000000000~YAAQrU0kF4K6S6GHAQAAfKAuzROIWdBqWOceAuRYsB9i8+7alF2BzZWa7pX6VzPjE6WwrnILr383n36UJQEOXblKLkO5JbjxeTWk6gHcdhkV1VP+Tvp7WdXBNBls9MMAol0eRNJ5vZ+I1ka2GL0LCvEBXo4ZNLNXAFyu3l2TByfWJ+EHWf5JacXuzm/fLhU1TONpkoY10CzIzHwAmZF+g+fR2f60bb4U6yBGxFEnV8Xl3YWdUj06KALPI84NIQbE8uI6eg7Zp3TTN3YdBfYyUzrSBcLcNAJYLJHosJ9l3iavE2CN3EpUyrsu/cLtj3bEVSogXso7yhLwhcFMWYBCF7gFUlFj1nWDCPPLlF8kJIOqGyU8MJ9ZO9MRcuPyF6dgc/V0kkQQDSFIXGb8RBxU; Domain=.us3.list-manage.com; Path=/; Expires=Sat, 29 Apr 2023 15:23:17 GMT; Max-Age=7200; SameSite=None; Secure; HttpOnly
bm_sz=F2D55DB32375C9DD958BC00C782CFC11~YAAQrU0kF4O6S6GHAQAAfaAuzRPDZ3ElodOY+hcZNdI2fKWkzWjUiAZIObfil6xxYkpq33zk4mGuokEhQkI+szZo3t0EamtXlxbvoJQUnyYCyytCK6q/KzmPzckRoZlGxEvSFNux3LPmt3XA/axoHBdAu2FZgww1fMBzK6npfrXP0kH1bToyaA4ov/zofJuhUGi6H+cuRe2ESfzqLn6yoresn4I8wG1vhUVmylNHFXQzXmpuDE7ePGXoc8ms7nC4N7TunnDrUQdZHBr+zS6mfYdmQW5beV5Pb97A2dEcNqFgv4X8bnkE1Q==~3289912~4342339; Domain=.list-manage.com; Path=/; Expires=Sat, 29 Apr 2023 17:23:17 GMT; Max-Age=14400; SameSite=None; Secure
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=612811310598675&ev=PageView&dl=https%3A%2F%2Fabies.co.za%2Fexcel%2Fexcel%2Fexcel.php%2F&rl=&if=false&ts=1682774597618&cd[source]=woocommerce&cd[version]=7.1.0&cd[pluginVersion]=3.0.4&sw=1280&sh=1024&v=2.9.102&r=stable&a=woocommerce-7.1.0-3.0.4&ec=0&o=30&cs_est=true&fbp=fb.2.1682774597618.615664450&it=1682774597227&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL GET HTTP/2
www.facebook.com/tr/?id=612811310598675&ev=PageView&dl=https%3A%2F%2Fabies.co.za%2Fexcel%2Fexcel%2Fexcel.php%2F&rl=&if=false&ts=1682774597618&cd[source]=woocommerce&cd[version]=7.1.0&cd[pluginVersion]=3.0.4&sw=1280&sh=1024&v=2.9.102&r=stable&a=woocommerce-7.1.0-3.0.4&ec=0&o=30&cs_est=true&fbp=fb.2.1682774597618.615664450&it=1682774597227&coo=false&rqm=GET
IP
31.13.72.36:443
ASN
#32934 FACEBOOK

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint7C:DF:6E:28:E3:74:69:9C:05:F7:76:06:46:71:31:83:84:2F:4B:1F
ValiditySun, 05 Feb 2023 00:00:00 GMT - Sat, 06 May 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=612811310598675&ev=PageView&dl=https%3A%2F%2Fabies.co.za%2Fexcel%2Fexcel%2Fexcel.php%2F&rl=&if=false&ts=1682774597618&cd[source]=woocommerce&cd[version]=7.1.0&cd[pluginVersion]=3.0.4&sw=1280&sh=1024&v=2.9.102&r=stable&a=woocommerce-7.1.0-3.0.4&ec=0&o=30&cs_est=true&fbp=fb.2.1682774597618.615664450&it=1682774597227&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 29 Apr 2023 13:23:17 GMT
X-Firefox-Spdy: h2

downloads.mailchimp.com/js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js

