Report - bonitismos.com/wp-content/f.exe

Report Overview

Submitted URL
bonitismos.com/wp-content/f.exe
IP
217.160.0.67
ASN
#8560 IONOS SE
Submitted
2023-06-04 00:31:13
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
3
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
bonitismos.com	unknown	2012-07-06	2013-10-09	2023-06-01	8.4 kB	460 kB	217.160.0.67
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-06-03	765 B	49 kB	142.250.74.168
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-03	2.0 kB	4.2 kB	142.250.74.131
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-06-03	504 B	2.0 kB	142.250.74.106
pixel.wp.com	2545	1997-03-28	2017-01-30	2023-06-03	453 B	245 B	192.0.76.3
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-06-03	2.1 kB	152 kB	142.250.74.3
stats.wp.com	2711	1997-03-28	2017-01-30	2023-06-03	400 B	14 kB	192.0.76.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-04 00:30:55	high	Client IP	217.160.0.67	ET MALWARE Single char EXE direct download likely trojan (multiple families)
2023-06-04 00:30:55	high	Client IP	217.160.0.67	ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious
2023-06-04 00:30:55	medium	Client IP	217.160.0.67	ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-04-19
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-19 09:05:53 Times Seen340352 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	bonitismos.com/wp-content/f.exe	5.7 kB	2023-05-31	2023-06-04
Pretty URL bonitismos.com/wp-content/f.exe IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-31 07:09:29 Last Seen2023-06-04 02:31:14 Times Seen3 Hash ca56d30063f9c87feb78c600f27484b8 7859a62976d558e3cbb71184db83711e60a004e6 798287ec08938915eb53f20e1e01b5c254ee9bff5b2e94e6f57292eba9b6e515 Loading...

	bonitismos.com/wp-content/f.exe	2.2 kB	2023-05-31	2023-08-02
Pretty URL bonitismos.com/wp-content/f.exe IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-31 07:09:29 Last Seen2023-08-02 06:06:17 Times Seen4 Hash 29fe05a2e16eadbaf48fec47e9188cfa 750f8ebeaa71e86adef255bc16daaf97279ad303 85a5f789e3327bd7fd2b0e20cb98ec1178d258117dd99fe2c7cad2ba8a46a6f0 Loading...

	bonitismos.com/wp-content/themes/auden/js/plugins.js?ver=20120206	830 B	2023-03-13	2023-11-28
Pretty URL bonitismos.com/wp-content/themes/auden/js/plugins.js?ver=20120206 IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 00:50:50 Last Seen2023-11-28 11:30:23 Times Seen17 Hash 47772f9712590f145eebf362d15fb819 bf91e40edb1388448fe844f36fca8107a8dd83e2 cc26bcb18dbfb1db893f582a7c05c6cbeedad76992d89594026eb6c200797201 Loading...

	bonitismos.com/wp-content/f.exe	364 B	2023-05-31	2023-06-04
Pretty URL bonitismos.com/wp-content/f.exe IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-31 07:09:29 Last Seen2023-06-04 02:31:14 Times Seen3 Hash ba8cc8d08a74455f877450865570fee6 7c4ce6850ba5cfcadfad3f1d20d4505c5817a3ea c22967d38655c738e42dd2799fef5d9e69423a99d52cda296ead1aab79e01f54 Loading...

	stats.wp.com/e-202322.js	14 kB	2023-05-09	2024-01-25
Pretty URL stats.wp.com/e-202322.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 13:10:00 Last Seen2024-01-25 13:47:17 Times Seen6255 Hash 36a5287b66e9d145da53194a97a6245a 8569750e9f82d96f556d6f549cba940b2f316d2c ab8517f3d5171dd42a8b9c22af6a2f944b41d00e7ea54ba02b4ed71a6c59e543 Loading...

	bonitismos.com/wp-content/sandbox%20eval%20code	147 B	2023-04-11	2024-04-19
Pretty URL bonitismos.com/wp-content/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-19 09:05:53 Times Seen340846 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.googletagmanager.com/gtag/js?id=UA-36620180-1	122 kB	2023-06-04	2023-06-04
Pretty URL www.googletagmanager.com/gtag/js?id=UA-36620180-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-04 02:31:14 Last Seen2023-06-04 02:31:14 Times Seen2 Hash c32b57b6749f508933980eccc89db3b0 de2f6275cc50bf0f807a446ceaef741a1609f328 fa15b98824c31827a12054d4362f1fd804042c8ff18a074ed890c6f2b32fa47a Loading...

	bonitismos.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0	13 kB	2023-03-07	2024-04-18
Pretty URL bonitismos.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:52 Last Seen2024-04-18 19:01:10 Times Seen76167 Hash 5cfa2b481de6e87c2190a0e3538515d8 0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68 9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3 Loading...

	bonitismos.com/wp-content/f.exe	384 B	2023-03-07	2024-01-26
Pretty URL bonitismos.com/wp-content/f.exe IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:29 Last Seen2024-01-26 03:57:08 Times Seen9 Hash 88e6b673bc38a3dcaa3100c11d0c79ed 4694aa39307cf9313a6e9ec6ba7f73c484536823 6019d0e85f7c96453c743e8721d825047f0f631741cf41f5bb3ae3be1bf6d1a8 Loading...

	bonitismos.com/wp-content/themes/auden/js/scripts.js?ver=20130115	1.7 kB	2023-05-31	2023-08-02
Pretty URL bonitismos.com/wp-content/themes/auden/js/scripts.js?ver=20130115 IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-31 07:09:29 Last Seen2023-08-02 06:06:17 Times Seen8 Hash e7002972eda413e2f45491f4f92a3035 5f721dbfe7afff20e39880d6b69091261058aac4 364917f3f81f2c4961125c852d0aee8b020886e3013a0912f1e0f0c231a333d1 Loading...

	bonitismos.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.4	90 kB	2023-03-29	2024-04-18
Pretty URL bonitismos.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.4 IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:52:25 Last Seen2024-04-18 19:01:10 Times Seen102822 Hash 0e850a69bc7fd0acc2e92ce6eee87959 8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a Loading...

	bonitismos.com/wp-content/themes/auden/js/jquery.fitvids.js?ver=1.1	3.3 kB	2023-03-07	2024-04-18
Pretty URL bonitismos.com/wp-content/themes/auden/js/jquery.fitvids.js?ver=1.1 IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:56:41 Last Seen2024-04-18 12:43:08 Times Seen215 Hash eadc9a09d7e31ee01ab54eb79bc90416 a85428bbafa332512a4be43ae18ade5daa25fdab 33741df001b1e97d1eb765d9a0c081678fdde564c373931580afa3a232b5db2f Loading...

	bonitismos.com/wp-content/f.exe	324 B	2023-03-07	2024-04-18
Pretty URL bonitismos.com/wp-content/f.exe IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:16:43 Last Seen2024-04-18 15:29:23 Times Seen728 Hash cc509de79386c0aeabbceee05b0efd0c c05cac3dc3af6ed44d6aa464c1c219c718b267a0 07110c87eead16fad9958131563dc09466ae27bae98de4447621f35bd7cdd94b Loading...

	bonitismos.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.7	10 kB	2023-03-29	2024-04-18
Pretty URL bonitismos.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.7 IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:17:20 Last Seen2024-04-18 19:01:09 Times Seen26025 Hash 7be65ac27024c7b5686f9d7c49690799 241ada4a86443adc5623d1a3a8018a96d9de6d5a 52db930f81d97113dde679cac624cb5435b56d4ac486e91a0b6692d2cb615a84 Loading...

	bonitismos.com/wp-content/f.exe	127 B	2023-05-31	2023-08-02
Pretty URL bonitismos.com/wp-content/f.exe IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-31 07:09:29 Last Seen2023-08-02 06:06:17 Times Seen4 Hash 91acd4ffed4524272c7114a67963f3ae 70ddb73d5cf3a6a78214ffe6964cc839bacb64ef 40a40a69ff89087fd96d3c46d2275883fc084e0288687f3578e91080d6cf419f Loading...

	bonitismos.com/wp-content/f.exe	179 B	2023-05-31	2023-06-04
Pretty URL bonitismos.com/wp-content/f.exe IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-31 07:09:29 Last Seen2023-06-04 02:31:14 Times Seen3 Hash 915592ebac9a591b697e003b3fead902 6c6dec0ef5a4ca49bd0a3d747b0dfd4674fc2f03 bc51122affe90e67c787c35ac6dde7dc3ae8a08be9ee5b462ca3843954139419 Loading...

	bonitismos.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.15.3	12 kB	2023-03-07	2024-03-08
Pretty URL bonitismos.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.15.3 IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:28 Last Seen2024-03-08 16:02:30 Times Seen1559 Hash 45f98dec2f0965e8e879f2c7a1f4e996 8187dccc170f82df78e9be302e5ab49e024d4d34 23eb134e746f1e5c265c5d33d045af48c444617adaa281fb993d6070bdc04c9f Loading...

	bonitismos.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.7	13 kB	2023-03-29	2024-04-18
Pretty URL bonitismos.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.7 IP 217.160.0.67 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:17:20 Last Seen2024-04-18 19:01:09 Times Seen37883 Hash 5bc2b1fa970f9cecb3c30c0c92c98271 7c6bb87aaa24714b7b3b3c86dd932736a80270a9 1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e Loading...

HTTP Transactions (36)

URL IP Response Size

bonitismos.com/wp-content/f.exe

217.160.0.67

13 kB

URL User Request GET
bonitismos.com/wp-content/f.exe
IP
217.160.0.67:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9721), with CRLF, LF line terminators
Size
13 kB (12618 bytes)
Hash
d42a346a201ad0cd36da2141a6fe2881
990622189c934c3d44a5553d689367a070ab3579
650f165cdd982cf2295fae2f01c435272c27a5a5ea9ae9586c0387052db13eb1

Detections

NIDS	Severity	Alert
suricata	high	ET MALWARE Single char EXE direct download likely trojan (multiple families)
suricata	high	ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious
suricata	medium	ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile

HTTP Headers

GET /wp-content/f.exe HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:55 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://bonitismos.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip

www.googletagmanager.com/gtag/js?id=UA-36620180-1

142.250.74.168

302 Found

254 B

URL GET HTTP/1.1
www.googletagmanager.com/gtag/js?id=UA-36620180-1
IP
142.250.74.168:80
ASN
#15169 GOOGLE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
254 B (254 bytes)
Hash
0fb7a6674003e9d8c4cc6525ce97436a
2fb1c081a27da87806f4d16c24a67ada2cb64715
8856ad1149232744612400feafe69ec91650250592f4f5dca5e89b3fe630ca6c

HTTP Headers

GET /gtag/js?id=UA-36620180-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=UA-36620180-1
Cross-Origin-Resource-Policy: cross-origin
Date: Sun, 04 Jun 2023 00:30:56 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 254
X-XSS-Protection: 0

bonitismos.com/wp-includes/css/classic-themes.min.css?ver=6.2.2

217.160.0.67

200 OK

291 B

URL GET HTTP/1.1
bonitismos.com/wp-includes/css/classic-themes.min.css?ver=6.2.2
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text
Size
291 B (291 bytes)
Hash
1a0804b1a9d09705657f91fe7cad4c5a
feeece6f0b3e0bcf090547c475329a2772f6b26b
dcd9f488bd62ba0ee403b07a97e40b9ffd63a0eff61091588c913b16d5153d48

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=6.2.2 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 291
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Thu, 18 May 2023 17:33:20 GMT
ETag: "123-5fbfb335b4ebf"
Accept-Ranges: bytes

bonitismos.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-videopress/build/block-editor/blocks/video/view.css?minify=false&ver=317afd605f368082816f

217.160.0.67

200 OK

1.6 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-videopress/build/block-editor/blocks/video/view.css?minify=false&ver=317afd605f368082816f
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text, with very long lines (1610), with no line terminators
Size
1.6 kB (1610 bytes)
Hash
85001da72d2adacd89f64191337692ca
f4aabaaef3d271c4e6cbcfb974b3d3b403a32db0
95d19d87f29a6ea4e274e3681e839eac392e30647f4d373841c3c9c30749b64b

HTTP Headers

GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-videopress/build/block-editor/blocks/video/view.css?minify=false&ver=317afd605f368082816f HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1610
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Tue, 30 May 2023 20:43:17 GMT
ETag: "64a-5fcef40bee6e9"
Accept-Ranges: bytes

bonitismos.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.7

217.160.0.67

200 OK

2.9 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.7
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text
Size
2.9 kB (2859 bytes)
Hash
0e4a098f3f6e3faede64db8b9da80ba2
65b9b3c849f3fbdd783ddbfb183616ff55c7ee53
ab21762c3f447aa08cbefd5ea3866165f925bd5058a9ae19e23721462de6fb60

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.7 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2859
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Wed, 31 May 2023 08:43:19 GMT
ETag: "b2b-5fcf94fc978c6"
Accept-Ranges: bytes

bonitismos.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17

217.160.0.67

200 OK

11 kB

URL GET HTTP/1.1
bonitismos.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text, with very long lines (11256), with no line terminators
Size
11 kB (11256 bytes)
Hash
2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 11256
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 01 Mar 2021 10:52:49 GMT
ETag: "2bf8-5bc776b34816d"
Accept-Ranges: bytes

bonitismos.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.2.2

217.160.0.67

200 OK

4.2 kB

URL GET HTTP/1.1
bonitismos.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.2.2
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text, with very long lines (4186), with no line terminators
Size
4.2 kB (4186 bytes)
Hash
ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe

HTTP Headers

GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.2.2 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 4186
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 07:16:00 GMT
ETag: "105a-59cb54bea328e"
Accept-Ranges: bytes

bonitismos.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.15.3

217.160.0.67

200 OK

12 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.15.3
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text, with very long lines (1571)
Size
12 kB (11835 bytes)
Hash
45f98dec2f0965e8e879f2c7a1f4e996
8187dccc170f82df78e9be302e5ab49e024d4d34
23eb134e746f1e5c265c5d33d045af48c444617adaa281fb993d6070bdc04c9f

HTTP Headers

GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.15.3 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 11835
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 22 May 2023 20:43:38 GMT
ETag: "2e3b-5fc4e534eb61c"
Accept-Ranges: bytes

bonitismos.com/wp-includes/css/dist/block-library/style.min.css?ver=6.2.2

217.160.0.67

200 OK

98 kB

URL GET HTTP/1.1
bonitismos.com/wp-includes/css/dist/block-library/style.min.css?ver=6.2.2
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text, with very long lines (48325)
Size
98 kB (97517 bytes)
Hash
47cdb0e81ea341ad27a1a0b0ba6b02d8
6195a67b0b7f7919f07309e2c8ce71f3d4729d03
aca566587618e75fa291a419c7c430be02e03fc72f6105658c1bc8e7d59a65e4

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.2.2 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 97517
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Thu, 18 May 2023 17:33:20 GMT
ETag: "17ced-5fbfb33596a58"
Accept-Ranges: bytes

bonitismos.com/wp-content/plugins/hipstertheme-shortcodes/style.css?ver=6.2.2

217.160.0.67

200 OK

13 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/plugins/hipstertheme-shortcodes/style.css?ver=6.2.2
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text
Size
13 kB (12921 bytes)
Hash
7ba2eac7ef5b3b48ba57046da280c5cf
4f950864252920b9fe9980bdcdbc0632b18dc4b6
6c30e1bbd8216c5d4d518aa3b63482ef92d76255465c7216c11dfd725f6c1f3b

HTTP Headers

GET /wp-content/plugins/hipstertheme-shortcodes/style.css?ver=6.2.2 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 12921
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 06 Aug 2018 10:33:08 GMT
ETag: "3279-572c1cdb1b44a"
Accept-Ranges: bytes

bonitismos.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0

217.160.0.67

200 OK

13 kB

URL GET HTTP/1.1
bonitismos.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text, with very long lines (13326)
Size
13 kB (13424 bytes)
Hash
5cfa2b481de6e87c2190a0e3538515d8
0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68
9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 13424
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Thu, 18 May 2023 17:33:21 GMT
ETag: "3470-5fbfb33638c3c"
Accept-Ranges: bytes

bonitismos.com/wp-content/themes/auden/js/jquery.fitvids.js?ver=1.1

217.160.0.67

200 OK

3.3 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/themes/auden/js/jquery.fitvids.js?ver=1.1
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
HTML document, ASCII text
Size
3.3 kB (3262 bytes)
Hash
eadc9a09d7e31ee01ab54eb79bc90416
a85428bbafa332512a4be43ae18ade5daa25fdab
33741df001b1e97d1eb765d9a0c081678fdde564c373931580afa3a232b5db2f

HTTP Headers

GET /wp-content/themes/auden/js/jquery.fitvids.js?ver=1.1 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 3262
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 06 Aug 2018 10:07:16 GMT
ETag: "cbe-572c1712cc71b"
Accept-Ranges: bytes

bonitismos.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.4

217.160.0.67

200 OK

90 kB

URL GET HTTP/1.1
bonitismos.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.4
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text, with very long lines (65447)
Size
90 kB (89815 bytes)
Hash
0e850a69bc7fd0acc2e92ce6eee87959
8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c
afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.4 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 89815
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Thu, 18 May 2023 17:33:21 GMT
ETag: "15ed7-5fbfb3363cabc"
Accept-Ranges: bytes

bonitismos.com/wp-content/themes/auden/js/plugins.js?ver=20120206

217.160.0.67

200 OK

830 B

URL GET HTTP/1.1
bonitismos.com/wp-content/themes/auden/js/plugins.js?ver=20120206
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text
Size
830 B (830 bytes)
Hash
47772f9712590f145eebf362d15fb819
bf91e40edb1388448fe844f36fca8107a8dd83e2
cc26bcb18dbfb1db893f582a7c05c6cbeedad76992d89594026eb6c200797201

HTTP Headers

GET /wp-content/themes/auden/js/plugins.js?ver=20120206 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 830
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 06 Aug 2018 10:07:16 GMT
ETag: "33e-572c1712cc71b"
Accept-Ranges: bytes

bonitismos.com/wp-content/themes/auden/style.css?ver=6.2.2

217.160.0.67

200 OK

41 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/themes/auden/style.css?ver=6.2.2
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text
Size
41 kB (40556 bytes)
Hash
c0219849470f2ff9a3cf8cc2359f81a4
a2a91d7d86bbc7827292a57a4186b2face5c1206
3d9d5b4c2c71b3556be6381ce823204287dbd9aef7696dc182ea019e6d31f014

HTTP Headers

GET /wp-content/themes/auden/style.css?ver=6.2.2 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 40556
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 06 Aug 2018 10:07:16 GMT
ETag: "9e6c-572c1712ce65b"
Accept-Ranges: bytes

bonitismos.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.7

217.160.0.67

200 OK

13 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.7
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
HTML document, ASCII text, with very long lines (12943), with no line terminators
Size
13 kB (12943 bytes)
Hash
5bc2b1fa970f9cecb3c30c0c92c98271
7c6bb87aaa24714b7b3b3c86dd932736a80270a9
1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.7 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 12943
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Wed, 31 May 2023 08:43:19 GMT
ETag: "328f-5fcf94fc9b747"
Accept-Ranges: bytes

bonitismos.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.7

217.160.0.67

200 OK

10 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.7
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text, with very long lines (10241), with no line terminators
Size
10 kB (10241 bytes)
Hash
7be65ac27024c7b5686f9d7c49690799
241ada4a86443adc5623d1a3a8018a96d9de6d5a
52db930f81d97113dde679cac624cb5435b56d4ac486e91a0b6692d2cb615a84

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.7 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 10241
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Wed, 31 May 2023 08:43:19 GMT
ETag: "2801-5fcf94fcb6ccd"
Accept-Ranges: bytes

bonitismos.com/wp-content/plugins/jetpack/css/jetpack.css?ver=12.1.1

217.160.0.67

200 OK

100 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/plugins/jetpack/css/jetpack.css?ver=12.1.1
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text, with very long lines (65536), with no line terminators
Size
100 kB (99690 bytes)
Hash
4cc4e0cba17c8a9c76e0884632f9421f
9bdb840afdd68033ee0a3a8779cddcc7d71580b0
05db96d56969f90368d364da6c464ad073255964267594cb7e2b65b90d385da0

HTTP Headers

GET /wp-content/plugins/jetpack/css/jetpack.css?ver=12.1.1 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 99690
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Tue, 30 May 2023 20:43:16 GMT
ETag: "1856a-5fcef40b03114"
Accept-Ranges: bytes

bonitismos.com/wp-content/themes/auden/js/scripts.js?ver=20130115

217.160.0.67

200 OK

1.7 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/themes/auden/js/scripts.js?ver=20130115
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text
Size
1.7 kB (1746 bytes)
Hash
e7002972eda413e2f45491f4f92a3035
5f721dbfe7afff20e39880d6b69091261058aac4
364917f3f81f2c4961125c852d0aee8b020886e3013a0912f1e0f0c231a333d1

HTTP Headers

GET /wp-content/themes/auden/js/scripts.js?ver=20130115 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 1746
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 06 Aug 2018 10:07:16 GMT
ETag: "6d2-572c1712cc71b"
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8543a104bf352a1cf8ad1bf2e07100a2
ce7140bcab4ded21050f0249e87e9e0afdd1f94a
06a7f106970ad07a284048a8847a60121e6d64ba0baabcc00e701491aee183fb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-36620180-1

142.250.74.168

302 Found

47 kB

URL GET HTTP/1.1
www.googletagmanager.com/gtag/js?id=UA-36620180-1
IP
142.250.74.168:80
ASN
#15169 GOOGLE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
ASCII text, with very long lines (2271)
Size
47 kB (47372 bytes)
Hash
c32b57b6749f508933980eccc89db3b0
de2f6275cc50bf0f807a446ceaef741a1609f328
fa15b98824c31827a12054d4362f1fd804042c8ff18a074ed890c6f2b32fa47a

HTTP Headers

GET /gtag/js?id=UA-36620180-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bonitismos.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Jun 2023 00:30:56 GMT
expires: Sun, 04 Jun 2023 00:30:56 GMT
cache-control: private, max-age=900
last-modified: Sun, 04 Jun 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47372
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bonitismos.com/wp-content/uploads/2018/08/cropped-logo-bonitismos-cabecera.png

217.160.0.67

200 OK

12 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/uploads/2018/08/cropped-logo-bonitismos-cabecera.png
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12492 bytes)
Hash
59a91a57f8a2bdc7757db588ce6c2bc9
93df6320c8b826338e5ac35076faf54def9fb587
bb2964925e2a98a297a5d65a5f6eadf3280183e6fd1747a5fc0dcc369127bd45

HTTP Headers

GET /wp-content/uploads/2018/08/cropped-logo-bonitismos-cabecera.png HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 12492
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Tue, 07 Aug 2018 10:05:56 GMT
ETag: "30cc-572d58a3b2849"
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0affd42f3b881bc89a46594868663e52
03ca33c099bbc747c00360101c6ca6e21810aa07
1a1eb9e073803bd3864fdc023b727bcdd97df9074a2b8a657769da4a8b858d97

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0c2c7b69894efc120cd8bab945a227b2
11800be962b5b0cf260591d3c55113d217cbfa3b
61fdd82d5869d4eb3e250031c6a63be89e282cfdc50e3a7f04de1e6ba17044f9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Raleway:400,300,700|Lato:400,300,700|Playfair+Display:400,700|Dancing+Script:400,700

142.250.74.106

200 OK

1.4 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Raleway:400,300,700|Lato:400,300,700|Playfair+Display:400,700|Dancing+Script:400,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
http://bonitismos.com/wp-content/f.exe
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
gzip compressed data, max compression\012- data
Size
1.4 kB (1360 bytes)
Hash
3dee3f6b31a5bacf8f56f6d14d3ff821
dacafe694d9cd6781918273d045a781aaa3498ba
de8bb7b3044dfab1d0d40830a10103945e83d0e4c99c0c31a5699ad9e3c3bfe6

HTTP Headers

GET /css?family=Raleway:400,300,700|Lato:400,300,700|Playfair+Display:400,700|Dancing+Script:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Jun 2023 00:30:56 GMT
date: Sun, 04 Jun 2023 00:30:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4657e1301201c546b03bf8a42be0e1a4
561ed76fd2c38e8107da101d54546e44b219e539
b7c25875352ba1d913c952fc778770209c663f8b7bb3a33b40532b1910938c73

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:30:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pixel.wp.com/g.gif?v=ext&blog=85638979&post=0&tz=1&srv=bonitismos.com&j=1%3A12.1.1&host=bonitismos.com&ref=&fcp=0&rand=0.47682093926199387

192.0.76.3

200 OK

50 B

URL GET HTTP/1.1
pixel.wp.com/g.gif?v=ext&blog=85638979&post=0&tz=1&srv=bonitismos.com&j=1%3A12.1.1&host=bonitismos.com&ref=&fcp=0&rand=0.47682093926199387
IP
192.0.76.3:80
ASN
#2635 AUTOMATTIC

Requested by
http://bonitismos.com/wp-content/f.exe

File type
GIF image data, version 89a, 6 x 5\012- data
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&blog=85638979&post=0&tz=1&srv=bonitismos.com&j=1%3A12.1.1&host=bonitismos.com&ref=&fcp=0&rand=0.47682093926199387 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 00:30:57 GMT
Content-Type: image/gif
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4657e1301201c546b03bf8a42be0e1a4
561ed76fd2c38e8107da101d54546e44b219e539
b7c25875352ba1d913c952fc778770209c663f8b7bb3a33b40532b1910938c73

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:30:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2

142.250.74.3

200 OK

46 kB

URL GET HTTP/2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
142.250.74.3:443
ASN
#15169 GOOGLE

Requested by
http://bonitismos.com/wp-content/f.exe
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Size
46 kB (46524 bytes)
Hash
c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826

HTTP Headers

GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bonitismos.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 10:39:52 GMT
expires: Wed, 29 May 2024 10:39:52 GMT
cache-control: public, max-age=31536000
age: 395465
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

142.250.74.3

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
142.250.74.3:443
ASN
#15169 GOOGLE

Requested by
http://bonitismos.com/wp-content/f.exe
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bonitismos.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 04:04:41 GMT
expires: Fri, 31 May 2024 04:04:41 GMT
cache-control: public, max-age=31536000
age: 246376
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/dancingscript/v24/If2RXTr6YS-zF4S-kcSWSVi_szLgiuE.woff2

142.250.74.3

200 OK

42 kB

URL GET HTTP/2
fonts.gstatic.com/s/dancingscript/v24/If2RXTr6YS-zF4S-kcSWSVi_szLgiuE.woff2
IP
142.250.74.3:443
ASN
#15169 GOOGLE

Requested by
http://bonitismos.com/wp-content/f.exe
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
Web Open Font Format (Version 2), TrueType, length 42404, version 1.0\012- data
Size
42 kB (42404 bytes)
Hash
68a0c578810054f9357521a1930f3eee
90243174fef8bbad60a3d45e07e1f3d19f29c490
44f79d6564067d847cea0ab32624f0db3a4a3a4a0daedee4e5efbad531c88fac

HTTP Headers

GET /s/dancingscript/v24/If2RXTr6YS-zF4S-kcSWSVi_szLgiuE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bonitismos.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 08:11:07 GMT
expires: Sun, 02 Jun 2024 08:11:07 GMT
cache-control: public, max-age=31536000
age: 58790
last-modified: Mon, 11 Jul 2022 20:34:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2

142.250.74.3

200 OK

36 kB

URL GET HTTP/2
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP
142.250.74.3:443
ASN
#15169 GOOGLE

Requested by
http://bonitismos.com/wp-content/f.exe
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Size
36 kB (35764 bytes)
Hash
60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8

HTTP Headers

GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bonitismos.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 07:50:20 GMT
expires: Sun, 02 Jun 2024 07:50:20 GMT
cache-control: public, max-age=31536000
age: 60037
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c8c4fd34484b10881179e1a092434fd9
b37e3b04da5ba68bf533fcff188ac29b8eb27b3e
e5ccf7ef803972b97b8bff04fcab8af38c84d5a832ab096c7fd5ace5e56bf92c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:30:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bonitismos.com/wp-content/uploads/2018/08/cropped-logo-bonitismos-32x32.png

217.160.0.67

200 OK

1.2 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/uploads/2018/08/cropped-logo-bonitismos-32x32.png
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1205 bytes)
Hash
b769bedc7056bd1f81a297bc75bbc98f
78b975f27891f1cfe05d1be3150b1cf668b90a08
e24f9778a0cf71d690b1484e141612dd101f65d8c72527927e980aa0c677d10a

HTTP Headers

GET /wp-content/uploads/2018/08/cropped-logo-bonitismos-32x32.png HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1205
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:57 GMT
Server: Apache
Last-Modified: Tue, 07 Aug 2018 10:06:06 GMT
ETag: "4b5-572d58ad0a1cc"
Accept-Ranges: bytes

bonitismos.com/wp-content/uploads/2018/08/cropped-logo-bonitismos-192x192.png

217.160.0.67

200 OK

14 kB

URL GET HTTP/1.1
bonitismos.com/wp-content/uploads/2018/08/cropped-logo-bonitismos-192x192.png
IP
217.160.0.67:80
ASN
#8560 IONOS SE

Requested by
http://bonitismos.com/wp-content/f.exe

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (13606 bytes)
Hash
0b276efa689ad4e931aee70155feb18e
66b227c7ab9c1537a8cb7667dc6ef0a472bb9302
a481025f53dc472eb81e6eb79dc2d1f3b8dd9b17fd26f4f78c58a8436ac0747d

HTTP Headers

GET /wp-content/uploads/2018/08/cropped-logo-bonitismos-192x192.png HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 13606
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:57 GMT
Server: Apache
Last-Modified: Tue, 07 Aug 2018 10:06:06 GMT
ETag: "3526-572d58ad053ac"
Accept-Ranges: bytes

stats.wp.com/e-202322.js

192.0.76.3

200 OK

14 kB

URL GET HTTP/2
stats.wp.com/e-202322.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
http://bonitismos.com/wp-content/f.exe
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text
Size
14 kB (13576 bytes)
Hash
36a5287b66e9d145da53194a97a6245a
8569750e9f82d96f556d6f549cba940b2f316d2c
ab8517f3d5171dd42a8b9c22af6a2f944b41d00e7ea54ba02b4ed71a6c59e543

HTTP Headers

GET /e-202322.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 00:30:56 GMT
content-type: application/javascript
last-modified: Fri, 19 May 2023 02:56:42 GMT
vary: Accept-Encoding
etag: W/"6466e56a-3508"
content-encoding: br
expires: Sun, 26 May 2024 21:54:49 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML