Report - bonbon.tech/

Report Overview

Visited public
2023-08-18 03:43:46
Tags
URL
bonbon.tech/
Finishing URL
bonbon.tech/
IP / ASN
63.250.43.1
#22612 NAMECHEAP-NET
Title
Bonbon Technologies – Enabling a better Internet

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

114

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-08-17 17:40:21	3.0 kB	6.3 kB	142.250.74.131
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-08-17 17:40:06	1.3 kB	217 kB	142.250.74.72
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-08-17 17:39:31	783 B	2.7 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-08-17 17:39:42	4.2 kB	139 kB	216.58.207.227
ocsp.sectigo.com	487	2018-08-16	2019-11-29 12:50:24	2023-08-17 17:44:24	330 B	963 B	104.18.15.101
bonbon.tech	unknown	2022-07-14	2017-02-15 11:34:10	2023-08-17 05:00:54	29 kB	2.2 MB	63.250.43.2

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed
2023-08-18	medium	bonbon.tech	Sinkholed

ThreatFox

No alerts detected

JavaScript (36)

	URL	From	Size	First Seen	Last Seen
	bonbon.tech/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2	ScriptElement	8.2 kB	2023-03-13	2025-06-25
Pretty URL bonbon.tech/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:32 Last Seen2025-06-25 03:28 Times Seen30430 Hash dda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4 Loading...

	bonbon.tech/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	ScriptElement	21 kB	2023-04-01	2025-06-25
Pretty URL bonbon.tech/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:26 Last Seen2025-06-25 03:26 Times Seen27757 Hash c4e68a0f3463c0bd3c39eab38815e881 0ce58644e9f3c5063a11453ff287c5ec096465a7 ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f Loading...

	bonbon.tech/	ScriptElement	3.3 kB	2024-08-21	2024-08-21
Pretty URL bonbon.tech/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 08:28 Last Seen2024-08-21 08:28 Times Seen1 Hash 1883535c39a7cf309d712f25bfac30a0 82c3f6e65a8ea26a890cab5f9e700e96a90136de 406d31feabf96ecba67f3e123a71802efe91abb1f50791380884ab6a093cfb11 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-06-25
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-25 03:38 Times Seen365828 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	bonbon.tech/wp-includes/js/imagesloaded.min.js?ver=4.1.4	ScriptElement	5.6 kB	2023-03-07	2025-06-25
Pretty URL bonbon.tech/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 03:28 Times Seen11855 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	bonbon.tech/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.12.1	ScriptElement	5.0 kB	2023-04-03	2025-06-25
Pretty URL bonbon.tech/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.12.1 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-03 23:55 Last Seen2025-06-25 02:15 Times Seen346 Hash db103076d21bcf04b0603f4817177c0f c5249e73001fd11ab1fc70181ee6130157d3741e 2b769f1352a8d5630c136f944f48b27de1d81c476fb0312457f60d736b231dc9 Loading...

	www.googletagmanager.com/gtag/js?id=UA-236015425-1	ScriptElement	182 kB	2023-08-18	2023-08-18
Pretty URL www.googletagmanager.com/gtag/js?id=UA-236015425-1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-18 05:43 Last Seen2023-08-18 05:43 Times Seen1 Hash 43be69ecad6e6b6709a110add6d241f5 ef3ba256affed2a54594f1efb1d44d429e9c7f46 952ce873d70c1b97b35c0e3f3bbb921edf29d3a5e88b001aac49cea54eb81e1f Loading...

	bonbon.tech/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	ScriptElement	1.4 kB	2023-04-03	2025-06-25
Pretty URL bonbon.tech/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-03 23:55 Last Seen2025-06-25 02:15 Times Seen170 Hash 09ac3bd307cf0e55cedf795ffdd63f1a 7681ca95f312f14ba18a461379741a5b0bcc39f1 a0366b547f2aa9078c81da884812e7f3b872068fee7cabaedfb24ca0cd9920e1 Loading...

	bonbon.tech/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.12.1	ScriptElement	5.5 kB	2023-04-05	2025-06-24
Pretty URL bonbon.tech/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.12.1 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 01:34 Last Seen2025-06-24 17:30 Times Seen111 Hash 46ab13dbb56b6dd94a430266d32631df 701ae2ee5e13a21f4077bebeefe18d428e45a71f 7ee8bd145416c0b136021da56743e2cea0b7284ea3be8bd866019303e3e3e132 Loading...

	bonbon.tech/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef	ScriptElement	9.4 kB	2023-08-08	2025-06-25
Pretty URL bonbon.tech/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-08 23:25 Last Seen2025-06-25 03:07 Times Seen13988 Hash c2c4e2a562e06e1cb22293a5b920aca6 a7b5a369ac4883f1ee7fa701b238d20238b675ca 698e93fe491cc7bbf07a470579a33dbd0db53c19142b7be41ebfd39a23aef11f Loading...

	bonbon.tech/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-06-25
Pretty URL bonbon.tech/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-06-25 03:39 Times Seen121710 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	www.googletagmanager.com/gtag/js?id=G-92LT476TM7&l=dataLayer&cx=c	ScriptElement	212 kB	2023-08-18	2023-08-18
Pretty URL www.googletagmanager.com/gtag/js?id=G-92LT476TM7&l=dataLayer&cx=c IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-18 05:43 Last Seen2023-08-18 05:43 Times Seen1 Hash cdf5911b500f4b4b1e33266ac7bc39b2 1c04b52e99919cd3d4ecc056e4080a2650a1af23 ba03f3cbccb634958725d20c61e2ad50de5a2f4477d15130ac0c3fea46278757 Loading...

	bonbon.tech/wp-content/plugins/elementor-pro/assets/js/popup.483b906ddaa1af17ff14.bundle.min.js	ScriptElement	759 B	2023-04-05	2024-09-19
Pretty URL bonbon.tech/wp-content/plugins/elementor-pro/assets/js/popup.483b906ddaa1af17ff14.bundle.min.js IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 01:47 Last Seen2024-09-19 21:00 Times Seen11 Hash 53f1f57fba398df0ae8e8548ac275ed1 4fcd8abf67b4aec5b85ca78eea7a72175453c4b7 f3888eca86017a2f19bf0c48a5f4d8b65e20f46f4b43156f5aa7e6367e760545 Loading...

	bonbon.tech/	ScriptElement	296 B	2024-08-21	2024-08-21
Pretty URL bonbon.tech/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 08:28 Last Seen2024-08-21 08:28 Times Seen1 Hash 6cb8e8cb52934288171d41a8c78223ff d76317e335f0d8212cf519b197796bb05ad40508 926a96ad79b80b97c0fc777b6867f0128fd0918b46c959e9eb4a02ac3bc80187 Loading...

	bonbon.tech/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	ScriptElement	139 kB	2023-03-07	2025-06-25
Pretty URL bonbon.tech/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 03:23 Times Seen7527 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	bonbon.tech/wp-content/plugins/elementor-pro/assets/js/form.72b77b99d67b130634d2.bundle.min.js	ScriptElement	19 kB	2023-04-05	2024-09-19
Pretty URL bonbon.tech/wp-content/plugins/elementor-pro/assets/js/form.72b77b99d67b130634d2.bundle.min.js IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 01:47 Last Seen2024-09-19 21:00 Times Seen11 Hash 651dd8db22dc01f959bcd9e9338859ca 792e7beb2b93600c408416ce6cc071f7106ef170 13e04f9e58389677c850e37c9e3f85f306a59cd20f0fbdd05c44a1e6e3315ba2 Loading...