54.230.111.124

200 OK

29 kB

URL GET HTTP/1.1
downloads.mailchimp.com/js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js
IP
54.230.111.124:443
ASN
#16509 AMAZON-02

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerAmazon
Subjectdownloads.mailchimp.com
Fingerprint71:CA:F4:D1:5C:6A:B9:FA:41:B9:63:28:DB:BB:2F:BE:05:00:31:46
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 03 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65526)
Size
29 kB (29235 bytes)
Hash
f80a93f9ecd5bbef86b787e14abe48ec
9eeed4860d500f19f5153dbdcdfcc7be703b0140
3012037425cdc8453e0552cb4272acf8de8a660046465978f34ebc9db61bd555

HTTP Headers

GET /js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 29 Apr 2023 05:51:21 GMT
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
ETag: W/"d3149280c831cbf6538770c71a916f43"
Server: AmazonS3
Content-Encoding: br
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: u9SBkEERLMyQWjhb1IVohR38LwDd0Zz34lOQ2vR1dpC6p90D5aJzUw==
Age: 27117
Vary: Accept-Encoding, Origin

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Apr 2023 16:11:02 GMT
expires: Sun, 21 Apr 2024 16:11:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 594735
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Apr 2023 07:26:31 GMT
expires: Sun, 28 Apr 2024 07:26:31 GMT
cache-control: public, max-age=31536000
age: 21406
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/webworker.js?hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg

216.58.211.4

200 OK

112 B

URL GET HTTP/3
www.google.com/recaptcha/api2/webworker.js?hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg
IP
216.58.211.4:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT

File type
ASCII text, with no line terminators
Size
112 B (112 bytes)
Hash
a4a54208df3773d3ea72aab7fedaa853
261d7f82c0dd591d19b98201ac39bb979ee9e83a
524255fea1f3e9c6aaba62586d44dbd64a6ebe9a97fda4efc6df1905667d9e43

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
expires: Sat, 29 Apr 2023 13:23:17 GMT
date: Sat, 29 Apr 2023 13:23:17 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.gstatic.com
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Apr 2023 21:48:58 GMT
expires: Mon, 01 May 2023 21:48:58 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 401659
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/recaptcha__en.js

142.250.74.35

200 OK

165 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
ASCII text, with very long lines (769)
Size
165 kB (165374 bytes)
Hash
4f020318bb92055ba415ec245a4c869c
0bb97d09e3fd758853e68398af9e12177c4cac21
41f3c9603c902be24cc4ae971fee6dd64deeb52f24e511241941ce209129b313

HTTP Headers

GET /recaptcha/releases/4q6CtudrwcI-LSEYlfoEbDXg/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.gstatic.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 165374
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Apr 2023 20:51:49 GMT
expires: Sat, 27 Apr 2024 20:51:49 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 24 Apr 2023 20:17:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 59488
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css

54.230.111.124

200 OK

2.4 kB

URL GET HTTP/1.1
downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css
IP
54.230.111.124:443
ASN
#16509 AMAZON-02

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerAmazon
Subjectdownloads.mailchimp.com
Fingerprint71:CA:F4:D1:5C:6A:B9:FA:41:B9:63:28:DB:BB:2F:BE:05:00:31:46
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 03 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
2.4 kB (2432 bytes)
Hash
5d259a17394f910dd95c0baaca972195
e9833a9f84414ca78de5698c508f249ccbf22c5c
fa88172adf1fdc3ad4fb6b48f6239c51e4a563c1e18aeb350f582d96825e6eba

HTTP Headers

GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: br
Date: Sat, 29 Apr 2023 08:55:33 GMT
ETag: W/"82e72d627b04e1654282023cca1d1e69"
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qGq9JGSVPeG1p_PQeP94Em00PwFbWgO0adb7gwRlnYeXUVmRmSpLRg==
Age: 34426
Vary: Accept-Encoding, Origin

downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/banner.css

54.230.111.124

200 OK

348 B

URL GET HTTP/1.1
downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/banner.css
IP
54.230.111.124:443
ASN
#16509 AMAZON-02

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerAmazon
Subjectdownloads.mailchimp.com
Fingerprint71:CA:F4:D1:5C:6A:B9:FA:41:B9:63:28:DB:BB:2F:BE:05:00:31:46
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 03 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
348 B (348 bytes)
Hash
7dc952a02aac2296639b02e8b693f1ca
141d2c58d397b253795db7e070d0846e4cb67d37
4768822ea5fd24c1368db661e02e9e2119f98351068a5531c3ae6e7a762f5e9a

HTTP Headers

GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/banner.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: br
Date: Sat, 29 Apr 2023 08:55:33 GMT
ETag: W/"78d1bdd981816cfbeb6954a85f9efa58"
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hmWE8yNjadugNK4FLhL6mJDNiBDWoKuh2mKE2qBh6H745YhoeOIgxw==
Age: 16065
Vary: Accept-Encoding, Origin

downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/modal.css

54.230.111.126

200 OK

831 B

URL GET HTTP/1.1
downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/modal.css
IP
54.230.111.126:443
ASN
#16509 AMAZON-02

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerAmazon
Subjectdownloads.mailchimp.com
Fingerprint71:CA:F4:D1:5C:6A:B9:FA:41:B9:63:28:DB:BB:2F:BE:05:00:31:46
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 03 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
831 B (831 bytes)
Hash
1a1623889286bcd5c001f4b01b6c4023
0d0642ffea4688b5208fed975b58f0ae90021d17
e13ee61a53cc976ff4395692fc0579ae44f25c29bea6024f76adc718fa3ba0c6

HTTP Headers

GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/modal.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: br
Date: Sat, 29 Apr 2023 12:52:25 GMT
ETag: W/"aa6f4416185bd7f299dd89e11dac117f"
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NLUOHggMkTe6T_yqQdfFWm64yj-PG5Bj6NjVRu0iSmMj2bX9k-x2cA==
Age: 1853
Vary: Accept-Encoding, Origin

downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/layout-2.css

54.230.111.124

200 OK

378 B

URL GET HTTP/1.1
downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/layout-2.css
IP
54.230.111.124:443
ASN
#16509 AMAZON-02

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerAmazon
Subjectdownloads.mailchimp.com
Fingerprint71:CA:F4:D1:5C:6A:B9:FA:41:B9:63:28:DB:BB:2F:BE:05:00:31:46
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 03 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
378 B (378 bytes)
Hash
cf3f32b87e7db0bc75850ee6a3971b0a
f2cd301fb0f02e3f0268ff23b654a239113e4fb2
79357138bcdc91233e5196ca82ef83bed0fdcb2468b4cd1a433c9cb859ac5fdd

HTTP Headers

GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/layout-2.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: br
Date: Sat, 29 Apr 2023 12:48:49 GMT
ETag: W/"38f50a83c6d5d15facb231447fa1ac56"
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jQmagNYCujeufLmZTeOljQq7Rxyp6VnpvYhe2E9AkHld4sgg_hk00Q==
Age: 2071
Vary: Accept-Encoding, Origin

www.google.com/recaptcha/api2/reload?k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA

216.58.211.4

200 OK

19 kB

URL POST HTTP/3
www.google.com/recaptcha/api2/reload?k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA
IP
216.58.211.4:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT

File type
ASCII text, with very long lines (32855)
Size
19 kB (18907 bytes)
Hash
d98417c404582f6955d856afa983811a
56731ab5fc67eba24440724eeafdb304e5b51c76
f801cc431ae00e43ac795564c7049c3bf2e40f2ab7b11200fe34ecd9fa1c9cd4

HTTP Headers

POST /recaptcha/api2/reload?k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 6639
Origin: https://www.google.com
Alt-Used: www.google.com
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Ley76wUAAAAAK7a1UiV5DmMkgFPqqPYmma8DCHA&co=aHR0cHM6Ly9hYmllcy5jby56YTo0NDM.&hl=en&v=4q6CtudrwcI-LSEYlfoEbDXg&size=invisible&cb=sedazcf2sf2r
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Sat, 29 Apr 2023 13:23:18 GMT
expires: Sat, 29 Apr 2023 13:23:18 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 18907
server: GSE
set-cookie: _GRECAPTCHA=09ABAvrlTZceFB1ScBDspsrfS8reWoAcpjBBtsb_926fkQKmpJ0QTbeF1bxDjQkgSQsu18pmiWn6jtdC96-yT6lqk;Path=/recaptcha;Expires=Thu, 26-Oct-2023 13:23:18 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.facebook.com/tr/

31.13.72.36

200 OK

0 B

URL POST HTTP/3
www.facebook.com/tr/
IP
31.13.72.36:443
ASN
#32934 FACEBOOK

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint7C:DF:6E:28:E3:74:69:9C:05:F7:76:06:46:71:31:83:84:2F:4B:1F
ValiditySun, 05 Feb 2023 00:00:00 GMT - Sat, 06 May 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /tr/ HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------2687299054949291591591102822
Content-Length: 6304
Origin: https://abies.co.za
Alt-Used: www.facebook.com
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/3 200 OK
content-type: text/plain
access-control-allow-origin: https://abies.co.za
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
priority: u=6
date: Sat, 29 Apr 2023 13:23:18 GMT

stats.wp.com/e-202317.js

192.0.76.3

200 OK

9.0 kB

URL GET HTTP/2
stats.wp.com/e-202317.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (8998), with no line terminators
Size
9.0 kB (8970 bytes)
Hash
4649d2ee67673692172ccfae5afdbae6
cc2c21608a5439a757c775a5ea43e18f9646b175
e780f76da6b19305820cbd0aa583715b296bd6c266541aa966c47abd97e4e291

HTTP Headers

GET /e-202317.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Mon, 22 Apr 2024 04:30:03 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/7.1.0/assets/js/frontend/woocommerce.min.js

192.0.77.37

200 OK

2.1 kB

URL GET HTTP/2
c0.wp.com/p/woocommerce/7.1.0/assets/js/frontend/woocommerce.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (2257), with no line terminators
Size
2.1 kB (2139 bytes)
Hash
e7973612ddcad569a69917e16f653166
a79c1d4ecac63891d2002570a4ec2575ca96a2ca
a56d568ce6928ce377f5f52c08016bc2adf963f68ab810affa56bb045b0fba52

HTTP Headers

GET /p/woocommerce/7.1.0/assets/js/frontend/woocommerce.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 18 May 2021 17:00:20 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.2/wp-includes/js/jquery/jquery-migrate.min.js

192.0.77.37

200 OK

13 kB

URL GET HTTP/2
c0.wp.com/c/6.2/wp-includes/js/jquery/jquery-migrate.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (13326)
Size
13 kB (13424 bytes)
Hash
5cfa2b481de6e87c2190a0e3538515d8
0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68
9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3

HTTP Headers

GET /c/6.2/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 06 Feb 2023 20:59:15 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.2/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js

192.0.77.37

200 OK

8.2 kB

URL GET HTTP/2
c0.wp.com/c/6.2/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (8365), with no line terminators
Size
8.2 kB (8171 bytes)
Hash
08e6714eaf3cfe8f3c7839f22d90ba4e
94fdad68854d0d3482b877aef7ba7c2eb265c621
e424039d5a737a1bda8a5ded60919e5067085729310762eebb09c20e07d249c8

HTTP Headers

GET /c/6.2/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Jan 2023 11:16:33 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

a.omappapi.com/app/js/api.min.js

194.242.11.186

200 OK

51 kB

URL GET HTTP/2
a.omappapi.com/app/js/api.min.js
IP
194.242.11.186:443
ASN
#34989 ServeTheWorld AS

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjecta.omappapi.com
FingerprintD4:1F:1E:DB:AD:11:90:9E:49:56:AC:92:37:95:09:D3:39:72:69:C3
ValidityWed, 12 Apr 2023 08:19:25 GMT - Tue, 11 Jul 2023 08:19:24 GMT

File type
C source, ASCII text, with very long lines (51262), with no line terminators
Size
51 kB (51262 bytes)
Hash
a8bb72621a98cef3cfee7f9db03ccb57
9bf1a382ba0ee755eff423fc7829fe08676812a5
b240f6825e701e2e5dd89198a9153002cb17bd3c6ca617acab792a681bb0a8f4

HTTP Headers

GET /app/js/api.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Apr 2023 13:23:16 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"644850ab-c83e"
last-modified: Tue, 25 Apr 2023 22:14:03 GMT
cdn-storageserver: SE-344
cdn-requestpullsuccess: True
cdn-fileserver: 583
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 04/25/2023 22:20:21
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f332d133b0c88a6496a0981d843d0c30
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

forms.soundestlink.com/REST/forms/v1/renderedForms?v=2023-04-29T13&brandID=5f9040e44c7fa4332c66901c&displayType=popup,embedded

104.18.31.243

200 OK

2 B

URL GET HTTP/3
forms.soundestlink.com/REST/forms/v1/renderedForms?v=2023-04-29T13&brandID=5f9040e44c7fa4332c66901c&displayType=popup,embedded
IP
104.18.31.243:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint54:B8:46:7B:76:99:67:6C:EA:5F:AD:F7:5C:7B:46:F2:95:48:76:22
ValidityTue, 24 Jan 2023 00:00:00 GMT - Wed, 24 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

HTTP Headers

GET /REST/forms/v1/renderedForms?v=2023-04-29T13&brandID=5f9040e44c7fa4332c66901c&displayType=popup,embedded HTTP/1.1
Host: forms.soundestlink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abies.co.za/
Origin: https://abies.co.za
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 29 Apr 2023 13:23:17 GMT
content-type: application/json
content-length: 2
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: *
cache-control: max-age=0, s-maxage=600, public
expires: Sat, 29 Apr 2023 13:33:16 GMT
last-modified: Sat, 29 Apr 2023 13:23:16 GMT
x-envoy-upstream-service-time: 2
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 7bf7dbce49b3b515-OSL

c0.wp.com/c/6.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css

192.0.77.37

200 OK

11 kB

URL GET HTTP/2
c0.wp.com/c/6.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (11256), with no line terminators
Size
11 kB (11256 bytes)
Hash
2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646

HTTP Headers

GET /c/6.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.2/wp-includes/js/dist/vendor/regenerator-runtime.min.js

192.0.77.37

200 OK

6.6 kB

URL GET HTTP/2
c0.wp.com/c/6.2/wp-includes/js/dist/vendor/regenerator-runtime.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (6777), with no line terminators
Size
6.6 kB (6607 bytes)
Hash
4b5583c1e3d9c4f85089eebae5b0ea63
8f1a4ba1dabf9fb35cfc2a2ebd08b93a91c0923b
4c4ee791f1baebfe9e127c3341a2eda8e6e8a5debf27d91fae8c04cd2adb1527

HTTP Headers

GET /c/6.2/wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Feb 2023 15:56:37 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.2/wp-includes/js/dist/vendor/wp-polyfill.min.js

192.0.77.37

200 OK

18 kB

URL GET HTTP/2
c0.wp.com/c/6.2/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type

Size
18 kB (17823 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c/6.2/wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 20 Sep 2022 15:43:29 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

omnisnippet1.com/forms/main.js?v=2023-04-29T13

104.18.16.174

200 OK

60 kB

URL GET HTTP/3
omnisnippet1.com/forms/main.js?v=2023-04-29T13
IP
104.18.16.174:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint34:DC:78:A8:0D:39:3D:C9:A7:9C:B8:55:F1:27:B3:01:7A:95:E5:BB
ValidityMon, 30 Jan 2023 00:00:00 GMT - Mon, 29 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (59903)
Size
60 kB (59936 bytes)
Hash
8e166c04bc237612a594999b3bc13627
0dee279219f6ea6a6366f9ac6132603e9c12c3b9
c55c2bdada6711902295dd8b8a2aee21fa71854e81cbe94bf9ce4b19209173cd

HTTP Headers

GET /forms/main.js?v=2023-04-29T13 HTTP/1.1
Host: omnisnippet1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: omnisnippet1.com
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 29 Apr 2023 13:23:16 GMT
content-type: application/javascript
last-modified: Fri, 21 Apr 2023 09:17:18 GMT
etag: W/"6442549e-ea20"
expires: Sat, 29 Apr 2023 13:52:27 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 276
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 7bf7dbcdcf050b65-OSL
content-encoding: br

stats.wp.com/s-202317.js

192.0.76.3

200 OK

9.4 kB

URL GET HTTP/2
stats.wp.com/s-202317.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (9586), with no line terminators
Size
9.4 kB (9364 bytes)
Hash
6a5f55d3952da4938f46898ac1f0c657
34bb4833b34896a0ee7c17b57cc4896ad69b54ab
d8365a9e1a768962e31c762d8e1b1cd38aa44c3f1ea4a0b000d9cb36be46fcc5

HTTP Headers

GET /s-202317.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:16 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-2494"
content-encoding: br
expires: Mon, 22 Apr 2024 23:46:35 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

c0.wp.com/p/jetpack/11.5.1/css/jetpack.css

192.0.77.37

200 OK

86 kB

URL GET HTTP/2
c0.wp.com/p/jetpack/11.5.1/css/jetpack.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type

