r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9730
Expires: Wed, 07 Dec 2022 20:24:38 GMT
Date: Wed, 07 Dec 2022 17:42:28 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2630c6482aef4e822d6634e417f65ab6
6bd1264568eb9647d1665e51521b3bfc15d4df4a
e00eaad18ffa9f5181fe540b156608df88565b09e98ca78b87eba97f3fbc6e79
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E00EAAD18FFA9F5181FE540B156608DF88565B09E98CA78B87EBA97F3FBC6E79"
Last-Modified: Wed, 07 Dec 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12457
Expires: Wed, 07 Dec 2022 21:10:05 GMT
Date: Wed, 07 Dec 2022 17:42:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 17:08:04 GMT
content-type: application/json
age: 2064
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7573
Expires: Wed, 07 Dec 2022 19:48:41 GMT
Date: Wed, 07 Dec 2022 17:42:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: au4bNREofnLj1s1BAV8MX4GM5ciXMjM1GCkOag1OMi0NHfnBR64wKpPL+jlmk609BnRTyazbew0=
x-amz-request-id: F7A6WR7SA60TK7JJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 16:49:26 GMT
age: 3182
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
wrapnfloor.com/ci/index.php?QBOT.zip
135.181.142.201301 Moved Permanently 0 B URL HTTP/1.1 wrapnfloor.com/ci/index.php?QBOT.zip
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /ci/index.php?QBOT.zip HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 07 Dec 2022 17:42:28 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Set-Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156; path=/
Location: http://wrapnfloor.com/ci/?QBOT.zip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 17:42:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 17:07:58 GMT
age: 2071
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5999
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:42:29 GMT
Etag: "639057aa-1d7"
Last-Modified: Wed, 07 Dec 2022 16:02:30 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
wrapnfloor.com/ci/?QBOT.zip
135.181.142.201404 Not Found 10 kB URL HTTP/1.1 wrapnfloor.com/ci/?QBOT.zip
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4736), with CRLF, LF line terminators
Hash ccf05c21f747e1c5b63ef3e0632d3753
83b035e0bb224c9023b8620084d6500e889276ea
ce8d7ac3daef04239ee76c77c130b0623bebbb23254fbcee4e303a2e6c0a198c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /ci/?QBOT.zip HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 07 Dec 2022 17:42:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://wrapnfloor.com/wp-json/>; rel="https://api.w.org/"
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%7CStaatliches%3Aregular&subset=latin-ext&ver=2.11.4
142.250.74.74200 OK 1.3 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%7CStaatliches%3Aregular&subset=latin-ext&ver=2.11.4
IP 142.250.74.74:0
Hash 5b4e689d0517fb4a4337a55826a470bd
aa6900fd91a4b2826b379bd466e563ae206bd39e
d520cc986ffa47a5c767b6385afb122f85cdd4f7bb5036ec7cb293d98adeea11
GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%7CStaatliches%3Aregular&subset=latin-ext&ver=2.11.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 07 Dec 2022 17:42:29 GMT
Date: Wed, 07 Dec 2022 17:42:29 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
push.services.mozilla.com/
54.186.117.16101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.117.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: a+WOD1o3c3thmAZXzHqKRQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xdQsNQhOE8Gy2Mm4mCMcejM6Vlw=
wrapnfloor.com/wp-content/plugins/simple-social-feed/css/simple_social_feed.css?ver=0.0.2
135.181.142.201200 OK 275 B URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/simple-social-feed/css/simple_social_feed.css?ver=0.0.2
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash ca4df85945c5f84356408ef9100e8de4
8a352e125b8b04b3c943baf634f70c8cfd54d9a3
69bd2a02b83fff4284f7056727fe8eea01862b69e463c7e47ab1dbd2f25bc299
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/simple-social-feed/css/simple_social_feed.css?ver=0.0.2 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:19:42 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/booked/assets/js/tooltipster/css/tooltipster.css?ver=3.3.0
135.181.142.201200 OK 1.7 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/booked/assets/js/tooltipster/css/tooltipster.css?ver=3.3.0
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash ac79786a9d05654ad9ed42ca365f6010
5538438c807b70b1406fd8ca7142d9d5743b1395
b536df7f7fcc065553039607a39e609559095a8e206c710cd39846a12ce362a1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/booked/assets/js/tooltipster/css/tooltipster.css?ver=3.3.0 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:03:26 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/accesspress-social-counter/css/fontawesome-all.css?ver=1.9.2
135.181.142.201200 OK 8.5 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/accesspress-social-counter/css/fontawesome-all.css?ver=1.9.2
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (317)
Hash a7beb26c9b4354a0cef8512533fd9ce4
e80df4730b1ac3195a790f273aa4a591816635d3
73da1ba0531531b3c887089b8d198e3d9f8336522e5b9b9046ee6965af22b632
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/accesspress-social-counter/css/fontawesome-all.css?ver=1.9.2 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:03:46 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/booked/assets/js/tooltipster/css/themes/tooltipster-light.css?ver=3.3.0
135.181.142.201200 OK 225 B URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/booked/assets/js/tooltipster/css/themes/tooltipster-light.css?ver=3.3.0
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash 61d2a4e16d0a8f87627b87a7f5ab711b
ce2509c46067d2102430361052d3908ff65c2bf0
79cd1be36fadffc16a9a5b566cccaa22f355a3610630f686cc6855ee93d5d677
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/booked/assets/js/tooltipster/css/themes/tooltipster-light.css?ver=3.3.0 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:03:26 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/booked/assets/css/animations.css?ver=2.9.1
135.181.142.201200 OK 508 B URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/booked/assets/css/animations.css?ver=2.9.1
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash d6e5f67f2fd5f307a7647c5687ee1bef
6938dbf5c53171f3cd202d408451c27eb83aa565
3276e1294e0bc7eb0c13a6f554f903876827abd51ae2b9d5218f6e1e6def9ec4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/booked/assets/css/animations.css?ver=2.9.1 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:03:26 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/booked/assets/css/icons.css?ver=2.9.1
135.181.142.201200 OK 6.6 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/booked/assets/css/icons.css?ver=2.9.1
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (11040), with no line terminators
Hash 04766dd9d4baab580f52e4d127601bdb
bf95676811a38d8af2e41d7dbdee152dd5e92598
e20197f44039846a8bad60514f9a6349594263c29a68684e8c005baa9c0d958f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/booked/assets/css/icons.css?ver=2.9.1 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:03:26 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/responsive-vector-maps/css/jquery-jvectormap-2.0.4.css?ver=6.0.3
135.181.142.201200 OK 3.6 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/responsive-vector-maps/css/jquery-jvectormap-2.0.4.css?ver=6.0.3
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (4341)
Hash 5ab43a871fe9d39e98dba2775112212f
8701cf3aa76063152a3bf7efd758449097024f52
47639796323a439fea71b7219c81702103ec770bca886433674c095f9dc931a7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/responsive-vector-maps/css/jquery-jvectormap-2.0.4.css?ver=6.0.3 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:20:11 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/responsive-vector-maps/css/rvm_general.css?ver=1.1
135.181.142.201200 OK 441 B URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/responsive-vector-maps/css/rvm_general.css?ver=1.1
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash 67936dfbab15c8ace566057cc5ff0ee1
d8cf78579ceeff281697e0ecd8edba26c5bd7c94
7c940aa904928da1c8d0a9cb617aa28e5e394ba49d93c58b52a4a54c662c9d43
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/responsive-vector-maps/css/rvm_general.css?ver=1.1 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:20:11 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/css/booked.css?ver=2.11.4
135.181.142.201200 OK 9.9 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/css/booked.css?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type CSV text\012- , Unicode text, UTF-8 text
Hash 47c223e79d444b1335c41835cf7cfef9
2303726146d45b4e6eb5c8708c605867f45e9f7f
d6a0b98eb6c2e52bf7d3cbb3cb60de5210665b1cf66ecbe98246d06524ee0069
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/css/booked.css?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:38 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/chaty/css/chaty-front.min.css?ver=16666061763.0.1
135.181.142.201200 OK 5.0 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/chaty/css/chaty-front.min.css?ver=16666061763.0.1
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (21881)
Hash 7065dbd80765abe340be875773ac727d
b7e176688e90343ddab624511c899baf31e909d0
eb687aea74d10e35cdcc734ca06e0a46bd78440e898c0928c3dbe4ba3db1d6d9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/chaty/css/chaty-front.min.css?ver=16666061763.0.1 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 14 Oct 2022 14:57:30 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
135.181.142.201200 OK 7.1 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (30837)
Hash fbf6bad5215fa073a01630bd9e7343d8
fae9ee44d246bb7cfcc59ae22b1205eb594fafeb
91c2faf1819676a2c2cd09118e0ac817716c2bcd9c70a42ffcc9337381c7e467
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 07 Oct 2022 10:16:45 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/css/fonts.css?ver=2.11.4
135.181.142.201200 OK 16 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/css/fonts.css?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (374)
Hash 194199f7174af78de5c1225036284cba
aba47ccb07b5d4f3631acb2c0435f211c4664fb3
8140219780722a415e829d2cadc6ac4238b231dfa0150a67f7596f2afce49f4f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/css/fonts.css?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:38 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/style.css?ver=6.0.3
135.181.142.201200 OK 1.3 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/style.css?ver=6.0.3
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash 962a5c130e09845501c83371e1d2e647
692daaae6b9f6ddbc9cd6c13b9e629dcb9e96f6f
68e14b27b72987607536621acf8ceb526d7c7b4c234949c6405db90b80cc29e7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/style.css?ver=6.0.3 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:44 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/css/accesspress.css?ver=2.11.4
135.181.142.201200 OK 744 B URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/css/accesspress.css?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash 3c586e2a4e2c29f5c59eebb1861b4793
21b70cb080c3c00b542512c40b1971dda6bdd80a
19db0e38f4072ce521597e0bf8f53d5bd58a14cab3c141aaf491da752ae68204
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/css/accesspress.css?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:38 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/css/repairdigital.css?ver=2.11.4
135.181.142.201200 OK 3.6 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/css/repairdigital.css?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type troff or preprocessor input text\012- assembler source, Unicode text, UTF-8 text
Hash 81e71fcca2febe49d7e2a83c27bb9b8f
887bf719e2f7fcfdf48190b2f48223970c0cd4c6
dfec33e5c9ed838332a566d825f7ea7054b7cfe0c6ed54186dbaaf27a39c3799
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/css/repairdigital.css?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:38 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/css/animations.css?ver=2.11.4
135.181.142.201200 OK 3.8 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/css/animations.css?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (460)
Hash c65d1d4b0080a02eea98493d5891bba9
073392686ba47bc169ec8faa740413b56097426f
4cf8305ad922a34913ca5384d6855ecf2f00bfed948bf882f07e72757ee5eebe
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/css/animations.css?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:38 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/css/bootstrap.min.css?ver=2.11.4
135.181.142.201200 OK 20 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/css/bootstrap.min.css?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65371)
Hash db0b2663ae7ed9ba60e36044f8c1c14d
e255f66e74b83b19a3b7c1018fc672530fe90831
969a0cc5278cda8dc7a9811dde6a249d7bc8fcf1da10bc2649d7e1110191e734
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/css/bootstrap.min.css?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:38 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/css/main.css?ver=2.11.4
135.181.142.201200 OK 84 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/css/main.css?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type troff or preprocessor input text\012- assembler source, Unicode text, UTF-8 text
Hash e8d73222bddbfd66fde57762ce29e196
103f75db211f91633e22410cc9d401bc904b4509
21a40d1a7fde531979f452a7fe83586eac49277e4df932df9bfa65b1b1a87c1f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/css/main.css?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:38 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
135.181.142.201200 OK 4.2 kB URL HTTP/1.1 wrapnfloor.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (11126)
Hash 5f0c7c68ce291948081d8bc40b311a4d
52e9e66db13df06a18cb59905195d45ee80e466a
d0f639afed36e6a912a17a467beb71c7f3976cc9cfba3d105a76e985c487e62f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/responsive-vector-maps/js/regions-data/jquery-jvectormap-2.0.3.min.js?ver=2.0.3
135.181.142.201200 OK 14 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/responsive-vector-maps/js/regions-data/jquery-jvectormap-2.0.3.min.js?ver=2.0.3
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (32411)
Hash 527e67829de0e5dcc5d99a8d33034b57
ba8fa48b296041f8b988a52866c6839b908dec14
767755d57b354cbfbee0d0992c78e278add72f2a56269a5de1a32ea9dc4aea6f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/responsive-vector-maps/js/regions-data/jquery-jvectormap-2.0.3.min.js?ver=2.0.3 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:20:11 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
135.181.142.201200 OK 31 kB URL HTTP/1.1 wrapnfloor.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65447)
Hash 0e12e8ad50f470e9a500e00b739965c2
505d806a166278dd2e066b5e00952dd4dfc9605f
6d3c4243e698d8bf64940fa1295d60edc1add8c7b733048b1ff7cea9b98380d8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/rev-slider/public/assets/js/rbtools.min.js?ver=6.5.18
135.181.142.201200 OK 49 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/rev-slider/public/assets/js/rbtools.min.js?ver=6.5.18
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (45108)
Hash 744f13ee4a773d61af8c8e0fe1f92271
cb86b1a4f97b4ff8d4b470716520fb885bbc18cf
5633cdf3f617f82d7e1e3842629fb17a414586594f79faec10bcfb30dc422d7f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/rev-slider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:20:06 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8277
Expires: Wed, 07 Dec 2022 20:00:27 GMT
Date: Wed, 07 Dec 2022 17:42:30 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8277
Expires: Wed, 07 Dec 2022 20:00:27 GMT
Date: Wed, 07 Dec 2022 17:42:30 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8277
Expires: Wed, 07 Dec 2022 20:00:27 GMT
Date: Wed, 07 Dec 2022 17:42:30 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8277
Expires: Wed, 07 Dec 2022 20:00:27 GMT
Date: Wed, 07 Dec 2022 17:42:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e95ebce9d79ba46cb96af9a45af1762f
985c6761675e6bcc0186f64d55f94cf09352f05c
5837d6bf31e57f955ba2577f112281cc33a5502b358c83192f4e396b57042ac0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8438
x-amzn-requestid: 0f5d1b0e-1193-4006-8a54-555681d9f62e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlqVGMjoAMFS6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb641-6366ea6464122d857407cdff;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2j9gqNvWYRFM-li9Nj4nLAWe_eKWMSwagPgU3eAtk0pjcJUX4Q8XEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:55:40 GMT
etag: "985c6761675e6bcc0186f64d55f94cf09352f05c"
content-type: image/jpeg
age: 71210
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ViuPsZBEVJ-aGOcsfrl3nXu244mzMUMQVhpPeNlO7W3sBrrfuUfXpA==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:32:04 GMT
age: 69026
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 535710165275856757bd7d1689f79de3
d51162b7fcba50022482b7130a556f3a7dfe822f
c93e2df13b78cd4b718eb4fe3fe70a9d6d12fd0a0d7f505219ec0d5e6a70653c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6186
x-amzn-requestid: 53d1d373-ff6c-4c59-bdeb-fff592bca586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUsyGOEIAMFwfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e67eb-0156077b52dc07fb124c087b;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:51:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4ORpzqbzQyJz_i3wpxf_07mXK3ovj1JT8kn-M9fdrGRgDVig7hhN5w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 12:20:15 GMT
age: 19335
etag: "d51162b7fcba50022482b7130a556f3a7dfe822f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: va_vly0iX6rzm_aTWrryPRjoTWlI-_0m6rpS6VrTx-nsd71dk1cSZw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 06:11:41 GMT
age: 41449
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 604a4132da78a0c013b5818644adb121
ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566
eecab519c33596c67f2d2021dfd1af24e7fd8f2ed403f99b4ba0c265c08a259f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8701
x-amzn-requestid: 653284c3-ee7f-45f1-9513-3a6c81e1d6e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cm3-2HRWIAMFjfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c39f8-6f8969a26787a9463ba6c2ec;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 06:11:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EpyIdH9YEXjxbGhZpBIfzoZHQxMvAKl0eCFQsgMt0e1SSeWsiuey7g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:15:06 GMT
age: 70044
etag: "ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a7ee62c5e846e8ad4808f4724f15146d
6d55b299f906908309f91eaf0a720ad65866db04
0d8f51d6f7f3bad4bb9d9c3000999739147f6dd718b290b0dca71a4cba85cb38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6846
x-amzn-requestid: 53452103-6559-460c-ac40-4685e6816aa4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGx4E-mIAMFatg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a5-5327ec9a2f247cc91654df80;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Znjnq24wuXoi43Bfc9aPdcUHhMh-a00hSCXUHFpHq3sTtQQoUYe6Uw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 07:10:36 GMT
age: 37914
etag: "6d55b299f906908309f91eaf0a720ad65866db04"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
wrapnfloor.com/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=16666061763.0.1
135.181.142.201200 OK 15 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=16666061763.0.1
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (58142)
Hash ca6f3456ef01495dee69cdbd2aa679bd
716f994f7ea05bb56b49b63152634e1a0a5cfe12
7ec01ca34b30a36e46a877cce7f5d03baccc77880c90d610bf66a97f0223bf3d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/chaty/js/cht-front-script.min.js?ver=16666061763.0.1 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 14 Oct 2022 14:57:30 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/snazzy-maps/snazzymaps.js?ver=1.4.0
135.181.142.201200 OK 2.1 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/snazzy-maps/snazzymaps.js?ver=1.4.0
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (5068), with no line terminators
Hash 18d9a2c427f8299a5c875e87c38c7966
7fe6a515b7f011bdecd579b2c8f843fd4b123c09
794a8b0e2c5037604c42b2ecf9c0ddbd1aca6f7f44a00d9c32c19b124e1c25ed
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/snazzy-maps/snazzymaps.js?ver=1.4.0 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:20:24 GMT
Expires: Fri, 06 Jan 2023 17:42:31 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/simple-social-feed/js/instagramFeed.min.js?ver=0.0.2
135.181.142.201200 OK 3.4 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/simple-social-feed/js/instagramFeed.min.js?ver=0.0.2
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text, with very long lines (9287)
Hash 2300f8adc435b2a6f189e5074a6022b7
85f97fe05e76eb6998f8fe824ccd390857d27e0a
e09126ade129c64c5866f097cb3a029aff21ebb1ba790206fa4793d11a11df4e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/simple-social-feed/js/instagramFeed.min.js?ver=0.0.2 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:19:42 GMT
Expires: Fri, 06 Jan 2023 17:42:31 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/modernizr-custom.js?ver=2.11.4
135.181.142.201200 OK 2.9 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/modernizr-custom.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (6966)
Hash 549a57e8a5bde8d67b0675e493787961
babe4815a51229fa5800c593cd9a9d911e9ab192
6d56de805fc13fe3d03456c4753f08ab14ceeda3b62b908b3fc2fa84aa80b9df
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/modernizr-custom.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:31 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/rev-slider/public/assets/css/rs6.css?ver=6.5.23
135.181.142.201200 OK 12 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/rev-slider/public/assets/css/rs6.css?ver=6.5.23
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash 2aad4b3c10e124e72e83c8bfdd75e199
2879321f06d82ac921994c33ba9918048ae41f33
7d6f2113258d6caa0c8b6eb76f0607ced5afb39cc97887e9b5c5867d3ac39c73
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/rev-slider/public/assets/css/rs6.css?ver=6.5.23 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:31 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:20:05 GMT
Expires: Fri, 06 Jan 2023 17:42:31 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
142.250.74.35200 OK 7.8 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Hash 8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://wrapnfloor.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7840
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 18:19:14 GMT
Expires: Fri, 01 Dec 2023 18:19:14 GMT
Cache-Control: public, max-age=31536000
Age: 516197
Last-Modified: Wed, 27 Apr 2022 16:51:55 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.35200 OK 7.9 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://wrapnfloor.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7884
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 05 Dec 2022 22:32:40 GMT
Expires: Tue, 05 Dec 2023 22:32:40 GMT
Cache-Control: public, max-age=31536000
Age: 155391
Last-Modified: Wed, 27 Apr 2022 17:03:52 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/staatliches/v11/HI_OiY8KO6hCsQSoAPmtMYebvpA.woff2
142.250.74.35200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/staatliches/v11/HI_OiY8KO6hCsQSoAPmtMYebvpA.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash 9bf0c7f05d0a77a9c45ec352c720ed84
56b1e1b65779f5ba050953246ebf1526e50cbaee
5f17671ce030879a0b89ffce96fc31e6feb1a46b560ec7df7e8fb615682258a5
GET /s/staatliches/v11/HI_OiY8KO6hCsQSoAPmtMYebvpA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://wrapnfloor.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15752
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 06:06:56 GMT
Expires: Thu, 07 Dec 2023 06:06:56 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 16:09:56 GMT
Content-Type: font/woff2
Age: 41735
wrapnfloor.com/wp-content/plugins/rev-slider/public/assets/js/rs6.min.js?ver=6.5.23
135.181.142.201200 OK 103 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/rev-slider/public/assets/js/rs6.min.js?ver=6.5.23
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (64288)
Size 103 kB (102566 bytes)
Hash dcb1d33d0235ffe1ca226ae9a2c6d75d
5941e6eef12a50d7cc60b10b6c7d06f0f42c35c7
52139c942399aa4dc944f535eca6c71d795968aba3effdd33f633240ff478cae
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/rev-slider/public/assets/js/rs6.min.js?ver=6.5.23 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:20:06 GMT
Expires: Fri, 06 Jan 2023 17:42:30 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c7a5f887bbc7d30b9cfe15163c3d8ddb
21d65790a1d10a06d198b54218365aa474126e1c
2a2e7930f967d947cc5293c95221913e24596773577bbf56ff402db6236bbda1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-T8WDVT9
172.217.21.168200 OK 55 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T8WDVT9
IP 172.217.21.168:0
File type ASCII text, with very long lines (1921)
Hash 7bf338c200801238da4fcbdb744c1c13
1096cdfb27f60f9be43ef9070fe3faad5cad8a4a
e830975f3cdaa4aa51c414c8f4c9207ada5eb4cfde7ef2226e200495d10201a0
GET /gtm.js?id=GTM-T8WDVT9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wrapnfloor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Dec 2022 17:42:31 GMT
expires: Wed, 07 Dec 2022 17:42:31 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Dec 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 54676
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8aa9320315b7fc787bfd0fd1baea8721
45328506883b22acc927b8038b73e5247b0a1679
c5827834b5ce1e49980b439410b06fca062d877abd8ca89719b589a2fe28b4b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wrapnfloor.com/wp-content/plugins/booked/assets/js/spin.min.js?ver=2.0.1
135.181.142.201200 OK 2.1 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/booked/assets/js/spin.min.js?ver=2.0.1
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (4247)
Hash 8d7ba4d63ac17cbb960d40c96eb39d3b
e586205821ad404dca06159fb039153eee1433d1
d06731711c37ee706d794332dfcedc6a278f92b893369445e6465e3f2f5edf87
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/booked/assets/js/spin.min.js?ver=2.0.1 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:03:26 GMT
Expires: Fri, 06 Jan 2023 17:42:31 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
135.181.142.201200 OK 11 kB URL HTTP/1.1 wrapnfloor.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (36560)
Hash aa17b171e922312c6837e54ce74d3f4a
64dd639c742cfbdfdd4a4e326396d6854577ec1c
af9e3842f6733f75e3cc6f1f3c54a8b6e334ee8fc1c46705f39d7cd47ca1a4a9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 08 Apr 2022 20:07:18 GMT
Expires: Fri, 06 Jan 2023 17:42:31 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/booked/assets/js/spin.jquery.js?ver=2.0.1
135.181.142.201200 OK 783 B URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/booked/assets/js/spin.jquery.js?ver=2.0.1
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash e1ecc9d3f6093637340fefdadc785e5c
2d8d87cd712f60ce1ce39735ff073dce7e4af7ff
8a16ed1650873b4789d53ec705c13d4d0e10762f96817fff4f1377a76c952505
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/booked/assets/js/spin.jquery.js?ver=2.0.1 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:03:26 GMT
Expires: Fri, 06 Jan 2023 17:42:31 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/booked/assets/js/tooltipster/js/jquery.tooltipster.min.js?ver=3.3.0
135.181.142.201200 OK 4.9 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/booked/assets/js/tooltipster/js/jquery.tooltipster.min.js?ver=3.3.0
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (17523), with no line terminators
Hash baac80b2e291d5d1bf5cb2b4865f7f68
11089e81622928bbb5fc22ff983f6bc89181496c
425991d8c77657b1fb0d0b8f9b2eb7a8f886a8a33a455b480b436d92f2339a6c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/booked/assets/js/tooltipster/js/jquery.tooltipster.min.js?ver=3.3.0 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:03:26 GMT
Expires: Fri, 06 Jan 2023 17:42:31 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
135.181.142.201200 OK 6.9 kB URL HTTP/1.1 wrapnfloor.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 9c593d755dbdf3a431384342bc3518b4
daf916d960acc3b6bed753e3efb10089e60644da
aeebc17c48898a6d5355cba8d1bde529a0abb970449ac1590636c0d592ecabca
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 08 Apr 2022 20:07:18 GMT
Expires: Fri, 06 Jan 2023 17:42:31 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
135.181.142.201200 OK 5.1 kB URL HTTP/1.1 wrapnfloor.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (15660)
Hash 8592048ec656e41d4797240e7df5ac38
5ed5d9f50f67b9283dc78d0f0ad9e4ab53af595b
0865155ebddd7c505b677182ab113cc5f1ba66ccc7bd085c3aa8f94403fdc6cd
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 12 Apr 2022 05:56:23 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/booked/assets/js/functions.js?ver=2.9.1
135.181.142.201200 OK 9.4 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/booked/assets/js/functions.js?ver=2.9.1
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash bd5530be24ec321b143df438b0e952ef
620e7d106e42f9b99014c04c12f9e1610256f303
d49339e60e736dc9e9d6a18b01c662436d6302036e5a45aa367a852063b4eade
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/booked/assets/js/functions.js?ver=2.9.1 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 14:03:26 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/anime.min.js?ver=2.11.4
135.181.142.201200 OK 4.8 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/anime.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (533)
Hash 667ecad53f661ced53131069f61cd2c1
a23e8f6681980949f7be99aea0760876e07ed314
399e6109ad7e74298987589312b82b0ce18d18187b9d3fb564e4407f6906d71f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/anime.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:42 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/plugins/mwt-addons//static/js/mod-post-likes.js?ver=1.0.0
135.181.142.201200 OK 615 B URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/mwt-addons//static/js/mod-post-likes.js?ver=1.0.0
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash d99a85b538d3250de39a4d163e1ebcdf
0209fa234021d129bc11e67f6a82fd058e0d0369
19718f68a1447484e256d0dcd43ecfa9e0fa94f92b168bcfe8fbdbc34ff029ca
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/mwt-addons//static/js/mod-post-likes.js?ver=1.0.0 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:18:44 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.appear.js?ver=2.11.4
135.181.142.201200 OK 907 B URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.appear.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash 575c566d62784d11b73c6905004697ff
94786ec63223d1511bab468e8ed7dd937e767961
fb82c914520c3072727bd782791df9b7f8dff89e33f42862c73162776f348b57
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/jquery.appear.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/bootstrap.min.js?ver=2.11.4
135.181.142.201200 OK 9.9 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/bootstrap.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (32033)
Hash 8af3325661c6b4310daf54f3bbf40d37
660345b7d0474b9fd3d888a4ac581cd957c3e72c
1a1ccddde49e0e0a66c7c2cd7442a489f9b96e2bd7401f8c5f9f68ad9c0348c4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/bootstrap.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:42 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
135.181.142.201200 OK 706 B URL HTTP/1.1 wrapnfloor.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1464)
Hash e26e2ba5d82da6211e981bf0e962fe00
ca7358efdb6852cfb78ec32383eaef15ac6cb61b
400f6ae8a00e7eabb07284d8cd8715579e9a3721fa463e508b5d40b83cde1447
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 08 Apr 2022 20:07:18 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/superfish.js?ver=2.11.4
135.181.142.201200 OK 2.4 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/superfish.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash f1bf27e49a5420bb0bd8314726edb299
9674797a612cdf274b22cb871d1a2e3847704643
4a7177c74afa2e5b6a9af0fb63e1fa7ff1624bdcac33f0aae3f454f1ffacaa0a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/superfish.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 30aec170d58f580f2ed4da4b92d72cc7
3b11a98ba9563f7f266e7a935e3b78bd0c0712aa
7b25e66e4383cdb29228d0451a4810eeab7d194ca81045e066c00c9467f29312
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:42:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-PBDF129RJD>m=2oebu0&_p=1924289433&cid=1729606094.1670434951&ul=en-us&sr=1280x1024&_s=1&sid=1670434951&sct=1&seg=0&dl=http%3A%2F%2Fwrapnfloor.com%2Fci%2F%3FQBOT.zip&dt=Page%20not%20found%20%E2%80%93%20Wrap%20N%20Floor&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-PBDF129RJD>m=2oebu0&_p=1924289433&cid=1729606094.1670434951&ul=en-us&sr=1280x1024&_s=1&sid=1670434951&sct=1&seg=0&dl=http%3A%2F%2Fwrapnfloor.com%2Fci%2F%3FQBOT.zip&dt=Page%20not%20found%20%E2%80%93%20Wrap%20N%20Floor&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-PBDF129RJD>m=2oebu0&_p=1924289433&cid=1729606094.1670434951&ul=en-us&sr=1280x1024&_s=1&sid=1670434951&sct=1&seg=0&dl=http%3A%2F%2Fwrapnfloor.com%2Fci%2F%3FQBOT.zip&dt=Page%20not%20found%20%E2%80%93%20Wrap%20N%20Floor&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://wrapnfloor.com
Connection: keep-alive
Referer: http://wrapnfloor.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://wrapnfloor.com
date: Wed, 07 Dec 2022 17:42:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 30aec170d58f580f2ed4da4b92d72cc7
3b11a98ba9563f7f266e7a935e3b78bd0c0712aa
7b25e66e4383cdb29228d0451a4810eeab7d194ca81045e066c00c9467f29312
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 17:42:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.ui.totop.js?ver=2.11.4
135.181.142.201200 OK 734 B URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.ui.totop.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash ff8906f7cd0839d6a45303df90222caa
a96681beecff549bd2e21b8d8b89b1a82d8c243d
4f2b40f034088a63eca05ee64adcc683381c2cde643ab33c7b9f276d8859a5bd
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/jquery.ui.totop.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.scrollTo.min.js?ver=2.11.4
135.181.142.201200 OK 1.3 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.scrollTo.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (2272)
Hash 4538ecd007bc60205de613b9e55f1e90
63c7c8f183b0ef12c55ff157ba0564bb9d1a8286
0f9ef7835dc2bf1b0f504dad83ea12443a2212f34887f233698501b9d6c6a1d2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/jquery.scrollTo.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.easing.1.3.js?ver=1.3
135.181.142.201200 OK 2.0 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.easing.1.3.js?ver=1.3
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash 7c97659d4354309355780e869da524c0
30d0a965f413e533e57a19ad8bd8a0d63f36e092
601d95625cb8a384eb7c6d0ab0c4896280e69401ce3aad9fb5c9775c63ac3083
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/jquery.easing.1.3.js?ver=1.3 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.localscroll.min.js?ver=2.11.4
135.181.142.201200 OK 775 B URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.localscroll.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1225)
Hash 8aaf2d47f258efeb3048be6a2cab2643
f7507d02b9c9c6b886cd36bac860ae06327bce47
842b4863143186a761aea3456383116a773b310a919af3358b9111629661aa6e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/jquery.localscroll.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.scrollbar.min.js?ver=2.11.4
135.181.142.201200 OK 4.4 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.scrollbar.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (12657)
Hash 7309283fe234956e041b68a9495285d1
3aeee55ec36e8051e9cd57a4a7029aed3fbab1ec
c6131eb5023094a8758c80a1b871df28b81364c7150f0214b45e5c2eb67c9575
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/jquery.scrollbar.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.parallax-1.1.3.js?ver=1.1.3
135.181.142.201200 OK 803 B URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.parallax-1.1.3.js?ver=1.1.3
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash fc655d1b07d652a77a1d6a57df22ce16
b0459abf90708d6a5e51dbc723e6b1d5f261c733
fb71bada9b9ab543100f4cebb32192042e00ea6477a1e45c88143944fe956c39
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/jquery.parallax-1.1.3.js?ver=1.1.3 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/bootstrap-progressbar.min.js?ver=2.11.4
135.181.142.201200 OK 997 B URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/bootstrap-progressbar.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (2217)
Hash 7094bcae7e04526ed94493d7fb70e6d4
ff8b4e965a38b76eff750dab975e2d04daf67a87
f54f342839b25690f0d2b89d37a2d404a4bc80d96826456e4fe10009901a08f4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/bootstrap-progressbar.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:42 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
135.181.142.201200 OK 1.8 kB URL HTTP/1.1 wrapnfloor.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (5477)
Hash e1fdb3ba093840a443bf861b156cafa8
e9d396924b7f3abc4d8cba96b43c13cf59026f54
38d85e0599d5111f613c959029f36e1c8d4f24325dff99a9fcf075ac9c516469
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Jun 2020 18:53:27 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.countTo.js?ver=2.11.4
135.181.142.201200 OK 921 B URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.countTo.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash 490daabfb14a4c459be1c74af66f5792
53783a41c85af85a2d36c1b57b7343401e34b231
68506528d1b0d0549aef4ab125261894ec9a53220d804e00e72223ab1b6b2326
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/jquery.countTo.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.easypiechart.min.js?ver=2.11.4
135.181.142.201200 OK 1.7 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.easypiechart.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (3695)
Hash cd8e7b02c45148472e80dd54da7c62ad
138c16710c3c648922dfe8233d8a1a49ade7620f
5d855eaf3570f7efdc37ff28f6d3b12d66103a4cd08e6597232a558a2aa4f31a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/jquery.easypiechart.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/photoswipe.js?ver=2.11.4
135.181.142.201200 OK 26 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/photoswipe.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash 5f972c3f81b33da1dfb945337cb23cd4
18eebb2e06a25f787cfb81aaa2f78f4a0443edfd
edac7cf6ef752b320d18a7ff78fab6804abc4a15691c345187aa36152837e280
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/photoswipe.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:32 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/photoswipe-ui-default.min.js?ver=2.11.4
135.181.142.201200 OK 3.8 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/photoswipe-ui-default.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text, with very long lines (9767)
Hash 962d366ba53e10cab5d3288989de7557
6283c5b02649cbf728cb9cdb7d2e378e88d8f067
775bf6e8ec8a91db3d177895fbd0bc7c2b49016b84db2c9c07f61f654fa6855e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/photoswipe-ui-default.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:33 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.flexslider.min.js?ver=2.11.4
135.181.142.201200 OK 6.5 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.flexslider.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (22248)
Hash 5b44b4b3f8c2f2f50dac1a7cd8428eb0
3f8dbae174807abb2e051a63522a5058004e69fa
3ab0092d3ec15d5419eec805326cf28045fb1120c7ae7bfbedd0869c6c9e7c0e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/jquery.flexslider.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:33 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/isotope.pkgd.min.js?ver=2.11.4
135.181.142.201200 OK 10 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/isotope.pkgd.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (32019)
Hash 5e86dd8e16fd150b0940c87a7152b49f
2c6b3992474bb4b9047ae4422023c06bf4d08219
e67619bba1ebabaed8df2d451b98ffc6f37f888e7550016465bb4bc57beef9b9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/isotope.pkgd.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:33 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.countdown.min.js?ver=2.11.4
135.181.142.201200 OK 5.6 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.countdown.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (13714)
Hash 9f836a8c409acd1a18aae339af66511c
a1d56831471dfe41c5f06f9b41ed0225bf37b49b
9ba048757e52215b8a905cd4d228f1bdc80fbe17237d981554593419759436b9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/jquery.countdown.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:33 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.cookie.js?ver=2.11.4
135.181.142.201200 OK 1.4 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/jquery.cookie.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash 57f5805c89957edafc974ab0b09be18b
40a59f6b80f8f627405542ad87270a59113480d4
4809ef2762c04ca23808786b01083d4ec95b24b4002777e69d3afdfd4351e5f4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/jquery.cookie.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:33 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/owl.carousel.min.js?ver=2.11.4
135.181.142.201200 OK 11 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/owl.carousel.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (32012)
Hash ed87edc2614f4d027663d2a45a624cc0
481ac08f11dd567bcbf26c6292780630d4bb1673
b93601fcb022b33a3260678641f688d7f5e2090301249601e3f05116695fd063
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/owl.carousel.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:33 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/particles.min.js?ver=2.11.4
135.181.142.201200 OK 6.0 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/vendor/particles.min.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (23002)
Hash 041fe379b828f570a83cb2b4396ebc78
c4caaec1336d3d489ffd3b72de16be3b9d7912b1
d29f15243b3f3bee6b1fc73831f334721e113be459aa57908e918f339505152c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/vendor/particles.min.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:33 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/plugins.js?ver=2.11.4
135.181.142.201200 OK 576 B URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/plugins.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash 1a570c2b3655dfff7a6dac8bce3774e6
2d112487332e0978acfb87d1c98f48623db4d140
108efab435e0c5d262b9ae031e4f2c15ec882eed89fe4857d91810e1d84964b9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/plugins.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:33 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/js/booked.js?ver=6.0.3
135.181.142.201200 OK 168 B URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/booked.js?ver=6.0.3
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
Hash a3714ee1cf4278c5d1440f6d74db88c3
c60fcff67339005d8c9e65f19d43533134963798
aa1f576c12cbbc0c129c20f12c011c048a2eb4e79a5318e04f58a543f79da5b6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/booked.js?ver=6.0.3 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:33 GMT
Content-Type: application/javascript
Content-Length: 168
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:33 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
wrapnfloor.com/wp-content/themes/deepdigital/js/main.js?ver=2.11.4
135.181.142.201200 OK 14 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/js/main.js?ver=2.11.4
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1665)
Hash 94b37acb26df62445d21ca02cebdfa45
5962b424ddf1926088d5e156bb660506d9ea6f61
dcaa910c14a4b352bfa7be81b219374c222c21dbd2ba2da1237a3d418e00a4ae
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/js/main.js?ver=2.11.4 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 06 Sep 2022 13:06:43 GMT
Expires: Fri, 06 Jan 2023 17:42:33 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
wrapnfloor.com/wp-content/themes/deepdigital/fonts/icomoon/icomoon.ttf?2cwnr5
135.181.142.201200 OK 18 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/fonts/icomoon/icomoon.ttf?2cwnr5
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash 5fcb4df904d1b6115e7c4a9138997cf8
bfd0a48c3dc9e4fe1ca3860a4fb3dcdc35af3748
b25e63641e845d272f0b36cbc35a0171677b782753bd859b4e7246f873919677
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/fonts/icomoon/icomoon.ttf?2cwnr5 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/wp-content/themes/deepdigital/css/fonts.css?ver=2.11.4
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:34 GMT
Content-Type: font/ttf
Content-Length: 18376
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 13:06:38 GMT
Expires: Sun, 05 Feb 2023 17:42:34 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
wrapnfloor.com/wp-content/themes/deepdigital/fonts/fontawesome-webfont.woff2?v=4.6.3
135.181.142.201200 OK 72 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/fonts/fontawesome-webfont.woff2?v=4.6.3
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://wrapnfloor.com/wp-content/themes/deepdigital/css/fonts.css?ver=2.11.4
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:34 GMT
Content-Type: font/woff2
Content-Length: 71896
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 13:06:38 GMT
Expires: Sun, 05 Feb 2023 17:42:34 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
wrapnfloor.com/wp-content/themes/deepdigital/fonts/socicon.woff
135.181.142.201200 OK 39 kB URL HTTP/1.1 wrapnfloor.com/wp-content/themes/deepdigital/fonts/socicon.woff
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format, CFF, length 38700, version 1.0\012- data
Hash 944f06f5f65ef84a3a36e6c1c2d4b7ad
28a5937ba6c82ce39b1d581f42a23ce8eec6cc6c
165def3c7a5c82e6cd701ad9039f39b537e6e2e748948a4c54d70ed47d0d27f3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/deepdigital/fonts/socicon.woff HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://wrapnfloor.com/wp-content/themes/deepdigital/css/fonts.css?ver=2.11.4
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:34 GMT
Content-Type: font/woff
Content-Length: 38700
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 13:06:39 GMT
Expires: Sun, 05 Feb 2023 17:42:34 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
wrapnfloor.com/wp-content/uploads/2022/10/favv1-1.png
135.181.142.201200 OK 1.0 kB URL HTTP/1.1 wrapnfloor.com/wp-content/uploads/2022/10/favv1-1.png
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 58 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash dd9314aa18984aa899406630c38d7f80
5c58f3c9e9a2efa0bc919f771331cfce776ffc2f
c109737539fa80a40d6d1ed69da180894a52962bbe69f89bab59a232d60f08f8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/10/favv1-1.png HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:34 GMT
Content-Type: image/png
Content-Length: 1002
Connection: keep-alive
Last-Modified: Mon, 24 Oct 2022 07:41:13 GMT
Expires: Sun, 05 Feb 2023 17:42:34 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
wrapnfloor.com/wp-content/uploads/2021/04/repairdigital-16.jpg
135.181.142.201200 OK 36 kB URL HTTP/1.1 wrapnfloor.com/wp-content/uploads/2021/04/repairdigital-16.jpg
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 1170x780, components 3\012- data
Hash 8797f2fa536ffcec383c236ea7cd5340
a2d09289e93035300ffd14cd7771c68417258ded
115327534932b79e3a17079d2021e442f7401b517d7b1e499052724d46241176
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/04/repairdigital-16.jpg HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:34 GMT
Content-Type: image/jpeg
Content-Length: 35705
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 16:57:20 GMT
Expires: Sun, 05 Feb 2023 17:42:34 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
wrapnfloor.com/wp-content/uploads/2022/09/final-logo-file-2.png
135.181.142.201200 OK 24 kB URL HTTP/1.1 wrapnfloor.com/wp-content/uploads/2022/09/final-logo-file-2.png
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 1266 x 319, 8-bit/color RGBA, non-interlaced\012- data
Hash a2a966ff7d758daa84ffb7c6ae1178d4
c58a0a9812ba1cfd142212c85442c244944add57
46b895b3f098373a8b56a102cb695840418074b9251486d0403ebf206cf6c299
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/09/final-logo-file-2.png HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/ci/?QBOT.zip
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:35 GMT
Content-Type: image/png
Content-Length: 24008
Connection: keep-alive
Last-Modified: Thu, 22 Sep 2022 07:28:20 GMT
Expires: Sun, 05 Feb 2023 17:42:35 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
wrapnfloor.com/wp-content/plugins/chaty/images/whatsapp.png
135.181.142.201200 OK 114 kB URL HTTP/1.1 wrapnfloor.com/wp-content/plugins/chaty/images/whatsapp.png
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 550 x 999, 8-bit colormap, non-interlaced\012- data
Size 114 kB (114536 bytes)
Hash 8a055527b27b887521a9f084497d8879
3d3dd626e5a52c280df47631892d6cbd635f3312
66f09c394acf0c248dd6e5a53918fdd90c9bcc148e66f4de6d23e22225ade842
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/chaty/images/whatsapp.png HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wrapnfloor.com/wp-content/plugins/chaty/css/chaty-front.min.css?ver=16666061763.0.1
Cookie: PHPSESSID=9ab8d3aff9102e03cd0837306ae88156; _gcl_au=1.1.969527750.1670434951; _ga_PBDF129RJD=GS1.1.1670434951.1.0.1670434951.0.0.0; _ga=GA1.1.1729606094.1670434951
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 17:42:34 GMT
Content-Type: image/png
Content-Length: 114536
Connection: keep-alive
Last-Modified: Fri, 14 Oct 2022 14:57:30 GMT
Expires: Sun, 05 Feb 2023 17:42:34 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 34362dc76b344545855a32a0606c9a61
17d7d9d5896a62d5b32c8ccfc624490c03ca8694
edf703ea570ef44014dab87e6549574004dc4e661fa95bd5db25fe8b43617c5c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDF703EA570EF44014DAB87E6549574004DC4E661FA95BD5DB25FE8B43617C5C"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 07 Dec 2022 23:42:35 GMT
Date: Wed, 07 Dec 2022 17:42:35 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 34362dc76b344545855a32a0606c9a61
17d7d9d5896a62d5b32c8ccfc624490c03ca8694
edf703ea570ef44014dab87e6549574004dc4e661fa95bd5db25fe8b43617c5c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDF703EA570EF44014DAB87E6549574004DC4E661FA95BD5DB25FE8B43617C5C"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 07 Dec 2022 23:42:35 GMT
Date: Wed, 07 Dec 2022 17:42:35 GMT
Connection: keep-alive
wrapnfloor.com/wp-content/uploads/2022/10/cropped-favv1-192x192.png
135.181.142.201200 OK 9.2 kB URL HTTP/2 wrapnfloor.com/wp-content/uploads/2022/10/cropped-favv1-192x192.png
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 87ebe4e1550ca500b689bbb5827ced10
7be62c38ac57b302774474603072fa4e84cb119c
804ba6c0b16c204cfbaa0089bc18b2e7a14047051f8a7868a3a8eadcc4ae5e6e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/10/cropped-favv1-192x192.png HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wrapnfloor.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 17:42:35 GMT
content-type: image/png
content-length: 9169
last-modified: Wed, 19 Oct 2022 12:37:06 GMT
expires: Sun, 05 Feb 2023 17:42:35 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
wrapnfloor.com/wp-content/uploads/2022/10/cropped-favv1-32x32.png
135.181.142.201200 OK 970 B URL HTTP/2 wrapnfloor.com/wp-content/uploads/2022/10/cropped-favv1-32x32.png
IP 135.181.142.201:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 728081399fd0e9cb57d646895987fab0
0e26c0e57b9e28e67e8717363db60f82790700c4
fcf8f4a6905d5cbdb9cbe13b0cba819051ff93350f59434a205de3d9d5cdb194
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/10/cropped-favv1-32x32.png HTTP/1.1
Host: wrapnfloor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wrapnfloor.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 17:42:35 GMT
content-type: image/png
content-length: 970
last-modified: Wed, 19 Oct 2022 12:37:06 GMT
expires: Sun, 05 Feb 2023 17:42:35 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2