www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
213.186.33.87404 Not Found 77 kB URL User Request GET HTTP/1.1 www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
IP 213.186.33.87:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10088)
Hash c7d26b0f43b4edead18134d8d3bf8817
9f397832e6a29d9fe471ec22682d0b301f4ee1ba
66d08d00b12932776cbe2eabf270cf8d3b0b6de639e24ca83853efbe4bca8c14
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-includes/customize/ntflx/d41d8cd98f00b20/login.php HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
server: Apache
x-powered-by: PHP/7.4
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.dr-krassoulia.com/wp-json/>; rel="https://api.w.org/"
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F101_2B7D:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-includes/css/classic-themes.min.css?ver=6.2.2
213.186.33.87200 OK 210 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-includes/css/classic-themes.min.css?ver=6.2.2
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Hash 1a0804b1a9d09705657f91fe7cad4c5a
feeece6f0b3e0bcf090547c475329a2772f6b26b
dcd9f488bd62ba0ee403b07a97e40b9ffd63a0eff61091588c913b16d5153d48
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=6.2.2 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: text/css
content-length: 210
server: Apache
last-modified: Tue, 25 Apr 2023 09:51:27 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F102_2B9B:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.4
213.186.33.87200 OK 31 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.4
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (65447)
Hash 0e850a69bc7fd0acc2e92ce6eee87959
8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c
afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.4 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 31049
server: Apache
last-modified: Tue, 25 Apr 2023 09:51:26 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F102_2BA1:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/awb-icons.woff
213.186.33.87200 OK 20 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/awb-icons.woff
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type Web Open Font Format, TrueType, length 20336, version 1.0\012- data
Hash 3a734b9c944534c4cf328ad70957c1c7
2ddd01e1efee01c90f63e646e4acd74ed4e4d5a3
370c8c8b69b06cb4193000e87c36d9efb2d55dcf1ef270cdea0ecc47d1aa3a61
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/awb-icons.woff HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/x-font-woff
content-length: 20336
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
x-iplb-request-id: 5B5A2A9A:412D_D5BA2157:0050_64C9F102_571E:24AD0
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-regular-400.woff2
213.186.33.87200 OK 13 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-regular-400.woff2
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type Web Open Font Format (Version 2), TrueType, length 13264, version 331.-31261\012- data
Hash 8eb1b3e8681657092171b6aa809493c2
aa6cc2d47049bc05505d6ec1cd5237558b04d6e3
65ae05cb1187b6eacddcc464141af208d9c172aeed20c74c3bf7663b530c5c0d
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-length: 13264
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
x-iplb-request-id: 5B5A2A9A:741B_D5BA2157:0050_64C9F102_071B:10DF6
x-iplb-instance: 29594
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash a6adbcfbd8d01453ada1b2f2dd2cb565
04bd5a02619be93f2118d7c8581dc318a40fb1f0
cf4c251c041e83b2dd0d899217d4765e7d8c80b531609e24704732dafbac1662
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Aug 2023 06:00:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 18b518e3fc6fa5fe98bfe54afd337d0d
91cfc3e7b1afdc281899bc1c067d35e71f2701a1
d5849431a8b917524089b33ce0e437c4b0986d6924e9407f7eb249cf3c7140f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Aug 2023 06:00:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 18b518e3fc6fa5fe98bfe54afd337d0d
91cfc3e7b1afdc281899bc1c067d35e71f2701a1
d5849431a8b917524089b33ce0e437c4b0986d6924e9407f7eb249cf3c7140f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Aug 2023 06:00:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 18b518e3fc6fa5fe98bfe54afd337d0d
91cfc3e7b1afdc281899bc1c067d35e71f2701a1
d5849431a8b917524089b33ce0e437c4b0986d6924e9407f7eb249cf3c7140f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Aug 2023 06:00:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 18b518e3fc6fa5fe98bfe54afd337d0d
91cfc3e7b1afdc281899bc1c067d35e71f2701a1
d5849431a8b917524089b33ce0e437c4b0986d6924e9407f7eb249cf3c7140f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Aug 2023 06:00:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.dr-krassoulia.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
213.186.33.87200 OK 4.8 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (13326)
Hash 5cfa2b481de6e87c2190a0e3538515d8
0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68
9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 4795
server: Apache
last-modified: Tue, 25 Apr 2023 09:51:26 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F102_2BA4:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2
213.186.33.87200 OK 77 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31261\012- data
Hash 9ab1ccbf4c2b583b1d848018561da0a9
68ac09c5daef91dd2220ef3d063cd757989e0982
83238a9c118b388bee1eede2f1c04b6441ac0c4a543f502457e3d2309a9d3e99
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-length: 76736
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
x-iplb-request-id: 5B5A2A9A:BBEE_D5BA2157:0050_64C9F102_0BD6:10DF7
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
213.186.33.87200 OK 78 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type Web Open Font Format (Version 2), TrueType, length 78212, version 331.-31261\012- data
Hash 8c4f474a3aaa695346196b1f33fab616
abc1ae262d760e104a5a5cb68614ac119fd0db18
ef2369c82b6ec19bcf4fe76799d94edc43604e164c0f73978059536159845441
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-length: 78212
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
x-iplb-request-id: 5B5A2A9A:C271_D5BA2157:0050_64C9F102_254F:24ACD
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-includes/css/dist/block-library/style.min.css?ver=6.2.2
213.186.33.87200 OK 13 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-includes/css/dist/block-library/style.min.css?ver=6.2.2
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (48325)
Hash 47cdb0e81ea341ad27a1a0b0ba6b02d8
6195a67b0b7f7919f07309e2c8ce71f3d4729d03
aca566587618e75fa291a419c7c430be02e03fc72f6105658c1bc8e7d59a65e4
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.2.2 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: text/css
content-length: 12736
server: Apache
last-modified: Tue, 25 Apr 2023 09:51:27 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:412D_D5BA2157:0050_64C9F102_5729:24AD0
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
213.186.33.87200 OK 1.5 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (3344), with no line terminators
Hash 6ee34d5acab69cb428cb2d5f4eb00d17
3b7ba1fea4b197f7363d0631ebb70ff1247594d5
daf181ab9ead5372eefb6fe5d87704d7abdbfa6c09e4c79a2a2f688c6fac5ada
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 1498
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:741B_D5BA2157:0050_64C9F102_071D:10DF6
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1
213.186.33.87200 OK 696 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (1804), with no line terminators
Hash bac3560dab3ca8b139377e72064d9ee4
604701e472b30fac304ebdbb54aa2260612a231f
2e52dea09005063c3ff69fc36c11c7008b8efa5d4a97e38e7161ffaf0b0aedb6
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 696
server: Apache
last-modified: Mon, 01 Aug 2022 18:47:22 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F102_2BA5:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
213.186.33.87200 OK 7.0 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type HTML document, Unicode text, UTF-8 text, with very long lines (18027), with no line terminators
Hash d701ab95a3c36cb85620eb9949cbf16d
2f28d4e481eed629974c58d8f01b4f983b82bebe
072d2a46607c107cdd7f20d3e5410963b281151df62444ad775ade8361cfa6cc
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 6954
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:C271_D5BA2157:0050_64C9F102_2551:24ACD
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=5.8.1
213.186.33.87200 OK 472 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=5.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (1394), with no line terminators
Hash 6c6ba5587a8892a5036d0a28dd051155
d5a2b19710c92ae9aa0a942539f6773a204d4960
93a897eedca2d924b738067a03528933e4eb07d4c2f78d65276b6576b7f4d370
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=5.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 472
server: Apache
last-modified: Mon, 01 Aug 2022 18:47:06 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:BBEE_D5BA2157:0050_64C9F102_0BE1:10DF7
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
213.186.33.87200 OK 9.6 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (34773), with no line terminators
Hash 2da6e4c018f2e2f1dfea2ebaa3ae11d5
b885a7a727ad25230a3bcdd3314da471df899371
ed00ca0964cbfca3e3a28ff14ba988ead8846f695adc310f8d3ad796ffed28fb
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 9619
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:741B_D5BA2157:0050_64C9F102_071E:10DF6
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
213.186.33.87200 OK 4.1 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (13723), with no line terminators
Hash 05440d2fd20d5cad51df4b4ed447435d
ea9dba717a70c0afeb61f7a046c6682a62eed827
2b01072bc605e2004b2013b56510475dba15fc901809de67475269d32fb3384d
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 4124
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F102_2BA7:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion.js?ver=3.8.1
213.186.33.87200 OK 1.8 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion.js?ver=3.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (4737), with no line terminators
Hash be169937d5d0883137e2aaca364cd2b7
6234907f10f24a10c177ebce97f30774da27b135
760fe5e9d4fdf4fe5962edc3926816d8051faf168aa36ea467cdf7a80e09ede2
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion.js?ver=3.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 1758
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:412D_D5BA2157:0050_64C9F102_5730:24AD0
x-iplb-instance: 29576
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.227200 OK 17 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.227:443
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1D:CB:14:A0:BA:14:B6:03:59:6D:D5:E2:F5:4C:73:E3:FF:73:57:90
ValidityMon, 10 Jul 2023 08:21:12 GMT - Mon, 02 Oct 2023 08:21:11 GMT
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.dr-krassoulia.com/
Origin: http://www.dr-krassoulia.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Jul 2023 15:16:35 GMT
expires: Fri, 26 Jul 2024 15:16:35 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
age: 485039
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.dr-krassoulia.com/wp-content/uploads/fusion-styles/282b346a78242159e57e8ea4a9145e48.min.css?ver=3.8.1
213.186.33.87200 OK 142 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/uploads/fusion-styles/282b346a78242159e57e8ea4a9145e48.min.css?ver=3.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (44937)
Size 142 kB (141585 bytes)
Hash 282b346a78242159e57e8ea4a9145e48
95af6e49f6c12a1ac8856bf9ae711e68caa8022d
a77f3403bac0367ee894af4697c658b69167b7347e88177ba6e6f5e812eaacfe
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/uploads/fusion-styles/282b346a78242159e57e8ea4a9145e48.min.css?ver=3.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: text/css
transfer-encoding: chunked
server: Apache
last-modified: Tue, 20 Sep 2022 16:52:49 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:4CD7_D5BA2157:0050_64C9F102_099B:24AC9
x-iplb-instance: 29576
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1D:CB:14:A0:BA:14:B6:03:59:6D:D5:E2:F5:4C:73:E3:FF:73:57:90
ValidityMon, 10 Jul 2023 08:21:12 GMT - Mon, 02 Oct 2023 08:21:11 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.dr-krassoulia.com/
Origin: http://www.dr-krassoulia.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Jul 2023 04:50:55 GMT
expires: Fri, 26 Jul 2024 04:50:55 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 522579
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
213.186.33.87200 OK 788 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type HTML document, ASCII text, with very long lines (1767), with no line terminators
Hash 882a4f6998e5d6878f6f53f15008e525
2f73282313194a5ea50186b3d94842b47f941274
233cb2b905dec5df68df039e52e26980f674880fee51a8f6b7f75486760f1f3e
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 788
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F102_2BAD:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.7.2
213.186.33.87200 OK 6.5 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.7.2
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (22474), with no line terminators
Hash b7d73997299e82931c7732a4c2afc719
731ad7365e78ab837ebaa6c916e8729e7eb65693
f2d424362aca158ad49da19b48c212e687fbed93ece9fed06fcf8871f5f64c5f
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.7.2 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 6453
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:412D_D5BA2157:0050_64C9F102_5735:24AD0
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
213.186.33.87200 OK 3.8 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (10862), with no line terminators
Hash bbd737e5303f22d6b2bbd4c4e9bfd2c6
f7f3712290245cc6f76dca570a3117681cd86546
23263a19c0dc4b29036a56f858a2b6f915ea0e415ed7c46071a071f170626c88
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 3831
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:BBEE_D5BA2157:0050_64C9F102_0BE2:10DF7
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
213.186.33.87200 OK 750 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (2283), with no line terminators
Hash f04e95c229f0934515e1f800227f92a0
77f55dfe4505c3f241ae0845ad5dcdc8b807b8ba
c8c066c331d08eaf858338789a0499c5ad85cfc6325d7685ea8a9463750d8684
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 750
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:741B_D5BA2157:0050_64C9F102_0721:10DF6
x-iplb-instance: 29594
www.googletagmanager.com/gtag/js?id=UA-166277019-1
142.250.74.168200 OK 66 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-166277019-1
IP 142.250.74.168:443
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintDD:70:56:93:2B:32:FA:EA:25:D4:3B:17:50:BC:E0:4A:6A:BA:DB:8B
ValidityMon, 10 Jul 2023 08:16:15 GMT - Mon, 02 Oct 2023 08:16:14 GMT
File type ASCII text, with very long lines (4289)
Hash f4c2449b09d911b85447c56df4e18cd9
29269355e80a9e1766b6db00725125f35cd3e3a2
e10f4f0ca555eea093af6c80cbb7f08b19ac261a74135d322b1c7f6e932635c2
GET /gtag/js?id=UA-166277019-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 02 Aug 2023 06:00:34 GMT
expires: Wed, 02 Aug 2023 06:00:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 66538
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
213.186.33.87200 OK 373 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (741), with no line terminators
Hash 9f2723484a9765b187093c4207d6bf3c
1c94ab374c065911f70cab99149a306ebe475973
bd6def1ae1509946499390f95acaa1fd39a76452c8312f165d2bc0b791c9e0ef
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 373
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:C271_D5BA2157:0050_64C9F102_2553:24ACD
x-iplb-instance: 29576
dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
213.186.33.87301 Moved Permanently 12 kB URL User Request GET HTTP/2 dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
IP 213.186.33.87:443
Certificate IssuerLet's Encrypt
Subjectdr-krassoulia.com
Fingerprint7F:05:7F:01:A9:99:03:FF:4C:DE:DE:9D:30:08:E1:2F:6C:AF:E6:7D
ValiditySat, 24 Jun 2023 14:18:53 GMT - Fri, 22 Sep 2023 14:18:52 GMT
File type Web Open Font Format (Version 2), TrueType, length 12136, version 1.0\012- data
Hash cae549261ca235f6a254f6eed560ba20
ee867ac8b467c51d0455ab3438e04fbee79c2d87
3c478d59cd9c14ded18169933a9703a61220b737631fa08035f626f45867c134
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-includes/customize/ntflx/d41d8cd98f00b20/login.php HTTP/1.1
Host: dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 02 Aug 2023 06:00:32 GMT
content-type: text/html; charset=UTF-8
server: Apache
x-powered-by: PHP/7.4
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
X-Firefox-Spdy: h2
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
213.186.33.87200 OK 25 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5ff10e1a302205d8116e208ebc7b9a95
e3ef9f9aa49bb5b8535d7b36bab479cc0057cd34
990f2544353261a345a25a88644c6b30411fdbb6163358bf8872787908e275e6
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 25291
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:4CD7_D5BA2157:0050_64C9F102_099D:24AC9
x-iplb-instance: 29576
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:443
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1D:CB:14:A0:BA:14:B6:03:59:6D:D5:E2:F5:4C:73:E3:FF:73:57:90
ValidityMon, 10 Jul 2023 08:21:12 GMT - Mon, 02 Oct 2023 08:21:11 GMT
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.dr-krassoulia.com/
Origin: http://www.dr-krassoulia.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Jul 2023 15:21:56 GMT
expires: Fri, 26 Jul 2024 15:21:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 484718
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
213.186.33.87200 OK 849 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (2176), with no line terminators
Hash e9256563e9658d30f484407ffb8baf3a
ef00b51debbc367d6039482ef311c115496d5d7d
fa34de993dea91eb0120c3745378192fa1177ba8ec5772e08632318d1d5e1267
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 849
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:BBEE_D5BA2157:0050_64C9F102_0BEB:10DF7
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
213.186.33.87200 OK 12 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (21007), with no line terminators
Hash e8f0b5bf9901ca96dc1627c067c724e1
73b4c97b472af0c6bfdd547987f7e5abed225148
9da08311d1e30a9d018f87c0d9b2b0c4f0b3b4b451bbf49b2fbb3664fbf1982a
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 12009
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F102_2BB6:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
213.186.33.87200 OK 1.1 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (2625), with no line terminators
Hash d0335de8fa5ae1ee5434fc3d77ebbfb5
3633b9c3d80e1a9512c2256d529a82db7aa787f1
cce83fa2c5096e414c0e32c9fc07ba011e2f4d67a51f9c4155651122329ec0dc
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 1145
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:412D_D5BA2157:0050_64C9F102_5743:24AD0
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
213.186.33.87200 OK 2.2 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (6785), with no line terminators
Hash 6fb516503ad779228bc4ce728695f863
4327965b2c094d7b2e0723e98fdc5278241faba5
e1ad0b4138c80c3d001287d48a3915724c963ef85787df537a8de61f906c5f8e
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 2221
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:741B_D5BA2157:0050_64C9F102_0725:10DF6
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
213.186.33.87200 OK 890 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (3377), with no line terminators
Hash 9ced60fe6caba9d11e754628a712d540
9a2e7fd006e1bc41db15b9ea08ff75d2f8c6a854
ea2dd31704608166bfd31e6c1b54027061ea568cd9aa1163656843a5907ac45d
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 890
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:C271_D5BA2157:0050_64C9F102_2558:24ACD
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
213.186.33.87200 OK 2.1 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (7238), with no line terminators
Hash cd12af047fe9cf04e7bf65c29710c652
e6fca3f341971973c4c2d17b366028bdeb7f670f
93d5f2281324f8a87ce2bdf811d8d1fd5ca4781618754a490a0fce0f166d479c
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 2092
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:4CD7_D5BA2157:0050_64C9F102_099E:24AC9
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1
213.186.33.87200 OK 1.4 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (6494), with no line terminators
Hash f5646030b34ac534cafa20b39a5e194c
047c8d5624736f81e1b8454dfbf1b0b54731adbc
cb56816d72e7289b2aab8ba19bd1bdb4708cbbc7e70d7f38f9138a4dd10215a5
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 1448
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:BBEE_D5BA2157:0050_64C9F102_0BEE:10DF7
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1
213.186.33.87200 OK 323 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (849), with no line terminators
Hash 4e7b623b84397f8d25cfd44c5fe184d8
8b8f64f6dc4f701652174e99e86d1e9554216fa6
4ea735c25bb36d6130e169c43dd545f9ab091b791672b1538046ebedef3308f6
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 323
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F102_2BBA:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
213.186.33.87200 OK 363 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (945), with no line terminators
Hash bc1fba9549e2cc1e4e558c81c8c20a5c
e44554d05bff5d21a140226f12a00712c94aa46c
45a6eea93903fe37410887ca5eb4605572ecfaf1968387365ec9ed9331a36487
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 363
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:412D_D5BA2157:0050_64C9F102_5747:24AD0
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/lazysizes.js?ver=6.2.2
213.186.33.87200 OK 3.6 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/lazysizes.js?ver=6.2.2
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (8005), with no line terminators
Hash ae73adf6e66278f72e02325fc0666d0c
18c0ffc7a4abda763ddb0599d4a3faba475ca744
c023a36431f7d6f99fb694271b2e2680103597064824b55b52fa40a00bed11ad
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/lazysizes.js?ver=6.2.2 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 3584
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:741B_D5BA2157:0050_64C9F102_0726:10DF6
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=7.8.1
213.186.33.87200 OK 218 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=7.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (413), with no line terminators
Hash 28e70f0d9979566a7bbdf0e4ebf349f4
cd277b7405ea21d86690136fdfc7d0860a22f4ec
61e7bb6d0210c308eb1f6153f18b4063eb715fde885b7d20b4d209d3fcb5a217
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=7.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 218
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:C271_D5BA2157:0050_64C9F102_2559:24ACD
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-crossfade-images.js?ver=7.8.1
213.186.33.87200 OK 190 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-crossfade-images.js?ver=7.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (418), with no line terminators
Hash 10a3e31b05e6113064560fcdf3e9adf9
d3fadfc0a9959fe3f64ae41cec5089d2dc1668b0
80e9a74251b9a8f1f7e72a0ea7cbd8905e4777b931e92b09f545087161fa0b37
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-crossfade-images.js?ver=7.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 190
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:BBEE_D5BA2157:0050_64C9F102_0BEF:10DF7
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=7.8.1
213.186.33.87200 OK 805 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=7.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (1974), with no line terminators
Hash 421f5c919b4d3e01bb02d7598986cbdf
1ce33ece9c2a1e3ed1a009fbea3b0d29d03fe18b
893ed74f27210911877234fad64cae770cf4af4b2b9b2c75b80d401c43f281d1
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=7.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 805
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:4CD7_D5BA2157:0050_64C9F102_09A0:24AC9
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=7.8.1
213.186.33.87200 OK 343 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=7.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (886), with no line terminators
Hash 9597ac92f94c363a5ba62227c86612d2
8eb91f7a1a08b2a2624beed682b996ef98dea329
bf3722b93fa395dc556c14f331f86a9d5e31fa813e46f0cfcb8afd19fae33034
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=7.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 343
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F102_2BBE:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=7.8.1
213.186.33.87200 OK 259 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=7.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (503), with no line terminators
Hash e7c505cfd6b030786c803e5c01144678
8d4e381b849e39ca38690d5740a363101e8cc120
6afaae08a9346fc9ca891d0d80f8483905c1421bca9f918506150566d3912e9a
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=7.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 259
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:412D_D5BA2157:0050_64C9F102_574B:24AD0
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-live-search.js?ver=7.8.1
213.186.33.87200 OK 1.0 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-live-search.js?ver=7.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (3069), with no line terminators
Hash 1997173539dac9baa521c27f0a9d0483
5b23810c9245539e1b873edb49aa6ceb7903fe1c
c9bf057820b3b0223c468e08beb0d41a12b451e224308149bc05f0d4a607fcab
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-live-search.js?ver=7.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 1030
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:741B_D5BA2157:0050_64C9F102_0727:10DF6
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-blog.js?ver=6.2.2
213.186.33.87200 OK 2.2 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-blog.js?ver=6.2.2
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (7936), with no line terminators
Hash 74eda6edd714f5ecc691eee74c1232f9
9cdb3a6d38d966cd0bbd8134384425e244498d5b
b464813ddd6410471d24a6db4a472721656f2571a8d1035d1a8af99d3f2d1f5a
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-blog.js?ver=6.2.2 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 2152
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:C271_D5BA2157:0050_64C9F102_255C:24ACD
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=6.2.2
213.186.33.87200 OK 195 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=6.2.2
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with no line terminators
Hash 00db1636af5b159f0aaab9600ae7ebfb
5dfdf5da42d2b1a87eaa5fb24bb430d8d0a1aae6
eb6481e44617b3e40d345b2df5e20965503b4ab87c9346a43894f93a601ccde7
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=6.2.2 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 195
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:BBEE_D5BA2157:0050_64C9F102_0BF4:10DF7
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=7.8.1
213.186.33.87200 OK 1.1 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=7.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (6070), with no line terminators
Hash e3d7b51ab0192ff754021c69f72e9191
5b1f0ab6cc37444c94846f9817516e2930f77321
579683e317a76a9a6758e42680b394e80957cbdd2863c25abac9a875852abfc7
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=7.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 1136
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F102_2BBF:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-content/plugins/fusion-builder/assets/js/min/general/awb-off-canvas.js?ver=3.8.1
213.186.33.87200 OK 3.5 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/plugins/fusion-builder/assets/js/min/general/awb-off-canvas.js?ver=3.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (12617), with no line terminators
Hash 6dd79f8c17e39ca370d1254336d3e32e
38843b02847b366b92598ab186ded58c7b71c293
d8c519e27f603a4eb131526c2a93cdade281348b8efc845a1007e9a29ffdfef4
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/awb-off-canvas.js?ver=3.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 3501
server: Apache
last-modified: Mon, 01 Aug 2022 18:47:22 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:4CD7_D5BA2157:0050_64C9F102_09A1:24AC9
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=7.8.1
213.186.33.87200 OK 460 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=7.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (1017), with no line terminators
Hash cfe0fe88b9498b65fd3e97e58e4b10d6
888dcf9d734cecc6a726fe110ae629a31bb30195
2b2c2f9810fbe4d8643c2f6b9359daa7dd67b78cffa63e6746202c76d068547e
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=7.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 460
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:412D_D5BA2157:0050_64C9F102_574E:24AD0
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=7.8.1
213.186.33.87200 OK 4.0 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=7.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (32043), with no line terminators
Hash eedf3277f99aacd8fd5ed78a31d9b43e
18ba01e2be65b237a4f08e117cf57371d17cddc0
80669a9bb1655e529ea0f150945f879706df8fc3957bc1c02d07cdbb6862f60b
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=7.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 4012
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:741B_D5BA2157:0050_64C9F102_0728:10DF6
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=7.8.1
213.186.33.87200 OK 6.8 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=7.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (39621), with no line terminators
Hash bc02128f03ae119be9d95331f074dd2c
ab03948afde4e7eb13fdf2a3e7c81985ba41837a
11181d395c0be8cd6705515ab1e773e64dadf2eb342badf535ebe21d3825897f
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=7.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 6839
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:C271_D5BA2157:0050_64C9F102_255E:24ACD
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=7.8.1
213.186.33.87200 OK 344 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=7.8.1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (845), with no line terminators
Hash 6406005bd9b20ee5e89e4af58b01af6a
b0c1d3c571624066d9db0c8983b8206d177c1268
b66b53112e230d6a90572fd4af0506b89a3021fedad6e9395ad85dc7a3b32094
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=7.8.1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 344
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F102_2BC0:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
213.186.33.87200 OK 1.9 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (6079), with no line terminators
Hash d6b068c869068c794673ab75fe9ca3a6
35eddd7409164b5e68364bcb0650249eacabdb46
0925ff0405f3cdb2fa37bbd7fe7431e77451c294cf8b2e28c9497a18dc7894a9
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 1925
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:412D_D5BA2157:0050_64C9F102_5752:24AD0
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
213.186.33.87200 OK 1.1 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (3544), with no line terminators
Hash f63f0c13c1315b3572d40216785f9668
0e6e98e2e5e74efb192b0c52ec5ba3d4a1edd7aa
4cb4122592bfa905b2f19c491d0beb0f47a6e609694998e2f002e5e5d403b521
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 1064
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:4CD7_D5BA2157:0050_64C9F102_09A2:24AC9
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
213.186.33.87200 OK 256 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (496), with no line terminators
Hash 9d8fca1e79a0b1d4d48389f4e7afdf42
0dc6347a00d22ef9db8ff3f5dce989ce0341f314
709432d669fa084fba23a097defbdecc8097a07717c30ac6f915314bf2a05933
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 256
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:38 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:741B_D5BA2157:0050_64C9F102_0729:10DF6
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
213.186.33.87200 OK 1.1 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (2714), with no line terminators
Hash fadc46774c7712da7f0b02b5d2db51ed
43dd8897810d67456494ddd42a8c9e96a6160e16
5c569522330e4e6b040229701ae98650839c5baa9912e15f821ffef8341187f5
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 1066
server: Apache
last-modified: Mon, 01 Aug 2022 18:45:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:BBEE_D5BA2157:0050_64C9F102_0BF8:10DF7
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
213.186.33.87200 OK 453 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (1066), with no line terminators
Hash 536733bc90192773634d054b1aece98d
e53968b49ce7ce90aa985ec1257a3090aa2771b3
0db4581da25e31921f01cc132b22a55b140c1b6e4291dbe0b74e18cbc1499b54
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 453
server: Apache
last-modified: Mon, 01 Aug 2022 18:47:22 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3CE2_D5BA2157:0050_64C9F102_2BC2:6FED
x-iplb-instance: 29585
www.dr-krassoulia.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
213.186.33.87200 OK 675 B URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type ASCII text, with very long lines (2069), with no line terminators
Hash a3304c9c1171401d80cace2144f8adc3
3a140da1c55015b949d1b02a18f853eb567dacd7
9a0a34bc67f5d3623591214473ac2d449be18a8ce1cb5e531b185ef22a09b31f
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1 HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:34 GMT
content-type: application/javascript
content-length: 675
server: Apache
last-modified: Mon, 01 Aug 2022 18:47:22 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:C271_D5BA2157:0050_64C9F102_255F:24ACD
x-iplb-instance: 29576
ocsp.sectigo.com/
104.18.15.101 471 B IP 104.18.15.101:0
Hash 93bb3cabd9a9f7745732d61a3f123116
ea3205044faf9995233ec2c4b1356c60f53546d2
7b494b431ee6e75e8879d598e824a681c2bdc1d653b066e6e2bf7de14ab09eed
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 02 Aug 2023 06:00:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 31 Jul 2023 16:09:47 GMT
Expires: Mon, 07 Aug 2023 16:09:46 GMT
Etag: "ea3205044faf9995233ec2c4b1356c60f53546d2"
Cache-Control: max-age=467951,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7f0419f24fc0b529-OSL
www.dr-krassoulia.com/wp-content/uploads/2020/05/logo_dr_alexandre_krassoulia.png
213.186.33.87200 OK 15 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/uploads/2020/05/logo_dr_alexandre_krassoulia.png
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type PNG image data, 262 x 98, 8-bit/color RGBA, interlaced\012- data
Hash 9556f6a77fcbf3bc51bfca12044e6c81
0a097008ed46ec4e569f248428826712de073b2a
f5d4b217d7cace723ab1093cf67673fb8c41f30baaa0cdc00213903052b0ad89
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/uploads/2020/05/logo_dr_alexandre_krassoulia.png HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:35 GMT
content-type: image/png
content-length: 14797
server: Apache
last-modified: Tue, 12 May 2020 17:14:00 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:34 GMT
x-iplb-request-id: 5B5A2A9A:4CD7_D5BA2157:0050_64C9F102_09A3:24AC9
x-iplb-instance: 29576
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash a6adbcfbd8d01453ada1b2f2dd2cb565
04bd5a02619be93f2118d7c8581dc318a40fb1f0
cf4c251c041e83b2dd0d899217d4765e7d8c80b531609e24704732dafbac1662
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Aug 2023 06:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 18b518e3fc6fa5fe98bfe54afd337d0d
91cfc3e7b1afdc281899bc1c067d35e71f2701a1
d5849431a8b917524089b33ce0e437c4b0986d6924e9407f7eb249cf3c7140f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Aug 2023 06:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.15.101 471 B IP 104.18.15.101:0
Hash 93bb3cabd9a9f7745732d61a3f123116
ea3205044faf9995233ec2c4b1356c60f53546d2
7b494b431ee6e75e8879d598e824a681c2bdc1d653b066e6e2bf7de14ab09eed
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 02 Aug 2023 06:00:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 31 Jul 2023 16:09:47 GMT
Expires: Mon, 07 Aug 2023 16:09:46 GMT
Etag: "ea3205044faf9995233ec2c4b1356c60f53546d2"
Cache-Control: max-age=467950,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7f0419f26a4e0b55-OSL
www.multiesthetique.fr/img/menu/social_icons/favicon_FR.svg
54.230.111.51200 OK 457 B URL GET HTTP/2 www.multiesthetique.fr/img/menu/social_icons/favicon_FR.svg
IP 54.230.111.51:443
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Certificate IssuerSectigo Limited
Subject*.multiesthetique.fr
Fingerprint90:AB:85:60:1E:C0:40:97:AC:D5:0F:9A:1D:47:B8:BB:7D:B1:10:1C
ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 22 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (409)
Hash 71aecb46faf1ff6e71172d81b78f3762
d95d98739b92a6c81248c3dd0e6fddd46157b479
5f73800b9b5498a80e08cb3372e2d54cc66574593c57faaff2c87c95469a2f31
GET /img/menu/social_icons/favicon_FR.svg HTTP/1.1
Host: www.multiesthetique.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 457
date: Tue, 16 May 2023 16:37:13 GMT
server: Apache
last-modified: Wed, 08 Feb 2023 14:17:21 GMT
etag: "36b-5f430ec24de40-gzip"
cache-control: max-age=7776000
expires: Mon, 14 Aug 2023 16:37:13 GMT
content-encoding: gzip
x-ua-device: all
x-varnish: 575819713 298190369
via: 1.1 varnish (Varnish/7.1), 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
accept-ranges: bytes
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cl-o0tD1bpceu14ozN5yBp5sw9FLD82xXe8MZfY8JMC7flrLiBRdQA==
age: 6701001
X-Firefox-Spdy: h2
www.multiesthetique.fr/img/menu/social_icons/instagram.svg
54.230.111.51200 OK 10 kB URL GET HTTP/2 www.multiesthetique.fr/img/menu/social_icons/instagram.svg
IP 54.230.111.51:443
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Certificate IssuerSectigo Limited
Subject*.multiesthetique.fr
Fingerprint90:AB:85:60:1E:C0:40:97:AC:D5:0F:9A:1D:47:B8:BB:7D:B1:10:1C
ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 22 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (13511)
Hash ff3c071f79a1975bd64b755be76e277f
31b5186d663d4c31cc9128763544bc1b7510a0df
83d56bff2e48206dd4d7e4dbe2a67df83984367f68b8283c37332459cd6ac140
GET /img/menu/social_icons/instagram.svg HTTP/1.1
Host: www.multiesthetique.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 10493
date: Tue, 16 May 2023 20:37:47 GMT
server: Apache
last-modified: Wed, 08 Feb 2023 14:17:21 GMT
etag: "363d-5f430ec24de40-gzip"
cache-control: max-age=7776000
expires: Mon, 14 Aug 2023 20:37:47 GMT
content-encoding: gzip
x-ua-device: all
x-varnish: 577678007 242459819
via: 1.1 varnish (Varnish/7.1), 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
accept-ranges: bytes
vary: Accept-Encoding
x-cache: Miss from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tRLyaEzOGHSp69EGeZHQq2tKmAQwX-2fNqHTJ4HgBNVQQcY7wfgFRg==
age: 6686567
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.227:443
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1D:CB:14:A0:BA:14:B6:03:59:6D:D5:E2:F5:4C:73:E3:FF:73:57:90
ValidityMon, 10 Jul 2023 08:21:12 GMT - Mon, 02 Oct 2023 08:21:11 GMT
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.dr-krassoulia.com
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jul 2023 11:13:54 GMT
expires: Sun, 28 Jul 2024 11:13:54 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
age: 326801
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:443
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1D:CB:14:A0:BA:14:B6:03:59:6D:D5:E2:F5:4C:73:E3:FF:73:57:90
ValidityMon, 10 Jul 2023 08:21:12 GMT - Mon, 02 Oct 2023 08:21:11 GMT
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.dr-krassoulia.com
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Jul 2023 15:21:56 GMT
expires: Fri, 26 Jul 2024 15:21:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 484719
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-GDG27PT2V9&l=dataLayer&cx=c
142.250.74.168200 OK 76 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-GDG27PT2V9&l=dataLayer&cx=c
IP 142.250.74.168:443
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintDD:70:56:93:2B:32:FA:EA:25:D4:3B:17:50:BC:E0:4A:6A:BA:DB:8B
ValidityMon, 10 Jul 2023 08:16:15 GMT - Mon, 02 Oct 2023 08:16:14 GMT
File type ASCII text, with very long lines (4289)
Hash 796abe705ed425660d472ad4119446b4
6e2076ce892382cbc63efc60fcdf3a29263bd53a
85c647d8f736e4ce3cfa7c0d79f3f6db4b03a66b9925b3a9b4cc753799b3b2d7
GET /gtag/js?id=G-GDG27PT2V9&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 02 Aug 2023 06:00:35 GMT
expires: Wed, 02 Aug 2023 06:00:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76066
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.dr-krassoulia.com/wp-content/uploads/2020/05/logo_dr_alexandre_krassoulia@2x-400x150.png
213.186.33.87200 OK 22 kB URL GET HTTP/2 www.dr-krassoulia.com/wp-content/uploads/2020/05/logo_dr_alexandre_krassoulia@2x-400x150.png
IP 213.186.33.87:443
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Certificate IssuerLet's Encrypt
Subjectdr-krassoulia.com
Fingerprint7F:05:7F:01:A9:99:03:FF:4C:DE:DE:9D:30:08:E1:2F:6C:AF:E6:7D
ValiditySat, 24 Jun 2023 14:18:53 GMT - Fri, 22 Sep 2023 14:18:52 GMT
File type PNG image data, 400 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash df42fe29e9293675fec40b0a52bc6bf4
d4f638d23b91146ae2570586a4e9ec536c315821
37c8eca05deb66f524584024cb14a0e68b78d5eec44b4d3408b1b37653e4c3c8
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/uploads/2020/05/logo_dr_alexandre_krassoulia@2x-400x150.png HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 02 Aug 2023 06:00:35 GMT
content-type: image/png
content-length: 22210
server: Apache
last-modified: Tue, 12 May 2020 17:14:13 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:35 GMT
X-Firefox-Spdy: h2
www.dr-krassoulia.com/wp-content/uploads/2020/05/logo_dr_alexandre_krassoulia@2x.png
213.186.33.87200 OK 40 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/uploads/2020/05/logo_dr_alexandre_krassoulia@2x.png
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type PNG image data, 524 x 196, 8-bit/color RGBA, interlaced\012- data
Hash 30316bf9b4da3e21339dc67a570c8004
6f403202f03e68901dff37cd5b61ea7900c4f835
06c2304fd15212b673b73732006a70a6810c22bca358e291a97dee06ecb3e73f
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/uploads/2020/05/logo_dr_alexandre_krassoulia@2x.png HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Cookie: _ga_GDG27PT2V9=GS1.1.1690956035.1.0.1690956035.0.0.0; _ga=GA1.1.955493311.1690956035
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 02 Aug 2023 06:00:35 GMT
content-type: image/png
content-length: 40346
server: Apache
last-modified: Tue, 12 May 2020 17:14:12 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 02 Aug 2023 06:15:35 GMT
x-iplb-request-id: 5B5A2A9A:BBEE_D5BA2157:0050_64C9F103_0C27:10DF7
x-iplb-instance: 29594
www.dr-krassoulia.com/wp-content/uploads/2019/09/app3.jpg
213.186.33.87404 Not Found 77 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/uploads/2019/09/app3.jpg
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10088)
Hash c7d26b0f43b4edead18134d8d3bf8817
9f397832e6a29d9fe471ec22682d0b301f4ee1ba
66d08d00b12932776cbe2eabf270cf8d3b0b6de639e24ca83853efbe4bca8c14
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/uploads/2019/09/app3.jpg HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
date: Wed, 02 Aug 2023 06:00:36 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
server: Apache
x-powered-by: PHP/7.4
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.dr-krassoulia.com/wp-json/>; rel="https://api.w.org/"
x-iplb-request-id: 5B5A2A9A:C271_D5BA2157:0050_64C9F103_2574:24ACD
x-iplb-instance: 29576
www.dr-krassoulia.com/wp-content/uploads/2019/09/app2.jpg
213.186.33.87404 Not Found 77 kB URL GET HTTP/1.1 www.dr-krassoulia.com/wp-content/uploads/2019/09/app2.jpg
IP 213.186.33.87:80
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10088)
Hash c7d26b0f43b4edead18134d8d3bf8817
9f397832e6a29d9fe471ec22682d0b301f4ee1ba
66d08d00b12932776cbe2eabf270cf8d3b0b6de639e24ca83853efbe4bca8c14
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /wp-content/uploads/2019/09/app2.jpg HTTP/1.1
Host: www.dr-krassoulia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
date: Wed, 02 Aug 2023 06:00:36 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
server: Apache
x-powered-by: PHP/7.4
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.dr-krassoulia.com/wp-json/>; rel="https://api.w.org/"
x-iplb-request-id: 5B5A2A9A:4CD7_D5BA2157:0050_64C9F103_09A7:24AC9
x-iplb-instance: 29576
fonts.gstatic.com/s/anticslab/v16/bWt97fPFfRzkCa9Jlp6IacVcXA.woff2
216.58.207.227200 OK 12 kB URL GET HTTP/2 fonts.gstatic.com/s/anticslab/v16/bWt97fPFfRzkCa9Jlp6IacVcXA.woff2
IP 216.58.207.227:443
Requested by http://www.dr-krassoulia.com/wp-includes/customize/ntflx/d41d8cd98f00b20/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1D:CB:14:A0:BA:14:B6:03:59:6D:D5:E2:F5:4C:73:E3:FF:73:57:90
ValidityMon, 10 Jul 2023 08:21:12 GMT - Mon, 02 Oct 2023 08:21:11 GMT
File type Web Open Font Format (Version 2), TrueType, length 12136, version 1.0\012- data
Hash cae549261ca235f6a254f6eed560ba20
ee867ac8b467c51d0455ab3438e04fbee79c2d87
3c478d59cd9c14ded18169933a9703a61220b737631fa08035f626f45867c134
GET /s/anticslab/v16/bWt97fPFfRzkCa9Jlp6IacVcXA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.dr-krassoulia.com/
Origin: http://www.dr-krassoulia.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12136
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jul 2023 12:02:04 GMT
expires: Sun, 28 Jul 2024 12:02:04 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:27:59 GMT
content-type: font/woff2
age: 323910
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2