	bonbon.tech/	ScriptElement	563 B	2024-08-21	2024-08-21
Pretty URL bonbon.tech/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 08:28 Last Seen2024-08-21 08:28 Times Seen1 Hash 7055a5c781159afb8f7d1df1a560332c c7211888ec1e950bbba02b35805f070d6b2831ff 5ee4fd07ac1d8039bbeb3aa9dc2f50298d718eba707a25fe2271971fb2c154cb Loading...

	bonbon.tech/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	ScriptElement	16 kB	2023-07-22	2025-06-25
Pretty URL bonbon.tech/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-22 18:30 Last Seen2025-06-25 03:14 Times Seen9488 Hash 94dfdbe80f36b3be63ce74ff1135b996 5e05077d99e736af42b2da70e428e7f7df556dd4 4c0ced2cb3830d045cdd74f745fd4d6dcb082d8edd3a9fe46e39295e30cb8032 Loading...

	bonbon.tech/	ScriptElement	68 B	2023-03-07	2025-06-25
Pretty URL bonbon.tech/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 03:38 Times Seen27824 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	bonbon.tech/	ScriptElement	1.1 kB	2024-08-21	2024-08-21
Pretty URL bonbon.tech/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 08:28 Last Seen2024-08-21 08:28 Times Seen1 Hash dbff974cc9914f45c0c22bcaf051250c a1737f825c3b529981616a4df494a9974de415f5 329d8136beb911ce6320df1d0416077616760eb545783b6bc8c0b88211486bd1 Loading...

	bonbon.tech/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	ScriptElement	12 kB	2023-03-07	2025-06-25
Pretty URL bonbon.tech/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 03:30 Times Seen26050 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	bonbon.tech/sandbox%20eval%20code		147 B	2023-04-11	2025-06-25
Pretty URL bonbon.tech/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-25 03:38 Times Seen366493 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	bonbon.tech/wp-includes/js/jquery/jquery.min.js?ver=3.7.0	ScriptElement	88 kB	2023-06-13	2025-06-25
Pretty URL bonbon.tech/wp-includes/js/jquery/jquery.min.js?ver=3.7.0 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-13 23:41 Last Seen2025-06-25 03:14 Times Seen26358 Hash ff04dd1ef5c67998d8652330c0441689 5e6ff5bd5240181a8bdea983837f39ac231dac4d 5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164 Loading...

	bonbon.tech/wp-content/plugins/super-simple-cookie-bar/public/js/cookieconsent.min.js	ScriptElement	21 kB	2023-03-07	2025-06-25
Pretty URL bonbon.tech/wp-content/plugins/super-simple-cookie-bar/public/js/cookieconsent.min.js IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30 Last Seen2025-06-25 03:15 Times Seen1338 Hash 4a48532bf0b17c058b8b6854f49de23f 9cbada4bd617c86c638cf2ebddec724ad596907b e55842a856a6d829feca3c3ad736c136b6c7549e9247274f78aa296259e06e24 Loading...

	bonbon.tech/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.12.1	ScriptElement	30 kB	2023-04-05	2025-06-18
Pretty URL bonbon.tech/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.12.1 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 01:44 Last Seen2025-06-18 21:11 Times Seen65 Hash 175c76665c6ea4ac8cc8bdb3583846c8 124fd7b3cee5c09ece04a251055c3e8ae61e68a2 0f2c97781d3487cddeea4eebf258d295d5d66117e618fc6abf75df2132a36e67 Loading...

	www.googletagmanager.com/gtag/js?id=G-D7RDMN8Z9N&l=dataLayer&cx=c	ScriptElement	198 kB	2023-08-18	2023-08-18
Pretty URL www.googletagmanager.com/gtag/js?id=G-D7RDMN8Z9N&l=dataLayer&cx=c IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-18 05:43 Last Seen2023-08-18 05:43 Times Seen1 Hash a6b606984730a3780dd2ff5f3a3c97eb 1d961893d243c150b669e81fdae618012e525fe4 f19fc63fa8ee98ede93a8352655f64dbab83276b6b73bab459ac789b819ea2b8 Loading...

	bonbon.tech/wp-content/plugins/elementor-pro/assets/js/nav-menu.bb5cce0a50480cdf695d.bundle.min.js	ScriptElement	4.0 kB	2023-04-05	2025-06-18
Pretty URL bonbon.tech/wp-content/plugins/elementor-pro/assets/js/nav-menu.bb5cce0a50480cdf695d.bundle.min.js IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 01:44 Last Seen2025-06-18 21:11 Times Seen24 Hash 38f58e1852422aa8d6f45e8ecab2b565 6197d068f9977708c2e2a7acfeb6e41e59ed9ff6 150fbe6dac6021a46b855fe74cfccd0d0d7ee8e3681c6ba45b036c732e49db41 Loading...

	bonbon.tech/wp-content/plugins/elementor-pro/assets/js/slides.fb6b9afd278bb9c5e75b.bundle.min.js	ScriptElement	3.9 kB	2023-04-05	2024-08-21
Pretty URL bonbon.tech/wp-content/plugins/elementor-pro/assets/js/slides.fb6b9afd278bb9c5e75b.bundle.min.js IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 01:47 Last Seen2024-08-21 08:28 Times Seen2 Hash 64a20738a7a882221491eecf84e1a850 16c17f59bc053659026fba949600c46cd48fb8eb 5a902b1baf94089eb9a35bc7c2bbc633125cfd6d388b3300e2a4441d308ee2f1 Loading...

	bonbon.tech/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.12.1	ScriptElement	42 kB	2023-04-03	2025-06-25
Pretty URL bonbon.tech/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.12.1 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-03 23:55 Last Seen2025-06-25 02:15 Times Seen344 Hash cce453813fdeb9158bb942a3309f76e2 1dc0513ac239bc0240a69ce33399f97b01d0c7e6 85f446b7a3eef3c3a2bcf052b3d0931eb9707b9c2225f98a85096bc5c0c95376 Loading...

	bonbon.tech/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11	ScriptElement	6.6 kB	2023-03-14	2025-06-25
Pretty URL bonbon.tech/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:30 Last Seen2025-06-25 03:18 Times Seen13000 Hash 9a4f28a615173df36cb84be2b345816e f709263841708d9e40268f24a0072ff4fe811b35 6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6 Loading...

	bonbon.tech/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1	ScriptElement	25 kB	2023-03-07	2025-06-25
Pretty URL bonbon.tech/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 03:30 Times Seen6856 Hash 046405de007ff73e52d17dab2af75258 887cfb8a9de27005875f6e1c1d1ead43bd0865c8 533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020 Loading...

	bonbon.tech/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1	ScriptElement	4.6 kB	2023-08-08	2025-06-25
Pretty URL bonbon.tech/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-08 23:25 Last Seen2025-06-25 03:14 Times Seen15109 Hash 7bd48eb3bd568033e96caf0fb62e6690 b38066999294b99d92d95db5f38bc15707eb1f22 7868467c94a5aa0b3f11ef542f45287967f9627b3b5acdc86e47f8f77a126596 Loading...

	bonbon.tech/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.12.1	ScriptElement	24 kB	2023-04-05	2025-06-24
Pretty URL bonbon.tech/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.12.1 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 01:34 Last Seen2025-06-24 17:30 Times Seen110 Hash 06fa28b954024d4b05070afccdfd9707 5c02c992eae221fdb973be134c386cbc5f72344d d91794d660fdf4b1594464ae7e052bdc6ad28b703a2be3362d4a41032f83a2ef Loading...

	bonbon.tech/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.12.1	ScriptElement	41 kB	2023-04-03	2025-06-25
Pretty URL bonbon.tech/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.12.1 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-03 23:55 Last Seen2025-06-25 02:15 Times Seen337 Hash c6dd0d43724e014a0a5fb97bddcf3238 75738fa00105056e397df904faf04d40d3ad7b8b 6fd50e8c621570db264aaf559d98eca0c1dfc288a1a3dc0dd86b25c234ff4a1f Loading...

	bonbon.tech/	ScriptElement	2.2 kB	2024-08-21	2024-08-21
Pretty URL bonbon.tech/ IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 08:28 Last Seen2024-08-21 08:28 Times Seen1 Hash b3bb3d787a8698e46c3b2abe67596f8d aa73e79989a4d245a142cd8b68a2bab22191129d d08c737b4f57bbf61cbf4e75b9ade591a54986557e3eb06fea9610b6acd94878 Loading...

	bonbon.tech/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0	ScriptElement	3.2 kB	2023-03-07	2025-06-24
Pretty URL bonbon.tech/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 IP 63.250.43.2 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11 Last Seen2025-06-24 11:20 Times Seen729 Hash e846984437ce810e4757bb0d935e67f0 0cd5ea1fde5aceba86a2ed59e77e35eff4acd2df 7f161501494bc2f199eaf414c3104318a00e2072f272ebce45540eef58cfb08b Loading...

HTTP Transactions (79)

URL IP Response Size

ocsp.sectigo.com/

104.18.15.101

471 B

URL
ocsp.sectigo.com/
IP
104.18.15.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
38a1524fa482c6e46cb4f207544bc27e
bd459867dfa26ac283b7d37b33b59d1b4ce7d469
5d785faebf95bd0f93589f2410c0fc8e81b14bd93408633e7f4b0858892919fb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 18 Aug 2023 03:43:25 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 16 Aug 2023 04:52:16 GMT
Expires: Wed, 23 Aug 2023 04:52:15 GMT
Etag: "bd459867dfa26ac283b7d37b33b59d1b4ce7d469"
Cache-Control: max-age=435529,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7f872706dd22b4ff-OSL

GET bonbon.tech/

63.250.43.2

200 OK

15 kB

URL User Request GET HTTP/2
bonbon.tech/
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9462)
Size
15 kB (15407 bytes)
Hash
e3d18664478b224650c5a14faf3e07f5
ffd4ff7fcc6bcb09592aa032211c52600a3472ed
6b4b592d3de57a6909833832eb6eaba3147d3bf649a6e409a8adab35063146d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:45:33 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://bonbon.tech/wp-json/>; rel="https://api.w.org/", <https://bonbon.tech/wp-json/wp/v2/pages/47>; rel="alternate"; type="application/json", <https://bonbon.tech/>; rel=shortlink
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
x-cacheable: YES
age: 35871
accept-ranges: bytes
x-cache: HIT
content-length: 15407
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ce525235363584f2d6a2bb6542ca4dbc
9631d1ee836b071a7ec8d735aaec09434c8308ab
589da11617bbc468e1bdd96841a6d5093105b7a64772b103f2580cd319ca417b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Aug 2023 03:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
974994ce152544bcf93580942655741a
067e9e45316387b49345bf2741a030ba51556a69
400328e49a08caf9c9ccd6591e721803fa41792c514042f4c53952b652f2ea15

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Aug 2023 03:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET bonbon.tech/wp-includes/css/dist/block-library/style.min.css?ver=6.3

63.250.43.2

200 OK

14 kB

URL GET HTTP/2
bonbon.tech/wp-includes/css/dist/block-library/style.min.css?ver=6.3
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (53449)
Size
14 kB (13841 bytes)
Hash
03c0f2128c8dd615b1691c168f1d4456
defa44bed1f35ec899cfd358ca911390bca53e67
67447c3656caad630373253691f3e8f64467eafd6e7305c9b0e98111b0b41694

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.3 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:27 GMT
content-type: text/css
last-modified: Wed, 09 Aug 2023 03:42:32 GMT
vary: Accept-Encoding
etag: W/"64d30b28-19824"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 13841
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1

63.250.43.2

200 OK

1.9 kB

URL GET HTTP/2
bonbon.tech/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6051), with no line terminators
Size
1.9 kB (1940 bytes)
Hash
1787ccb3d1d8e93d42790b792e0424fd
0aa761f70bbbfe08229c469bcb394269530c537a
bbdb1eb69c6b5cbffaf1be2df2bcbd4a97d2823de9f4b856aae722900a5e27c7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: text/css
last-modified: Tue, 19 Jul 2022 19:12:41 GMT
vary: Accept-Encoding
etag: W/"62d70229-17a3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 1940
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/super-simple-cookie-bar/public/css/cookieconsent.min.css?ver=6.3

63.250.43.2

200 OK

1.3 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/super-simple-cookie-bar/public/css/cookieconsent.min.css?ver=6.3
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1460)
Size
1.3 kB (1299 bytes)
Hash
acf82ee47549fdc386d02768992a49ad
de7b617c2d6c095ff286235e6cf64c328da1a4bf
cd0d0b6e50ff01ff2f3a9a70d7cfb66a7c6cb9acf7a566325568be6d3bd31fc4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/super-simple-cookie-bar/public/css/cookieconsent.min.css?ver=6.3 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: text/css
last-modified: Wed, 22 Mar 2023 22:10:26 GMT
vary: Accept-Encoding
etag: W/"641b7cd2-135e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 1299
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1

63.250.43.2

200 OK

2.7 kB

URL GET HTTP/2
bonbon.tech/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (15672), with no line terminators
Size
2.7 kB (2662 bytes)
Hash
ae085723cb5effbc73d92251f60aaa30
9c3f510afd2bf1ac508cc22e4f071697ec1f3290
eee1ce2620eaf7f585a69794864001be0bde74b874d6a18b9f2d11f074229f2b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:27 GMT
content-type: text/css
last-modified: Tue, 19 Jul 2022 19:12:41 GMT
vary: Accept-Encoding
etag: W/"62d70229-3d38"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 2662
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=UA-236015425-1

142.250.74.72

200 OK

66 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-236015425-1
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://bonbon.tech/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (4175)
Size
66 kB (66226 bytes)
Hash
43be69ecad6e6b6709a110add6d241f5
ef3ba256affed2a54594f1efb1d44d429e9c7f46
952ce873d70c1b97b35c0e3f3bbb921edf29d3a5e88b001aac49cea54eb81e1f

HTTP Headers

GET /gtag/js?id=UA-236015425-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Aug 2023 03:43:26 GMT
expires: Fri, 18 Aug 2023 03:43:26 GMT
cache-control: private, max-age=900
last-modified: Fri, 18 Aug 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 66226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ce525235363584f2d6a2bb6542ca4dbc
9631d1ee836b071a7ec8d735aaec09434c8308ab
589da11617bbc468e1bdd96841a6d5093105b7a64772b103f2580cd319ca417b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Aug 2023 03:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.3

142.250.74.106

200 OK

2.1 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.3
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bonbon.tech/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintC1:FC:47:2F:E4:8D:DA:F2:E6:C0:AB:89:40:FB:3F:E4:E0:C5:04:42
ValidityMon, 17 Jul 2023 08:21:35 GMT - Mon, 09 Oct 2023 08:21:34 GMT

File type
gzip compressed data, max compression\012- data
Size
2.1 kB (2056 bytes)
Hash
60e9f816650d10cac6af6980c05e8e25
db43e1ac0229384800e71e717cf276b8d30b6f1f
108f0fbe96afa1384a99197d8dade33ec67cbae70fe7ff50abf893d413987a98

HTTP Headers

GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Aug 2023 03:43:26 GMT
date: Fri, 18 Aug 2023 03:43:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.12.1

63.250.43.2

200 OK

11 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.12.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65496)
Size
11 kB (10777 bytes)
Hash
4aa6c13c0c5de584484df087e9902f7c
74bba1d3c367215d749173c148d62062775c0c1b
5cd0ca00e2abfbffdd7d33dbf06ce0b6e2cce41faafc501adadb249c25530413

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.12.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:27 GMT
content-type: text/css
last-modified: Thu, 06 Apr 2023 06:29:21 GMT
vary: Accept-Encoding
etag: W/"642e66c1-13e05"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 10777
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/elementor/css/post-14.css?ver=1680762627

63.250.43.2

200 OK

1.4 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/elementor/css/post-14.css?ver=1680762627
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (9003), with no line terminators
Size
1.4 kB (1353 bytes)
Hash
24ee7e797bfedbe82a99f19d9d33ec00
0f23700ecd511eb50982add4d3165c851fec0c27
2a2bc691f60be9182325a3221f7f2ea606c0846a03f9b1664769d2fd7d69db65

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-14.css?ver=1680762627 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: text/css
last-modified: Thu, 06 Apr 2023 06:30:27 GMT
vary: Accept-Encoding
etag: W/"642e6703-232b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 1353
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.18.0

63.250.43.2

200 OK

4.0 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.18.0
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (19317)
Size
4.0 kB (3975 bytes)
Hash
966ac3c225180fb6968732b2cf00f4a2
9042e009174379c53ea750182b04bba8fa2787db
e65916f9a5c70cdb24ccd28a538a48afb387063bb1f89a69492b7170aa5e1285

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.18.0 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:27 GMT
content-type: text/css
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
vary: Accept-Encoding
etag: W/"642e66c2-4ba3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 3975
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6

63.250.43.2

200 OK

2.4 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (12876), with no line terminators
Size
2.4 kB (2409 bytes)
Hash
bcad7781b3e74db2565b8424c45232cd
41b0d94434ef667897c06e1184b703064ffceda1
d622534d53d3ac1095af275f0b30274fcd835785577df2dde6d9398e6f7a2c8f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:27 GMT
content-type: text/css
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
vary: Accept-Encoding
etag: W/"642e66c2-324c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 2409
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.12.1

63.250.43.2

200 OK

1.4 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.12.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (9011)
Size
1.4 kB (1438 bytes)
Hash
bd397c82a0f156534e554c74781ac2bd
cc9272e6bf059f42fbfd3e46adc34e351b24654b
bc9022f1d985a80aa10d8ddfd07da8e0d9bfc61c51275489060ad93a5f044a8d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.12.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:27 GMT
content-type: text/css
last-modified: Thu, 06 Apr 2023 06:29:50 GMT
vary: Accept-Encoding
etag: W/"642e66de-235f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 1438
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/elementor/css/global.css?ver=1680762628

63.250.43.2

200 OK

6.4 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/elementor/css/global.css?ver=1680762628
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (36558)
Size
6.4 kB (6350 bytes)
Hash
026be219ed820048db8a7e3e779e0ab6
656115840fc8ecd97994c0e1ab5f8b85cd6f0a17
6d26bc662a9d1f02b78ca9e6679b863b7e081841ab88947c0def0ee7c312e23f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1680762628 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: text/css
last-modified: Thu, 06 Apr 2023 06:30:28 GMT
vary: Accept-Encoding
etag: W/"642e6704-260c3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 6350
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

63.250.43.2

200 OK

309 B

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (483)
Size
309 B (309 bytes)
Hash
9eb2d3c87feb6bb2ffa63b70532b1477
38f226335a05ab0e30497bc7419eb5e243a9e26c
37bab6cd583982e8eff58501a99d7c5c4d63664c1ca34f9e3b7cf526c5b73ae2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:27 GMT
content-type: text/css
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
vary: Accept-Encoding
etag: W/"642e66c2-29d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 309
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/elementor/css/post-47.css?ver=1691431058

63.250.43.2

200 OK

3.2 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/elementor/css/post-47.css?ver=1691431058
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (34314)
Size
3.2 kB (3153 bytes)
Hash
4a576b1ca2a5bd7a56d8a1b9ebe44414
0c1e07a6ec469143321a46669f212c260855332d
2e71b51fac0f1ab04871f0a446c4bb28c3768219092196d4839d1b1a93097447

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-47.css?ver=1691431058 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:10:12 GMT
content-type: text/css
last-modified: Mon, 07 Aug 2023 17:57:38 GMT
vary: Accept-Encoding
etag: W/"64d13092-8747"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 34393
accept-ranges: bytes
x-cache: HIT
content-length: 3153
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/elementor/css/post-148.css?ver=1680762628

63.250.43.2

200 OK

691 B

URL GET HTTP/2
bonbon.tech/wp-content/uploads/elementor/css/post-148.css?ver=1680762628
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1065)
Size
691 B (691 bytes)
Hash
d3e98840d95db9620a77ed56a69bc7b1
dd38b0581dd137dc53646b33225ecfce3f00a756
fca1bef76dca6158be7571f19e0f75ba8b9f8c444962c5b341271b47a19dfcc6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-148.css?ver=1680762628 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:27 GMT
content-type: text/css
last-modified: Thu, 06 Apr 2023 06:30:28 GMT
vary: Accept-Encoding
etag: W/"642e6704-112a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 691
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/elementor/css/post-136.css?ver=1685729704

63.250.43.2

200 OK

1.2 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/elementor/css/post-136.css?ver=1685729704
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (7687), with no line terminators
Size
1.2 kB (1195 bytes)
Hash
f5f12fbad9fef208c568cfb7ec50cbeb
be20f4393407905604a6f544312c6a3c5156c12a
2ff6fd0de74eaf0961651324dd4414ccbc8282e08b7bae86bc769d5e56995597

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-136.css?ver=1685729704 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 18:15:04 GMT
vary: Accept-Encoding
etag: W/"647a31a8-1e07"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 1195
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

63.250.43.2

200 OK

13 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (57726)
Size
13 kB (12581 bytes)
Hash
eeb705d0bdccfd645d3bbd46dd1fbab3
066def290f42ed8c00860e573cc880bd46e9ced4
d01a2ba2805c78957e15a2958135de0f3cb88e95159dd0f6c0a032bd76b1b0e9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:27 GMT
content-type: text/css
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
vary: Accept-Encoding
etag: W/"642e66c2-e238"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 12581
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

63.250.43.2

200 OK

4.9 kB

URL GET HTTP/2
bonbon.tech/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (13479)
Size
4.9 kB (4872 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:27 GMT
content-type: application/javascript
last-modified: Wed, 09 Aug 2023 03:42:33 GMT
vary: Accept-Encoding
etag: W/"64d30b29-3509"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 4872
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css

63.250.43.2

200 OK

3.3 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (26551)
Size
3.3 kB (3329 bytes)
Hash
a88b456a15ebee146f9ce052e4f15dc3
a9019890b789bb14a488528003553ecc8c5fe3aa
56f5876603a3fa828fb15bba89155cae8697840d2dd23e588400501045cf8e01

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: text/css
last-modified: Thu, 06 Apr 2023 06:29:50 GMT
vary: Accept-Encoding
etag: W/"642e66de-67e4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 3329
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/2023/08/mission-icon1-consumers.png

63.250.43.2

200 OK

7.0 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/2023/08/mission-icon1-consumers.png
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
PNG image data, 402 x 214, 8-bit/color RGBA, non-interlaced\012- data
Size
7.0 kB (6961 bytes)
Hash
bb725c2b4ec203bf2c1823776fefafd8
8e73aae41384f97af15990f3839b409258460d7c
c8bee84301fd6ac4da2716ba73bab19132c9e96cfcdcd81d1ba83c015fe9ad6a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/08/mission-icon1-consumers.png HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:10:14 GMT
content-type: image/png
content-length: 6961
last-modified: Sun, 06 Aug 2023 23:18:53 GMT
etag: "64d02a5d-1b31"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 34391
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.12.1

63.250.43.2

200 OK

2.6 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.12.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (10019)
Size
2.6 kB (2592 bytes)
Hash
4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.12.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:42:57 GMT
content-type: text/css
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
vary: Accept-Encoding
etag: W/"642e66c2-4824"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36028
accept-ranges: bytes
x-cache: HIT
content-length: 2592
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-includes/js/imagesloaded.min.js?ver=4.1.4

63.250.43.2

200 OK

1.8 kB

URL GET HTTP/2
bonbon.tech/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (5477)
Size
1.8 kB (1834 bytes)
Hash
3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:10:13 GMT
content-type: application/javascript
last-modified: Wed, 15 Jun 2022 13:08:53 GMT
vary: Accept-Encoding
etag: W/"62a9d9e5-15fd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 34392
accept-ranges: bytes
x-cache: HIT
content-length: 1834
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.12.1

63.250.43.2

200 OK

2.5 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.12.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (5441)
Size
2.5 kB (2494 bytes)
Hash
46ab13dbb56b6dd94a430266d32631df
701ae2ee5e13a21f4077bebeefe18d428e45a71f
7ee8bd145416c0b136021da56743e2cea0b7284ea3be8bd866019303e3e3e132

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.12.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:51 GMT
vary: Accept-Encoding
etag: W/"642e66df-156d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 2494
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.12.1

63.250.43.2

200 OK

13 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.12.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (42247)
Size
13 kB (12991 bytes)
Hash
cce453813fdeb9158bb942a3309f76e2
1dc0513ac239bc0240a69ce33399f97b01d0c7e6
85f446b7a3eef3c3a2bcf052b3d0931eb9707b9c2225f98a85096bc5c0c95376

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.12.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
vary: Accept-Encoding
etag: W/"642e66c2-a530"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 12991
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2

63.250.43.2

200 OK

2.5 kB

URL GET HTTP/2
bonbon.tech/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (8171), with no line terminators
Size
2.5 kB (2484 bytes)
Hash
dda652db133fddb9b80a05c6d1b5c540
60c8514c57a5db2980c4b046b0dd479bd427357b
c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 30 Mar 2023 03:35:34 GMT
vary: Accept-Encoding
etag: W/"64250386-1feb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 2484
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11

63.250.43.2

200 OK

2.5 kB

URL GET HTTP/2
bonbon.tech/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6607), with no line terminators
Size
2.5 kB (2499 bytes)
Hash
9a4f28a615173df36cb84be2b345816e
f709263841708d9e40268f24a0072ff4fe811b35
6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 30 Mar 2023 03:35:34 GMT
vary: Accept-Encoding
etag: W/"64250386-19cf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 2499
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

63.250.43.2

200 OK

5.9 kB

URL GET HTTP/2
bonbon.tech/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (16142), with no line terminators
Size
5.9 kB (5889 bytes)
Hash
94dfdbe80f36b3be63ce74ff1135b996
5e05077d99e736af42b2da70e428e7f7df556dd4
4c0ced2cb3830d045cdd74f745fd4d6dcb082d8edd3a9fe46e39295e30cb8032

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Wed, 09 Aug 2023 03:42:33 GMT
vary: Accept-Encoding
etag: W/"64d30b29-3f12"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 5889
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef

63.250.43.2

200 OK

3.7 kB

URL GET HTTP/2
bonbon.tech/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
data
Size
3.7 kB (3692 bytes)
Hash
c2c4e2a562e06e1cb22293a5b920aca6
a7b5a369ac4883f1ee7fa701b238d20238b675ca
698e93fe491cc7bbf07a470579a33dbd0db53c19142b7be41ebfd39a23aef11f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Wed, 09 Aug 2023 03:42:32 GMT
vary: Accept-Encoding
etag: W/"64d30b28-24e5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 3692
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.12.1

63.250.43.2

200 OK

6.6 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.12.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (24336)
Size
6.6 kB (6550 bytes)
Hash
06fa28b954024d4b05070afccdfd9707
5c02c992eae221fdb973be134c386cbc5f72344d
d91794d660fdf4b1594464ae7e052bdc6ad28b703a2be3362d4a41032f83a2ef

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.12.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:50 GMT
vary: Accept-Encoding
etag: W/"642e66de-5f3c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 6550
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.12.1

63.250.43.2

200 OK

12 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.12.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (40551)
Size
12 kB (12205 bytes)
Hash
c6dd0d43724e014a0a5fb97bddcf3238
75738fa00105056e397df904faf04d40d3ad7b8b
6fd50e8c621570db264aaf559d98eca0c1dfc288a1a3dc0dd86b25c234ff4a1f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.12.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
vary: Accept-Encoding
etag: W/"642e66c2-9e8f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 12205
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.12.1

63.250.43.2

200 OK

6.9 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.12.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (29591)
Size
6.9 kB (6893 bytes)
Hash
175c76665c6ea4ac8cc8bdb3583846c8
124fd7b3cee5c09ece04a251055c3e8ae61e68a2
0f2c97781d3487cddeea4eebf258d295d5d66117e618fc6abf75df2132a36e67

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.12.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:50 GMT
vary: Accept-Encoding
etag: W/"642e66de-73c3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 6893
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/super-simple-cookie-bar/public/js/cookieconsent.min.js

63.250.43.2

200 OK

6.8 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/super-simple-cookie-bar/public/js/cookieconsent.min.js
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (20693), with no line terminators
Size
6.8 kB (6756 bytes)
Hash
4a48532bf0b17c058b8b6854f49de23f
9cbada4bd617c86c638cf2ebddec724ad596907b
e55842a856a6d829feca3c3ad736c136b6c7549e9247274f78aa296259e06e24

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/super-simple-cookie-bar/public/js/cookieconsent.min.js HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Wed, 22 Mar 2023 22:10:26 GMT
vary: Accept-Encoding
etag: W/"641b7cd2-50d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 6756
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.12.1

63.250.43.2

200 OK

2.2 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.12.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4918)
Size
2.2 kB (2197 bytes)
Hash
db103076d21bcf04b0603f4817177c0f
c5249e73001fd11ab1fc70181ee6130157d3741e
2b769f1352a8d5630c136f944f48b27de1d81c476fb0312457f60d736b231dc9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.12.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
vary: Accept-Encoding
etag: W/"642e66c2-135e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 2197
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

63.250.43.2

200 OK

3.0 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (12198), with no line terminators
Size
3.0 kB (2995 bytes)
Hash
3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
vary: Accept-Encoding
etag: W/"642e66c2-2fa6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 2995
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0

63.250.43.2

200 OK

1.0 kB

URL GET HTTP/2
bonbon.tech/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3164), with no line terminators
Size
1.0 kB (1024 bytes)
Hash
e846984437ce810e4757bb0d935e67f0
0cd5ea1fde5aceba86a2ed59e77e35eff4acd2df
7f161501494bc2f199eaf414c3104318a00e2072f272ebce45540eef58cfb08b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 19:12:41 GMT
vary: Accept-Encoding
etag: W/"62d70229-c5c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 1024
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1

63.250.43.2

200 OK

1.6 kB

URL GET HTTP/2
bonbon.tech/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4592)
Size
1.6 kB (1567 bytes)
Hash
7bd48eb3bd568033e96caf0fb62e6690
b38066999294b99d92d95db5f38bc15707eb1f22
7868467c94a5aa0b3f11ef542f45287967f9627b3b5acdc86e47f8f77a126596

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Wed, 09 Aug 2023 03:42:32 GMT
vary: Accept-Encoding
etag: W/"64d30b28-1213"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 1567
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/2022/07/privacyoptions.svg

63.250.43.2

200 OK

678 B

URL GET HTTP/2
bonbon.tech/wp-content/uploads/2022/07/privacyoptions.svg
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1637), with no line terminators
Size
678 B (678 bytes)
Hash
806984bc6483c28aa02ef241a5531f21
8585ac30e9870c8e626df6cf2f6ffcc77afa34c8
7e1e6717060807e1395877297a640639241b5df04c2837cb1992c8ff3f063b6c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/07/privacyoptions.svg HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: image/svg+xml
last-modified: Mon, 13 Mar 2023 22:27:00 GMT
vary: Accept-Encoding
etag: W/"640fa334-665"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 678
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1

63.250.43.2

200 OK

7.2 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (25115)
Size
7.2 kB (7157 bytes)
Hash
046405de007ff73e52d17dab2af75258
887cfb8a9de27005875f6e1c1d1ead43bd0865c8
533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:51 GMT
vary: Accept-Encoding
etag: W/"642e66df-6272"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 7157
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/2023/08/mission-icon-2-revolution.png

63.250.43.2

200 OK

6.7 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/2023/08/mission-icon-2-revolution.png
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
PNG image data, 337 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
6.7 kB (6662 bytes)
Hash
4408e05f773e71fd1a7766485bf9abc8
a18713cf907b5e3ee591af2201ff4032bb808e40
18e48dcab81fcc506759f06ff95f2cfd0dc14549314ab5b2277cef9c5f2fc79f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/08/mission-icon-2-revolution.png HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:10:15 GMT
content-type: image/png
content-length: 6662
last-modified: Sun, 06 Aug 2023 23:18:54 GMT
etag: "64d02a5e-1a06"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 34391
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

63.250.43.2

200 OK

7.1 kB

URL GET HTTP/2
bonbon.tech/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
7.1 kB (7099 bytes)
Hash
c4e68a0f3463c0bd3c39eab38815e881
0ce58644e9f3c5063a11453ff287c5ec096465a7
ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 30 Mar 2023 03:35:35 GMT
vary: Accept-Encoding
etag: W/"64250387-53be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 7099
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/2022/07/cropped-cropped-Transparent_Image_crop.png

63.250.43.2

200 OK

17 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/2022/07/cropped-cropped-Transparent_Image_crop.png
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
PNG image data, 1399 x 433, 8-bit gray+alpha, non-interlaced\012- data
Size
17 kB (16734 bytes)
Hash
fb47ec7a6c7eaacf6a8b9466e177a640
fd2c1431178f0f9b0582691dfe14f34f61ade86b
5e0e2470aa38fa986719cb014826515ec18b45c944b07b50a911514935676278

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/07/cropped-cropped-Transparent_Image_crop.png HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: image/png
content-length: 16734
last-modified: Wed, 20 Jul 2022 21:11:59 GMT
etag: "62d86f9f-415e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-includes/js/jquery/jquery.min.js?ver=3.7.0

63.250.43.2

200 OK

30 kB

URL GET HTTP/2
bonbon.tech/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
30 kB (30392 bytes)
Hash
ff04dd1ef5c67998d8652330c0441689
5e6ff5bd5240181a8bdea983837f39ac231dac4d
5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:27 GMT
content-type: application/javascript
last-modified: Wed, 09 Aug 2023 03:42:33 GMT
vary: Accept-Encoding
etag: W/"64d30b29-155ba"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
content-length: 30392
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
16878259e4bb7f65df1a7634551b569a
1961b48e6ed346499ab563c23b4c74fa5b28d603
8a43044c85ec6539cc0809452f6556ac69654dc55edd164c1b0d9b7e9c38cb92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Aug 2023 03:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
16878259e4bb7f65df1a7634551b569a
1961b48e6ed346499ab563c23b4c74fa5b28d603
8a43044c85ec6539cc0809452f6556ac69654dc55edd164c1b0d9b7e9c38cb92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Aug 2023 03:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
16878259e4bb7f65df1a7634551b569a
1961b48e6ed346499ab563c23b4c74fa5b28d603
8a43044c85ec6539cc0809452f6556ac69654dc55edd164c1b0d9b7e9c38cb92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Aug 2023 03:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

216.58.207.227

200 OK

8.0 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bonbon.tech/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintCC:0B:9E:F2:35:30:16:40:11:59:40:74:E5:04:3C:D5:D2:3C:30:70
ValidityMon, 17 Jul 2023 08:21:33 GMT - Mon, 09 Oct 2023 08:21:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonbon.tech
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Aug 2023 10:05:21 GMT
expires: Sat, 10 Aug 2024 10:05:21 GMT
cache-control: public, max-age=31536000
age: 581886
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
16878259e4bb7f65df1a7634551b569a
1961b48e6ed346499ab563c23b4c74fa5b28d603
8a43044c85ec6539cc0809452f6556ac69654dc55edd164c1b0d9b7e9c38cb92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Aug 2023 03:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
16878259e4bb7f65df1a7634551b569a
1961b48e6ed346499ab563c23b4c74fa5b28d603
8a43044c85ec6539cc0809452f6556ac69654dc55edd164c1b0d9b7e9c38cb92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Aug 2023 03:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bonbon.tech/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintCC:0B:9E:F2:35:30:16:40:11:59:40:74:E5:04:3C:D5:D2:3C:30:70
ValidityMon, 17 Jul 2023 08:21:33 GMT - Mon, 09 Oct 2023 08:21:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonbon.tech
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Aug 2023 15:21:56 GMT
expires: Fri, 16 Aug 2024 15:21:56 GMT
cache-control: public, max-age=31536000
age: 44491
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLFj_Z1xlFQ.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLFj_Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bonbon.tech/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintCC:0B:9E:F2:35:30:16:40:11:59:40:74:E5:04:3C:D5:D2:3C:30:70
ValidityMon, 17 Jul 2023 08:21:33 GMT - Mon, 09 Oct 2023 08:21:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7932, version 1.0\012- data
Size
7.9 kB (7932 bytes)
Hash
a7f7eebec745ef48ccf7a3d08c66d84a
2c5f99afe358a3e8570818a99646779aaa607587
6f0c572590421075878908e0b380c5a6d404f72aa7d6d125385943be658f8399

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLFj_Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonbon.tech
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7932
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Aug 2023 17:23:11 GMT
expires: Sat, 10 Aug 2024 17:23:11 GMT
cache-control: public, max-age=31536000
age: 555616
last-modified: Wed, 27 Apr 2022 16:10:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bonbon.tech/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintCC:0B:9E:F2:35:30:16:40:11:59:40:74:E5:04:3C:D5:D2:3C:30:70
ValidityMon, 17 Jul 2023 08:21:33 GMT - Mon, 09 Oct 2023 08:21:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonbon.tech
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Aug 2023 15:18:26 GMT
expires: Fri, 16 Aug 2024 15:18:26 GMT
cache-control: public, max-age=31536000
age: 44701
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2

216.58.207.227

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bonbon.tech/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintCC:0B:9E:F2:35:30:16:40:11:59:40:74:E5:04:3C:D5:D2:3C:30:70
ValidityMon, 17 Jul 2023 08:21:33 GMT - Mon, 09 Oct 2023 08:21:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Size
7.8 kB (7840 bytes)
Hash
8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonbon.tech
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Aug 2023 15:08:24 GMT
expires: Fri, 16 Aug 2024 15:08:24 GMT
cache-control: public, max-age=31536000
age: 45303
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bonbon.tech/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintCC:0B:9E:F2:35:30:16:40:11:59:40:74:E5:04:3C:D5:D2:3C:30:70
ValidityMon, 17 Jul 2023 08:21:33 GMT - Mon, 09 Oct 2023 08:21:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonbon.tech
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Aug 2023 15:21:56 GMT
expires: Fri, 16 Aug 2024 15:21:56 GMT
cache-control: public, max-age=31536000
age: 44491
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bonbon.tech/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintCC:0B:9E:F2:35:30:16:40:11:59:40:74:E5:04:3C:D5:D2:3C:30:70
ValidityMon, 17 Jul 2023 08:21:33 GMT - Mon, 09 Oct 2023 08:21:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonbon.tech
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Aug 2023 15:21:56 GMT
expires: Fri, 16 Aug 2024 15:21:56 GMT
cache-control: public, max-age=31536000
age: 44491
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

216.58.207.227

200 OK

7.7 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bonbon.tech/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintCC:0B:9E:F2:35:30:16:40:11:59:40:74:E5:04:3C:D5:D2:3C:30:70
ValidityMon, 17 Jul 2023 08:21:33 GMT - Mon, 09 Oct 2023 08:21:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonbon.tech
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Aug 2023 13:23:30 GMT
expires: Sun, 11 Aug 2024 13:23:30 GMT
cache-control: public, max-age=31536000
age: 483597
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
16878259e4bb7f65df1a7634551b569a
1961b48e6ed346499ab563c23b4c74fa5b28d603
8a43044c85ec6539cc0809452f6556ac69654dc55edd164c1b0d9b7e9c38cb92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Aug 2023 03:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET bonbon.tech/wp-content/uploads/2023/08/slider3b.png

63.250.43.2

200 OK

27 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/2023/08/slider3b.png
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
PNG image data, 960 x 892, 8-bit/color RGBA, non-interlaced\012- data
Size
27 kB (26585 bytes)
Hash
2fc67b0e7d71b0db92309b6f44b861ab
d06a119fefa2031230a5c3bccfb81510063e47e3
84282721f995a270ad66d0106b910d4010b393dfed607bfb31689460131a5862

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/08/slider3b.png HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bonbon.tech/wp-content/uploads/elementor/css/post-47.css?ver=1691431058
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:10:15 GMT
content-type: image/png
content-length: 26585
last-modified: Sun, 06 Aug 2023 21:46:52 GMT
etag: "64d014cc-67d9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 34391
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/2023/08/slider-1.png

63.250.43.2

200 OK

44 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/2023/08/slider-1.png
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
PNG image data, 960 x 891, 8-bit/color RGBA, non-interlaced\012- data
Size
44 kB (44334 bytes)
Hash
361e2aa9f5995c0e2e07cff530076449
8b62e46839b24a5e51aea52e5a4af395fb2f26ce
c3615f155ca1b1f5338d5a49554894e0f7d93f5f068f63d15f383c0b063fe215

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/08/slider-1.png HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bonbon.tech/wp-content/uploads/elementor/css/post-47.css?ver=1691431058
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:10:14 GMT
content-type: image/png
content-length: 44334
last-modified: Sun, 06 Aug 2023 21:42:16 GMT
etag: "64d013b8-ad2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 34392
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/2023/08/slider-2.png

63.250.43.2

200 OK

49 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/2023/08/slider-2.png
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
PNG image data, 960 x 891, 8-bit/color RGBA, non-interlaced\012- data
Size
49 kB (48755 bytes)
Hash
445eef866f45328b4acc01cc1d081d0e
d013bd9c5e3568c5e68ac9ccb7dc71f956c9a2a6
50fa6019647c7844ff86dd07721111ea966af9e568dee35f7d8c26d561361d1e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/08/slider-2.png HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bonbon.tech/wp-content/uploads/elementor/css/post-47.css?ver=1691431058
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:10:15 GMT
content-type: image/png
content-length: 48755
last-modified: Sun, 06 Aug 2023 21:42:13 GMT
etag: "64d013b5-be73"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 34391
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/2023/08/slider4.png

63.250.43.2

200 OK

54 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/2023/08/slider4.png
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
PNG image data, 960 x 892, 8-bit/color RGBA, non-interlaced\012- data
Size
54 kB (54126 bytes)
Hash
7cb0dad45b5c6bdbc5d3b968816be282
849f2d2c040d727740bb426a040c07a7b4e29f83
883e2146b210a4c63188faa06d1c76ca93c631ff4c79d6023c5c737ff6291330

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/08/slider4.png HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bonbon.tech/wp-content/uploads/elementor/css/post-47.css?ver=1691431058
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:10:15 GMT
content-type: image/png
content-length: 54126
last-modified: Sun, 06 Aug 2023 21:42:11 GMT
etag: "64d013b3-d36e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 34391
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/2023/08/slider-5.png

63.250.43.2

200 OK

40 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/2023/08/slider-5.png
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
PNG image data, 960 x 891, 8-bit/color RGBA, non-interlaced\012- data
Size
40 kB (40233 bytes)
Hash
4ed21a3399109c5e82d56bd2dc69c040
729370ac4dc852149838518facd44d6add9a7622
13e93b473fb491278b234d1713efe0015d4f3f87303e0624c28e98a121007cb9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/08/slider-5.png HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bonbon.tech/wp-content/uploads/elementor/css/post-47.css?ver=1691431058
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:10:15 GMT
content-type: image/png
content-length: 40233
last-modified: Sun, 06 Aug 2023 21:42:14 GMT
etag: "64d013b6-9d29"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 34391
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

63.250.43.2

200 OK

78 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bonbon.tech/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: font/woff2
content-length: 78196
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
etag: "642e66c2-13174"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://bonbon.tech
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.18.0

63.250.43.2

200 OK

94 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.18.0
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 93868, version 1.0\012- data
Size
94 kB (93868 bytes)
Hash
8278c1e2a1ab13dd29669dd3f93273ba
31e9f70470911cf6e608a08f4bdc3ab6531728dd
3469696dc12a3dc0509c47d862fbba33cdca1aaea747a6c4338148184c849db4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.18.0 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bonbon.tech/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.18.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: font/woff2
content-length: 93868
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
etag: "642e66c2-16eac"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://bonbon.tech
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 36598
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-92LT476TM7&l=dataLayer&cx=c

142.250.74.72

200 OK

76 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-92LT476TM7&l=dataLayer&cx=c
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://bonbon.tech/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (4175)
Size
76 kB (76203 bytes)
Hash
cdf5911b500f4b4b1e33266ac7bc39b2
1c04b52e99919cd3d4ecc056e4080a2650a1af23
ba03f3cbccb634958725d20c61e2ad50de5a2f4477d15130ac0c3fea46278757

HTTP Headers

GET /gtag/js?id=G-92LT476TM7&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Aug 2023 03:43:27 GMT
expires: Fri, 18 Aug 2023 03:43:27 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76203
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.googletagmanager.com/gtag/js?id=G-D7RDMN8Z9N&l=dataLayer&cx=c

142.250.74.72

200 OK

73 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-D7RDMN8Z9N&l=dataLayer&cx=c
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://bonbon.tech/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (2674)
Size
73 kB (72686 bytes)
Hash
a6b606984730a3780dd2ff5f3a3c97eb
1d961893d243c150b669e81fdae618012e525fe4
f19fc63fa8ee98ede93a8352655f64dbab83276b6b73bab459ac789b819ea2b8

HTTP Headers

GET /gtag/js?id=G-D7RDMN8Z9N&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Aug 2023 03:43:27 GMT
expires: Fri, 18 Aug 2023 03:43:27 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72686
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET bonbon.tech/wp-content/uploads/2023/08/0140_offset-1-home_WordPress-background-image-size-1920-x-1080-pixels.png

63.250.43.2

200 OK

1.4 MB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/2023/08/0140_offset-1-home_WordPress-background-image-size-1920-x-1080-pixels.png
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
PNG image data, 1921 x 1081, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 MB (1427259 bytes)
Hash
b8f7d1765eb355d4093b7201e5e7faee
92bb052d24b74cc6f502cb4683bccbcd2ab697c5
f73dd21aec80b0a675072bb6871a14eb4694d0d74a10c473ce1f711185410cf1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/08/0140_offset-1-home_WordPress-background-image-size-1920-x-1080-pixels.png HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bonbon.tech/wp-content/uploads/elementor/css/post-47.css?ver=1691431058
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:10:14 GMT
content-type: image/png
content-length: 1427259
last-modified: Sun, 06 Aug 2023 22:21:50 GMT
etag: "64d01cfe-15c73b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 34392
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor-pro/assets/js/nav-menu.bb5cce0a50480cdf695d.bundle.min.js

63.250.43.2

200 OK

1.5 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor-pro/assets/js/nav-menu.bb5cce0a50480cdf695d.bundle.min.js
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4001)
Size
1.5 kB (1468 bytes)
Hash
38f58e1852422aa8d6f45e8ecab2b565
6197d068f9977708c2e2a7acfeb6e41e59ed9ff6
150fbe6dac6021a46b855fe74cfccd0d0d7ee8e3681c6ba45b036c732e49db41

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.bb5cce0a50480cdf695d.bundle.min.js HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:51 GMT
vary: Accept-Encoding
etag: W/"642e66df-fcd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36599
accept-ranges: bytes
x-cache: HIT
content-length: 1468
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor-pro/assets/js/slides.fb6b9afd278bb9c5e75b.bundle.min.js

63.250.43.2

200 OK

1.5 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor-pro/assets/js/slides.fb6b9afd278bb9c5e75b.bundle.min.js
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3882)
Size
1.5 kB (1468 bytes)
Hash
64a20738a7a882221491eecf84e1a850
16c17f59bc053659026fba949600c46cd48fb8eb
5a902b1baf94089eb9a35bc7c2bbc633125cfd6d388b3300e2a4441d308ee2f1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/slides.fb6b9afd278bb9c5e75b.bundle.min.js HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Cookie: _ga_92LT476TM7=GS1.1.1692330201.1.0.1692330201.0.0.0; _ga=GA1.1.1408073074.1692330202; _ga_D7RDMN8Z9N=GS1.1.1692330201.1.0.1692330201.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:19:55 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:51 GMT
vary: Accept-Encoding
etag: W/"642e66df-f56"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 33812
accept-ranges: bytes
x-cache: HIT
content-length: 1468
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js

63.250.43.2

200 OK

665 B

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1320)
Size
665 B (665 bytes)
Hash
09ac3bd307cf0e55cedf795ffdd63f1a
7681ca95f312f14ba18a461379741a5b0bcc39f1
a0366b547f2aa9078c81da884812e7f3b872068fee7cabaedfb24ca0cd9920e1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Cookie: _ga_92LT476TM7=GS1.1.1692330201.1.0.1692330201.0.0.0; _ga=GA1.1.1408073074.1692330202; _ga_D7RDMN8Z9N=GS1.1.1692330201.1.0.1692330201.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
vary: Accept-Encoding
etag: W/"642e66c2-550"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36599
accept-ranges: bytes
x-cache: HIT
content-length: 665
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/uploads/2023/08/mag.png

63.250.43.2

200 OK

39 kB

URL GET HTTP/2
bonbon.tech/wp-content/uploads/2023/08/mag.png
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
PNG image data, 1920 x 626, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (39203 bytes)
Hash
4717aa9077dc67a55a33cf7bd6540c5d
e214fc938c450ce8c3d15dd6e660eab5ea98a46f
96fe35e1a666c21c54946b5995a7ac65e36ba8917e1203ac448a7f7d9b24d5f1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/08/mag.png HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Cookie: _ga_92LT476TM7=GS1.1.1692330201.1.0.1692330201.0.0.0; _ga=GA1.1.1408073074.1692330202; _ga_D7RDMN8Z9N=GS1.1.1692330201.1.0.1692330201.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:19:56 GMT
content-type: image/png
content-length: 39203
last-modified: Sun, 06 Aug 2023 22:33:57 GMT
etag: "64d01fd5-9923"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 33811
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6

63.250.43.2

200 OK

36 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65280)
Size
36 kB (35516 bytes)
Hash
15bb2b8491fc7e84137d65f610e1685a
cd76b70a5426893e9c022b9a75c50a7c1348e2d0
b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Cookie: _ga_92LT476TM7=GS1.1.1692330201.1.0.1692330201.0.0.0; _ga=GA1.1.1408073074.1692330202; _ga_D7RDMN8Z9N=GS1.1.1692330201.1.0.1692330201.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 18:19:55 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:22 GMT
vary: Accept-Encoding
etag: W/"642e66c2-21f91"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 33812
accept-ranges: bytes
x-cache: HIT
content-length: 35516
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/favicon.ico

63.250.43.2

204 No Content

0 B

URL GET HTTP/2
bonbon.tech/favicon.ico
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Cookie: _ga_92LT476TM7=GS1.1.1692330201.1.0.1692330201.0.0.0; _ga=GA1.1.1408073074.1692330202; _ga_D7RDMN8Z9N=GS1.1.1692330201.1.0.1692330201.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-type: image/png
age: 36599
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor-pro/assets/js/form.72b77b99d67b130634d2.bundle.min.js

63.250.43.2

200 OK

5.0 kB

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor-pro/assets/js/form.72b77b99d67b130634d2.bundle.min.js
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (19201)
Size
5.0 kB (4999 bytes)
Hash
651dd8db22dc01f959bcd9e9338859ca
792e7beb2b93600c408416ce6cc071f7106ef170
13e04f9e58389677c850e37c9e3f85f306a59cd20f0fbdd05c44a1e6e3315ba2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/form.72b77b99d67b130634d2.bundle.min.js HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Cookie: _ga_92LT476TM7=GS1.1.1692330201.1.0.1692330201.0.0.0; _ga=GA1.1.1408073074.1692330202; _ga_D7RDMN8Z9N=GS1.1.1692330201.1.0.1692330201.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:50 GMT
vary: Accept-Encoding
etag: W/"642e66de-4b2d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36599
accept-ranges: bytes
x-cache: HIT
content-length: 4999
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

GET bonbon.tech/wp-content/plugins/elementor-pro/assets/js/popup.483b906ddaa1af17ff14.bundle.min.js

63.250.43.2

200 OK

451 B

URL GET HTTP/2
bonbon.tech/wp-content/plugins/elementor-pro/assets/js/popup.483b906ddaa1af17ff14.bundle.min.js
IP
63.250.43.2:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://bonbon.tech/
Certificate
IssuerSectigo Limited
Subjectwww.bonbon.tech
FingerprintAE:F6:57:EA:C0:3A:A9:3D:F0:C1:32:96:A3:5A:41:04:40:7B:5D:B3
ValiditySat, 11 Feb 2023 00:00:00 GMT - Sat, 10 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (715)
Size
451 B (451 bytes)
Hash
53f1f57fba398df0ae8e8548ac275ed1
4fcd8abf67b4aec5b85ca78eea7a72175453c4b7
f3888eca86017a2f19bf0c48a5f4d8b65e20f46f4b43156f5aa7e6367e760545

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/popup.483b906ddaa1af17ff14.bundle.min.js HTTP/1.1
Host: bonbon.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonbon.tech/
DNT: 1
Connection: keep-alive
Cookie: _ga_92LT476TM7=GS1.1.1692330201.1.0.1692330201.0.0.0; _ga=GA1.1.1408073074.1692330202; _ga_D7RDMN8Z9N=GS1.1.1692330201.1.0.1692330201.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 17 Aug 2023 17:33:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2023 06:29:51 GMT
vary: Accept-Encoding
etag: W/"642e66df-2f7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 36599
accept-ranges: bytes
x-cache: HIT
content-length: 451
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (36)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by