bonitismos.com/wp-content/f.exe
217.160.0.67 13 kB URL User Request GET bonitismos.com/wp-content/f.exe
IP 217.160.0.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9721), with CRLF, LF line terminators
Hash d42a346a201ad0cd36da2141a6fe2881
990622189c934c3d44a5553d689367a070ab3579
650f165cdd982cf2295fae2f01c435272c27a5a5ea9ae9586c0387052db13eb1
NIDS Severity Alert suricata high ET MALWARE Single char EXE direct download likely trojan (multiple families)
suricata high ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious
suricata medium ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile
GET /wp-content/f.exe HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:55 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://bonitismos.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip
www.googletagmanager.com/gtag/js?id=UA-36620180-1
142.250.74.168302 Found 254 B URL GET HTTP/1.1 www.googletagmanager.com/gtag/js?id=UA-36620180-1
IP 142.250.74.168:80
Requested by http://bonitismos.com/wp-content/f.exe
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 0fb7a6674003e9d8c4cc6525ce97436a
2fb1c081a27da87806f4d16c24a67ada2cb64715
8856ad1149232744612400feafe69ec91650250592f4f5dca5e89b3fe630ca6c
GET /gtag/js?id=UA-36620180-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=UA-36620180-1
Cross-Origin-Resource-Policy: cross-origin
Date: Sun, 04 Jun 2023 00:30:56 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 254
X-XSS-Protection: 0
bonitismos.com/wp-includes/css/classic-themes.min.css?ver=6.2.2
217.160.0.67200 OK 291 B URL GET HTTP/1.1 bonitismos.com/wp-includes/css/classic-themes.min.css?ver=6.2.2
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
Hash 1a0804b1a9d09705657f91fe7cad4c5a
feeece6f0b3e0bcf090547c475329a2772f6b26b
dcd9f488bd62ba0ee403b07a97e40b9ffd63a0eff61091588c913b16d5153d48
GET /wp-includes/css/classic-themes.min.css?ver=6.2.2 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 291
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Thu, 18 May 2023 17:33:20 GMT
ETag: "123-5fbfb335b4ebf"
Accept-Ranges: bytes
bonitismos.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-videopress/build/block-editor/blocks/video/view.css?minify=false&ver=317afd605f368082816f
217.160.0.67200 OK 1.6 kB URL GET HTTP/1.1 bonitismos.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-videopress/build/block-editor/blocks/video/view.css?minify=false&ver=317afd605f368082816f
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type ASCII text, with very long lines (1610), with no line terminators
Hash 85001da72d2adacd89f64191337692ca
f4aabaaef3d271c4e6cbcfb974b3d3b403a32db0
95d19d87f29a6ea4e274e3681e839eac392e30647f4d373841c3c9c30749b64b
GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-videopress/build/block-editor/blocks/video/view.css?minify=false&ver=317afd605f368082816f HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1610
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Tue, 30 May 2023 20:43:17 GMT
ETag: "64a-5fcef40bee6e9"
Accept-Ranges: bytes
bonitismos.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.7
217.160.0.67200 OK 2.9 kB URL GET HTTP/1.1 bonitismos.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.7
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
Hash 0e4a098f3f6e3faede64db8b9da80ba2
65b9b3c849f3fbdd783ddbfb183616ff55c7ee53
ab21762c3f447aa08cbefd5ea3866165f925bd5058a9ae19e23721462de6fb60
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.7 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2859
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Wed, 31 May 2023 08:43:19 GMT
ETag: "b2b-5fcf94fc978c6"
Accept-Ranges: bytes
bonitismos.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
217.160.0.67200 OK 11 kB URL GET HTTP/1.1 bonitismos.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type ASCII text, with very long lines (11256), with no line terminators
Hash 2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 11256
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 01 Mar 2021 10:52:49 GMT
ETag: "2bf8-5bc776b34816d"
Accept-Ranges: bytes
bonitismos.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.2.2
217.160.0.67200 OK 4.2 kB URL GET HTTP/1.1 bonitismos.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.2.2
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type ASCII text, with very long lines (4186), with no line terminators
Hash ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.2.2 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 4186
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 07:16:00 GMT
ETag: "105a-59cb54bea328e"
Accept-Ranges: bytes
bonitismos.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.15.3
217.160.0.67200 OK 12 kB URL GET HTTP/1.1 bonitismos.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.15.3
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type ASCII text, with very long lines (1571)
Hash 45f98dec2f0965e8e879f2c7a1f4e996
8187dccc170f82df78e9be302e5ab49e024d4d34
23eb134e746f1e5c265c5d33d045af48c444617adaa281fb993d6070bdc04c9f
GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.15.3 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 11835
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 22 May 2023 20:43:38 GMT
ETag: "2e3b-5fc4e534eb61c"
Accept-Ranges: bytes
bonitismos.com/wp-includes/css/dist/block-library/style.min.css?ver=6.2.2
217.160.0.67200 OK 98 kB URL GET HTTP/1.1 bonitismos.com/wp-includes/css/dist/block-library/style.min.css?ver=6.2.2
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type ASCII text, with very long lines (48325)
Hash 47cdb0e81ea341ad27a1a0b0ba6b02d8
6195a67b0b7f7919f07309e2c8ce71f3d4729d03
aca566587618e75fa291a419c7c430be02e03fc72f6105658c1bc8e7d59a65e4
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.2.2 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 97517
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Thu, 18 May 2023 17:33:20 GMT
ETag: "17ced-5fbfb33596a58"
Accept-Ranges: bytes
bonitismos.com/wp-content/plugins/hipstertheme-shortcodes/style.css?ver=6.2.2
217.160.0.67200 OK 13 kB URL GET HTTP/1.1 bonitismos.com/wp-content/plugins/hipstertheme-shortcodes/style.css?ver=6.2.2
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
Hash 7ba2eac7ef5b3b48ba57046da280c5cf
4f950864252920b9fe9980bdcdbc0632b18dc4b6
6c30e1bbd8216c5d4d518aa3b63482ef92d76255465c7216c11dfd725f6c1f3b
GET /wp-content/plugins/hipstertheme-shortcodes/style.css?ver=6.2.2 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 12921
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 06 Aug 2018 10:33:08 GMT
ETag: "3279-572c1cdb1b44a"
Accept-Ranges: bytes
bonitismos.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
217.160.0.67200 OK 13 kB URL GET HTTP/1.1 bonitismos.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type ASCII text, with very long lines (13326)
Hash 5cfa2b481de6e87c2190a0e3538515d8
0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68
9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 13424
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Thu, 18 May 2023 17:33:21 GMT
ETag: "3470-5fbfb33638c3c"
Accept-Ranges: bytes
bonitismos.com/wp-content/themes/auden/js/jquery.fitvids.js?ver=1.1
217.160.0.67200 OK 3.3 kB URL GET HTTP/1.1 bonitismos.com/wp-content/themes/auden/js/jquery.fitvids.js?ver=1.1
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type HTML document, ASCII text
Hash eadc9a09d7e31ee01ab54eb79bc90416
a85428bbafa332512a4be43ae18ade5daa25fdab
33741df001b1e97d1eb765d9a0c081678fdde564c373931580afa3a232b5db2f
GET /wp-content/themes/auden/js/jquery.fitvids.js?ver=1.1 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 3262
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 06 Aug 2018 10:07:16 GMT
ETag: "cbe-572c1712cc71b"
Accept-Ranges: bytes
bonitismos.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.4
217.160.0.67200 OK 90 kB URL GET HTTP/1.1 bonitismos.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.4
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type ASCII text, with very long lines (65447)
Hash 0e850a69bc7fd0acc2e92ce6eee87959
8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c
afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.4 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 89815
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Thu, 18 May 2023 17:33:21 GMT
ETag: "15ed7-5fbfb3363cabc"
Accept-Ranges: bytes
bonitismos.com/wp-content/themes/auden/js/plugins.js?ver=20120206
217.160.0.67200 OK 830 B URL GET HTTP/1.1 bonitismos.com/wp-content/themes/auden/js/plugins.js?ver=20120206
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
Hash 47772f9712590f145eebf362d15fb819
bf91e40edb1388448fe844f36fca8107a8dd83e2
cc26bcb18dbfb1db893f582a7c05c6cbeedad76992d89594026eb6c200797201
GET /wp-content/themes/auden/js/plugins.js?ver=20120206 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 830
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 06 Aug 2018 10:07:16 GMT
ETag: "33e-572c1712cc71b"
Accept-Ranges: bytes
bonitismos.com/wp-content/themes/auden/style.css?ver=6.2.2
217.160.0.67200 OK 41 kB URL GET HTTP/1.1 bonitismos.com/wp-content/themes/auden/style.css?ver=6.2.2
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
Hash c0219849470f2ff9a3cf8cc2359f81a4
a2a91d7d86bbc7827292a57a4186b2face5c1206
3d9d5b4c2c71b3556be6381ce823204287dbd9aef7696dc182ea019e6d31f014
GET /wp-content/themes/auden/style.css?ver=6.2.2 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 40556
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 06 Aug 2018 10:07:16 GMT
ETag: "9e6c-572c1712ce65b"
Accept-Ranges: bytes
bonitismos.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.7
217.160.0.67200 OK 13 kB URL GET HTTP/1.1 bonitismos.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.7
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type HTML document, ASCII text, with very long lines (12943), with no line terminators
Hash 5bc2b1fa970f9cecb3c30c0c92c98271
7c6bb87aaa24714b7b3b3c86dd932736a80270a9
1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.7 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 12943
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Wed, 31 May 2023 08:43:19 GMT
ETag: "328f-5fcf94fc9b747"
Accept-Ranges: bytes
bonitismos.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.7
217.160.0.67200 OK 10 kB URL GET HTTP/1.1 bonitismos.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.7
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type ASCII text, with very long lines (10241), with no line terminators
Hash 7be65ac27024c7b5686f9d7c49690799
241ada4a86443adc5623d1a3a8018a96d9de6d5a
52db930f81d97113dde679cac624cb5435b56d4ac486e91a0b6692d2cb615a84
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.7 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 10241
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Wed, 31 May 2023 08:43:19 GMT
ETag: "2801-5fcf94fcb6ccd"
Accept-Ranges: bytes
bonitismos.com/wp-content/plugins/jetpack/css/jetpack.css?ver=12.1.1
217.160.0.67200 OK 100 kB URL GET HTTP/1.1 bonitismos.com/wp-content/plugins/jetpack/css/jetpack.css?ver=12.1.1
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4cc4e0cba17c8a9c76e0884632f9421f
9bdb840afdd68033ee0a3a8779cddcc7d71580b0
05db96d56969f90368d364da6c464ad073255964267594cb7e2b65b90d385da0
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=12.1.1 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 99690
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Tue, 30 May 2023 20:43:16 GMT
ETag: "1856a-5fcef40b03114"
Accept-Ranges: bytes
bonitismos.com/wp-content/themes/auden/js/scripts.js?ver=20130115
217.160.0.67200 OK 1.7 kB URL GET HTTP/1.1 bonitismos.com/wp-content/themes/auden/js/scripts.js?ver=20130115
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
Hash e7002972eda413e2f45491f4f92a3035
5f721dbfe7afff20e39880d6b69091261058aac4
364917f3f81f2c4961125c852d0aee8b020886e3013a0912f1e0f0c231a333d1
GET /wp-content/themes/auden/js/scripts.js?ver=20130115 HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 1746
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Mon, 06 Aug 2018 10:07:16 GMT
ETag: "6d2-572c1712cc71b"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 8543a104bf352a1cf8ad1bf2e07100a2
ce7140bcab4ded21050f0249e87e9e0afdd1f94a
06a7f106970ad07a284048a8847a60121e6d64ba0baabcc00e701491aee183fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-36620180-1
142.250.74.168302 Found 47 kB URL GET HTTP/1.1 www.googletagmanager.com/gtag/js?id=UA-36620180-1
IP 142.250.74.168:80
Requested by http://bonitismos.com/wp-content/f.exe
File type ASCII text, with very long lines (2271)
Hash c32b57b6749f508933980eccc89db3b0
de2f6275cc50bf0f807a446ceaef741a1609f328
fa15b98824c31827a12054d4362f1fd804042c8ff18a074ed890c6f2b32fa47a
GET /gtag/js?id=UA-36620180-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bonitismos.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Jun 2023 00:30:56 GMT
expires: Sun, 04 Jun 2023 00:30:56 GMT
cache-control: private, max-age=900
last-modified: Sun, 04 Jun 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47372
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bonitismos.com/wp-content/uploads/2018/08/cropped-logo-bonitismos-cabecera.png
217.160.0.67200 OK 12 kB URL GET HTTP/1.1 bonitismos.com/wp-content/uploads/2018/08/cropped-logo-bonitismos-cabecera.png
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 59a91a57f8a2bdc7757db588ce6c2bc9
93df6320c8b826338e5ac35076faf54def9fb587
bb2964925e2a98a297a5d65a5f6eadf3280183e6fd1747a5fc0dcc369127bd45
GET /wp-content/uploads/2018/08/cropped-logo-bonitismos-cabecera.png HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 12492
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:56 GMT
Server: Apache
Last-Modified: Tue, 07 Aug 2018 10:05:56 GMT
ETag: "30cc-572d58a3b2849"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 0affd42f3b881bc89a46594868663e52
03ca33c099bbc747c00360101c6ca6e21810aa07
1a1eb9e073803bd3864fdc023b727bcdd97df9074a2b8a657769da4a8b858d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 0c2c7b69894efc120cd8bab945a227b2
11800be962b5b0cf260591d3c55113d217cbfa3b
61fdd82d5869d4eb3e250031c6a63be89e282cfdc50e3a7f04de1e6ba17044f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Raleway:400,300,700|Lato:400,300,700|Playfair+Display:400,700|Dancing+Script:400,700
142.250.74.106200 OK 1.4 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Raleway:400,300,700|Lato:400,300,700|Playfair+Display:400,700|Dancing+Script:400,700
IP 142.250.74.106:443
Requested by http://bonitismos.com/wp-content/f.exe
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type gzip compressed data, max compression\012- data
Hash 3dee3f6b31a5bacf8f56f6d14d3ff821
dacafe694d9cd6781918273d045a781aaa3498ba
de8bb7b3044dfab1d0d40830a10103945e83d0e4c99c0c31a5699ad9e3c3bfe6
GET /css?family=Raleway:400,300,700|Lato:400,300,700|Playfair+Display:400,700|Dancing+Script:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Jun 2023 00:30:56 GMT
date: Sun, 04 Jun 2023 00:30:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 4657e1301201c546b03bf8a42be0e1a4
561ed76fd2c38e8107da101d54546e44b219e539
b7c25875352ba1d913c952fc778770209c663f8b7bb3a33b40532b1910938c73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:30:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pixel.wp.com/g.gif?v=ext&blog=85638979&post=0&tz=1&srv=bonitismos.com&j=1%3A12.1.1&host=bonitismos.com&ref=&fcp=0&rand=0.47682093926199387
192.0.76.3200 OK 50 B URL GET HTTP/1.1 pixel.wp.com/g.gif?v=ext&blog=85638979&post=0&tz=1&srv=bonitismos.com&j=1%3A12.1.1&host=bonitismos.com&ref=&fcp=0&rand=0.47682093926199387
IP 192.0.76.3:80
Requested by http://bonitismos.com/wp-content/f.exe
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=85638979&post=0&tz=1&srv=bonitismos.com&j=1%3A12.1.1&host=bonitismos.com&ref=&fcp=0&rand=0.47682093926199387 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 00:30:57 GMT
Content-Type: image/gif
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 4657e1301201c546b03bf8a42be0e1a4
561ed76fd2c38e8107da101d54546e44b219e539
b7c25875352ba1d913c952fc778770209c663f8b7bb3a33b40532b1910938c73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:30:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
142.250.74.3200 OK 46 kB URL GET HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 142.250.74.3:443
Requested by http://bonitismos.com/wp-content/f.exe
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bonitismos.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 10:39:52 GMT
expires: Wed, 29 May 2024 10:39:52 GMT
cache-control: public, max-age=31536000
age: 395465
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.3200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.3:443
Requested by http://bonitismos.com/wp-content/f.exe
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bonitismos.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 04:04:41 GMT
expires: Fri, 31 May 2024 04:04:41 GMT
cache-control: public, max-age=31536000
age: 246376
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dancingscript/v24/If2RXTr6YS-zF4S-kcSWSVi_szLgiuE.woff2
142.250.74.3200 OK 42 kB URL GET HTTP/2 fonts.gstatic.com/s/dancingscript/v24/If2RXTr6YS-zF4S-kcSWSVi_szLgiuE.woff2
IP 142.250.74.3:443
Requested by http://bonitismos.com/wp-content/f.exe
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 42404, version 1.0\012- data
Hash 68a0c578810054f9357521a1930f3eee
90243174fef8bbad60a3d45e07e1f3d19f29c490
44f79d6564067d847cea0ab32624f0db3a4a3a4a0daedee4e5efbad531c88fac
GET /s/dancingscript/v24/If2RXTr6YS-zF4S-kcSWSVi_szLgiuE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bonitismos.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 08:11:07 GMT
expires: Sun, 02 Jun 2024 08:11:07 GMT
cache-control: public, max-age=31536000
age: 58790
last-modified: Mon, 11 Jul 2022 20:34:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
142.250.74.3200 OK 36 kB URL GET HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP 142.250.74.3:443
Requested by http://bonitismos.com/wp-content/f.exe
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Hash 60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bonitismos.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 07:50:20 GMT
expires: Sun, 02 Jun 2024 07:50:20 GMT
cache-control: public, max-age=31536000
age: 60037
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash c8c4fd34484b10881179e1a092434fd9
b37e3b04da5ba68bf533fcff188ac29b8eb27b3e
e5ccf7ef803972b97b8bff04fcab8af38c84d5a832ab096c7fd5ace5e56bf92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 00:30:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bonitismos.com/wp-content/uploads/2018/08/cropped-logo-bonitismos-32x32.png
217.160.0.67200 OK 1.2 kB URL GET HTTP/1.1 bonitismos.com/wp-content/uploads/2018/08/cropped-logo-bonitismos-32x32.png
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash b769bedc7056bd1f81a297bc75bbc98f
78b975f27891f1cfe05d1be3150b1cf668b90a08
e24f9778a0cf71d690b1484e141612dd101f65d8c72527927e980aa0c677d10a
GET /wp-content/uploads/2018/08/cropped-logo-bonitismos-32x32.png HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1205
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:57 GMT
Server: Apache
Last-Modified: Tue, 07 Aug 2018 10:06:06 GMT
ETag: "4b5-572d58ad0a1cc"
Accept-Ranges: bytes
bonitismos.com/wp-content/uploads/2018/08/cropped-logo-bonitismos-192x192.png
217.160.0.67200 OK 14 kB URL GET HTTP/1.1 bonitismos.com/wp-content/uploads/2018/08/cropped-logo-bonitismos-192x192.png
IP 217.160.0.67:80
Requested by http://bonitismos.com/wp-content/f.exe
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 0b276efa689ad4e931aee70155feb18e
66b227c7ab9c1537a8cb7667dc6ef0a472bb9302
a481025f53dc472eb81e6eb79dc2d1f3b8dd9b17fd26f4f78c58a8436ac0747d
GET /wp-content/uploads/2018/08/cropped-logo-bonitismos-192x192.png HTTP/1.1
Host: bonitismos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/wp-content/f.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 13606
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Jun 2023 00:30:57 GMT
Server: Apache
Last-Modified: Tue, 07 Aug 2018 10:06:06 GMT
ETag: "3526-572d58ad053ac"
Accept-Ranges: bytes
stats.wp.com/e-202322.js
192.0.76.3200 OK 14 kB IP 192.0.76.3:443
Requested by http://bonitismos.com/wp-content/f.exe
Certificate IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT
Hash 36a5287b66e9d145da53194a97a6245a
8569750e9f82d96f556d6f549cba940b2f316d2c
ab8517f3d5171dd42a8b9c22af6a2f944b41d00e7ea54ba02b4ed71a6c59e543
GET /e-202322.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://bonitismos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 00:30:56 GMT
content-type: application/javascript
last-modified: Fri, 19 May 2023 02:56:42 GMT
vary: Accept-Encoding
etag: W/"6466e56a-3508"
content-encoding: br
expires: Sun, 26 May 2024 21:54:49 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2