| | 75.119.203.153 | 301 Moved Permanently | 239 B |
URL User Request GET HTTP/2IP75.119.203.153:443
CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeHTML document, ASCII text Hash91839513c50b34a64bc5ca2990098e8c fd6c10af246aca20e914f3ff5e56ad9e08238fd9 32c6a474380254068a03bb28ee9f7a015d1a6f3e62e604e7157d2bd90a9767cc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://www.consulting-gvg.com/
content-length: 239
content-type: text/html; charset=iso-8859-1
date: Sat, 04 May 2024 21:20:38 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-includes/blocks/navigation/style.min.css?ver=6.5.2 | 75.119.203.153 | 200 OK | 2.3 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-includes/blocks/navigation/style.min.css?ver=6.5.2 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeASCII text, with very long lines (16484), with no line terminators Hasha01294d3966fbaaaa8fb1800eb629e2a a75edf5442c196d670e436c2f616ecd595e41d68 e2af3d1fbe48af4fa4e2294de3661b895af5c489a7d2ce5888cd14d5f070e78b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/blocks/navigation/style.min.css?ver=6.5.2 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 05 Apr 2024 02:03:11 GMT
etag: "4064-6154fdba1fa0b-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2341
content-type: text/css
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/ladda.min.css?ver=21.6 | 75.119.203.153 | 200 OK | 1.5 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/ladda.min.css?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeASCII text, with very long lines (9022) Hash614e769024385cf21879d6a238b682e1 3dca7a5932e058b8195fdf25fc474e1046167348 6300274a7cac61720ed4df4819d69df27c27d91245a160015d6dff2dd57c904a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/ladda.min.css?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "23e0-5f72060802b53-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1522
content-type: text/css
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/picker.classic.css?ver=21.6 | 75.119.203.153 | 200 OK | 603 B |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/picker.classic.css?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeASCII text, with very long lines (1208) Hashb3fa2b0463129d34794566d0e023039a da7914c51df1a72311f1d5ffe6942058d6e5807b d935485fe6c672d451f1b296dee0702c081dc31e5aee86e4a4bbef41fcfb7f3e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/picker.classic.css?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "66f-5f72060803af3-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 603
content-type: text/css
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/picker.classic.date.css?ver=21.6 | 75.119.203.153 | 200 OK | 1.1 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/picker.classic.date.css?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeASCII text, with very long lines (4370), with no line terminators Hashb7c846228387fb245243c9ffdd89fc64 ea49adccbc74c4db77dd8f848c25ff2e7fbf1c7b e3bd2d3b42ae3db3f8b6ed4754fe33b80f6700ebf23a7d44d3e5b1d6ea322db4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/picker.classic.date.css?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "1112-5f72060803af3-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1080
content-type: text/css
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/intlTelInput.css?ver=21.6 | 75.119.203.153 | 200 OK | 3.2 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/intlTelInput.css?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeASCII text, with very long lines (20761), with no line terminators Hash1971b40ba81d7fdc2a7b64c2bc3e84b0 3e5b4ccdda595226360569d1ec5b35ee4ee6231e 28ea0a9895b11c652b593db7e18a0779e4d93235aabc336426413223259ab5bb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/intlTelInput.css?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "5119-5f72060802b53-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3219
content-type: text/css
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/bookly-main.css?ver=21.6 | 75.119.203.153 | 200 OK | 6.7 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/bookly-main.css?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
Hash2db0231349a153b49205402553a4e415 7648e32637600fb3893a76bc41bc7992eb707fb1 99249464759f42f2f7b8f00066162c7198f2b762b10ba7ad0f8fae0713c1d11c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/bookly-main.css?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "9414-5f72060802b53-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6658
content-type: text/css
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 75.119.203.153 | 200 OK | 4.9 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Aug 2023 02:54:48 GMT
etag: "3509-602749a4a8199-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4907
content-type: application/javascript
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/spin.min.js?ver=21.6 | 75.119.203.153 | 200 OK | 2.1 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/spin.min.js?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeJavaScript source, ASCII text, with very long lines (4247) Hash545405225c13b2f42ab103fca31a49b1 f91e2b661f4feb976b5e260bdc2366763ad13562 3e27aa13441d103329a705eb4f349942bead5855f75b92a4c91572175ccddde8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/spin.min.js?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "10b5-5f72060815433-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2083
content-type: application/javascript
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/ladda.min.js?ver=21.6 | 75.119.203.153 | 200 OK | 1.6 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/ladda.min.js?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeJavaScript source, ASCII text, with very long lines (3607) Hashd9a7f95a94003a95d03e1a3fbafb1675 eae56420ff81459d25629daec0310126a78ebe36 24cb05ccff63bafc2a18ba4fdb70b92bda051a3cb0dc223fe50aa185500ef971
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/ladda.min.js?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "ea9-5f72060814493-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1633
content-type: application/javascript
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/picker.js?ver=21.6 | 75.119.203.153 | 200 OK | 3.3 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/picker.js?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeJavaScript source, ASCII text, with very long lines (8031) Hash25187785b9f915c516cc81311b01a95f 053e4f4cc6acd77bb971fb2ee79007136b17c7d6 035cbc9f4d865b976f245904397ed409bcc9a24a3c92a81652ab967fd4d6152f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/picker.js?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "1fee-5f72060814493-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3319
content-type: application/javascript
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-includes/blocks/navigation/view.min.js?ver=6.5.2 | 75.119.203.153 | 200 OK | 1.1 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-includes/blocks/navigation/view.min.js?ver=6.5.2 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeASCII text, with very long lines (3300), with no line terminators Hash1dd354b759c9108102c93d8bae0573a1 b27ba805d3b9118edfd523f01fd6e84229d52ffd cef72ad53596109595c152da16e28c2799d53b4c151274c7b28c0324e7230f24
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/blocks/navigation/view.min.js?ver=6.5.2 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 09 Apr 2024 23:45:54 GMT
etag: "ce4-615b285e3f2fd-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1135
content-type: application/javascript
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/hammer.min.js?ver=21.6 | 75.119.203.153 | 200 OK | 7.0 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/hammer.min.js?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeJavaScript source, ASCII text, with very long lines (19579) Hashffc8426e73302e88a868077d0388a617 ccc9e18b0bdb0dc4f3349b1fd575ac5ab369cc8c 89a1a9c08abfb02f902a3c60be7bfc6064f4db0e7755f5dad68cb0b0fcf8bf59
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/hammer.min.js?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "4d09-5f72060814493-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7026
content-type: application/javascript
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/backend/resources/js/moment.min.js?ver=21.6 | 75.119.203.153 | 200 OK | 19 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/backend/resources/js/moment.min.js?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeJavaScript source, ASCII text, with very long lines (58064), with no line terminators Hashc80207c947912a0a24c577d793c91088 aff601d1102ead4000873722c46865db0102e1a9 3abec75692735d0664a10337b1403620f8edf2b4cb4b9fc5216dea2e623b1f34
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/backend/resources/js/moment.min.js?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "e2d0-5f720607ed393-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 18796
content-type: application/javascript
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/jquery.hammer.min.js?ver=21.6 | 75.119.203.153 | 200 OK | 415 B |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/jquery.hammer.min.js?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeJavaScript source, ASCII text Hash0655fbe8768d8c3b9afe31fbdc23f1a5 878fcf75f300199387ffa723241238acd74ccf24 6b7718a2c0e72e3f07e37eecf8c033fdbc2922a8016707299b0d26db76280aa2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/jquery.hammer.min.js?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "3db-5f72060814493-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 415
content-type: application/javascript
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/picker.date.js?ver=21.6 | 75.119.203.153 | 200 OK | 4.5 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/picker.date.js?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeJavaScript source, ASCII text, with very long lines (12685) Hashf88a1d92c270437a9c73d0a1eb494b98 1f01f9b180405c03e53f08edad335553669c59f2 556ec5591c41c02b8ace0ea5b51a9560e2c07b0a68c6eaf0b9f4045accecb210
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/picker.date.js?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "31ec-5f72060814493-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4520
content-type: application/javascript
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/intlTelInput.min.js?ver=21.6 | 75.119.203.153 | 200 OK | 9.4 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/intlTelInput.min.js?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (22399) Hash35b7fc270a823fb27d8630efc64ac99b c21cc381974eb9a858d738c5709edb8196842af4 77cbb409b535d115bf563bd022182ae8e01b089ca94ad461ec987bc0535a6042
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/intlTelInput.min.js?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "5aac-5f72060814493-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9424
content-type: application/javascript
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/favicon.ico | 75.119.203.153 | 200 OK | 0 B |
URL GET HTTP/2www.consulting-gvg.com/favicon.ico IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 05 Mar 2023 13:45:38 GMT
etag: "0-5f62764cabda3"
accept-ranges: bytes
content-length: 0
cache-control: max-age=172800
expires: Mon, 06 May 2024 21:20:40 GMT
vary: User-Agent
content-type: image/vnd.microsoft.icon
date: Sat, 04 May 2024 21:20:40 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 | 75.119.203.153 | 200 OK | 5.1 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 05 Apr 2024 02:03:17 GMT
etag: "4926-6154fdbfe23d8-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:40 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5136
content-type: application/javascript
date: Sat, 04 May 2024 21:20:40 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| | 75.119.203.153 | 200 OK | 58 kB |
URL User Request GET HTTP/2IP75.119.203.153:443
CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://www.consulting-gvg.com/wp-json/>; rel="https://api.w.org/"
set-cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f; path=/; HttpOnly
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 75.119.203.153 | 200 OK | 88 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Wed, 08 Nov 2023 19:49:42 GMT
etag: "15601-609a9636a4f03-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/bookly.min.js?ver=21.6 | 75.119.203.153 | 200 OK | 163 kB |
URL GET HTTP/2www.consulting-gvg.com/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/bookly.min.js?ver=21.6 IP75.119.203.153:443
Requested byhttps://www.consulting-gvg.com/ CertificateIssuerLet's Encrypt Subjectwww.consulting-gvg.com Fingerprint9A:A1:7B:DC:23:2E:BD:12:0D:FB:67:32:9B:53:D9:92:56:D5:EC:03 ValidityFri, 19 Apr 2024 14:06:09 GMT - Thu, 18 Jul 2024 14:06:08 GMT
Size163 kB (163203 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/bookly.min.js?ver=21.6 HTTP/1.1
Host: www.consulting-gvg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.consulting-gvg.com/
Cookie: PHPSESSID=b5f4a160ea4ca0688c8120e7c8c8e05f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 22:48:33 GMT
etag: "27d83-5f720608115b3-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 03 Jun 2024 21:20:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sat, 04 May 2024 21:20:39 GMT
server: Apache
X-Firefox-Spdy: h2
|
|