Size
86 kB (85906 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/jetpack/11.5.1/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 25 Oct 2022 13:51:34 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=abies.co.za&shopType=api&brandID=5f9040e44c7fa4332c66901c

0.0.0.0

0 B

URL GET
forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=abies.co.za&shopType=api&brandID=5f9040e44c7fa4332c66901c
IP
0.0.0.0:0
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint54:B8:46:7B:76:99:67:6C:EA:5F:AD:F7:5C:7B:46:F2:95:48:76:22
ValidityTue, 24 Jan 2023 00:00:00 GMT - Wed, 24 Jan 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=abies.co.za&shopType=api&brandID=5f9040e44c7fa4332c66901c HTTP/1.1
Host: forms.soundestlink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Apr 2023 13:23:16 GMT
content-type: application/json
cache-control: max-age=0, s-maxage=600, public
last-modified: Sat, 29 Apr 2023 13:23:16 GMT
x-envoy-upstream-service-time: 4
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 7bf7dbcc08e30b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

a.omappapi.com/app/js/api.min.css

194.242.11.186

200 OK

18 kB

URL GET HTTP/2
a.omappapi.com/app/js/api.min.css
IP
194.242.11.186:443
ASN
#34989 ServeTheWorld AS

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjecta.omappapi.com
FingerprintD4:1F:1E:DB:AD:11:90:9E:49:56:AC:92:37:95:09:D3:39:72:69:C3
ValidityWed, 12 Apr 2023 08:19:25 GMT - Tue, 11 Jul 2023 08:19:24 GMT

File type
ASCII text, with very long lines (17996), with no line terminators
Size
18 kB (17996 bytes)
Hash
fdfc47d7f4872c3530f2516e9f42a6ed
064936200b1706bf2187cd6370838f2af409efdb
103f4d3fbc08fff41f2ddb722186887b3d8977d2a7da27e7ed0f2f5752dc339f

HTTP Headers

GET /app/js/api.min.css HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Apr 2023 13:23:16 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"644850ab-464c"
last-modified: Tue, 25 Apr 2023 22:14:03 GMT
cdn-storageserver: SE-318
cdn-requestpullsuccess: True
cdn-fileserver: 583
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 04/25/2023 22:14:03
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2b0942009f06ea9223e8bfeb1b4cc6d8
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

connect.facebook.net/signals/config/612811310598675?v=2.9.102&r=stable

31.13.72.12

200 OK

386 kB

URL GET HTTP/3
connect.facebook.net/signals/config/612811310598675?v=2.9.102&r=stable
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
Fingerprint7C:DF:6E:28:E3:74:69:9C:05:F7:76:06:46:71:31:83:84:2F:4B:1F
ValiditySun, 05 Feb 2023 00:00:00 GMT - Sat, 06 May 2023 23:59:59 GMT

File type
ASCII text, with very long lines (64471)
Size
386 kB (386341 bytes)
Hash
b59f63ef552c4cf8c9918c27d911beb8
e5b78e63a0d8ca7834d36fe132ef6a17774e4317
fbbc981ed2e53d51636740299ff2554c79cb5f8018a79b64eba121664f2ccb80

HTTP Headers

GET /signals/config/612811310598675?v=2.9.102&r=stable HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: connect.facebook.net
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: KEMQAx3ywUpnLHVJRz9Fv6xqr7ejXfpvrYjqUfOcw0rvoB6raoxQGUVtqj51+UbuIEiTC1z+pxdMlU1/dW0v7w==
date: Sat, 29 Apr 2023 13:23:17 GMT
alt-svc: h3=":443"; ma=86400
priority: u=3,i

c0.wp.com/c/6.2/wp-includes/js/jquery/jquery.min.js

192.0.77.37

200 OK

90 kB

URL GET HTTP/2
c0.wp.com/c/6.2/wp-includes/js/jquery/jquery.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
90 kB (89815 bytes)
Hash
0e850a69bc7fd0acc2e92ce6eee87959
8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c
afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a

HTTP Headers

GET /c/6.2/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 08 Mar 2023 18:37:33 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

omnisnippet1.com/inshop/launcher-v2.js

104.18.16.174

200 OK

51 kB

URL GET HTTP/2
omnisnippet1.com/inshop/launcher-v2.js
IP
104.18.16.174:443
ASN
#13335 CLOUDFLARENET

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint34:DC:78:A8:0D:39:3D:C9:A7:9C:B8:55:F1:27:B3:01:7A:95:E5:BB
ValidityMon, 30 Jan 2023 00:00:00 GMT - Mon, 29 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32008)
Size
51 kB (50822 bytes)
Hash
5a760c878c7a1ec588118ae1b17e7177
b54d717ee6bc033e5494b58f23bde3d8a6b3b7e2
126217e294a95efb75a989a093fb08ccec02ffe110e1025b3a7a9c0eafbbac24

HTTP Headers

GET /inshop/launcher-v2.js HTTP/1.1
Host: omnisnippet1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Apr 2023 13:23:16 GMT
content-type: application/javascript
last-modified: Fri, 28 Apr 2023 11:14:04 GMT
etag: W/"644baa7c-c686"
expires: Sat, 29 Apr 2023 14:16:52 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 365
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 7bf7dbcb6a910b4d-OSL
content-encoding: br
X-Firefox-Spdy: h2

abies.co.za/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4

82.180.138.238

200 OK

2.7 kB

URL GET HTTP/2
abies.co.za/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
82.180.138.238:443
ASN
#0

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerLet's Encrypt
Subjectabies.co.za
Fingerprint36:40:18:BD:E1:77:68:1E:20:FE:0E:50:A8:CE:0D:31:EE:88:73:DF
ValidityWed, 08 Mar 2023 13:54:19 GMT - Tue, 06 Jun 2023 13:54:18 GMT

File type
ASCII text, with very long lines (2992), with no line terminators
Size
2.7 kB (2731 bytes)
Hash
4a2d17ce2ae864aacfa35a64c16faf9a
4096eca1cf7bf0f8bca7a5d77faccbe9227929b3
d6af597969ba488d3adb8a0d374ab71bbb9232e30f81960da011e7db4caba0ee

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: abies.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/excel/excel/excel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 06 May 2023 13:23:15 GMT
content-type: text/css
last-modified: Fri, 04 Nov 2022 14:57:02 GMT
etag: "aab-6365283e-3896697af71ed21d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 847
date: Sat, 29 Apr 2023 13:23:15 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/7.1.0/assets/js/frontend/add-to-cart.min.js

192.0.77.37

200 OK

3.0 kB

URL GET HTTP/2
c0.wp.com/p/woocommerce/7.1.0/assets/js/frontend/add-to-cart.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (3119), with no line terminators
Size
3.0 kB (3029 bytes)
Hash
9cab7a10eba211e65e47f0e195362235
0ae4f4d63ee3d5f5417eef5baec841f46f45bff2
c15d1bdbe2a0e825397460c441e75163b075b00388e8acb85000677c756054c6

HTTP Headers

GET /p/woocommerce/7.1.0/assets/js/frontend/add-to-cart.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Apr 2023 13:23:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 18 Oct 2022 20:34:37 GMT
content-encoding: br
expires: Sun, 28 Apr 2024 13:23:15 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Source+Sans+Pro%3A400%2C300%2C300italic%2C400italic%2C600%2C700%2C900&subset=latin%2Clatin-ext&ver=4.2.0

142.250.74.106

200 OK

17 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Source+Sans+Pro%3A400%2C300%2C300italic%2C400italic%2C600%2C700%2C900&subset=latin%2Clatin-ext&ver=4.2.0
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://abies.co.za/excel/excel/excel.php/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:8B:BB:40:DD:1D:5B:E9:7B:AA:CC:94:45:44:7F:FD:56:6E:E4:60
ValidityMon, 03 Apr 2023 08:24:24 GMT - Mon, 26 Jun 2023 08:24:23 GMT

File type
ASCII text
Size
17 kB (16611 bytes)
Hash
473a7efd0ffe72bb3f0c4f601bcc3ae4
f40884f53d2c860c02d64daf04170eb8a6c83d03
29d4ad43562d6b0a16325788d96402a8ee8cfd6680cb89a40d4355ec4a4cd5c5

HTTP Headers

GET /css?family=Source+Sans+Pro%3A400%2C300%2C300italic%2C400italic%2C600%2C700%2C900&subset=latin%2Clatin-ext&ver=4.2.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abies.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 29 Apr 2023 13:23:16 GMT
date: Sat, 29 Apr 2023 13:23:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (92)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL