Report - alhelli.com/babtest/temp/mem/panel/admin.php

Report Overview

Submitted URL
alhelli.com/babtest/temp/mem/panel/admin.php
IP
192.185.32.24
ASN
#19871 NETWORK-SOLUTIONS-HOSTING
Submitted
2024-05-06 13:18:02
Access
public
Website Title
Page not found – Mirza Al Helli And Sons
Final URL
www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
322

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
stats.wp.com	2711	1997-03-28	2017-01-30	2024-05-05	810 B	14 kB	192.0.76.3
alhelli.com	unknown	2005-01-30	2016-02-16	2024-02-18	5.5 kB	2.7 kB	192.185.32.24
www.alhelli.com	unknown	2005-01-30	2016-08-18	2024-03-24	73 kB	2.0 MB	192.185.32.24
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-06	421 B	95 kB	142.250.74.136
pixel.wp.com	2545	1997-03-28	2017-01-30	2024-05-04	457 B	275 B	192.0.76.3
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-06	986 B	37 kB	142.250.74.170
i0.wp.com	3021	1997-03-28	2013-09-17	2024-05-05	1.6 kB	18 kB	192.0.77.2

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed
2024-05-06	medium	alhelli.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (63)

	URL	Size	First Seen	Last Seen
	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	32 B	2023-03-07	2024-05-19
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:05 Last Seen2024-05-19 05:21:42 Times Seen3475 Hash f28cdba8b1a33fab7b4935482c683e17 7fb92b438ae880e659636e12f78ecca1ab9dd1a9 76d9ab1fc9999540d0f7167df3325f71fbd86160eda576cb60f285b0e65d89a9 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	559 B	2024-05-06	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-06 15:18:05 Last Seen2024-05-06 18:20:55 Times Seen2 Hash 395f8c4a0857893b1919920c431fc537 da54c1d78d6c623fd5c822298b25cfeedadfd635 b3daa5d69ba4250378d2283a0fab212360c14d301bd2e77f51b0136d29129679 Loading...

	www.alhelli.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6	22 kB	2023-03-07	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:38 Last Seen2024-05-17 16:12:27 Times Seen1017 Hash 2ed97891e0a448815edd04a37a5d5da3 d79a3b0fff5930bf1a7838836157b35f94eb378c 5555617065279e031d5d4f93dfd8ce37aab481221c6c1d38eda5d90798cc4ea5 Loading...

	www.alhelli.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5	46 kB	2023-03-07	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:38 Last Seen2024-05-17 16:12:27 Times Seen1282 Hash 47caf35a29f15dd5c20a41298b3586ea c4ee5f891da78820029f9974a65e01a07d88f7eb d281c3057af206c0a210770246ef115057cd21081778be6229fd85f4a99d18bb Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	439 B	2024-02-18	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-18 17:40:10 Last Seen2024-05-06 18:20:55 Times Seen6 Hash 8d6b55e89f648b22b6b1e24984a0f019 b6f71bb5d6219104c7110600f1cb06ed3fbc55a6 3d8b4ccb5016cde8353014ea7b46093bf133156f8fd3eea9b0c2d7857f7ca814 Loading...

	www.alhelli.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0	16 kB	2023-04-01	2024-05-18
Pretty URL www.alhelli.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:28:26 Last Seen2024-05-18 04:50:59 Times Seen2841 Hash ee858e15db40066634ae2d7c3959fbf0 82d919c1c636bbad55ae555ce661f9c34a3a7cfc dc869996cbc8f47cab9aeb9523f81a7f420207a2601cce9ba45e9b7e0e261452 Loading...

	stats.wp.com/e-202419.js	7.3 kB	2024-01-05	2024-05-19
Pretty URL stats.wp.com/e-202419.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-05 19:19:44 Last Seen2024-05-19 08:30:46 Times Seen2702 Hash bd2d67186594b0e32223b293fdfcca55 b797a9d012c850b53a7ccc12211adcfbcd9ae0be 4f9f4e2e225088f9cf3b6b54aa421e0f776d1802255505d2f752e1f83f441641 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	1.2 kB	2023-08-07	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-07 17:48:48 Last Seen2024-05-06 18:20:55 Times Seen17 Hash 35b70e1d6d14a627274987938cff390d 538954c6e9e719884df2c83581e9aa69ad00f576 26e406072bf765834ff701ce9e5636a6aa40b96ac162d4caf5037b5f97520ef9 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	258 B	2023-08-07	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-07 17:48:48 Last Seen2024-05-06 18:20:55 Times Seen9 Hash 0e5104c29303a9936a2b164f79c4c842 c0cc4f846c4e274b7d8da06eac0ba9e30ecbb93c e51bde7da94e040fea15a72554502825f95815433d0d946a123e910dfe474256 Loading...

	www.alhelli.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2	8.2 kB	2023-03-13	2024-05-19
Pretty URL www.alhelli.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:32:06 Last Seen2024-05-19 06:28:05 Times Seen53604 Hash dda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4 Loading...

	www.alhelli.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0	6.6 kB	2023-11-03	2024-05-19
Pretty URL www.alhelli.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:42 Last Seen2024-05-19 06:28:07 Times Seen15724 Hash fd7ef2e4737acd74fd0dcdc3b515e304 0d792b33f12a48ee8aaaf2560a63a5682470645b 1d52e1ac7d3bc25a8b0ffc257153f9dd50249f96fe9a4df5e0d771241a69062c Loading...

	www.alhelli.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.8.3	9.6 kB	2023-08-09	2024-05-19
Pretty URL www.alhelli.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.8.3 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33:46 Last Seen2024-05-19 05:21:43 Times Seen10005 Hash ef56117d1bb5cc41aa6bd127a49c7640 b9c2ed774177fc0fceba5cb58113024b23fe4fb7 d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	137 B	2023-08-07	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-07 17:48:48 Last Seen2024-05-06 18:20:55 Times Seen9 Hash 553a373e7649a193b6123dfd16194931 fc0a49a5c93e006cae65d03d186353e1d4e3923b a0f6c52cd77d9287b0376b1e32b809761e68d8620abe4107607778d4051f4fd5 Loading...

	www.alhelli.com/wp-includes/js/dist/hooks.min.js?ver=2810c76e705dd1a53b18	4.3 kB	2024-04-03	2024-05-19
Pretty URL www.alhelli.com/wp-includes/js/dist/hooks.min.js?ver=2810c76e705dd1a53b18 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 08:25:08 Last Seen2024-05-19 06:28:06 Times Seen2434 Hash 072d3f6e5c446f57d5c544f9931860e2 ee6aa3d65b474309376468b24bb6f829a4514809 2cb546fbdda7995d374fffa4b2f6530bbcf57d014639ddf76de45df43d593045 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	135 B	2023-03-07	2024-05-19
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:50 Last Seen2024-05-19 08:09:17 Times Seen27027 Hash 3f82b089cf163a5417b3edb4687151f7 28436f92ab540ff08b12fdefddc7da67ba0f04f7 5ba9af6f12e99663f8f04285ef3d4ffd4cdbca820bccbc2dda9c40f805b5a850 Loading...

	www.alhelli.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188	701 B	2023-05-10	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-10 12:45:08 Last Seen2024-05-17 20:54:38 Times Seen6057 Hash 328b8123661abdd5f4a0c695e7aa9dcc 4164f78bb52e9f2bfbb7ae5fd519b4638063c1f0 27dd9b075cc59cf5f3c0f6ee075f4bd113782d81ce30a4f16aac669ecfdc4fa2 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	96 B	2023-03-07	2024-05-19
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:51 Last Seen2024-05-19 03:58:49 Times Seen10878 Hash eb3a538fd2a39c22198e72c3b9f498a7 c966ebdbd2701a0980a85671126664f3892d4f1e ac233233e7bcaf806041b243578fab081dced8a045d9a82756410da9ea2382a1 Loading...

	www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/geolocation.min.js?ver=8.8.3	1.3 kB	2023-10-17	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/geolocation.min.js?ver=8.8.3 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-17 11:52:50 Last Seen2024-05-17 18:02:14 Times Seen29 Hash 1204f7d7cbc17dcff571413da202ac99 076425fb62b029e4a0897f9ede7179079aeab0de c584f3b8095036eb4e078d3e59cb71495ce97ded194bd285d515f720c6657c82 Loading...

	www.alhelli.com/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.5.2	62 kB	2023-03-07	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.5.2 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:37:33 Last Seen2024-05-17 17:34:56 Times Seen531 Hash 075269e05d92f8cbe2e183c0be257e6b d83d180925a0b8ac2cba132948d1d991ce3833d1 695902fecfa33180f05f871e4f74dac4eaec8bb69fb656b8c1795652c4632ee2 Loading...

	www.alhelli.com/wp-includes/js/underscore.min.js?ver=1.13.4	19 kB	2023-03-08	2024-05-19
Pretty URL www.alhelli.com/wp-includes/js/underscore.min.js?ver=1.13.4 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-05-19 07:37:21 Times Seen43211 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	435 B	2023-03-07	2024-05-19
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:50 Last Seen2024-05-19 01:55:25 Times Seen2623 Hash 6d3fb02f90526fa664994848db387966 c81a52e84890c563a53c76fa62f38eb27175dccf 14e5b45ae7259f0ae964f80435cdf3869ec8b673e1b70ce3737d5f62131bb468 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	266 B	2024-05-06	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-06 15:18:05 Last Seen2024-05-06 18:20:55 Times Seen2 Hash 300ba1c918f2c05477fc0f767fe55327 db191f741be7344333a6da4bb527f19e1b39d0bc 3ed77be5d03ca74d5bf28716f64e6cf76525991b7eda47d2c01a9d6e770fd41d Loading...

	stats.wp.com/s-202419.js	9.7 kB	2023-12-11	2024-05-19
Pretty URL stats.wp.com/s-202419.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-11 11:38:13 Last Seen2024-05-19 05:21:42 Times Seen653 Hash 3d9b93cfc93d9ca7cc67a9b70ff4cded fb97ee69263ef5bfcce7a923f6b74888dd10932d d92c0cb8715f872b995e9166602b68fd389905b7942fe245ce0eaf9ae9743686 Loading...

	www.alhelli.com/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.5.2	21 kB	2023-03-07	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.5.2 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:06 Last Seen2024-05-17 17:34:56 Times Seen1096 Hash c6946dff4854d4611da8aef36666b938 9118198bd2a853baa4644c6e819427150ca35160 7028ef6262d35db7dc22b05df3cbb3e93595ce90cd340fdc356620d961b01224 Loading...

	www.alhelli.com/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.86	40 kB	2023-11-04	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.86 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-04 04:45:01 Last Seen2024-05-17 17:34:56 Times Seen187 Hash 466ec1a879697666c927c91d668c9f96 2acb5b0f53556ce717d4916835170d90afd85b2b 0041fa29afe7225f752448478bf5fd1c2b28de45b5d70a07c4b4cba227d42660 Loading...

	www.alhelli.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.20	410 kB	2023-12-13	2024-05-19
Pretty URL www.alhelli.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.20 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-13 00:38:34 Last Seen2024-05-19 05:21:43 Times Seen571 Hash 5a07507270b0eeab0b7d4251e3c42b3c 98bfa22886492cc2a53929425002039676302676 c5f3b2f654d2d8210a481c0164f0a53430cd09b77c34374fe23c9a03f5ad00fb Loading...

	www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.8.3	2.1 kB	2023-08-09	2024-05-19
Pretty URL www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.8.3 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33:46 Last Seen2024-05-19 05:21:43 Times Seen9981 Hash 6d3b3d63df025e97f370c5efab2c96da 78c0c8e7504f9314b2e9fd714bbab530af52f2af 8c0b5e384ae00c512f4bb1ba5e2fe622fab4bfc541c99555df38c19c329d3fe6 Loading...

	www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.8.3	14 kB	2023-08-09	2024-05-19
Pretty URL www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.8.3 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 18:07:41 Last Seen2024-05-19 01:57:04 Times Seen3554 Hash c3825b9d2bb7e067a90db543db343f68 7ef77fddc64dd62688f242c7ae9ce4e9516b1eaa 70bb06a0005a4c1776d94eb9216dfb3841a5722ae2ed0c930664378b7d5c9504 Loading...

	www.alhelli.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	88 kB	2023-11-03	2024-05-19
Pretty URL www.alhelli.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:43 Last Seen2024-05-19 08:30:45 Times Seen48996 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	2.3 kB	2023-03-07	2024-05-19
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:10:07 Last Seen2024-05-19 05:21:42 Times Seen8197 Hash f0bef95e258d5b84f82c5d4e29252176 eac5936c555c039bc38816d0916e13c0b364d797 a6c3ffec54ef5f2ca033b1fcdf84e1feac93437a3d8d4439667e9276ca2a9836 Loading...

	www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.8.3	2.1 kB	2024-04-11	2024-05-19
Pretty URL www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.8.3 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:25:47 Last Seen2024-05-19 05:21:43 Times Seen444 Hash 46747310c4ec46332841f072bbe5719e 8a6e051763612e07e0da6786653aba9b3ff500c3 5c5acf26e6ab72a6913bd3afb3cf5442b00aa9f374c73d9dc6e12c984cfbb66b Loading...

	www.alhelli.com/wp-content/plugins/timed-content/js/timed-content.js?ver=2.80	1.8 kB	2023-09-16	2024-05-06
Pretty URL www.alhelli.com/wp-content/plugins/timed-content/js/timed-content.js?ver=2.80 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-16 04:03:07 Last Seen2024-05-06 18:20:55 Times Seen53 Hash de818bd41aff94a0b6df668029f66773 fb6a283e14204b682a39f79619900da9f0066bc5 b1c1583e4d09c4a4b6ff02798082fcdee07feb5ca45514564db5582c4fdd0968 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	104 B	2023-03-07	2024-05-18
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:49 Last Seen2024-05-18 04:14:30 Times Seen2619 Hash 1a29eee38377876a5fef7fde6f714211 66e5281767a5e019dac163696dfe7753bba4fa20 319580ef5f2f38f9bce87b07075e029a56de1b38a312721ce079be855246570d Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	40 B	2024-05-06	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-06 15:18:05 Last Seen2024-05-06 18:20:55 Times Seen2 Hash 79cccbb5f91372dea2089609dc3959a3 3f15a4495928dc862879ca9a8eab2a444ae67f31 1df8df65f5456746c079f11f108924904d831f439ec58e8cda71c680a338490e Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	332 B	2023-03-07	2024-05-19
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:40 Last Seen2024-05-19 05:21:42 Times Seen9386 Hash 7d495bb1d6c246a2d57df3ab9332a3cc 6367d4f8addf48f2af1023b8176a2263bb424d01 df09a4f39d495e901a5479fce56c8ddec4f8a6acda1b3ceab7adc704fa439e32 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	91 B	2023-03-07	2024-05-17
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:18:06 Last Seen2024-05-17 17:34:55 Times Seen494 Hash f231cf3015cd0931ba33e825343b48bb d6cfcbf58092bcbaec13e419e264d9e2894bbd86 98de1de200c64542b0278f062765eb2e6536fafbee1cb221b3f20e7ca73bc709 Loading...

	www.alhelli.com/wp-content/plugins/photo-gallery/booster/assets/js/global.js?ver=1.0.0	9.5 kB	2024-02-18	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/photo-gallery/booster/assets/js/global.js?ver=1.0.0 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-18 17:40:11 Last Seen2024-05-17 16:12:27 Times Seen35 Hash 2c7284f4ed47a54704650cdd9a1d5ffb df608d3e42c1bf89876fe12f8533a174fc83f910 929d070b0eaefcdf6159171ec7604984b62fc0d3bace3097765e593de5cced5a Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	1.9 kB	2023-03-09	2024-05-17
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 11:51:17 Last Seen2024-05-17 18:56:44 Times Seen1076 Hash a6a94103c455260d260effefe81a41df 62fd5e0120b821cea7421087b3e7a9a5c4aafb2b b332c0be5b99fdfb2db165759cc14117b69e1881b75a5f6db8c9e9255f9194d1 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	152 B	2023-03-07	2024-05-19
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:09 Last Seen2024-05-19 05:21:43 Times Seen20511 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	311 B	2023-08-07	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-07 17:48:48 Last Seen2024-05-06 18:20:55 Times Seen17 Hash b488bf9100b352366ee14a4e588aaf8d d85d5ea6013b9b03b06fe4b6b2319ad1090a9033 1b637e1ea0f232a355577a6acd25496e3dcf90b6f5a89e7d209ba472e647444b Loading...

	www.alhelli.com/wp-content/uploads/fusion-scripts/606769ffc8c4d28ced256dbb4d2c5c90.min.js?ver=3.11.7	570 kB	2024-04-02	2024-05-06
Pretty URL www.alhelli.com/wp-content/uploads/fusion-scripts/606769ffc8c4d28ced256dbb4d2c5c90.min.js?ver=3.11.7 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-02 12:55:02 Last Seen2024-05-06 18:20:55 Times Seen6 Hash d3012efd56560e2e654f0513fa4605ff c61a2b0fd4614a055419f47c084c00345bf38ffb 5b1c4382f734e699a1cfb1dcff83772b19f79b14441c4350d133f1071798391e Loading...

	www.alhelli.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0	6.3 kB	2023-03-07	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:38 Last Seen2024-05-17 16:12:27 Times Seen1159 Hash 9365b9e965c8e638a21745217e5f2d5c 2a1964476db3f43551f24c1754e272b2917a934b e959dd8ec932148a2df2bc3f2d63d9fe02104910a31ed6dab421e96c03692088 Loading...

	www.alhelli.com/wp-content/plugins/translatepress-multilingual/assets/js/trp-frontend-compatibility.js?ver=2.7.6	777 B	2023-03-07	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/translatepress-multilingual/assets/js/trp-frontend-compatibility.js?ver=2.7.6 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:17 Last Seen2024-05-17 11:52:16 Times Seen568 Hash ab55c224299ea8f0fe7bf738772cc650 ce2274025a51bfdaefb4c2ebc65ebf5085103f38 b10ae8fe4c3d47d2975ec636e69f46b3240f0870a8b282c9585360c17e537002 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	129 B	2023-08-07	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-07 17:48:48 Last Seen2024-05-06 18:20:55 Times Seen17 Hash 67252b5691932e0ac0859708a4a689cb f7a2728dad505ee1df8e1ad5cfaa0b1d427f5f31 7d9a2bdb4a681a350d3528dba422ecc087e43dbbe0c68cc8a7ce4a60e98e01fd Loading...

	www.alhelli.com/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6	9.1 kB	2024-04-03	2024-05-19
Pretty URL www.alhelli.com/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 08:25:07 Last Seen2024-05-19 06:28:06 Times Seen2382 Hash a8127c1a87bb4f99edbeec7c37311dcd 9997a1745f48bdd233dbe9bd8164daa53eba105b f313d12ea6124bd28fc4a6b7163d253bb83d5aeab5edce594880c5c3df475cbc Loading...

	www.alhelli.com/wp-content/plugins/3d-flipbook-dflip-lite/assets/js/dflip.min.js?ver=2.2.32	253 kB	2024-02-18	2024-05-18
Pretty URL www.alhelli.com/wp-content/plugins/3d-flipbook-dflip-lite/assets/js/dflip.min.js?ver=2.2.32 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-18 17:40:11 Last Seen2024-05-18 00:02:49 Times Seen175 Hash c38e824205a2b0306261c1b31302bdda a240b2a875e5052ca45debbebd87723ebb7164c3 f044f24015dcdecb74ef693e5c19fc157bb86984d1fe2a2b96fcb3ec11ed99fd Loading...

	www.alhelli.com/wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js?ver=1.2.2	15 kB	2023-03-07	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js?ver=1.2.2 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:38 Last Seen2024-05-17 16:12:27 Times Seen1311 Hash 3fb461c1b082f494c9e0eaaafcf8bd72 55ff6230e8ec9d8c5b38657707d2f0bf5605ba0f 3e6e949591faad693c28eed80090b54c666ddb12dbb20af284acedb9f3b70834 Loading...

	www.alhelli.com/wp-content/plugins/photo-gallery/js/tocca.min.js?ver=2.0.9	4.1 kB	2023-03-14	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/photo-gallery/js/tocca.min.js?ver=2.0.9 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 09:05:08 Last Seen2024-05-17 16:12:27 Times Seen708 Hash cb77e412621df9035d5216fcb6b2b755 617e773c7eb884d48a1252ca75c7b2280d8c3077 82073b2a03f14052b32c5bf35eb5eaa39d92e134f6ae4a3ad17443351fd3efd1 Loading...

	www.alhelli.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.8.21	193 kB	2024-02-18	2024-05-17
Pretty URL www.alhelli.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.8.21 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-18 17:40:10 Last Seen2024-05-17 16:12:27 Times Seen47 Hash 0fce6c31da103bc14beb2d1dd21db78e 753a1613c788c33b9a3dbaa16e086a098a0b09fc 22b184b854451197831c9b89f041ca457434fbbadea6f437d1c015946c4d1f5d Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	94 B	2023-11-08	2024-05-19
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-08 00:42:21 Last Seen2024-05-19 06:28:07 Times Seen3626 Hash 02d7d8402b7ddb8e6fe47f2a35071e8d 174b5a8fe0ecdfa989fbf40f3ecd51f1d0117693 8a96c1a0a8b1c2a8eab8adfa21634b7f2c4226f6bc5322df1ab7efc4f1f1af7f Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	659 B	2024-04-02	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-02 12:55:02 Last Seen2024-05-06 18:20:55 Times Seen3 Hash 7d862cd314bd8c46a570ac7b454c1f07 63b53cb6fd7a628e5a3ae725fb8093f6ea684e66 cd01377addca5431cb61398a4171ac1757837f9647dd01b95845064b2b8ecf78 Loading...

	www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.8.3	3.1 kB	2024-01-21	2024-05-19
Pretty URL www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.8.3 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-21 00:01:31 Last Seen2024-05-19 05:21:43 Times Seen1143 Hash e56bc891d47a0687c80dbe086a5b1e90 a9e643e186e62cbb3f0e518f473b8702c2945802 4f0a4e5ff7378b48f06c23a8ff4e52633c828fee56f2495085eeea5c1a7f8aba Loading...

	www.alhelli.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	14 kB	2023-05-09	2024-05-19
Pretty URL www.alhelli.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21:05 Last Seen2024-05-19 08:30:47 Times Seen87524 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	www.alhelli.com/wp-includes/js/wp-util.min.js?ver=6.5.2	1.4 kB	2023-03-08	2024-05-19
Pretty URL www.alhelli.com/wp-includes/js/wp-util.min.js?ver=6.5.2 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-05-19 04:12:44 Times Seen25569 Hash 19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	258 B	2024-05-06	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-06 15:18:05 Last Seen2024-05-06 18:20:55 Times Seen2 Hash bb502ae093a7166d5af93cefde839fe2 60a88d500b7e2a76b524dfd79e55d0bce87f87ac c369d1666868aead4f9ee5170b2a687838d677c29f68305967ddd8605a0d923d Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	1.4 kB	2024-02-18	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-18 17:40:11 Last Seen2024-05-06 18:20:55 Times Seen6 Hash 9491d68ad4ffda53189321c8e99b3d08 97c512406132eb41cafb20d3e47b06f7e072466e ff8c6c709395d6db1c3eefbb00d94926dc5d99de91ce28c4adf881f7b21faa55 Loading...

	www.googletagmanager.com/gtag/js?id=G-RSFWG72CMF	274 kB	2024-05-06	2024-05-06
Pretty URL www.googletagmanager.com/gtag/js?id=G-RSFWG72CMF IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-06 15:18:05 Last Seen2024-05-06 15:18:06 Times Seen2 Hash 68446af57cf221679a20beb91ef78b48 f3b923d86149c00cfb3e803d1e444a64f02b3ff5 c6518088a44432217be6b3067540057a960ffdce6f76ff2eeb7396dccf2c47a7 Loading...

	www.alhelli.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.8.3	1.7 kB	2024-03-20	2024-05-19
Pretty URL www.alhelli.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.8.3 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-20 13:06:17 Last Seen2024-05-19 05:21:43 Times Seen785 Hash 691a1e43450e7cda541a3bd6f10fd5db d3a78cb77ccec297c9d32fee99a2a4761f604a8c 8b083f64f2e9e8ac445c730dfce7013cc6449ce155fd1c2f42b60edba4ecb4b1 Loading...

	www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff	343 B	2023-07-22	2024-05-06
Pretty URL www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-22 19:53:54 Last Seen2024-05-06 18:20:55 Times Seen17 Hash fa6bb3b80cb6ec7245586aaffe3bf4f6 4f4a302a6968c68fcff30fdead64898114153eeb 8ce0c7f823055e4f1bbcc3047b668d053cf0d871bdb5f0a00fd3db1db66f1501 Loading...

	www.alhelli.com/wp-content/plugins/awsm-team-pro/js/team.min.js?ver=1.11.0	57 kB	2023-03-07	2024-05-06
Pretty URL www.alhelli.com/wp-content/plugins/awsm-team-pro/js/team.min.js?ver=1.11.0 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:01 Last Seen2024-05-06 18:20:55 Times Seen117 Hash 26b6662ecafafd935d33db4cfc5f7495 fb4783a191d979ab189e16a970f807e0f8536b00 534cc09622ad285cd949e302942bc0db875446bb67f40853d8e0562d5ca9e044 Loading...

	www.alhelli.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	39 kB	2024-04-03	2024-05-19
Pretty URL www.alhelli.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 08:25:08 Last Seen2024-05-19 06:28:05 Times Seen2760 Hash 92f8c01350c630f414f5d0b015ad6864 eab40ab4e77f92f2fb17684aaf44b579a51b8034 17b79ece7ef9d1454a90156690d33d64387b67a7a7548fc826012512e287a937 Loading...

	www.alhelli.com/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.8.3	14 kB	2024-01-10	2024-05-19
Pretty URL www.alhelli.com/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.8.3 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-10 00:29:36 Last Seen2024-05-19 05:21:43 Times Seen2315 Hash af44f82a13e50f4ab09a194247ac71bc e1c921fa718e918e70a25cd278a9ff5b8be9c2bf 881f4e9fde0d4d4bdcf1eae9fd2d68378c5203969e6ceedf59b4e29567f238a9 Loading...

	www.alhelli.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.20	165 kB	2023-03-08	2024-05-19
Pretty URL www.alhelli.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.20 IP 192.185.32.24 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:50:13 Last Seen2024-05-19 05:21:43 Times Seen6378 Hash 0a7176e860c4303f557950b75fb8a898 c292eb1b902ed06fccd65a684d6b311e1290caa9 c4596b16b126326b0d8fc2fb8bf91389ad3dc4671a269187913c19a8f2ad1094 Loading...

HTTP Transactions (170)

URL IP Response Size

alhelli.com/babtest/temp/mem/panel/admin.php

192.185.32.24

301 Moved Permanently

0 B

URL User Request GET HTTP/2
alhelli.com/babtest/temp/mem/panel/admin.php
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /babtest/temp/mem/panel/admin.php HTTP/1.1
Host: alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Mon, 06 May 2024 13:17:33 GMT
server: nginx/1.23.4
content-type: text/html; charset=UTF-8
content-length: 0
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://www.alhelli.com/babtest/temp/mem/panel/admin.php
x-endurance-cache-level: 2
x-nginx-cache: WordPress
x-server-cache: false
set-cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068; path=/; secure; HttpOnly
X-Firefox-Spdy: h2

www.alhelli.com/babtest/temp/mem/panel/admin.php

192.185.32.24

307 Temporary Redirect

0 B

URL User Request GET HTTP/2
www.alhelli.com/babtest/temp/mem/panel/admin.php
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /babtest/temp/mem/panel/admin.php HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 307 Temporary Redirect
date: Mon, 06 May 2024 13:17:34 GMT
server: nginx/1.23.4
content-type: text/html; charset=UTF-8
content-length: 0
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
x-endurance-cache-level: 2
x-nginx-cache: WordPress
x-server-cache: false
set-cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068; path=/; secure; HttpOnly
X-Firefox-Spdy: h2

www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

192.185.32.24

404 Not Found

31 kB

URL User Request GET HTTP/2
www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (15832), with CRLF, LF line terminators
Size
31 kB (31264 bytes)
Hash
11d03a55680dbb51e6ffa18671e09f63
50cb0f5f145007e528376737d2be9f4c130599eb
293c1ab701640c44c21eb60f9b68177b347ecab827d9dcd29e94ed318c4872ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Mon, 06 May 2024 13:17:36 GMT
Server: nginx/1.23.4
Content-Type: text/html; charset=UTF-8
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.alhelli.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Set-Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068; path=/; HttpOnly
Transfer-Encoding: chunked

www.alhelli.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17

192.185.32.24

200 OK

3.2 kB

URL GET HTTP/1.1
www.alhelli.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (11256), with no line terminators
Size
3.2 kB (3239 bytes)
Hash
2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Wed, 30 Sep 2020 02:23:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 3239
Content-Type: text/css

www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

192.185.32.24

404 Not Found

32 kB

URL User Request GET HTTP/2
www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
gzip compressed data, from Unix
Size
32 kB (31708 bytes)
Hash
eb220681d2ee696900680deeb1b95e34
aa17ae42328b2f1489c0004803450f8c0fcffbec
ef27be55728578e4d7e4d9fb7b3f39f8178c2b96ad09ed5ad8dda2eea30f42e6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Mon, 06 May 2024 13:17:35 GMT
server: nginx/1.23.4
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.alhelli.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/plugins/photo-gallery/booster/assets/css/global.css?ver=1.0.0

192.185.32.24

200 OK

5.9 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/photo-gallery/booster/assets/css/global.css?ver=1.0.0
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text
Size
5.9 kB (5869 bytes)
Hash
98975498b1a122de75a24dd80ade5719
7308e62b6256575f60b6088cbbbf43ac7f05f112
4396c8b01c637b3d77a4a9e331f9b4a349dd869fa8d8fcc18b94985ead82c088

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/booster/assets/css/global.css?ver=1.0.0 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Wed, 14 Feb 2024 05:05:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 5869
Content-Type: text/css

www.alhelli.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6

192.185.32.24

200 OK

2.7 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (7609)
Size
2.7 kB (2660 bytes)
Hash
84cbc0580ef0d3c6c96905c3eeac6c96
908f5fb3dc296cab8df371b394842074d2ebd278
d26baa5d013bc5bc052d4929df801fadbbe52a2d8e3d780ab5480864e518aa76

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2660
Content-Type: text/css

www.alhelli.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1

192.185.32.24

200 OK

865 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text
Size
865 B (865 bytes)
Hash
a9df041d122839ca80bde8891d0e7e14
0bde89721a2508ed25b548790b6aa28a6cb52462
dceed1deb7cf1629e1389e4867c58d10d63efea7d6d5eafdc40c13baccdf9506

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Wed, 14 Feb 2024 05:05:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 865
Content-Type: text/css

www.alhelli.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5

192.185.32.24

200 OK

6.5 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (42800), with no line terminators
Size
6.5 kB (6490 bytes)
Hash
38bd036342d32bd8fa7d7ec6051ff5e8
e6c79bf73202ad5b234691a5d15305ceaeeeb2d6
4f1246b2ecdbce813c374520f5de794eb2b003bfc70082ccadee8a760cff0315

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 6490
Content-Type: text/css

www.alhelli.com/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.5.2

192.185.32.24

200 OK

14 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.5.2
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (57872), with no line terminators
Size
14 kB (13554 bytes)
Hash
797dba5e991a841797ccbf5c91f4643f
9d36c42e4cc618af05e39c2faa6bbc38e650d3e3
b7b02a0caae9c8f6fc66e213763092100d79178bd32346c0148748c98f979262

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.5.2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sun, 25 Feb 2024 04:58:03 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 13554
Content-Type: text/css

www.alhelli.com/wp-content/plugins/download-manager/assets/fontawesome/css/all.min.css?ver=6.5.2

192.185.32.24

200 OK

27 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/download-manager/assets/fontawesome/css/all.min.css?ver=6.5.2
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (65317)
Size
27 kB (26777 bytes)
Hash
fe61e9736f611ee73a940f048293995a
24bf0a5bb8998f2115e205f9a864b3ff456fd001
20f071e1ab12579059429c87bb90fb5713d7e6892c7ab62e91b5843891cec71d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/download-manager/assets/fontawesome/css/all.min.css?ver=6.5.2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sun, 25 Feb 2024 04:58:03 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: text/css

www.alhelli.com/wp-content/plugins/download-manager/assets/css/front.css?ver=6.5.2

192.185.32.24

200 OK

16 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/download-manager/assets/css/front.css?ver=6.5.2
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (482)
Size
16 kB (16469 bytes)
Hash
0454dff5d6791655b955dfee5e264a6b
b8e133512bf309dbb868bb90b26a3155b9f6222e
452505d859be1f526ec45492acb695a3d822f50e56f93e1928948233b246cda0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/download-manager/assets/css/front.css?ver=6.5.2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sun, 25 Feb 2024 04:58:03 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 16469
Content-Type: text/css

www.alhelli.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.8.21

192.185.32.24

200 OK

12 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.8.21
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (45548), with no line terminators
Size
12 kB (11592 bytes)
Hash
f2aa6e200ba5eb147fd9c0aec7f7602d
7301377a7765eca5412ac0a357e4a805d0f2b61c
e058545c94913fe9fb225f1bbda6a5523bec893db0fe00705993b0cdabab7b7c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.8.21 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 11592
Content-Type: text/css

www.alhelli.com/wp-content/plugins/translatepress-multilingual/assets/css/trp-floater-language-switcher.css?ver=2.7.6

192.185.32.24

200 OK

3.0 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/translatepress-multilingual/assets/css/trp-floater-language-switcher.css?ver=2.7.6
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text
Size
3.0 kB (3038 bytes)
Hash
3bf8eac2eca9553b53325653753a6f7e
5b3f0a47502ff3145ee56efccb52dd4718a30f56
3791e8200fbc99b6682da3376c0308da7aae1b953d048aabe240bd076eeb5c0f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/translatepress-multilingual/assets/css/trp-floater-language-switcher.css?ver=2.7.6 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Mon, 29 Apr 2024 18:10:49 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 3038
Content-Type: text/css

www.alhelli.com/wp-content/plugins/translatepress-multilingual/assets/css/trp-language-switcher.css?ver=2.7.6

192.185.32.24

200 OK

934 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/translatepress-multilingual/assets/css/trp-language-switcher.css?ver=2.7.6
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text
Size
934 B (934 bytes)
Hash
f9d429183da3884029ca2bdf7dac6e59
7267a642d1e5b99e50049fde5ae16a92197adce1
925f2ffb7b49a93b36740141ddfbd7487d8ef3de84f2c9c8be4cec4e584b0c18

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/translatepress-multilingual/assets/css/trp-language-switcher.css?ver=2.7.6 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Mon, 29 Apr 2024 18:10:49 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 934
Content-Type: text/css

www.alhelli.com/wp-content/plugins/3d-flipbook-dflip-lite/assets/css/dflip.min.css?ver=2.2.32

192.185.32.24

200 OK

19 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/3d-flipbook-dflip-lite/assets/css/dflip.min.css?ver=2.2.32
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (8267), with CRLF line terminators
Size
19 kB (19295 bytes)
Hash
c601d4374bc647b7915ed7371b8de4eb
8b72349cff6ca5508a030925eeabb3c8ce11dd95
a2b510b2021edf1ddc27f7cec931c74484eb5d63444256eff14b449bd8c2d8de

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/3d-flipbook-dflip-lite/assets/css/dflip.min.css?ver=2.2.32 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-sh-cbp-woo-quick-view.min.css?ver=7.11.7

192.185.32.24

200 OK

66 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-sh-cbp-woo-quick-view.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
66 B (66 bytes)
Hash
e2dab67305636ac44585e19da0885539
e0856522433d797a0872b1da9bdc796fc019dec3
7468e2d849b2f33ccd7ffb815c58043b5cbde61e86734de0efde3170f0c8611f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-sh-cbp-woo-quick-view.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Content-Length: 66
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/tabs-lg-min.min.css?ver=7.11.7

192.185.32.24

200 OK

681 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/tabs-lg-min.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (2379), with no line terminators
Size
681 B (681 bytes)
Hash
84256708bb165fd35ab067351969c8a8
815a245d951df18793a164d1ff33fd15e49445f3
df1effd60a530a600aa7f9c5929d7ead47d22d8f8f83ef9c862c754a073febd4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/tabs-lg-min.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 681
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-shbp.min.css?ver=7.11.7

192.185.32.24

200 OK

48 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-shbp.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
07fe19dce677b6fd3fff4bdca49fe878
da9a1b3e9bbf642796b87c179d922eb9c61429e2
384fa64d32900e7432daca62423b70db95397356960e534150de25374e792236

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-shbp.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Content-Length: 48
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Type: text/css

www.googletagmanager.com/gtag/js?id=G-RSFWG72CMF

142.250.74.136

200 OK

95 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-RSFWG72CMF
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (3034)
Size
95 kB (94746 bytes)
Hash
68446af57cf221679a20beb91ef78b48
f3b923d86149c00cfb3e803d1e444a64f02b3ff5
c6518088a44432217be6b3067540057a960ffdce6f76ff2eeb7396dccf2c47a7

HTTP Headers

GET /gtag/js?id=G-RSFWG72CMF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 06 May 2024 13:17:36 GMT
expires: Mon, 06 May 2024 13:17:36 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94746
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-sh-cbp.min.css?ver=7.11.7

192.185.32.24

200 OK

304 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-sh-cbp.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1036), with no line terminators
Size
304 B (304 bytes)
Hash
4a721ef031eae3a0d2e4ffb9045a37ea
add09224458c634099443d1bf472e30191a3f071
76dc7837c8ab5206c96741447dd101a493c0a019f05d9c1f4e3b4e6c7faf7153

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-sh-cbp.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 304
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-sh-cbp-woo.min.css?ver=7.11.7

192.185.32.24

200 OK

401 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-sh-cbp-woo.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1346), with no line terminators
Size
401 B (401 bytes)
Hash
4755d266f4511c8be936fe3006d3bf9a
bc08725ff037ea649fb0c4a6a9b9add8ac34688a
ad1b9dd6ae28d4572b4a17eb822b4ce589ebf9883b883c00402e37532c06071e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-sh-cbp-woo.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 401
Content-Type: text/css

www.alhelli.com/wp-content/plugins/timed-content/css/timed-content.css?ver=2.80

192.185.32.24

200 OK

379 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/timed-content/css/timed-content.css?ver=2.80
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text
Size
379 B (379 bytes)
Hash
8fa2921cd363995fb36f132369bb94a2
1d89167a4e57bda38133dcbf3fdaece16f25393e
8466e10b1c653ba750b67836cda27b6839be96176e21eb4406b2ea48f5b7f000

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/timed-content/css/timed-content.css?ver=2.80 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:49 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 379
Content-Type: text/css

www.alhelli.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

192.185.32.24

200 OK

5.4 kB

URL GET HTTP/1.1
www.alhelli.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
5.4 kB (5422 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Wed, 09 Aug 2023 06:14:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 5422
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js?ver=1.2.2

192.185.32.24

200 OK

5.3 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js?ver=1.2.2
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text
Size
5.3 kB (5253 bytes)
Hash
3fb461c1b082f494c9e0eaaafcf8bd72
55ff6230e8ec9d8c5b38657707d2f0bf5605ba0f
3e6e949591faad693c28eed80090b54c666ddb12dbb20af284acedb9f3b70834

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js?ver=1.2.2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 5253
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/photo-gallery/booster/assets/js/global.js?ver=1.0.0

192.185.32.24

200 OK

3.0 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/photo-gallery/booster/assets/js/global.js?ver=1.0.0
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text
Size
3.0 kB (3034 bytes)
Hash
2c7284f4ed47a54704650cdd9a1d5ffb
df608d3e42c1bf89876fe12f8533a174fc83f910
929d070b0eaefcdf6159171ec7604984b62fc0d3bace3097765e593de5cced5a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/booster/assets/js/global.js?ver=1.0.0 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 3034
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.5.2

192.185.32.24

200 OK

8.9 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.5.2
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (21084)
Size
8.9 kB (8949 bytes)
Hash
c6946dff4854d4611da8aef36666b938
9118198bd2a853baa4644c6e819427150ca35160
7028ef6262d35db7dc22b05df3cbb3e93595ce90cd340fdc356620d961b01224

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.5.2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Sun, 25 Feb 2024 04:58:03 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 8949
Content-Type: application/javascript

www.alhelli.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

192.185.32.24

200 OK

38 kB

URL GET HTTP/1.1
www.alhelli.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
38 kB (38349 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Wed, 08 Nov 2023 06:13:31 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: application/javascript

www.alhelli.com/wp-content/uploads/fusion-styles/e00192748f0732057998f9a32214258f.min.css?ver=3.11.7

192.185.32.24

200 OK

310 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/uploads/fusion-styles/e00192748f0732057998f9a32214258f.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1981)
Size
310 kB (309543 bytes)
Hash
e00192748f0732057998f9a32214258f
4bbd73701013124765c93cfdc968c487010ddf4d
97d6d64f145930defd822f1795d48e8b020f489c46dd5b0374337c05ca3f7695

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-styles/e00192748f0732057998f9a32214258f.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:36 GMT
Server: Apache
Last-Modified: Mon, 06 May 2024 05:40:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: text/css

www.alhelli.com/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.86

192.185.32.24

200 OK

15 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.86
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (4122)
Size
15 kB (14667 bytes)
Hash
466ec1a879697666c927c91d668c9f96
2acb5b0f53556ce717d4916835170d90afd85b2b
0041fa29afe7225f752448478bf5fd1c2b28de45b5d70a07c4b4cba227d42660

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.86 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Sun, 25 Feb 2024 04:58:03 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 14667
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/photo-gallery/js/tocca.min.js?ver=2.0.9

192.185.32.24

200 OK

1.6 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/photo-gallery/js/tocca.min.js?ver=2.0.9
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (4135), with no line terminators
Size
1.6 kB (1648 bytes)
Hash
cb77e412621df9035d5216fcb6b2b755
617e773c7eb884d48a1252ca75c7b2280d8c3077
82073b2a03f14052b32c5bf35eb5eaa39d92e134f6ae4a3ad17443351fd3efd1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/js/tocca.min.js?ver=2.0.9 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1648
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6

192.185.32.24

200 OK

9.6 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (1518)
Size
9.6 kB (9644 bytes)
Hash
2ed97891e0a448815edd04a37a5d5da3
d79a3b0fff5930bf1a7838836157b35f94eb378c
5555617065279e031d5d4f93dfd8ce37aab481221c6c1d38eda5d90798cc4ea5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 9644
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.5.2

192.185.32.24

200 OK

24 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.5.2
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (62161)
Size
24 kB (23586 bytes)
Hash
075269e05d92f8cbe2e183c0be257e6b
d83d180925a0b8ac2cba132948d1d991ce3833d1
695902fecfa33180f05f871e4f74dac4eaec8bb69fb656b8c1795652c4632ee2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.5.2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Sun, 25 Feb 2024 04:58:03 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.8.3

192.185.32.24

200 OK

4.0 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.8.3
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (9242)
Size
4.0 kB (4014 bytes)
Hash
ef56117d1bb5cc41aa6bd127a49c7640
b9c2ed774177fc0fceba5cb58113024b23fe4fb7
d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.8.3 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Mon, 29 Apr 2024 18:10:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 4014
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.8.21

192.185.32.24

200 OK

53 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.8.21
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
53 kB (52908 bytes)
Hash
0fce6c31da103bc14beb2d1dd21db78e
753a1613c788c33b9a3dbaa16e086a098a0b09fc
22b184b854451197831c9b89f041ca457434fbbadea6f437d1c015946c4d1f5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.8.21 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0

192.185.32.24

200 OK

2.5 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (5661)
Size
2.5 kB (2454 bytes)
Hash
9365b9e965c8e638a21745217e5f2d5c
2a1964476db3f43551f24c1754e272b2917a934b
e959dd8ec932148a2df2bc3f2d63d9fe02104910a31ed6dab421e96c03692088

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2454
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5

192.185.32.24

200 OK

18 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (32001)
Size
18 kB (17909 bytes)
Hash
47caf35a29f15dd5c20a41298b3586ea
c4ee5f891da78820029f9974a65e01a07d88f7eb
d281c3057af206c0a210770246ef115057cd21081778be6229fd85f4a99d18bb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.8.3

192.185.32.24

200 OK

1.2 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.8.3
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (3058), with no line terminators
Size
1.2 kB (1216 bytes)
Hash
e56bc891d47a0687c80dbe086a5b1e90
a9e643e186e62cbb3f0e518f473b8702c2945802
4f0a4e5ff7378b48f06c23a8ff4e52633c828fee56f2495085eeea5c1a7f8aba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.8.3 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Mon, 29 Apr 2024 18:10:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1216
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/geolocation.min.js?ver=8.8.3

192.185.32.24

200 OK

677 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/geolocation.min.js?ver=8.8.3
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (1286), with no line terminators
Size
677 B (677 bytes)
Hash
1204f7d7cbc17dcff571413da202ac99
076425fb62b029e4a0897f9ede7179079aeab0de
c584f3b8095036eb4e078d3e59cb71495ce97ded194bd285d515f720c6657c82

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/geolocation.min.js?ver=8.8.3 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Mon, 29 Apr 2024 18:10:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 677
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.8.3

192.185.32.24

200 OK

800 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.8.3
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (2139), with no line terminators
Size
800 B (800 bytes)
Hash
6d3b3d63df025e97f370c5efab2c96da
78c0c8e7504f9314b2e9fd714bbab530af52f2af
8c0b5e384ae00c512f4bb1ba5e2fe622fab4bfc541c99555df38c19c329d3fe6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.8.3 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Mon, 29 Apr 2024 18:10:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 800
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.8.3

192.185.32.24

200 OK

850 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.8.3
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (1690)
Size
850 B (850 bytes)
Hash
691a1e43450e7cda541a3bd6f10fd5db
d3a78cb77ccec297c9d32fee99a2a4761f604a8c
8b083f64f2e9e8ac445c730dfce7013cc6449ce155fd1c2f42b60edba4ecb4b1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.8.3 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Mon, 29 Apr 2024 18:10:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 850
Content-Type: application/javascript

www.alhelli.com/wp-includes/js/wp-util.min.js?ver=6.5.2

192.185.32.24

200 OK

758 B

URL GET HTTP/1.1
www.alhelli.com/wp-includes/js/wp-util.min.js?ver=6.5.2
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (1391)
Size
758 B (758 bytes)
Hash
19d386c9004e54941c1cc61d357efa5d
0a77594006c8d86fdcc0adbc2b9aecaef3869586
3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=6.5.2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 06:01:13 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 758
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/translatepress-multilingual/assets/js/trp-frontend-compatibility.js?ver=2.7.6

192.185.32.24

200 OK

366 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/translatepress-multilingual/assets/js/trp-frontend-compatibility.js?ver=2.7.6
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text
Size
366 B (366 bytes)
Hash
ab55c224299ea8f0fe7bf738772cc650
ce2274025a51bfdaefb4c2ebc65ebf5085103f38
b10ae8fe4c3d47d2975ec636e69f46b3240f0870a8b282c9585360c17e537002

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/translatepress-multilingual/assets/js/trp-frontend-compatibility.js?ver=2.7.6 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Mon, 29 Apr 2024 18:10:49 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 366
Content-Type: application/javascript

www.alhelli.com/wp-includes/js/underscore.min.js?ver=1.13.4

192.185.32.24

200 OK

8.3 kB

URL GET HTTP/1.1
www.alhelli.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (18798)
Size
8.3 kB (8305 bytes)
Hash
f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 06:01:13 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 8305
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.8.3

192.185.32.24

200 OK

4.6 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.8.3
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (13786), with no line terminators
Size
4.6 kB (4579 bytes)
Hash
c3825b9d2bb7e067a90db543db343f68
7ef77fddc64dd62688f242c7ae9ce4e9516b1eaa
70bb06a0005a4c1776d94eb9216dfb3841a5722ae2ed0c930664378b7d5c9504

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.8.3 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Mon, 29 Apr 2024 18:10:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 4579
Content-Type: application/javascript

www.alhelli.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.5.2

192.185.32.24

200 OK

1.3 kB

URL GET HTTP/1.1
www.alhelli.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.5.2
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (4186), with no line terminators
Size
1.3 kB (1298 bytes)
Hash
ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.5.2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Sat, 08 Jun 2019 07:15:02 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1298
Content-Type: text/css

www.alhelli.com/wp-content/plugins/timed-content/js/timed-content.js?ver=2.80

192.185.32.24

200 OK

602 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/timed-content/js/timed-content.js?ver=2.80
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text
Size
602 B (602 bytes)
Hash
de818bd41aff94a0b6df668029f66773
fb6a283e14204b682a39f79619900da9f0066bc5
b1c1583e4d09c4a4b6ff02798082fcdee07feb5ca45514564db5582c4fdd0968

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/timed-content/js/timed-content.js?ver=2.80 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:49 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 602
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.20

192.185.32.24

200 OK

17 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.20
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
Unicode text, UTF-8 text, with very long lines (12602)
Size
17 kB (16624 bytes)
Hash
08f3fa5cd7040c88c7ddf43deadde2a9
cd026e9a65b6c13b7140a87f2d550ecc165b1af2
d2a7a173045c7ed2c9474ee0edd3ebc0389454132b0a16e55b3eae6402c46a05

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.20 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Thu, 22 Feb 2024 12:13:35 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 16624
Content-Type: text/css

www.alhelli.com/wp-content/plugins/awsm-team-pro/css/team.min.css?ver=1.11.0

192.185.32.24

200 OK

26 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/awsm-team-pro/css/team.min.css?ver=1.11.0
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (65536), with no line terminators
Size
26 kB (26007 bytes)
Hash
37828550c63a5a82fd2b51798e500baf
e8a558d1e449bd392816eb7e9b56b3c6b01e6b72
1f7a0f7e2730fce65d1b799027925845d9e94dce9b98ba1457bfa89c10c58239

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/awsm-team-pro/css/team.min.css?ver=1.11.0 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Mon, 21 Mar 2022 08:24:11 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: text/css

www.alhelli.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188

192.185.32.24

200 OK

383 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (701), with no line terminators
Size
383 B (383 bytes)
Hash
328b8123661abdd5f4a0c695e7aa9dcc
4164f78bb52e9f2bfbb7ae5fd519b4638063c1f0
27dd9b075cc59cf5f3c0f6ee075f4bd113782d81ce30a4f16aac669ecfdc4fa2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Thu, 11 Apr 2024 06:13:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 383
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/awsm-team-pro/js/team.min.js?ver=1.11.0

192.185.32.24

200 OK

22 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/awsm-team-pro/js/team.min.js?ver=1.11.0
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (56896), with no line terminators
Size
22 kB (21827 bytes)
Hash
26b6662ecafafd935d33db4cfc5f7495
fb4783a191d979ab189e16a970f807e0f8536b00
534cc09622ad285cd949e302942bc0db875446bb67f40853d8e0562d5ca9e044

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/awsm-team-pro/js/team.min.js?ver=1.11.0 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Mon, 21 Mar 2022 08:24:11 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: application/javascript

www.alhelli.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0

192.185.32.24

200 OK

2.7 kB

URL GET HTTP/1.1
www.alhelli.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (6625), with no line terminators
Size
2.7 kB (2746 bytes)
Hash
fd7ef2e4737acd74fd0dcdc3b515e304
0d792b33f12a48ee8aaaf2560a63a5682470645b
1d52e1ac7d3bc25a8b0ffc257153f9dd50249f96fe9a4df5e0d771241a69062c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 08 Nov 2023 06:13:31 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2746
Content-Type: application/javascript

www.alhelli.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2

192.185.32.24

200 OK

3.0 kB

URL GET HTTP/1.1
www.alhelli.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (8171), with no line terminators
Size
3.0 kB (2977 bytes)
Hash
dda652db133fddb9b80a05c6d1b5c540
60c8514c57a5db2980c4b046b0dd479bd427357b
c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Thu, 30 Mar 2023 06:02:20 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2977
Content-Type: application/javascript

www.alhelli.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

192.185.32.24

200 OK

17 kB

URL GET HTTP/1.1
www.alhelli.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (38582), with no line terminators
Size
17 kB (16635 bytes)
Hash
92f8c01350c630f414f5d0b015ad6864
eab40ab4e77f92f2fb17684aaf44b579a51b8034
17b79ece7ef9d1454a90156690d33d64387b67a7a7548fc826012512e287a937

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 03 Apr 2024 06:11:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 16635
Content-Type: application/javascript

www.alhelli.com/wp-includes/js/dist/hooks.min.js?ver=2810c76e705dd1a53b18

192.185.32.24

200 OK

1.6 kB

URL GET HTTP/1.1
www.alhelli.com/wp-includes/js/dist/hooks.min.js?ver=2810c76e705dd1a53b18
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (4272)
Size
1.6 kB (1589 bytes)
Hash
072d3f6e5c446f57d5c544f9931860e2
ee6aa3d65b474309376468b24bb6f829a4514809
2cb546fbdda7995d374fffa4b2f6530bbcf57d014639ddf76de45df43d593045

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=2810c76e705dd1a53b18 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 03 Apr 2024 06:11:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1589
Content-Type: application/javascript

www.alhelli.com/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6

192.185.32.24

200 OK

3.9 kB

URL GET HTTP/1.1
www.alhelli.com/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
data
Size
3.9 kB (3937 bytes)
Hash
a8127c1a87bb4f99edbeec7c37311dcd
9997a1745f48bdd233dbe9bd8164daa53eba105b
f313d12ea6124bd28fc4a6b7163d253bb83d5aeab5edce594880c5c3df475cbc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Last-Modified: Wed, 03 Apr 2024 06:11:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 3937
Content-Type: application/javascript

www.alhelli.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0

192.185.32.24

200 OK

7.0 kB

URL GET HTTP/1.1
www.alhelli.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (15977), with no line terminators
Size
7.0 kB (6960 bytes)
Hash
ee858e15db40066634ae2d7c3959fbf0
82d919c1c636bbad55ae555ce661f9c34a3a7cfc
dc869996cbc8f47cab9aeb9523f81a7f420207a2601cce9ba45e9b7e0e261452

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Thu, 30 Mar 2023 06:02:20 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 6960
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.9.3

192.185.32.24

409 Conflict

83 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.9.3
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.9.3 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 409 Conflict
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alhelli.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.9.3

192.185.32.24

409 Conflict

83 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.9.3
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.9.3 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 409 Conflict
Date: Mon, 06 May 2024 13:17:37 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alhelli.com/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.8.3

192.185.32.24

200 OK

5.3 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.8.3
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (14500), with no line terminators
Size
5.3 kB (5348 bytes)
Hash
af44f82a13e50f4ab09a194247ac71bc
e1c921fa718e918e70a25cd278a9ff5b8be9c2bf
881f4e9fde0d4d4bdcf1eae9fd2d68378c5203969e6ceedf59b4e29567f238a9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.8.3 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Mon, 29 Apr 2024 18:10:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 5348
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.8.3

192.185.32.24

200 OK

1.0 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.8.3
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (2094), with no line terminators
Size
1.0 kB (1047 bytes)
Hash
46747310c4ec46332841f072bbe5719e
8a6e051763612e07e0da6786653aba9b3ff500c3
5c5acf26e6ab72a6913bd3afb3cf5442b00aa9f374c73d9dc6e12c984cfbb66b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.8.3 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Mon, 29 Apr 2024 18:10:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1047
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.20

192.185.32.24

200 OK

76 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.20
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (45047)
Size
76 kB (76328 bytes)
Hash
0a7176e860c4303f557950b75fb8a898
c292eb1b902ed06fccd65a684d6b311e1290caa9
c4596b16b126326b0d8fc2fb8bf91389ad3dc4671a269187913c19a8f2ad1094

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.20 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Thu, 22 Feb 2024 12:13:35 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.20

192.185.32.24

200 OK

143 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.20
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
143 kB (143243 bytes)
Hash
5a07507270b0eeab0b7d4251e3c42b3c
98bfa22886492cc2a53929425002039676302676
c5f3b2f654d2d8210a481c0164f0a53430cd09b77c34374fe23c9a03f5ad00fb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.20 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Thu, 22 Feb 2024 12:13:35 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: application/javascript

www.alhelli.com/wp-content/uploads/fusion-scripts/606769ffc8c4d28ced256dbb4d2c5c90.min.js?ver=3.11.7

192.185.32.24

200 OK

215 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/uploads/fusion-scripts/606769ffc8c4d28ced256dbb4d2c5c90.min.js?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (34773)
Size
215 kB (215303 bytes)
Hash
d3012efd56560e2e654f0513fa4605ff
c61a2b0fd4614a055419f47c084c00345bf38ffb
5b1c4382f734e699a1cfb1dcff83772b19f79b14441c4350d133f1071798391e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-scripts/606769ffc8c4d28ced256dbb4d2c5c90.min.js?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Mon, 06 May 2024 05:40:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: application/javascript

www.alhelli.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/awb-icons.woff

192.185.32.24

200 OK

21 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/awb-icons.woff
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
Web Open Font Format, TrueType, length 20884, version 1.0
Size
21 kB (20884 bytes)
Hash
5821df88dcca2bf1e15ca638dc910050
c244e12cabe2a72f1d20f340d3da6ab4f1374c2d
fb47dc68f6a457c14c33d2ed6eb1e8a635d007f8868ed7e90e39a6feae9141a6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/awb-icons.woff HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/wp-content/uploads/fusion-styles/e00192748f0732057998f9a32214258f.min.css?ver=3.11.7
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Content-Length: 20884
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Type: font/woff

www.alhelli.com/wp-content/plugins/3d-flipbook-dflip-lite/assets/js/dflip.min.js?ver=2.2.32

192.185.32.24

200 OK

95 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/3d-flipbook-dflip-lite/assets/js/dflip.min.js?ver=2.2.32
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
95 kB (95290 bytes)
Hash
c38e824205a2b0306261c1b31302bdda
a240b2a875e5052ca45debbebd87723ebb7164c3
f044f24015dcdecb74ef693e5c19fc157bb86984d1fe2a2b96fcb3ec11ed99fd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/3d-flipbook-dflip-lite/assets/js/dflip.min.js?ver=2.2.32 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Wed, 14 Feb 2024 05:05:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Transfer-Encoding: chunked
Content-Type: application/javascript

www.alhelli.com/wp-content/plugins/translatepress-multilingual/assets/images/flags/ar.png

192.185.32.24

200 OK

474 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/translatepress-multilingual/assets/images/flags/ar.png
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced
Size
474 B (474 bytes)
Hash
3285cf9ab85d3c7763ae76dbe359f0e9
587f4e8a907116cff37520d3a1938dd7ae5974e0
80ace833a4140bbe88c886643a1adb101ed85daa362f67e1aaadd2d264badc94

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/translatepress-multilingual/assets/images/flags/ar.png HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Mon, 29 Apr 2024 18:10:49 GMT
Accept-Ranges: bytes
Content-Length: 474
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Type: image/png

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-cbp.min.css?ver=7.11.7

192.185.32.24

200 OK

108 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-cbp.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
108 B (108 bytes)
Hash
4b532c966d5c4ca99f46b1dbed3abfd7
a0aa69fd6cb0db558b4499240785d3da9b5d5910
cc136dc6432e47d587fe1dfcfd58b0c50988590faab46762d6ecda11cbe3cbaa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-cbp.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 108
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/social-sharing-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

252 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/social-sharing-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (726), with no line terminators
Size
252 B (252 bytes)
Hash
cfd7c5c46f6e529df7c7611451db0502
7f5c982b56de147dabbb94a3249161adce1b8c36
1ecd7712da3b51900441eac52f03400183a40a25f5aeb8dbf6218f0730677828

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/social-sharing-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 252
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/facebook-page-md.min.css?ver=7.11.7

192.185.32.24

200 OK

132 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/facebook-page-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (390), with no line terminators
Size
132 B (132 bytes)
Hash
093af6402c49f2d52ce3317da5cab5f9
54b15f4a7a2671dc0693e7407e117c18e91f8c1f
41d2e6d5dd5552648371dae9bc916c8d551a63ced88267b8f9ee5feeeb7d0acc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/facebook-page-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 132
Content-Type: text/css

www.alhelli.com/wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064asNz-s.woff2

192.185.32.24

200 OK

16 kB

URL GET HTTP/2
www.alhelli.com/wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064asNz-s.woff2
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15800, version 1.0
Size
16 kB (15800 bytes)
Hash
eb84bad9b2022f000143c5a4abb42e0c
73ed98c41d48b48caddb29d85882480c3fb49387
091fa598971238fd4a7f1929772cb3c0a2553fa113a1be35d0491555c020d9de

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064asNz-s.woff2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alhelli.com
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 06 May 2024 05:26:11 GMT
accept-ranges: bytes
content-length: 15800
cache-control: max-age=86400
expires: Tue, 07 May 2024 13:17:38 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff2
date: Mon, 06 May 2024 13:17:38 GMT
server: Apache
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/tagcloud-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

140 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/tagcloud-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (413), with no line terminators
Size
140 B (140 bytes)
Hash
359663c3410b65158d19a1766bedc8ab
4a313593df5fc75103c654876298f0fac6197f73
5bab2872590673ce02ceb200ccf6633a11f5bceb962176ff3ff6853061464543

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/tagcloud-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 140
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/meta-md.min.css?ver=7.11.7

192.185.32.24

200 OK

113 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/meta-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
113 B (113 bytes)
Hash
ac84a49c27e3d484a68c8b9913c25efa
e2f2dee51a82a3d1b1a06689a4db97806a90e7b8
a6c202178f5a11af9561a9ef2489401c7660880ba432d6a89c90fcab0074b7b6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/meta-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 113
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/flickr-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

214 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/flickr-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (680), with no line terminators
Size
214 B (214 bytes)
Hash
5c71d5e404f947e0e6a27d518c0d9719
67247aed3cdcf9df2f4eda2791a3e5ad0b43965f
49debdf7fe881fcefbbd2d0f02d9737648dc31b103f58c0a708500464499ea11

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/flickr-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 214
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-shbp-32.min.css?ver=7.11.7

192.185.32.24

200 OK

62 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-shbp-32.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
62 B (62 bytes)
Hash
1bb80bb5818501d7c3830f40bc078c35
729f581b697cc3f8423911577e65c56d69abb3dd
8f6a6b5d6967bf8dd33f42c059ad81319a3cd641a8314dbc3183f4f355b2ec87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-shbp-32.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Content-Length: 62
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Type: text/css

www.alhelli.com/wp-content/uploads/2022/04/Home_Page_Main_Banner_Background_01.jpg

192.185.32.24

200 OK

374 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/uploads/2022/04/Home_Page_Main_Banner_Background_01.jpg
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.2 (Windows), datetime=2022:04:05 12:56:00], baseline, precision 8, 1920x1080, components 3
Size
374 kB (374127 bytes)
Hash
be021e65f9a73c277f47019eed1ef542
2bd5eeaf8ff7f11f0a41eaa6a663c702bb2351da
03c6791cb007c0be4c602f412b931cb82734116475653d67a1427ab90d2be0ab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/04/Home_Page_Main_Banner_Background_01.jpg HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/wp-content/uploads/fusion-styles/e00192748f0732057998f9a32214258f.min.css?ver=3.11.7
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Sun, 10 Apr 2022 07:46:36 GMT
Accept-Ranges: bytes
Content-Length: 374127
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Type: image/jpeg

www.alhelli.com/wp-content/uploads/fusion-gfonts/wlptgwvFAVdoq2_F94zlCfv0bz1WC2UWzLdneg.woff2

192.185.32.24

200 OK

15 kB

URL GET HTTP/2
www.alhelli.com/wp-content/uploads/fusion-gfonts/wlptgwvFAVdoq2_F94zlCfv0bz1WC2UWzLdneg.woff2
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14716, version 1.0
Size
15 kB (14716 bytes)
Hash
3e13a7e40a079d9867baa16ddcfba7fa
e60b925b022aad5c514461633a27e301c43218bd
22b9c7c115a7ed8fe2c8a804a0db46aef40b4caf4229c0b6de175c843f489950

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-gfonts/wlptgwvFAVdoq2_F94zlCfv0bz1WC2UWzLdneg.woff2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alhelli.com
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 06 May 2024 05:25:09 GMT
accept-ranges: bytes
content-length: 14716
cache-control: max-age=86400
expires: Tue, 07 May 2024 13:17:38 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff2
date: Mon, 06 May 2024 13:17:38 GMT
server: Apache
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-sbp.min.css?ver=7.11.7

192.185.32.24

200 OK

132 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-sbp.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
132 B (132 bytes)
Hash
385747c4609baac473f4137524b10c5b
ed149ea3603094b9442e68abc40e4a21227f4ea7
18c342f88079c6e8a1c89bd617abeae26a4cde6e9e2f463d988fab0d65448a52

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-sbp.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 132
Content-Type: text/css

www.alhelli.com/wp-content/uploads/fusion-gfonts/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2

192.185.32.24

200 OK

15 kB

URL GET HTTP/2
www.alhelli.com/wp-content/uploads/fusion-gfonts/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14940, version 1.0
Size
15 kB (14940 bytes)
Hash
a46fb7aae99225fdfd9d64b2b8b1063f
1ee50bf5985c1956dde1c06d9b1cec4645ddb92b
4b5816bbfc52587979139951355fe4048da02ce60e40cef8e4a1efb6cd396281

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-gfonts/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alhelli.com
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 06 May 2024 05:25:37 GMT
accept-ranges: bytes
content-length: 14940
cache-control: max-age=86400
expires: Tue, 07 May 2024 13:17:38 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff2
date: Mon, 06 May 2024 13:17:38 GMT
server: Apache
X-Firefox-Spdy: h2

pixel.wp.com/g.gif?v=ext&blog=201625497&post=0&tz=0&srv=www.alhelli.com&j=1%3A13.3.1&host=www.alhelli.com&ref=&fcp=2835&rand=0.5144821238162351

192.0.76.3

200 OK

50 B

URL GET HTTP/1.1
pixel.wp.com/g.gif?v=ext&blog=201625497&post=0&tz=0&srv=www.alhelli.com&j=1%3A13.3.1&host=www.alhelli.com&ref=&fcp=2835&rand=0.5144821238162351
IP
192.0.76.3:80
ASN
#2635 AUTOMATTIC

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
GIF image data, version 89a, 6 x 5
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&blog=201625497&post=0&tz=0&srv=www.alhelli.com&j=1%3A13.3.1&host=www.alhelli.com&ref=&fcp=2835&rand=0.5144821238162351 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 May 2024 13:17:38 GMT
Content-Type: image/gif
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Alt-Svc: h3=":443"; ma=86400

www.alhelli.com/wp-content/uploads/fusion-icons/avada-classic-v1.2/fonts/avada-classic.ttf?23bq8d

192.185.32.24

200 OK

14 kB

URL GET HTTP/2
www.alhelli.com/wp-content/uploads/fusion-icons/avada-classic-v1.2/fonts/avada-classic.ttf?23bq8d
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, avada-classic
Size
14 kB (13616 bytes)
Hash
ce783f7528526fa716ff99c903060ccc
e24a9793c258f272ab6e25366b13cc34ed0e94d3
d35638180a72dcd65c48f480f4f4b3df654898dee84a7660bafff28d3acfe824

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-icons/avada-classic-v1.2/fonts/avada-classic.ttf?23bq8d HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.alhelli.com
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 06 May 2024 13:17:38 GMT
server: nginx/1.23.4
content-type: font/ttf
content-length: 13616
last-modified: Wed, 12 Jan 2022 06:23:50 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 07 May 2024 13:17:38 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
x-server-cache: false
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic

142.250.74.170

200 OK

665 B

URL GET HTTP/2
fonts.googleapis.com/css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (379)
Size
665 B (665 bytes)
Hash
3099d0a70490bb50800530b4a07f7aef
d4472f89ae1094b806f5e0c6b6436ddbbd140aba
7a5cb59113bf1c2eff514ad4c9bf7ecca358372531d9beb6b190d45bdac0c4ad

HTTP Headers

GET /css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 06 May 2024 13:17:36 GMT
date: Mon, 06 May 2024 13:17:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/fullwidth-md.min.css?ver=3.11.7

192.185.32.24

200 OK

383 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/fullwidth-md.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (2019), with no line terminators
Size
383 B (383 bytes)
Hash
16d9bdaca1a741ee67e9593d21dd689b
8e03327bb695cd0e282bae0d520f21ea77be0f9f
078c67fe64c6aeeaf6e87702fb00a8d95f0da8392b4fa9e53a31dc5faf7b8a13

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/fullwidth-md.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 383
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/twitter-timeline-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

139 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/twitter-timeline-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (413), with no line terminators
Size
139 B (139 bytes)
Hash
57c29ac1133746b2867298b72af9fe6b
50b095f2e3f3aff44f3811151620817120698f63
07a189456d306217054c89974516869885f6570118448aabe01a2371dde0e0b8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/twitter-timeline-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 139
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/min-2c-max-3c.css?ver=3.11.7

192.185.32.24

200 OK

154 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/min-2c-max-3c.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text
Size
154 B (154 bytes)
Hash
59deec69722b4ab3b29c5639769e1f3e
1c5386de3a9ea0f5b742d6cfde289877d75d2501
865f2f4433ab5aabe7932a5527f33944fa57afcb8b4b7dc4b010f188c3a8fb4a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/min-2c-max-3c.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 154
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/twitter-timeline-md.min.css?ver=7.11.7

192.185.32.24

200 OK

131 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/twitter-timeline-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (393), with no line terminators
Size
131 B (131 bytes)
Hash
8df4f24b60e8e012183e58ffc9cb64f6
2fdf5d0e77b9002dc756e45c4b8d2a02ccea08c8
ad16abba823e5f8a43e57cba77791cadc2ec65265c18f2137659821bf0c4ecef

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/twitter-timeline-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 131
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/off-canvas-md.min.css?ver=7.11.7

192.185.32.24

200 OK

172 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/off-canvas-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (452), with no line terminators
Size
172 B (172 bytes)
Hash
695c5a57dda8706bf64b6a7bef4d9965
dbdb8e73afe7f74230748691d4dae88fa630f7f8
03b4f7d63a61a92e42f2aa092fa8983e0d3ca1b1ebc3a5c505b7653164fa1fcc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/off-canvas-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 172
Content-Type: text/css

i0.wp.com/www.alhelli.com/wp-content/uploads/2022/01/2022_Official_Logo_Mirza-Alhelli_Logo-01.png?resize=300%2C59&ssl=1

192.0.77.2

200 OK

4.1 kB

URL GET HTTP/2
i0.wp.com/www.alhelli.com/wp-content/uploads/2022/01/2022_Official_Logo_Mirza-Alhelli_Logo-01.png?resize=300%2C59&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
4.1 kB (4124 bytes)
Hash
5d3e2654930e69e56bed64866acf76d3
d39bbff350417dfe605dce64fa5d84da7f6bf7d4
012dc4ed08f54f454df3ecfbc0d585e2d300bfa220ff36fe4e5b1c7ce56b6ce4

HTTP Headers

GET /www.alhelli.com/wp-content/uploads/2022/01/2022_Official_Logo_Mirza-Alhelli_Logo-01.png?resize=300%2C59&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 06 May 2024 13:17:38 GMT
content-type: image/webp
content-length: 4124
last-modified: Tue, 20 Feb 2024 07:17:15 GMT
expires: Thu, 19 Feb 2026 19:17:15 GMT
cache-control: public, max-age=63115200
link: <https://www.alhelli.com/wp-content/uploads/2022/01/2022_Official_Logo_Mirza-Alhelli_Logo-01.png>; rel="canonical"
x-content-type-options: nosniff
etag: "896876b657737a49"
vary: Accept
x-nc: MISS arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/min-5c-max-6c.css?ver=3.11.7

192.185.32.24

200 OK

122 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/min-5c-max-6c.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text
Size
122 B (122 bytes)
Hash
159e2efcc55bf6cad81f34bba3cccd33
0307f8103c682bf81061082b7465a292063fada1
87fd0aed3b978b94cd65280c983570c9ff138592e595314277b5d2e9cd139fdb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/min-5c-max-6c.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 122
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/woo-reviews-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

112 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/woo-reviews-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
112 B (112 bytes)
Hash
a0f9933874cc9d58a1e776a1249a1ef2
23d21764aecae0cff6677b6b0d97cba21cecb4a3
17f21285f5cb2eeb6c02fa907cdbeb7482bfefec7dc418c492474c13c915c253

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/woo-reviews-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 112
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-shbp.min.css?ver=7.11.7

192.185.32.24

200 OK

90 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-shbp.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
90 B (90 bytes)
Hash
69cee2febfe1e3352bb4903b15dc7d7a
01d2a56f44f1c63b73e28b6ed2289ff18468ac88
7a4d25775c22a689e117ae4f7bad724b6184d5b2375a9c9a01a95b5c10abb585

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-shbp.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 90
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-sliders.min.css?ver=7.11.7

192.185.32.24

200 OK

471 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-sliders.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (3220), with no line terminators
Size
471 B (471 bytes)
Hash
a3e315e1b1700e1350192f8a823d2e0a
f1db5ea638618c0392e19622b970ea3fccedfca2
51bbb73ae8054eda107e7581ce9ff1d4808416fa6c1523408c4beb95954cbd86

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-cbp-sliders.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 471
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-woo.min.css?ver=7.11.7

192.185.32.24

200 OK

2.0 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-woo.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (7110), with no line terminators
Size
2.0 kB (2005 bytes)
Hash
4e6dcef8a00686896908f8f36995a952
4b75dfa9e665881ad1a1b95c008b7f2734d01482
da3cf54734eb87cdee6681d4d24767b331126cedcbee45eb509e411074ba8d50

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-cbp-woo.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2005
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-5c-max-6c.min.css?ver=7.11.7

192.185.32.24

200 OK

212 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-5c-max-6c.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (918), with no line terminators
Size
212 B (212 bytes)
Hash
c0dbe26f69a67d25f259488c485f6df4
bf967124fe190e0b34ae6a6b3f85078a6a146825
b8846e3d4f7bc91e2bca3cc05f5973c89ad1c5cb561443e6c743105bb23dd5e5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-5c-max-6c.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 212
Content-Type: text/css

www.alhelli.com/wp-content/uploads/fusion-icons/avada-classic-v1.2/fonts/avada-classic.woff?23bq8d

192.185.32.24

200 OK

14 kB

URL GET HTTP/2
www.alhelli.com/wp-content/uploads/fusion-icons/avada-classic-v1.2/fonts/avada-classic.woff?23bq8d
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
Web Open Font Format, TrueType, length 13692, version 1.2
Size
14 kB (13692 bytes)
Hash
850f9886182db628f1b1c788a1d6a7a0
e1558e06f068deb55b5f9eab570cc94ef1fe1b3c
358516b167e787837a4142e89f6bee230f86b037987e0e8de2e7666ec3ae97bb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-icons/avada-classic-v1.2/fonts/avada-classic.woff?23bq8d HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alhelli.com
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Jan 2022 06:23:50 GMT
accept-ranges: bytes
content-length: 13692
cache-control: max-age=86400
expires: Tue, 07 May 2024 13:17:38 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff
date: Mon, 06 May 2024 13:17:38 GMT
server: Apache
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.59.woff2

192.185.32.24

200 OK

12 kB

URL GET HTTP/2
www.alhelli.com/wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.59.woff2
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11724, version 1.0
Size
12 kB (11724 bytes)
Hash
f9b27335aa0edd0fe835b7beed54269d
247ce64a62f89293e6a801479bf4da83861d4d52
acd915686528ce070cfad6e24f99668d0e993cce785d0bba6b24b7b4d7bf4d0c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.59.woff2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alhelli.com
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 06 May 2024 05:26:03 GMT
accept-ranges: bytes
content-length: 11724
cache-control: max-age=86400
expires: Tue, 07 May 2024 13:17:38 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff2
date: Mon, 06 May 2024 13:17:38 GMT
server: Apache
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.118.woff2

192.185.32.24

200 OK

13 kB

URL GET HTTP/2
www.alhelli.com/wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.118.woff2
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13368, version 1.0
Size
13 kB (13368 bytes)
Hash
a81d86a9204a7895f8ae66e585cdd2d4
490382ec2d81498a1cfa3100316c5fe144a9b2e6
bea18ea2eb2fb91cca169c3c30eca9b84b276dea088e86042f674562ef071a18

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.118.woff2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alhelli.com
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 06 May 2024 05:26:10 GMT
accept-ranges: bytes
content-length: 13368
cache-control: max-age=86400
expires: Tue, 07 May 2024 13:17:38 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff2
date: Mon, 06 May 2024 13:17:38 GMT
server: Apache
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.113.woff2

192.185.32.24

200 OK

11 kB

URL GET HTTP/2
www.alhelli.com/wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.113.woff2
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11188, version 1.0
Size
11 kB (11188 bytes)
Hash
fb26bd3edb6a0728988ff3db7c1d0fc1
9ef2350632b69f02d8a8a3c6f6a860bc54367b8a
ca0ad946362d75fe3f9c6981c696eb3b618b164cf4026d8ea7c57667d6e5e3c9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.113.woff2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alhelli.com
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 06 May 2024 05:26:10 GMT
accept-ranges: bytes
content-length: 11188
cache-control: max-age=86400
expires: Tue, 07 May 2024 13:17:38 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff2
date: Mon, 06 May 2024 13:17:38 GMT
server: Apache
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.117.woff2

192.185.32.24

200 OK

8.9 kB

URL GET HTTP/2
www.alhelli.com/wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.117.woff2
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8884, version 1.0
Size
8.9 kB (8884 bytes)
Hash
1b5214b64fc2ab21473c9901c98484c5
b5ac62df57b9516c842549b580179bd0ad10a0a2
cf86e30367d7d064336220cb61d5454598f681bc1b0d393880a9e9ff1f48c5f4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.117.woff2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alhelli.com
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 06 May 2024 05:26:10 GMT
accept-ranges: bytes
content-length: 8884
cache-control: max-age=86400
expires: Tue, 07 May 2024 13:17:38 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff2
date: Mon, 06 May 2024 13:17:38 GMT
server: Apache
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/tabs-md.min.css?ver=7.11.7

192.185.32.24

200 OK

312 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/tabs-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1605), with no line terminators
Size
312 B (312 bytes)
Hash
8f65e0d72248628286b64a441b0a6cf3
014ca67013d0999418342d04a72e8c0f82fbacf4
d0fc4a287782f6261df1aa529529bbb9cfba5651bf303169a11ba0b4c2459bf4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/tabs-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 312
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p.min.css?ver=7.11.7

192.185.32.24

200 OK

2.7 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (12187), with no line terminators
Size
2.7 kB (2732 bytes)
Hash
9a159610d223747303ed9fd5f839b8c7
d84ea51953fe12810f2c4de87808732cb9362f62
59c43dcbdff9862acd8e11e67a2a0e7df72284160fbb58d60439e1218e36e172

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-p.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2732
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/facebook-page-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

138 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/facebook-page-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (410), with no line terminators
Size
138 B (138 bytes)
Hash
118e0211f70161ca6a05c3f20b0a0d3b
87a8138d310862a255f6234c7f379296e843576c
440e8531d3f07c14efc5098d7a1d58bb19b759c4148c36429dad68d26dc83423

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/facebook-page-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 138
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/person-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

132 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/person-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (403), with no line terminators
Size
132 B (132 bytes)
Hash
5c21fc15c8cbd01cf9fca46586bf1083
80db321849515d876a15f64e72763376c3057c6a
01d7698f144ee615838f9db58d1b3e01d91479eaec69757559c74ef28bf6a78f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/person-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 132
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/min-768-max-1024-p.min.css?ver=3.11.7

192.185.32.24

200 OK

870 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/min-768-max-1024-p.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (5057), with no line terminators
Size
870 B (870 bytes)
Hash
4cd0c7ea313a0717f02f1e189c03f891
b2b5ad784dc7872c03ffb5d644e60babd06a0850
db52fe6317b6cc69577f7c3e7d4740ee860049a0e59f6786d4590bead593cf51

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/min-768-max-1024-p.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 870
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/max-2c.css?ver=3.11.7

192.185.32.24

200 OK

112 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/max-2c.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text
Size
112 B (112 bytes)
Hash
473ebd277b0dd96a433d8551b70cb845
a99f56ac47cb28810754f7141c34fc9c677f1d51
1622aa7428e882a10d76d60d8277ba25692603991eb1fc232cf0349e2eb51731

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/max-2c.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 112
Content-Type: text/css

www.alhelli.com/wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.119.woff2

192.185.32.24

200 OK

19 kB

URL GET HTTP/2
www.alhelli.com/wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.119.woff2
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18600, version 1.0
Size
19 kB (18600 bytes)
Hash
a2c5eb7c517b6baeb2d2f060aff6147d
1e6884be5db70d60bbabdfebfbfef39c6c3a1a1f
319eb578634347f8bd6df61778b659ebe74e827b6395e114b084c3dbe613d854

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-gfonts/VdGBAYIAV6gnpUpoWwNkYvrugw9RuM064ZsPrfqk33YqOjLBxkUhdkeuqyIMwGYkDA.119.woff2 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alhelli.com
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 06 May 2024 05:26:10 GMT
accept-ranges: bytes
content-length: 18600
cache-control: max-age=86400
expires: Tue, 07 May 2024 13:17:38 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff2
date: Mon, 06 May 2024 13:17:38 GMT
server: Apache
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/uploads/fusion-icons/avada-classic-v1.2-1/fonts/avada-classic.ttf?23bq8d

192.185.32.24

200 OK

14 kB

URL GET HTTP/2
www.alhelli.com/wp-content/uploads/fusion-icons/avada-classic-v1.2-1/fonts/avada-classic.ttf?23bq8d
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, avada-classic
Size
14 kB (13616 bytes)
Hash
ce783f7528526fa716ff99c903060ccc
e24a9793c258f272ab6e25366b13cc34ed0e94d3
d35638180a72dcd65c48f480f4f4b3df654898dee84a7660bafff28d3acfe824

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-icons/avada-classic-v1.2-1/fonts/avada-classic.ttf?23bq8d HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.alhelli.com
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 06 May 2024 13:17:39 GMT
server: nginx/1.23.4
content-type: font/ttf
content-length: 13616
last-modified: Wed, 12 Jan 2022 06:23:50 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 07 May 2024 13:17:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
x-server-cache: false
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-640-woo.min.css?ver=7.11.7

192.185.32.24

200 OK

606 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-640-woo.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1519), with no line terminators
Size
606 B (606 bytes)
Hash
7f6ce3c3b44a146aa48ae1ffed894160
bc4f4d7ebf485614baaa598f54e24c7228aa9138
ac7ee8163ad4ea4774a8961e04c9ae441501c5851234fd17f26b869c28db2860

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-640-woo.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 606
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/fullwidth-sm.min.css?ver=3.11.7

192.185.32.24

200 OK

388 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/fullwidth-sm.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (2074), with no line terminators
Size
388 B (388 bytes)
Hash
8df8bf05e928b84d79e846209af30a04
96df3940aa19aee876ffdc394e56a29a5f8a0f35
2d2956f67dd8e525e8130ed74332690539cec6c8defe1eac5861d7cd393605c0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/fullwidth-sm.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 388
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-shbp.min.css?ver=7.11.7

192.185.32.24

200 OK

115 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-shbp.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
115 B (115 bytes)
Hash
17a7b6bd9fdc9f7716d91d2629f9fb1f
4fb7b9802cabd086c507702885c6dd54626257ed
16708292761229bdec4b785e5f3cfc4b2c72282a5aa112cf7d51cfd149c8067d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-shbp.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 115
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/image-md.min.css?ver=7.11.7

192.185.32.24

200 OK

134 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/image-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (390), with no line terminators
Size
134 B (134 bytes)
Hash
f2f6aca45a410c5214ebea6d466e36d9
4c4f5590262ddc4e5b5d706ed4a4cf71d22ad02e
80771a0dafc63102f6888283acb8195fb4883eddf4bcf1df31d30d1647404e8d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/image-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 134
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/icon-md.min.css?ver=3.11.7

192.185.32.24

200 OK

86 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/icon-md.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
86 B (86 bytes)
Hash
84ef95673e083308edab57220a39114f
b5b714ddf44e733aaa29adbb860ce74ed5c0ceac
70791a2d194ff7d4d3ec18004155bfb096e448fd0a6ade046b104ea720febe91

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/icon-md.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 86
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/swiper-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

154 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/swiper-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
154 B (154 bytes)
Hash
8b896e808d6647aba8af5625daa35e36
20a258cf41bd87a0f0e2aa74b22174b515597f4a
5ed9d31a6d8e81423f290f4c1d49225f97f4644297c2343478353ce18b650b26

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/swiper-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 154
Content-Type: text/css

alhelli.com/wp-content/uploads/2021/11/banner-11.jpg

192.185.32.24

404 Not Found

462 B

URL GET HTTP/2
alhelli.com/wp-content/uploads/2021/11/banner-11.jpg
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
HTML document, ASCII text
Size
462 B (462 bytes)
Hash
dbf8ec3db1d4b93b848197591827939c
2e12f671d6101f52060133c32f8d359af756f9b2
63c52aa99ca361b59a27e7f51fe5fadffef99e671f8b4f9560fab204219e0666

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/11/banner-11.jpg HTTP/1.1
Host: alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068; _ga_RSFWG72CMF=GS1.1.1715001458.1.0.1715001458.0.0.0; _ga=GA1.1.822739444.1715001458; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-05-06%2013%3A17%3A38%7C%7C%7Cep%3Dhttp%3A%2F%2Fwww.alhelli.com%2Fbabtest%2Ftemp%2Fmem%2Fpanel%2Fadmin.php%2F%3Fv%3D1baa5a77aeff%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-05-06%2013%3A17%3A38%7C%7C%7Cep%3Dhttp%3A%2F%2Fwww.alhelli.com%2Fbabtest%2Ftemp%2Fmem%2Fpanel%2Fadmin.php%2F%3Fv%3D1baa5a77aeff%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttp%3A%2F%2Fwww.alhelli.com%2Fbabtest%2Ftemp%2Fmem%2Fpanel%2Fadmin.php%2F%3Fv%3D1baa5a77aeff; tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
last-modified: Sun, 19 Jun 2022 19:44:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 462
content-type: text/html
date: Mon, 06 May 2024 13:17:39 GMT
server: Apache
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/instagram-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

381 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/instagram-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1660), with no line terminators
Size
381 B (381 bytes)
Hash
9e9edeba5c3bc8fbfdc2f25be5ee1c22
27b9522a19b8629d0befd319c210dd34de950b2d
1b15cf5e0bce4e69397b37df08ddcdf36159d17e4f66da1f1d02d771bd87459f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/instagram-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 381
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-640.min.css?ver=7.11.7

192.185.32.24

200 OK

747 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-640.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (2331), with no line terminators
Size
747 B (747 bytes)
Hash
5b1ef3e023cf24d54ade220710f71b7e
267bf80f5155be844d06309ddafdee16e86cc825
5d8214e3b165030582ce1388ae5a7eae345434c45ad67d096297a49e083f3fed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-640.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 747
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/max-640.min.css?ver=3.11.7

192.185.32.24

200 OK

391 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/max-640.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1215), with no line terminators
Size
391 B (391 bytes)
Hash
ed6783572ed47a5bc583b3f6db9b8420
541ddc8e84f12cb75c0799ea6bdcded5a8a1b85e
0ca24088f8a8274288fc61940a7f9b3f4860129ccd53f5d53ed0a89a565bed2f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/max-640.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 391
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/post-cards-md.min.css?ver=7.11.7

192.185.32.24

200 OK

109 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/post-cards-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
109 B (109 bytes)
Hash
73c1a1ed2e67dc20271e7b4e5cc03428
93b268535764ab9e0d80b195024d95878e666fcf
a7416d64d22af35e5e4a15eba4fd5389a9d880519ff048ee361f2d2f8846dc03

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/post-cards-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 109
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-woo.min.css?ver=7.11.7

192.185.32.24

200 OK

1.3 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-woo.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (4686), with no line terminators
Size
1.3 kB (1331 bytes)
Hash
ece080b578bc5de08357fa58ff9721ec
4434170c52bfb8696f34612e68a5cf53180f24c2
945baef3b96ea54d775ee4951a297fd373c07d0a1e521930ca052d39acf9a841

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-woo.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1331
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-640-sliders.min.css?ver=7.11.7

192.185.32.24

200 OK

441 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-640-sliders.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (3134), with no line terminators
Size
441 B (441 bytes)
Hash
b55ac997c89a9da3e621755fe548714d
4b6bdf5fd39e11c71cc11088209ea151e0cf3a51
4e0dc21a1113b5a0a145c580a946c3d25cc71549f97f840b989497a8532a5078

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-640-sliders.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 441
Content-Type: text/css

www.alhelli.com/wp-content/uploads/fusion-icons/avada-classic-v1.2-1/fonts/avada-classic.woff?23bq8d

192.185.32.24

200 OK

14 kB

URL GET HTTP/2
www.alhelli.com/wp-content/uploads/fusion-icons/avada-classic-v1.2-1/fonts/avada-classic.woff?23bq8d
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
Web Open Font Format, TrueType, length 13692, version 1.2
Size
14 kB (13692 bytes)
Hash
850f9886182db628f1b1c788a1d6a7a0
e1558e06f068deb55b5f9eab570cc94ef1fe1b3c
358516b167e787837a4142e89f6bee230f86b037987e0e8de2e7666ec3ae97bb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/fusion-icons/avada-classic-v1.2-1/fonts/avada-classic.woff?23bq8d HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alhelli.com
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Jan 2022 06:23:50 GMT
accept-ranges: bytes
content-length: 13692
cache-control: max-age=86400
expires: Tue, 07 May 2024 13:17:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff
date: Mon, 06 May 2024 13:17:39 GMT
server: Apache
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-2c-max-3c.min.css?ver=7.11.7

192.185.32.24

200 OK

313 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-2c-max-3c.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1950), with no line terminators
Size
313 B (313 bytes)
Hash
39373858b0d27d872de4bbb32ec43bd7
a8e739109135613cd9161f696a5cb8d560eb139b
4f313a21aec867ad2b129badb4ac9d9975216d07e103b87189ba186b7721721d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-2c-max-3c.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 313
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-640.min.css?ver=7.11.7

192.185.32.24

200 OK

1.0 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-640.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (2885), with no line terminators
Size
1.0 kB (1001 bytes)
Hash
766b72968b1689c655177eb9e8108193
cebd48c0844aaa1e2c530a861911228a7d1535e9
961437d35901c8f4ec7e2fdd25b7849635ad05896d6644671dc95a9d36debc24

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-640.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1001
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/grid-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

125 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/grid-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
125 B (125 bytes)
Hash
946adec7d0e644e553004b7372f9ef8a
c6ff514a87ebf41eae96da5c419e226120a9aafd
f716ee2073a4191a332e4a4c698f3fd42e5c610e599e098107c392b7869de0a9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/grid-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 125
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/tabs-lg-max.min.css?ver=7.11.7

192.185.32.24

200 OK

342 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/tabs-lg-max.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (870), with no line terminators
Size
342 B (342 bytes)
Hash
75102174d390ebd1c99e687e8c8243f1
b57f74a71b4261804b73fc031c2e6089f206c63d
908b5b28c6df0e2a3bd8ddfc94fbaa056738a7c9321add9f866b0cc39d34d538

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/tabs-lg-max.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 342
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/title-md.min.css?ver=3.11.7

192.185.32.24

200 OK

135 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/title-md.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (422), with no line terminators
Size
135 B (135 bytes)
Hash
ee36bf01c75800549e5cc616e0a06edf
ff15e48089f3fac3744e32fd51577ac3ed0c77b4
7f5bbbf9bff4e68a0047612c6e3f369e40bab5162324d3856daef874e3ab00e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/title-md.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 135
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/social-links-md.min.css?ver=7.11.7

192.185.32.24

200 OK

154 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/social-links-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (472), with no line terminators
Size
154 B (154 bytes)
Hash
a7b5435033966b670a470433a9e39e83
942ea32ea1e7103041e02ab8b78eb75ddb311509
160a1139080fc64bd4856997fdb384e54a5ffbe73859a8f1350f592823780930

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/social-links-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 154
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/off-canvas-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

175 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/off-canvas-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (458), with no line terminators
Size
175 B (175 bytes)
Hash
eadba19c80f6a24b0a366e5aad4d343f
139b2e582a51553ef6162d6df64c605629520299
9e91590756c54a09a3de1d57fae718d4fda7ec5816dd4cff2cef923849b73c75

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/off-canvas-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 175
Content-Type: text/css

stats.wp.com/e-202419.js

192.0.76.3

200 OK

3.3 kB

URL GET HTTP/3
stats.wp.com/e-202419.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7329), with no line terminators
Size
3.3 kB (3263 bytes)
Hash
bd2d67186594b0e32223b293fdfcca55
b797a9d012c850b53a7ccc12211adcfbcd9ae0be
4f9f4e2e225088f9cf3b6b54aa421e0f776d1802255505d2f752e1f83f441641

HTTP Headers

GET /e-202419.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Mon, 06 May 2024 13:17:36 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/14377-1704402358485.9985
content-encoding: br
expires: Sat, 03 May 2025 15:12:58 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
alt-svc: h3=":443"; ma=86400

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-woo-tabs.min.css?ver=7.11.7

192.185.32.24

200 OK

268 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-woo-tabs.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (804), with no line terminators
Size
268 B (268 bytes)
Hash
c05a1580f5e3fd7a6c8085c810838ba6
c61bdcada3b73a1ad7dd57b984afd546bb49b117
7dbda5ce93a52295dc0a95fefc1b4cab65ecfdabb524eaec21e2e860cc7c71ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-cbp-woo-tabs.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 268
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/swiper-md.min.css?ver=7.11.7

192.185.32.24

200 OK

156 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/swiper-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
156 B (156 bytes)
Hash
5a44f1db29f8ad2cf464e2fa7674ab4f
46575414b60cc369ab9d35f401f1e993cab1795e
51c15455e416bc61f21f249ad351de975bb420469d6a576fdb95eaa453bd3f62

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/swiper-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 156
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-4c-max-5c.min.css?ver=7.11.7

192.185.32.24

200 OK

252 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-4c-max-5c.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1367), with no line terminators
Size
252 B (252 bytes)
Hash
b847b7064e3b4db402cf74e4b9eb6fd2
ff1a173f56ec7210ad410faf091e4d5a214435cb
e23d09688d6abea3072e0f60809c64d89c0a34020101fdd9af7b2883633dc624

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-4c-max-5c.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 252
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/grid-md.min.css?ver=7.11.7

192.185.32.24

200 OK

127 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/grid-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (394), with no line terminators
Size
127 B (127 bytes)
Hash
8be8740a0e247eaa6dbc4faf12d452dc
ded6d6d0037ce0d08bb3fab96bd30d167466b860
37bfe575ecf1ba72250ba515d27d9fc622063b6369fd89fd228fb6c1f8fad813

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/grid-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 127
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/icon-sm.min.css?ver=3.11.7

192.185.32.24

200 OK

89 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/icon-sm.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
89 B (89 bytes)
Hash
5921038475dbf42fbdfa898252364eb6
a622aa507f3cf6faab9cbc72f47cc9233b206675
0534f7303118d0aa78b12c3b9981f2db64453f41bb9d363a59bf2d7ab086fd2c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/icon-sm.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 89
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/social-sharing-md.min.css?ver=7.11.7

192.185.32.24

200 OK

252 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/social-sharing-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (736), with no line terminators
Size
252 B (252 bytes)
Hash
e6eb1704de46057df542c46acbe43126
32891a2db80ffca3beb3d257f2f170b76b8429d0
84d09c4150665e79e90cc42f10c7bf88a9c64098c87e6019770de5cc17675797

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/social-sharing-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 252
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/title-sm.min.css?ver=3.11.7

192.185.32.24

200 OK

176 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/title-sm.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (576), with no line terminators
Size
176 B (176 bytes)
Hash
090de41768f758055e06fb3683fd9198
8f0404e208ee0bad57dfdd1795835ea9819855b7
393cd23b9101309f0c0b3ef140604d1298a52035e18d95816dc64efc7a192f6e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/title-sm.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 176
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/tabs-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

285 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/tabs-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1516), with no line terminators
Size
285 B (285 bytes)
Hash
953086cad36d6db991fbf882bf9d53a2
0f828cd6b9d0fb02266fb94558a3cd0df37bd165
a56613c7108dda1db58eaeae6ea18aca20a10ec6d122fe1a554474131a40f105

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/tabs-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 285
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/section-separator-sm.min.css?ver=3.11.7

192.185.32.24

200 OK

220 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/section-separator-sm.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (981), with no line terminators
Size
220 B (220 bytes)
Hash
517df36a01706b414d818fee90f1b153
345de40aa07f56d4498d6752737cce5b41bc692d
c1223a53bca0e3d398357222b36908e3f47379bf5676f9c2ee18e9e90b52410a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/section-separator-sm.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 220
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-2c.min.css?ver=7.11.7

192.185.32.24

200 OK

348 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-2c.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1526), with no line terminators
Size
348 B (348 bytes)
Hash
3760fbb2ca3c4276ce074151cbc90e82
40f93786218ab29aa1ff1b2c8303b194ce6300d8
61d5b071ee17560d0c487692216a2064d4e420d9c8274b097042d32d5897307c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-2c.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 348
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/post-cards-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

116 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/post-cards-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
116 B (116 bytes)
Hash
d3b0ec39a94f665656685d6a80b98739
982f07ce5a4fbe01fa9a0f8d14889ed179c48dce
1013c18db7eb2fbdc2d31ded9e38b94b301792ed9d618fba59df67c3d21bd4a0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/post-cards-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 116
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-3c-max-4c.min.css?ver=7.11.7

192.185.32.24

200 OK

286 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-3c-max-4c.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1809), with no line terminators
Size
286 B (286 bytes)
Hash
27901bd5443ae59183f20dbe39c21920
2a279eab7476c58be61dc874efb1f9ae076b2764
e946d0bb8f91aa608da214327bf2d310c1606b388f2abede5d2bc43bebaf2129

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-3c-max-4c.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 286
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-shbp-18.min.css?ver=7.11.7

192.185.32.24

200 OK

184 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-shbp-18.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
184 B (184 bytes)
Hash
92d63a459421045d3f8e7f44c8443f72
8063c47ecfb39c0dc68a81e4cb52f9a9ddb6e4fa
0509860adf4ad27670403845983d3876058dc2fc48464140d2e296304bf590f6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-shbp-18.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 184
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/image-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

211 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/image-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (727), with no line terminators
Size
211 B (211 bytes)
Hash
93f4c226a97884b14001cb9877578120
f171b0901013b0babf700af97563a98f1d0415d1
f0c7daa690a989ba27fdf93fd98c790abc784aa3fa2ee07099448aa95ff04c8d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/image-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 211
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/min-3c-max-4c.css?ver=3.11.7

192.185.32.24

200 OK

144 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/min-3c-max-4c.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text
Size
144 B (144 bytes)
Hash
6ec149dc5f890f146271d936074c755a
bb00c4833f5aa5a6fe920993e728c4b4dd88c14f
096f5aaa298519b8c71377c8e52396424b04bdca7173b9055c6b006f51b91d90

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/min-3c-max-4c.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 144
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/min-4c-max-5c.css?ver=3.11.7

192.185.32.24

200 OK

140 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/min-4c-max-5c.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text
Size
140 B (140 bytes)
Hash
270bf467f4af1b8898593b975fb77397
7d608556854a60d6f0168e4732c1178212aa25d0
d48006beab70b1dbbc7ed5533a477ec85e65c8d013805b318be538de4856b57e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/min-4c-max-5c.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 140
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/person-md.min.css?ver=7.11.7

192.185.32.24

200 OK

128 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/person-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (383), with no line terminators
Size
128 B (128 bytes)
Hash
27e08fa5ebb7e1c273a571e2588bcfc3
4f37bab351058bd7011253ab94d7e091dc0b6066
6c25b400f46686072867617d8c1c4afa056f9a6bc5c16072a76f69071684ea6a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/person-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 128
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-woo-quick-view.min.css?ver=7.11.7

192.185.32.24

200 OK

132 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-woo-quick-view.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
132 B (132 bytes)
Hash
19e0900a128be412dc49c4b6d5d37677
8e671fd85cdf1f03c4de382176492d31adbb499a
ba8a1307a972c039fa1004f6e44c11f0e0c754932b6c2e9492e11d9cfca6b236

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-cbp-woo-quick-view.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 132
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/flickr-md.min.css?ver=7.11.7

192.185.32.24

200 OK

206 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/flickr-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (660), with no line terminators
Size
206 B (206 bytes)
Hash
92c8da175203505e232514b25444aa11
ad888bfff484273bf27e17ab0f38e1f6e1edca95
5aaa4bcae4ff3587ed78d9ff198b29595f1034eb52ef4a207a3052981943687f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/flickr-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 206
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/meta-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

111 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/meta-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
111 B (111 bytes)
Hash
5a7b7b587aa7a51e21e053873c48507e
f806c8abd644713987989fdb4d444876d5cd5e47
2e3a28fac4d45390164ea06adf81b56c6dc77ce6adc23ab035104a194781ecb8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/meta-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 111
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/tagcloud-md.min.css?ver=7.11.7

192.185.32.24

200 OK

136 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/tagcloud-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (393), with no line terminators
Size
136 B (136 bytes)
Hash
973484e9dc6b80309f3df2f9c2fd56d8
eb6ff524590ad6bc8d8ca20dbad9bc034bf8ed8d
8ad8db1fe73750541b63bcdf1e772fa3e71f0677981cfdafa586610d2871a649

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/tagcloud-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 136
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp.min.css?ver=7.11.7

192.185.32.24

200 OK

2.2 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (8055), with no line terminators
Size
2.2 kB (2225 bytes)
Hash
88bccc26e0cfe47225842047a61ff957
f71ad2610222cf3f8f971935120a8dae8d0a7f6c
afb5e237fbc70a28277e2d1ac608412d8ff1350d33e1d6dfacbf240525f9dee4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-cbp.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2225
Content-Type: text/css

www.alhelli.com/?wc-ajax=get_customer_location

192.185.32.24

200 OK

67 B

URL GET HTTP/1.1
www.alhelli.com/?wc-ajax=get_customer_location
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
JSON text data
Size
67 B (67 bytes)
Hash
bd17fa1d42153028fbebd5c3c97d8bb7
9dd6f039b7e3d9fb6e6d529d8f3d712d53bdc1ae
859c1f6c121ffa54389dc06bfa86af2e6e4e6e7c720bdf8c7b8363bc5f9425a1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?wc-ajax=get_customer_location HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Cookie: _ga_RSFWG72CMF=GS1.1.1715001458.1.0.1715001458.0.0.0; _ga=GA1.1.822739444.1715001458; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-05-06%2013%3A17%3A38%7C%7C%7Cep%3Dhttp%3A%2F%2Fwww.alhelli.com%2Fbabtest%2Ftemp%2Fmem%2Fpanel%2Fadmin.php%2F%3Fv%3D1baa5a77aeff%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-05-06%2013%3A17%3A38%7C%7C%7Cep%3Dhttp%3A%2F%2Fwww.alhelli.com%2Fbabtest%2Ftemp%2Fmem%2Fpanel%2Fadmin.php%2F%3Fv%3D1baa5a77aeff%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttp%3A%2F%2Fwww.alhelli.com%2Fbabtest%2Ftemp%2Fmem%2Fpanel%2Fadmin.php%2F%3Fv%3D1baa5a77aeff; tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: nginx/1.23.4
Content-Type: application/json; charset=UTF-8
Content-Length: 67
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
X-Server-Cache: false
Set-Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068; path=/; HttpOnly

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/social-links-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

156 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/social-links-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (469), with no line terminators
Size
156 B (156 bytes)
Hash
b86862a78f379b2d07556c624588ee52
6735ef156efa9744fb32ebaeba0be924e0c335d9
2a29530827b60263915f11a16a9d96e081bc9d62f4df0542556bd3b26c2847d6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/social-links-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 156
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/max-1c.css?ver=3.11.7

192.185.32.24

200 OK

85 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/max-1c.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text
Size
85 B (85 bytes)
Hash
05ab94648bc0c91ff8de3f015b0f0623
f8854949a71aad734b229c12b7882196db9d8f01
12689873136a9856680aa7626b086cc92c7c7fbb7e1aedfdbce92c113889b17f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/max-1c.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:40 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 85
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-cf7.min.css?ver=7.11.7

192.185.32.24

200 OK

117 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-cf7.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with no line terminators
Size
117 B (117 bytes)
Hash
5eaedcd706a58f65cfa3a9234fc8f33c
5e15a7c511e0a33edc46d48adba7341d9ff7257c
95a6e40c1b2683780b3e33eb85077c0510bc8b0c449feabb5e4da75e8d9cec82

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-cbp-cf7.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:40 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 117
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/layout-columns-sm.min.css?ver=3.11.7

192.185.32.24

200 OK

604 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/layout-columns-sm.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (2931), with no line terminators
Size
604 B (604 bytes)
Hash
1e1802d83eaedd72e73d49c6f289233a
288d4a3a31a84774997cb0c320e104691907224a
256ad13db6e24e27d7ceb951dcfcb74a8163b55df0439b37460762e2050adb23

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/layout-columns-sm.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:40 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 604
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/woo-notices-sm.min.css?ver=7.11.7

192.185.32.24

200 OK

142 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/woo-notices-sm.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (383), with no line terminators
Size
142 B (142 bytes)
Hash
4e375df0bddf848ef90fc29d582d664d
620d59816f9bc15697d9a6c6013dd3c0ba014a0a
ddde447a15daddce5a24bf5fd2246e4ed7d5bcea752595bbc56d01309fd9050e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/woo-notices-sm.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:40 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 142
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-1c.min.css?ver=7.11.7

192.185.32.24

200 OK

213 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-1c.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1021), with no line terminators
Size
213 B (213 bytes)
Hash
3fa83e360b3d6457514486e2b26cda41
09ea857cf0de340ab8caf257251f575e35bea979
e9a7fe7e24c3251ca5da2e31ac4851c7dfe7835823c516a79742605c9bf779d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-1c.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:40 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 213
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-main.min.css?ver=7.11.7

192.185.32.24

200 OK

259 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/max-main.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (583), with no line terminators
Size
259 B (259 bytes)
Hash
0d1110bcd4256a2da9959396b8cf2f1d
8499e8303c6d2f2527ecee233392211a021d29c3
ffba97bbd55729051a8f708a5b3c1aad671ddd719bb0a051851e0966c1997aea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-main.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:40 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 259
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/max-sh-cbp.min.css?ver=3.11.7

192.185.32.24

200 OK

597 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/max-sh-cbp.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1954), with no line terminators
Size
597 B (597 bytes)
Hash
4b1a829a9e48480bb668d3145c373f41
1d075aed3d7817ab10bd0fc3fa9fdcbef83bc2e8
bd43570d327ea3ef5ca0440534ba50d2a5740eab66eac41115d66298f4df186d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/max-sh-cbp.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:40 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 597
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/instagram-md.min.css?ver=7.11.7

192.185.32.24

200 OK

366 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/instagram-md.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (1639), with no line terminators
Size
366 B (366 bytes)
Hash
711231b4a61fa5f89f0b8949ea53d2d0
07c9a0df8443352575f5c2c6a61fc62a4c5b7b39
0d957bbd233f33b01e3bcf6831581f4333ffe86e1aced1466e90101c467bfbe5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/instagram-md.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:40 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 366
Content-Type: text/css

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/section-separator-md.min.css?ver=3.11.7

192.185.32.24

200 OK

214 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/section-separator-md.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (947), with no line terminators
Size
214 B (214 bytes)
Hash
12b3dc9f888b8f3e65b6ca6aef82199f
db5b7bdafa839c75cfbfe16fadd4823b591d930e
74c67f30ad5954b6057a6a32f5a2a642941880d2abab7afda2852b09fd3991f3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/section-separator-md.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:40 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 214
Content-Type: text/css

i0.wp.com/www.alhelli.com/wp-content/uploads/2022/01/AlHelli_Official_Logo_Mirza-02_-_Copy-removebg-preview.png?fit=32%2C32&ssl=1

192.0.77.2

200 OK

914 B

URL GET HTTP/3
i0.wp.com/www.alhelli.com/wp-content/uploads/2022/01/AlHelli_Official_Logo_Mirza-02_-_Copy-removebg-preview.png?fit=32%2C32&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
914 B (914 bytes)
Hash
cb4997f2a894ac73f3a4eddc22228c7c
87b6282d5ff8b36d4400c5eebe4854012bed7e3d
fc98f4acc5eef4d445d1baba75868089aeb87d00bd602a80e9c80b65da378d1a

HTTP Headers

GET /www.alhelli.com/wp-content/uploads/2022/01/AlHelli_Official_Logo_Mirza-02_-_Copy-removebg-preview.png?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Mon, 06 May 2024 13:17:40 GMT
content-type: image/webp
content-length: 914
last-modified: Sun, 14 Apr 2024 17:14:53 GMT
expires: Wed, 15 Apr 2026 05:14:53 GMT
cache-control: public, max-age=63115200
link: <https://www.alhelli.com/wp-content/uploads/2022/01/AlHelli_Official_Logo_Mirza-02_-_Copy-removebg-preview.png>; rel="canonical"
x-content-type-options: nosniff
etag: "b44f1c6e3c425266"
vary: Accept
x-nc: MISS arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i0.wp.com/www.alhelli.com/wp-content/uploads/2022/01/AlHelli_Official_Logo_Mirza-02_-_Copy-removebg-preview.png?fit=192%2C192&ssl=1

192.0.77.2

200 OK

11 kB

URL GET HTTP/3
i0.wp.com/www.alhelli.com/wp-content/uploads/2022/01/AlHelli_Official_Logo_Mirza-02_-_Copy-removebg-preview.png?fit=192%2C192&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
11 kB (10728 bytes)
Hash
d966eddcc083a4aa0b9530ccc088f905
60c9683d39024e0f2697b40c0dba7f6c7247f24a
182909fadebec13671c160d8f0a53a0dbf2139663695941c983d6808fc890ea4

HTTP Headers

GET /www.alhelli.com/wp-content/uploads/2022/01/AlHelli_Official_Logo_Mirza-02_-_Copy-removebg-preview.png?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Mon, 06 May 2024 13:17:40 GMT
content-type: image/webp
content-length: 10728
last-modified: Sun, 14 Apr 2024 14:07:42 GMT
expires: Wed, 15 Apr 2026 02:07:42 GMT
cache-control: public, max-age=63115200
link: <https://www.alhelli.com/wp-content/uploads/2022/01/AlHelli_Official_Logo_Mirza-02_-_Copy-removebg-preview.png>; rel="canonical"
x-content-type-options: nosniff
etag: "7862bb66431db537"
vary: Accept
x-nc: MISS arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

alhelli.com/wp-content/uploads/2021/11/banner-11.jpg

192.185.32.24

404 Not Found

462 B

URL GET HTTP/2
alhelli.com/wp-content/uploads/2021/11/banner-11.jpg
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
HTML document, ASCII text
Size
462 B (462 bytes)
Hash
dbf8ec3db1d4b93b848197591827939c
2e12f671d6101f52060133c32f8d359af756f9b2
63c52aa99ca361b59a27e7f51fe5fadffef99e671f8b4f9560fab204219e0666

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/11/banner-11.jpg HTTP/1.1
Host: alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068; _ga_RSFWG72CMF=GS1.1.1715001458.1.0.1715001458.0.0.0; _ga=GA1.1.822739444.1715001458; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-05-06%2013%3A17%3A38%7C%7C%7Cep%3Dhttp%3A%2F%2Fwww.alhelli.com%2Fbabtest%2Ftemp%2Fmem%2Fpanel%2Fadmin.php%2F%3Fv%3D1baa5a77aeff%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-05-06%2013%3A17%3A38%7C%7C%7Cep%3Dhttp%3A%2F%2Fwww.alhelli.com%2Fbabtest%2Ftemp%2Fmem%2Fpanel%2Fadmin.php%2F%3Fv%3D1baa5a77aeff%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttp%3A%2F%2Fwww.alhelli.com%2Fbabtest%2Ftemp%2Fmem%2Fpanel%2Fadmin.php%2F%3Fv%3D1baa5a77aeff; tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Sun, 19 Jun 2022 19:44:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 462
content-type: text/html
date: Mon, 06 May 2024 13:17:40 GMT
server: Apache
X-Firefox-Spdy: h2

alhelli.com/wp-content/uploads/2021/11/banner-05.jpg

192.185.32.24

404 Not Found

462 B

URL GET HTTP/2
alhelli.com/wp-content/uploads/2021/11/banner-05.jpg
IP
192.185.32.24:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerLet's Encrypt
Subjectalhelli.com
FingerprintD1:E4:D9:22:81:5C:F8:30:2A:64:56:D0:96:CE:5D:45:1B:41:DF:4C
ValiditySun, 24 Mar 2024 05:05:55 GMT - Sat, 22 Jun 2024 05:05:54 GMT

File type
HTML document, ASCII text
Size
462 B (462 bytes)
Hash
dbf8ec3db1d4b93b848197591827939c
2e12f671d6101f52060133c32f8d359af756f9b2
63c52aa99ca361b59a27e7f51fe5fadffef99e671f8b4f9560fab204219e0666

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/11/banner-05.jpg HTTP/1.1
Host: alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068; _ga_RSFWG72CMF=GS1.1.1715001458.1.0.1715001458.0.0.0; _ga=GA1.1.822739444.1715001458; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-05-06%2013%3A17%3A38%7C%7C%7Cep%3Dhttp%3A%2F%2Fwww.alhelli.com%2Fbabtest%2Ftemp%2Fmem%2Fpanel%2Fadmin.php%2F%3Fv%3D1baa5a77aeff%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-05-06%2013%3A17%3A38%7C%7C%7Cep%3Dhttp%3A%2F%2Fwww.alhelli.com%2Fbabtest%2Ftemp%2Fmem%2Fpanel%2Fadmin.php%2F%3Fv%3D1baa5a77aeff%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttp%3A%2F%2Fwww.alhelli.com%2Fbabtest%2Ftemp%2Fmem%2Fpanel%2Fadmin.php%2F%3Fv%3D1baa5a77aeff; tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Sun, 19 Jun 2022 19:44:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 462
content-type: text/html
date: Mon, 06 May 2024 13:17:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/layout-columns-md.min.css?ver=3.11.7

192.185.32.24

200 OK

3.2 kB

URL GET HTTP/1.1
www.alhelli.com/wp-content/plugins/fusion-builder/assets/css/media/layout-columns-md.min.css?ver=3.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (3212), with no line terminators
Size
3.2 kB (3212 bytes)
Hash
3dd1fbcc42664abecfb5d544b81b305b
d7bb5c8391a99f8b9c86039b65c0d823b4b423b8
508877ef991b7372fed7ae741a3556a7401d79bd396ca8bcd8db601163b4f8a1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/layout-columns-md.min.css?ver=3.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:39 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:14:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 599
Content-Type: text/css

www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-l.min.css?ver=7.11.7

192.185.32.24

200 OK

379 B

URL GET HTTP/1.1
www.alhelli.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-l.min.css?ver=7.11.7
IP
192.185.32.24:80
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff

File type
ASCII text, with very long lines (379), with no line terminators
Size
379 B (379 bytes)
Hash
a6a533bb756f6ae3befceecbbee00f21
8f4fbb9e6e92682fc1b1f98023fddb34ecf7067c
aae17eee46fdcc0ddcde26f8ca57b319066056295f781ef25655bc3915a935b8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-l.min.css?ver=7.11.7 HTTP/1.1
Host: www.alhelli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 13:17:38 GMT
Server: Apache
Last-Modified: Tue, 19 Mar 2024 18:11:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Tue, 07 May 2024 13:17:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 174
Content-Type: text/css

stats.wp.com/s-202419.js

192.0.76.3

200 OK

9.7 kB

URL GET HTTP/2
stats.wp.com/s-202419.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (9943), with no line terminators
Size
9.7 kB (9706 bytes)
Hash
326e1aa712319222488f8a1938bd970f
66b672b483593240d1f38a6d8f1724ecf981ffd0
8778351e0c022673b3b659df31814ca209fcc5e44041beb2adb77b7bcd763f9a

HTTP Headers

GET /s-202419.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 06 May 2024 13:17:36 GMT
content-type: application/javascript
last-modified: Thu, 07 Dec 2023 08:03:56 GMT
vary: Accept-Encoding
etag: W/"65717c6c-25ea"
content-encoding: br
expires: Mon, 05 May 2025 23:59:47 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap&ver=6.5.2

142.250.74.170

200 OK

35 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap&ver=6.5.2
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
http://www.alhelli.com/babtest/temp/mem/panel/admin.php/?v=1baa5a77aeff
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (1572)
Size
35 kB (34902 bytes)
Hash
2a47493a86dd1f12202e7a8d71b0d6f3
d08b877558a090b2e3523a9fd0505ca8f1cb28b5
e98bf7b4b2c361aa2de0e8616c355c67d8deabf96c1dc60a1f88af516e87e7a4

HTTP Headers

GET /css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap&ver=6.5.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.alhelli.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 06 May 2024 13:17:36 GMT
date: Mon, 06 May 2024 13:17:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (63)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML