Report - rishamam.com/wp-includes/css/BDO/sso/login.php

Report Overview

Submitted URL
rishamam.com/wp-includes/css/BDO/sso/login.php
IP
119.18.58.248
ASN
#394695 PUBLIC-DOMAIN-REGISTRY
Submitted
2023-02-04 01:29:18
Access
Website Title
Final URL
Tags
suspicious
urlquery detections
Suspicious - Suspicious JS code

Detections

urlquery
4
Network Intrusion Detection
0
Threat Detection Systems
112

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	1.4 kB	4.3 kB	142.250.74.106
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	1.7 kB	3.5 kB	142.250.74.163
demo.cmssuperheroes.com	unknown	2014-04-08T13:52:55Z	2023-02-26T05:13:30Z	463 B	93 kB	34.91.95.185
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	1.8 kB	72 kB	216.58.207.227
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.4 kB	8.9 kB	23.33.119.27
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.164.186.39
rishamam.com	unknown	2021-12-18T10:13:26Z	2023-01-31T19:39:40Z	28 kB	1.4 MB	119.18.58.248
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.8 kB	80 kB	34.120.237.76
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-04	medium	rishamam.com/wp-includes/css/BDO/sso/login.php	Phishing
2023-02-04	medium	rishamam.com/wp-content/plugins/redux-framework/redux-core/extendify-sdk/public/build/extendify-utilities.css?ver=13.4	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/elementor-theme-core/assets/css/main.css?ver=1.0.0	Malware
2023-02-04	medium	rishamam.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/elementor-theme-core/assets/css/lib/progressbar.min.css?ver=0.7.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/elementor-theme-core/assets/css/lib/owl.carousel.min.css?ver=2.2.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/team-builder/assets/css/font-awesome/css/font-awesome.min.css?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/team-builder/assets/css/bootstrap-front.css?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/team-builder/assets/css/team.css?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/team-builder/assets/css/owl.carousel.min.css?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/timetable/style/superfish.css?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/timetable/style/jquery.qtip.css?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/timetable/style/style.css?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/timetable/style/event_template.css?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.3	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.0.1	Malware
2023-02-04	medium	rishamam.com/wp-content/themes/kindori/assets/css/bootstrap.min.css?ver=4.0.0	Malware
2023-02-04	medium	rishamam.com/wp-content/themes/kindori/assets/css/material-design-iconic-font.min.css?ver=2.2.0	Malware
2023-02-04	medium	rishamam.com/wp-content/themes/kindori/assets/css/awesome5.min.css?ver=5.8.0	Malware
2023-02-04	medium	rishamam.com/wp-content/themes/kindori/style.css?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/themes/kindori/assets/css/flaticon3.css?ver=2.2.3	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/newsletter/style.css?ver=7.3.4	Malware
2023-02-04	medium	rishamam.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/elementor-theme-core/assets/js/lib/jquery.serializejson.js?ver=3.2.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/elementor-theme-core/assets/js/main.js?ver=1.0.0	Malware
2023-02-04	medium	rishamam.com/wp-content/themes/kindori/assets/js/elementor-custom-classes.js?ver=1.0.0	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/wp-call-button/assets/block/build/index.css?ver=a1dbfd3fcfcfb0740ca8c4771bbdc4c3	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.3.3	Malware
2023-02-04	medium	rishamam.com/wp-includes/css/classic-themes.min.css?ver=1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.9	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.8	Malware
2023-02-04	medium	rishamam.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Malware
2023-02-04	medium	rishamam.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.3.3	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.9	Malware
2023-02-04	medium	rishamam.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	Malware
2023-02-04	medium	rishamam.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/timetable/js/jquery.qtip.min.js?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/timetable/js/timetable.js?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.9	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.0.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.0.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.0.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.0.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.6.0.1	Malware
2023-02-04	medium	rishamam.com/wp-content/themes/kindori/assets/js/nice-select.min.js?ver=all	Malware
2023-02-04	medium	rishamam.com/wp-content/themes/kindori/assets/js/enscroll.js?ver=all	Malware
2023-02-04	medium	rishamam.com/wp-content/themes/kindori/assets/js/sidebar-scroll-fixed.js?ver=1.0.0	Malware
2023-02-04	medium	rishamam.com/wp-content/themes/kindori/assets/js/magnific-popup.min.js?ver=1.0.0	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6	Malware
2023-02-04	medium	rishamam.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3	Malware
2023-02-04	medium	rishamam.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.0.1	Malware
2023-02-04	medium	rishamam.com/wp-content/themes/kindori/assets/fonts/Material-Design-Iconic-Font.woff2?v=2.2.0	Malware
2023-02-04	medium	rishamam.com/?wc-ajax=get_refreshed_fragments	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (49)

	URL	Size	First Seen	Last Seen
	rishamam.com/wp-includes/css/BDO/sso/login.php	2.1 kB	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:15:32 Last Seen2023-03-13 16:15:32 Times Seen1 Hash bcb68a43e1d6f5c72a47070da4bdccc3 98edb984c6d6ecf206656fe45f7667d1bfe54815 1aea0a149ad0739d0755d5d3f474cabec4e7d9e7b223f065b94d8a5169f4f3e1 Loading...

	rishamam.com/wp-content/plugins/elementor-theme-core/assets/js/lib/jquery.serializejson.js?ver=3.2.1	16 kB	2023-03-07	2024-04-26
Pretty URL rishamam.com/wp-content/plugins/elementor-theme-core/assets/js/lib/jquery.serializejson.js?ver=3.2.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:57:56 Last Seen2024-04-26 02:05:03 Times Seen46 Hash 3bc7e20ab6e779c1a6f1c542b63f245c eadff3bf4121913d170b0d98b41bd0a56a58295d cadb219c9c7010b48b318861dbbe45651309dd27f12babe8bae51e02ee75a2d2 Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	342 B	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:15:32 Last Seen2023-03-13 16:15:32 Times Seen1 Hash 0938c9cf9a8ce764ee440a6def70d3d6 a31717d24debeb52f4a6fb2736691b03dd6fa4b2 3d0275b761ff91eb7f2877893af1ecab5a020c93ced7ef0e5b04cf1f88b1ebad Loading...

	rishamam.com/wp-content/plugins/timetable/js/jquery.qtip.min.js?ver=6.1.1	44 kB	2023-03-07	2024-05-03
Pretty URL rishamam.com/wp-content/plugins/timetable/js/jquery.qtip.min.js?ver=6.1.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:47 Last Seen2024-05-03 16:07:32 Times Seen667 Hash e1933cf43209c6c5f1523056d0c376fa 1828d6b7f97548e43662c62ffd283e3bf8e2dd89 6be3d1ab735bc8adc6d3c0688a8f57ebec85887a53488adb13bbb366faa60da7 Loading...

	rishamam.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6	25 kB	2023-03-07	2024-05-02
Pretty URL rishamam.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:44 Last Seen2024-05-02 01:41:43 Times Seen2639 Hash a1ade95e21102c15d71ee475ac3818f6 13c693d748d12cc673b292261adf54b4ce0c10db d455ab882af3a742e6c9680578e6a590681bda99e34847f550f1f41a7d167969 Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	98 B	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:15:32 Last Seen2023-03-13 16:15:32 Times Seen1 Hash 28c32f4604e02b6678e9535679f1df6f 91f76e6876e2a198cf3a2decf79dd80c8bdaa035 c0096ff7300ff45105dc9c2e0cd5d214c6b1787e281fffff59a097f7f13f55ff Loading...

	rishamam.com/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.6.0.1	1.4 kB	2023-03-07	2024-04-28
Pretty URL rishamam.com/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.6.0.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:36 Last Seen2024-04-28 11:03:35 Times Seen269 Hash 4f8f624a1f37ded882a2e982a07ece34 b1adadacb1a2120b1579e731115f003c91167823 6407a9ffc16173f1d3330525f44a332501d2ed672cf276371a6c5ce2c4b9ea1e Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	11 kB	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:15:32 Last Seen2023-03-13 16:15:32 Times Seen1 Hash 404831edfc87c73172a839165a27ab75 61f7c45287dd9f97b57dc58fdab580f313c6152f 9284e3517a46eb0fb24f0810e444a502df33a505adbd51790bd88685272a324f Loading...

	rishamam.com/wp-content/themes/kindori/woocommerce/woocommerce.js?ver=1.1	1.6 kB	2023-03-07	2024-02-01
Pretty URL rishamam.com/wp-content/themes/kindori/woocommerce/woocommerce.js?ver=1.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:16 Last Seen2024-02-01 04:01:43 Times Seen13 Hash fb63648a7527aa332dc4a4447345c1ea b4447ec398725929dd1a3f7f48d2204f1931a5a7 99079c2deb1cd929e36441432be17867ee462a753c86b1447b3f8b57eb928922 Loading...

	rishamam.com/wp-content/themes/kindori/assets/js/match-height-min.js?ver=1.0.0	3.1 kB	2023-03-07	2024-04-18
Pretty URL rishamam.com/wp-content/themes/kindori/assets/js/match-height-min.js?ver=1.0.0 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:16 Last Seen2024-04-18 22:13:37 Times Seen93 Hash 78f13e29ecd3a8f8f617a865a8752f87 0c909f9e8a357c6accef8b5a5772fe9ebbb73570 cea277d475c27a4c3b9f9bfd26d983b1df9cae133add2cf7100a0f31cc957e5a Loading...

	rishamam.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-05-03
Pretty URL rishamam.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-05-03 14:55:33 Times Seen9832 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	rishamam.com/wp-content/plugins/timetable/js/timetable.js?ver=6.1.1	24 kB	2023-03-07	2024-04-29
Pretty URL rishamam.com/wp-content/plugins/timetable/js/timetable.js?ver=6.1.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:40 Last Seen2024-04-29 02:06:47 Times Seen92 Hash 4570d4663e18d4030b7d39bcec458798 b8201ae5455b3f30b0191998e073e72ce22daf37 ef5189420735e62cc24c711f5ab49ead9e20285eb26df24943a36284d95424f0 Loading...

	rishamam.com/wp-content/themes/kindori/assets/js/sidebar-scroll-fixed.js?ver=1.0.0	6.2 kB	2023-03-07	2024-03-22
Pretty URL rishamam.com/wp-content/themes/kindori/assets/js/sidebar-scroll-fixed.js?ver=1.0.0 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:21 Last Seen2024-03-22 17:12:40 Times Seen27 Hash 0d3c369ac6b9bbad259a1dab4925958f 6ae82f097cade92c886c7b162934f9f4e8f153b1 f90603db59a22f42b3bcd9f7b0229ba0264631c3da639f537287d56ef0238772 Loading...

	rishamam.com/wp-content/themes/kindori/assets/js/wow.min.js?ver=1.0.0	9.0 kB	2023-03-07	2024-04-18
Pretty URL rishamam.com/wp-content/themes/kindori/assets/js/wow.min.js?ver=1.0.0 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:33 Last Seen2024-04-18 22:13:38 Times Seen84 Hash b770af3dd593c9e483d16922a729a5c5 fa79eab712af3be3e5a5cebc449f65b437c83652 44dc90566ee47db3aad870a75a34d42fb1a38a2b6093b83bbfb44993a9034152 Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	230 B	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:15:32 Last Seen2023-03-13 16:15:32 Times Seen1 Hash 2ba2d07840f14b51ddbd2e750ae8d04f 59c08ac367e836cd7d023b20c0dd2392e66fd6f2 1fbc87153ed1ffaed9595bb337ea85b6a0488198acf8a41dbf3282c42c3a0c32 Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	109 B	2023-03-07	2024-05-04
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-04 11:17:46 Times Seen4243 Hash c3041f910d72f3447c03a53d6b8df977 d2959e0ca4bfa2ec8613d1fba8ae2399aebdd123 9b5e9931c5ad5f273f4c6eb5988506ef60471957923124b28aab2f8563e8b7fd Loading...

	rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.0.1	2.1 kB	2023-03-07	2024-05-04
Pretty URL rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.0.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-04 11:09:05 Times Seen22458 Hash b72c1cbb1530a011a27bd9800f26765a 27b825c5d8255f33b8427a059d4545ebd65e1746 a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8 Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	2.3 kB	2023-03-07	2024-05-03
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:11 Last Seen2024-05-03 15:31:33 Times Seen1839 Hash be435481837b62187ea43999d905c91a 403a7bb5b4764bf8951e239b7ad591cd0eb62d7e fc772d0508e695b6dc294b8734e7693bbdc64bbeae89239a03bf32e8b56aea2b Loading...

	rishamam.com/wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=6.1.1	36 kB	2023-03-07	2024-05-02
Pretty URL rishamam.com/wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=6.1.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:40 Last Seen2024-05-02 05:28:30 Times Seen533 Hash bfe456dc33fd691cb0b1a8e769a7bb76 f6a27038d4f75bf4859d4ff5f21b0e4fc25abac1 eaa462465ec59b2258510c9a99e2deb5fe375f3c8f779f08476270c9c1e4bad2 Loading...

	rishamam.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.0.1	9.5 kB	2023-03-07	2024-05-02
Pretty URL rishamam.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.0.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-05-02 06:26:39 Times Seen2833 Hash 87c54edf7dad7dfdfde015f6eee45ff1 96ec1a06ea3093c47e1e2fc4444ada7f4456135d ef22199864042b8ceeee3729f3254c140df7217364045737ca3aadf8434fb3da Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	82 B	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:15:32 Last Seen2023-03-13 16:15:32 Times Seen1 Hash 3944328976c98fe923f214b00effb636 7f136bb8c8579137531e5a77d4459fc2fcc3c7b4 ba7b3f9673113af386dc98782b80701199d7b283265d6a5a913c94d549578ca3 Loading...

	rishamam.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-05-04
Pretty URL rishamam.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-05-04 05:30:18 Times Seen31945 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	rishamam.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-05-03
Pretty URL rishamam.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-03 15:46:54 Times Seen15542 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	332 B	2023-03-07	2024-05-04
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-05-04 09:26:12 Times Seen9225 Hash 7d495bb1d6c246a2d57df3ab9332a3cc 6367d4f8addf48f2af1023b8176a2263bb424d01 df09a4f39d495e901a5479fce56c8ddec4f8a6acda1b3ceab7adc704fa439e32 Loading...

	rishamam.com/wp-content/themes/kindori/assets/js/main.js?ver=1.1	17 kB	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-content/themes/kindori/assets/js/main.js?ver=1.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:15:32 Last Seen2023-03-13 21:08:28 Times Seen1 Hash c5f8fd2006d71934da2f19e2b83a6feb 5327daf746fa8f2e481466de9ab89e59a330e97b 4443a5e9dcc97be082f46f4e606d0c20e8f9fe8030b8007132808dce6459459d Loading...

	rishamam.com/wp-content/plugins/timetable/js/jquery.ba-bbq.min.js?ver=6.1.1	4.7 kB	2023-03-07	2024-03-25
Pretty URL rishamam.com/wp-content/plugins/timetable/js/jquery.ba-bbq.min.js?ver=6.1.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:35 Last Seen2024-03-25 17:39:59 Times Seen142 Hash 757fbeddff8f67f1f5f4d1211a54f860 9f1b4278154d94b7871ee831536585b6d8f7c9f0 785cf299c805ec5e17abfb1c1bb2f379b9076d7a6aa87000d5e22aa069896e7c Loading...

	rishamam.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.9	381 kB	2023-03-07	2024-04-23
Pretty URL rishamam.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.9 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:23 Last Seen2024-04-23 14:29:05 Times Seen883 Hash 9a6e48854f5854ab3923b881322a8d3a 219838077fe7b1a88a0cfaa9f775790d82a81f78 ececa11daba0ee1c5bf9c56ec4d40be9e455e69ffe1b61a1e7d08108f4699418 Loading...

	rishamam.com/wp-content/plugins/team-builder/assets/js/owl.carousel.min.js?ver=6.1.1	75 kB	2023-03-07	2024-02-28
Pretty URL rishamam.com/wp-content/plugins/team-builder/assets/js/owl.carousel.min.js?ver=6.1.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:53 Last Seen2024-02-28 15:10:24 Times Seen104 Hash 216d0c11476e5d6996d8e1ddd6cb6618 0a9479c8433cea2f1d2b25804638082e9eeab4cd b84876d8cfe3b7bf03e7cbd05b3f2303dd13e1fc292bf89f9a8aa5de6fef6bf3 Loading...

	rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.0.1	3.0 kB	2023-03-07	2024-05-04
Pretty URL rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.0.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-04 11:09:05 Times Seen5950 Hash 8bc2109ef48cabf7a26b73d7c3536c5f 0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b 8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8 Loading...

	rishamam.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.0.1	1.8 kB	2023-03-07	2024-05-04
Pretty URL rishamam.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.0.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-04 11:09:05 Times Seen21658 Hash d0a6d8547c66b0d7b0172466558d1208 ff93916519c7b9483251f609e4d29f38c30a66e3 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612 Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	268 B	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:15:32 Last Seen2023-03-13 16:15:32 Times Seen1 Hash 8a9d80c71e18c7e28f6d8194b3fdc339 272ed7c7d3fe170efeb04308378b2d2e88737874 4f9ce5bc2f2a4be066f2c1782c1d092464c05ced541fd699f2616d89cad2e13b Loading...

	rishamam.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2	12 kB	2023-03-08	2024-05-04
Pretty URL rishamam.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:32 Last Seen2024-05-04 01:41:06 Times Seen6681 Hash 88407dc30b83ffa7dd834fe4a35307b7 857a3a007e5ea8d88123bb47019606618e19eb77 6a0d53f68e013dac42a52a5264c5d28a12a06b6bc7cc1d63bc2d385558bd2dd7 Loading...

	rishamam.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-05-04
Pretty URL rishamam.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-04 14:58:08 Times Seen68959 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	3.5 kB	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:15:33 Last Seen2023-03-13 16:15:33 Times Seen1 Hash 0ff7643f51e02e4e0c8fbc0ccc1d5e6a 3d8a314dc91430e4e11905dfcd76d8f226f4bfd1 f2536d179a4d12c047f98870edf221df2c57a3b723901a68ffea8bc63cd222b7 Loading...

	rishamam.com/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.8	5.4 kB	2023-03-07	2024-01-25
Pretty URL rishamam.com/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.8 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:28 Last Seen2024-01-25 03:14:18 Times Seen107 Hash ac64b0e9e79af0a73092c59ce90e22c1 bdf5ccfcb4bd8b244e0dd1843eafebb44ef81ebe 0f3302e45439ab4ee06481fbe79cec9826124252ca12d76ac358aa0c5b0c94e7 Loading...

	rishamam.com/wp-content/plugins/elementor-theme-core/assets/js/main.js?ver=1.0.0	297 B	2023-03-07	2024-01-07
Pretty URL rishamam.com/wp-content/plugins/elementor-theme-core/assets/js/main.js?ver=1.0.0 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:16 Last Seen2024-01-07 08:27:37 Times Seen21 Hash 3eaff4b3503f4c1ff2495808d2944dfa 7bf87bd65c79edcebe833d90a8851446b3c71d50 f73d866e44d4f43ec8d5dec01dd03cf4b0ed7331d67bce40eb4357ac7412dbdb Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	100 B	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:15:33 Last Seen2023-03-13 16:15:33 Times Seen1 Hash da180021f720fe3c3a374ffdb3b21803 8007ce0aac166e5008b6ccda17684f45e697e111 e6273995777215b7f71d5be60ea57a09befb2a887e1f7caefadb12d08c06d233 Loading...

	rishamam.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-05-04
Pretty URL rishamam.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-04 13:16:00 Times Seen38179 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	rishamam.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.9	124 kB	2023-03-07	2024-05-03
Pretty URL rishamam.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.9 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:11 Last Seen2024-05-03 15:31:36 Times Seen3005 Hash e4bc260935352e71791596e3c8b0c205 336eff1507c4d4f88bbc8f9630f405e827357cde a5f70e90e97e6ac1952a1a116dba485b468fa98dca2977853768a946227c7bc0 Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	14 kB	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:15:33 Last Seen2023-03-13 16:15:33 Times Seen1 Hash a9252d711746a80c5ba69cac871b8871 e0b4b9af747d8f316aac3e8d2b163bc5cd5fe08a cd309a6161bf6ce7515e6bd82959a7e74b627100964c4ffbfb500c4cf4770720 Loading...

	rishamam.com/wp-includes/css/BDO/sso/login.php	152 B	2023-03-07	2024-05-04
Pretty URL rishamam.com/wp-includes/css/BDO/sso/login.php IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-05-04 15:22:10 Times Seen20067 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	rishamam.com/wp-content/themes/kindori/assets/js/enscroll.js?ver=all	18 kB	2023-03-07	2024-02-01
Pretty URL rishamam.com/wp-content/themes/kindori/assets/js/enscroll.js?ver=all IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:16 Last Seen2024-02-01 04:01:43 Times Seen14 Hash ac333fe859847209eda5ea019a97d15d e14e61e663ea0cf661afa87b98a0e2c786f51518 171a013822f17b1e594571506ef708e72f09ebcef45188ecc4abef4aa8b6b231 Loading...

	rishamam.com/wp-content/themes/kindori/assets/js/magnific-popup.min.js?ver=1.0.0	46 kB	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-content/themes/kindori/assets/js/magnific-popup.min.js?ver=1.0.0 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:28:24 Last Seen2023-03-13 21:08:28 Times Seen1 Hash 5e8e776802639f12359abadd962caeb0 b60d9090ff5185a30082b0dd444d4245f22ab1cb e393b4cba5272599cf771dba8eea949ed7aaa754029d7a24b19256c64dc7fcd0 Loading...

	rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.0.1	2.9 kB	2023-03-07	2024-05-04
Pretty URL rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.0.1 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-04 04:28:09 Times Seen14021 Hash 0fd625c3991a4015814cffdc88e2fc82 d7c2f53e058210ff3ea773297641008bab71a5f3 2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1 Loading...

	rishamam.com/wp-content/themes/kindori/assets/js/nice-select.min.js?ver=all	3.0 kB	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-content/themes/kindori/assets/js/nice-select.min.js?ver=all IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:28:24 Last Seen2023-03-13 21:08:28 Times Seen1 Hash 1ae1730dccf0d05ef6adb007728222c0 bd4884cd69a3a8634893b3c90ecb8f97e51e181a 3551cdc12abda6110ef2cd84817692b22d1297ae3a01c3b1a4f7984ec9e7857b Loading...

	rishamam.com/wp-content/themes/kindori/assets/js/elementor-custom-classes.js?ver=1.0.0	801 B	2023-03-13	2023-03-13
Pretty URL rishamam.com/wp-content/themes/kindori/assets/js/elementor-custom-classes.js?ver=1.0.0 IP 119.18.58.248 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:15:33 Last Seen2023-03-13 21:08:28 Times Seen1 Hash 6abebe8b6506c81fa175286d69a2e429 d2b675e0dfc92055e0617f1ef36f94b089a1385c 64717b9f71f22dd142ace87793bf6e7ecb066d34893c188a99005d44c8f885f4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - ec9acf96899d162ac91e89238bb9f460	59 kB	2023-03-07	2024-05-02
Pretty Observations First Seen2023-03-07 01:39:40 Last Seen2024-05-02 05:28:30 Times Seen288 Hash ec9acf96899d162ac91e89238bb9f460 cbf34fb74447073bcad0db06b3776365f71c3c15 2e59ecf5c001333d77af228b4e9d229749e69d246e5b2b31d4fef0b7d67f75d3 Loading...

		Size	First Seen	Last Seen
	#1 Write - 2405bc1806927ec923f4bd4979ee55f8	3.6 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 16:15:33 Last Seen2023-03-13 16:15:33 Times Seen1 Hash 2405bc1806927ec923f4bd4979ee55f8 d497be168614514762fce46aa585a40c531c8417 be0f143c3eca20845edca32df4e42486215ab16cd07abeda33b5e38c356fe08c Loading...

	#2 Write - 81c900655105719cf93a31db0a77d919	11 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 16:15:33 Last Seen2023-03-13 16:15:33 Times Seen1 Hash 81c900655105719cf93a31db0a77d919 02e7c6032dac02098eb7ca9d87a400094c28a4c4 d1ba03e5b619591aa6656b71dcc15cd55551e59575d1ca685b1ec04f50b2ba50 Loading...

HTTP Transactions (109)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15100
Expires: Sat, 04 Feb 2023 05:40:46 GMT
Date: Sat, 04 Feb 2023 01:29:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8163
Expires: Sat, 04 Feb 2023 03:45:09 GMT
Date: Sat, 04 Feb 2023 01:29:06 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 00:36:12 GMT
content-type: application/json
age: 3174
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11547
Expires: Sat, 04 Feb 2023 04:41:33 GMT
Date: Sat, 04 Feb 2023 01:29:06 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: etsnBiU7UcZIUqghJqZ6xRSBpqdRbPYfI36hL+FP75JNB4vnr8QE8hUDRgkSR30y0bNkt2mO8ds=
x-amz-request-id: ZWBDSQ8GJHRDQNDZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 00:52:38 GMT
age: 2188
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 01:29:06 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 01:07:19 GMT
age: 1307
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8830
Expires: Sat, 04 Feb 2023 03:56:16 GMT
Date: Sat, 04 Feb 2023 01:29:06 GMT
Connection: keep-alive

push.services.mozilla.com/

35.164.186.39

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.164.186.39:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: K2pG4rD77qiIGSWlND579g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hqUq295ivJnv9jlWxUW8dtzpRI8=

fonts.googleapis.com/css?family=Lato%3A400%2C700&ver=6.1.1

142.250.74.106

200 OK

367 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Lato%3A400%2C700&ver=6.1.1
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
367 B (367 bytes)
Hash
6b1110724f93972ca34dcb3adf89697b
84f0a4449a2eda069338e97adf985a5ff644a7f5
6da05a568aef32f297c0a5e6b7ff31e537bc5aa0f480aa51df0816eb506cd072

HTTP Headers

GET /css?family=Lato%3A400%2C700&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 04 Feb 2023 01:29:07 GMT
Date: Sat, 04 Feb 2023 01:29:07 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

fonts.googleapis.com/css?family=Prompt%3A0%2C100%3B0%2C200%3B0%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B1%2C200%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%7CSchoolbell%3A400%7CFredoka%2BOne%3A400&subset=latin%2Clatin-ext&ver=6.1.1

142.250.74.106

200 OK

704 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Prompt%3A0%2C100%3B0%2C200%3B0%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B1%2C200%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%7CSchoolbell%3A400%7CFredoka%2BOne%3A400&subset=latin%2Clatin-ext&ver=6.1.1
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
704 B (704 bytes)
Hash
d234af182e259852c48570712822989e
c3bb2e1acc777cbab2d829ed43e88b338ff467ab
971b655bda688fc468e3e6d728dabf745e51f56fa7642557d940b48b308f0e73

HTTP Headers

GET /css?family=Prompt%3A0%2C100%3B0%2C200%3B0%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B1%2C200%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%7CSchoolbell%3A400%7CFredoka%2BOne%3A400&subset=latin%2Clatin-ext&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 04 Feb 2023 01:29:07 GMT
Date: Sat, 04 Feb 2023 01:29:07 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

rishamam.com/wp-includes/css/BDO/sso/login.php

119.18.58.248

200 OK

27 kB

URL HTTP/1.1
rishamam.com/wp-includes/css/BDO/sso/login.php
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with very long lines (14587), with CRLF, LF line terminators
Size
27 kB (26887 bytes)
Hash
89803f1754076c00d89adad86bc5facc
74c64c28ef99884ba3bdb0e8bff8129965bd8171
718c82b7e10be071e03441dac601be45aabbe0a585f3bca4f6b613473a396334

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Suspicious JS code
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/BDO/sso/login.php HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: nginx/1.17.6
Content-Type: text/html; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
X-Server-Cache: true
X-Proxy-Cache: MISS
Transfer-Encoding: chunked

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:29:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

rishamam.com/wp-content/plugins/redux-framework/redux-core/extendify-sdk/public/build/extendify-utilities.css?ver=13.4

119.18.58.248

200 OK

7.2 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/redux-framework/redux-core/extendify-sdk/public/build/extendify-utilities.css?ver=13.4
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (23874)
Size
7.2 kB (7247 bytes)
Hash
8e14844fd48cfcf67a6cddef91aff1f9
df8076050fc2dee876791420140b3abb6a4e1d8c
210677984d0c7f587637d48f3a7c9fbd17d30e3e84466c252677d353bd19edaa

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/redux-framework/redux-core/extendify-sdk/public/build/extendify-utilities.css?ver=13.4 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:04:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7247
Content-Type: text/css

fonts.googleapis.com/css?family=Prompt:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7CFredoka%20One:400&subset=latin&display=swap&ver=1643216404

142.250.74.106

200 OK

1.5 kB

URL HTTP/2
fonts.googleapis.com/css?family=Prompt:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7CFredoka%20One:400&subset=latin&display=swap&ver=1643216404
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.5 kB (1540 bytes)
Hash
fb86f6776b188517c2a9b83d74117168
179207da6191415b2ce0c32a0be4d035903ee1c4
acc175176997e3d0f1e5704a00cc61b7f0b47ce6ef34a4c26f780ae264ffb7f2

HTTP Headers

GET /css?family=Prompt:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7CFredoka%20One:400&subset=latin&display=swap&ver=1643216404 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rishamam.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 01:29:07 GMT
date: Sat, 04 Feb 2023 01:29:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

rishamam.com/wp-content/plugins/elementor-theme-core/assets/css/main.css?ver=1.0.0

119.18.58.248

200 OK

49 B

URL HTTP/1.1
rishamam.com/wp-content/plugins/elementor-theme-core/assets/css/main.css?ver=1.0.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
49 B (49 bytes)
Hash
7225dc26c71a9d1b7b40655f1c86dfcf
fc14874d828123cc998c18a920f7bc488e5f9145
f7d54268d4c7a2c075cff4c7fbae21b52d70c5f3abde807bcdfee9a225fdcd5d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor-theme-core/assets/css/main.css?ver=1.0.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Fri, 17 Dec 2021 01:05:16 GMT
Accept-Ranges: bytes
Content-Length: 49
Content-Type: text/css

rishamam.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

119.18.58.248

200 OK

18 kB

URL HTTP/1.1
rishamam.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (47826)
Size
18 kB (17667 bytes)
Hash
9415c9562591af7a582c29139621505f
0b12eecf36a48b871a3198550f4f65bb4a6d9b1b
06c70d3232c2ae3ed2aa259eb7a1beb329b654926813935fffa8902cd5ebaa4a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Wed, 16 Nov 2022 08:09:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css

rishamam.com/wp-content/plugins/elementor-theme-core/assets/css/lib/progressbar.min.css?ver=0.7.1

119.18.58.248

200 OK

748 B

URL HTTP/1.1
rishamam.com/wp-content/plugins/elementor-theme-core/assets/css/lib/progressbar.min.css?ver=0.7.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (3840)
Size
748 B (748 bytes)
Hash
d54cc089a21174ec8b670f372ef4e3fe
ce5029ca091c68dc251f75b403c8d9a8fae382be
31f9c05c3eea4026510c60a5fffd9542556b16fc948b39fb6a259d5045b24e93

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor-theme-core/assets/css/lib/progressbar.min.css?ver=0.7.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Fri, 17 Dec 2021 01:05:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 748
Content-Type: text/css

rishamam.com/wp-content/plugins/elementor-theme-core/assets/css/lib/owl.carousel.min.css?ver=2.2.1

119.18.58.248

200 OK

970 B

URL HTTP/1.1
rishamam.com/wp-content/plugins/elementor-theme-core/assets/css/lib/owl.carousel.min.css?ver=2.2.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (2846)
Size
970 B (970 bytes)
Hash
a8c30354862d988d50e72d8412bbf79f
9e92ea312df7744a472d7a7c761ebec1fb41fd9a
b5a64bd3254c26adb1d1880151dd77fe0a9711a7bfda917283949cd3e0423e28

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor-theme-core/assets/css/lib/owl.carousel.min.css?ver=2.2.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Fri, 17 Dec 2021 01:05:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 970
Content-Type: text/css

rishamam.com/wp-content/plugins/elementor-theme-core/assets/css/lib/slick.css?ver=1.8.1

119.18.58.248

200 OK

574 B

URL HTTP/1.1
rishamam.com/wp-content/plugins/elementor-theme-core/assets/css/lib/slick.css?ver=1.8.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
574 B (574 bytes)
Hash
d1b7dde065ff6f891f158ffe61853ecc
65ef28592c5233544a5bd2bb89d157a46a683040
94f83d25d75c33a3d5c6c683f84cad76fe68b0f6745d9c23c68089ba740957d6

HTTP Headers

GET /wp-content/plugins/elementor-theme-core/assets/css/lib/slick.css?ver=1.8.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:05:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 574
Content-Type: text/css

rishamam.com/wp-content/plugins/team-builder/assets/css/font-awesome/css/font-awesome.min.css?ver=6.1.1

119.18.58.248

200 OK

4.7 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/team-builder/assets/css/font-awesome/css/font-awesome.min.css?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (20604)
Size
4.7 kB (4744 bytes)
Hash
2ce093f57facfeef6f0259b8a49983c5
0fae37fc8f782d63f31de47f6293a4531cf14d95
d024ff4a950fb200f2a6c0fde1af1a1edb5abbec284c3692756108d5f3b4e9d9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/team-builder/assets/css/font-awesome/css/font-awesome.min.css?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: Apache
Last-Modified: Mon, 27 Dec 2021 19:03:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4744
Content-Type: text/css

rishamam.com/wp-content/plugins/team-builder/assets/css/bootstrap-front.css?ver=6.1.1

119.18.58.248

200 OK

1.8 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/team-builder/assets/css/bootstrap-front.css?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
1.8 kB (1805 bytes)
Hash
7594fc7a0129148ad39bbfae10ec9f8c
d1561630d0fc2017e3f5eaa64bfecc3ed0386839
240331b93ec5f9c2d19d60384536831b843b4375f4e4fdd65c780e49ca857b91

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/team-builder/assets/css/bootstrap-front.css?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: Apache
Last-Modified: Mon, 27 Dec 2021 19:03:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1805
Content-Type: text/css

rishamam.com/wp-content/plugins/team-builder/assets/css/team.css?ver=6.1.1

119.18.58.248

200 OK

1.4 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/team-builder/assets/css/team.css?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with CRLF line terminators
Size
1.4 kB (1448 bytes)
Hash
3f9bc79b24f64291212f581f812dbebc
0093da4ba87a789e90109c0a1867b4ce9e198eef
61b155809811942669fea204176365a8c9b01076501928d2eba38b53ed55b682

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/team-builder/assets/css/team.css?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: Apache
Last-Modified: Mon, 27 Dec 2021 19:03:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1448
Content-Type: text/css

rishamam.com/wp-content/plugins/team-builder/assets/css/owl.carousel.min.css?ver=6.1.1

119.18.58.248

200 OK

1.6 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/team-builder/assets/css/owl.carousel.min.css?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
1.6 kB (1588 bytes)
Hash
de8831e3847eae0ca503d50e6a29a1bd
6bff4cdb3d41329309f2865aea618ee2b53a8851
91876b10aa12529271569476b97abecb8079adbf78a41f2be3067da18069fa06

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/team-builder/assets/css/owl.carousel.min.css?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: Apache
Last-Modified: Mon, 27 Dec 2021 19:03:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1588
Content-Type: text/css

rishamam.com/wp-content/plugins/timetable/style/superfish.css?ver=6.1.1

119.18.58.248

200 OK

648 B

URL HTTP/1.1
rishamam.com/wp-content/plugins/timetable/style/superfish.css?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
648 B (648 bytes)
Hash
79d3ef44810742ab1ce10d6e0982510a
0cd79000290018727cddb4c20cc67a421807e1d5
8d33bf4644905ab2d040533fce20fe63c7b6d5e3a2da0694a6967c70e14fcd0a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/timetable/style/superfish.css?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:06:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 648
Content-Type: text/css

rishamam.com/wp-content/plugins/timetable/style/jquery.qtip.css?ver=6.1.1

119.18.58.248

200 OK

4.1 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/timetable/style/jquery.qtip.css?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
4.1 kB (4069 bytes)
Hash
dd1d440715a8745f7a09a5f81b909be4
5d364ac50a6364cf9f3a5df0c4675bfc2f692544
d30eb859b801a99cfdd41125a0d409ceefa894f780957941267d60a10e8e7000

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/timetable/style/jquery.qtip.css?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:06:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4069
Content-Type: text/css

rishamam.com/wp-content/plugins/timetable/style/style.css?ver=6.1.1

119.18.58.248

200 OK

8.0 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/timetable/style/style.css?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
assembler source, ASCII text
Size
8.0 kB (7953 bytes)
Hash
233fc017411c0bf330fcc6731da489d4
b216421c90ac98f2494fb90ef0b2420382954cb2
41a4affc247d0e18b9d86828806e43e813caa7fab89ebf4b2f1f352da3a912ed

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/timetable/style/style.css?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:06:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7953
Content-Type: text/css

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a2b5b4c97f6b2e4f745df09dcd299906
8bd87e40390a2ed33267f3392f16d19aacf5b334
59d3db6d32de7ece9e38829178ff50e362eb0a26ae10b4ddf8328bf96bb5f116

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59D3DB6D32DE7ECE9E38829178FF50E362EB0A26AE10B4DDF8328BF96BB5F116"
Last-Modified: Wed, 01 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 04 Feb 2023 07:29:08 GMT
Date: Sat, 04 Feb 2023 01:29:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19868
Expires: Sat, 04 Feb 2023 07:00:16 GMT
Date: Sat, 04 Feb 2023 01:29:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19868
Expires: Sat, 04 Feb 2023 07:00:16 GMT
Date: Sat, 04 Feb 2023 01:29:08 GMT
Connection: keep-alive

rishamam.com/wp-content/plugins/timetable/style/event_template.css?ver=6.1.1

119.18.58.248

200 OK

2.2 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/timetable/style/event_template.css?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with CRLF line terminators
Size
2.2 kB (2212 bytes)
Hash
a29b14f6e01b0147d92f18f230516a15
92ad64be7543cde7341b1888c2768d46c3d0ba1a
1ecc5b4d297972ab24cc7a1a9ce93561fd41b22c917fc95b007f91adf77ea9df

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/timetable/style/event_template.css?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:06:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2212
Content-Type: text/css

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19868
Expires: Sat, 04 Feb 2023 07:00:16 GMT
Date: Sat, 04 Feb 2023 01:29:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19868
Expires: Sat, 04 Feb 2023 07:00:16 GMT
Date: Sat, 04 Feb 2023 01:29:08 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F651be34f-d4ea-4a24-987c-b006e5f9a876.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F651be34f-d4ea-4a24-987c-b006e5f9a876.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13309 bytes)
Hash
f926cd4f39b1a10b152e5959b28ae29e
2b1982d21321071394e363888e007598e968fb35
a51b246a9aa5a2583cae7fd4f0a3bdf73f0b318b7838828d36ea5674a5f26753

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F651be34f-d4ea-4a24-987c-b006e5f9a876.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13309
x-amzn-requestid: f6a3f0f3-d91b-4f4d-8265-0f87742ba5d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyFeBFX4oAMFfpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd82bf-5808ceec265756c702d212dc;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:55:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WWjzs8W8GmSAM0-Uc8XBTxz67RJJCIzp3fBYhkoIWZ26UrobmZV8mw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:28:17 GMT
age: 10851
etag: "2b1982d21321071394e363888e007598e968fb35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

rishamam.com/wp-content/plugins/timetable/style/responsive.css?ver=6.1.1

119.18.58.248

200 OK

1.9 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/timetable/style/responsive.css?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with CRLF line terminators
Size
1.9 kB (1886 bytes)
Hash
398c27998f924a12444e85f8299f720e
34ac68df03d4450f93eade713d7fa58c855e6feb
a3ca9d5dbc5f3563a08ef5cf96c1a6b5695962d7c4fb129d8e1f728961721607

HTTP Headers

GET /wp-content/plugins/timetable/style/responsive.css?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:06:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1886
Content-Type: text/css

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9349 bytes)
Hash
4b5c35cdff2fb0758db780212b0b1f77
edbb557a3bf57128467335685aebbd4831d802f8
e0fa59843073ba8bd171c66610bc1b3d59a1a94c4991e6023507b9453ca0edba

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9349
x-amzn-requestid: ecd1913d-7dbe-4ffd-ba85-0549aab51a06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyayOGPlIAMFQ7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dda4da-6a9b8d146155fa8b6c1c02d6;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 00:20:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jGBEz2d-SXXPBZhwlJgR4w248y-NY2c-18euLre5PULjWUIfhfUmNQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 00:20:43 GMT
etag: "edbb557a3bf57128467335685aebbd4831d802f8"
content-type: image/jpeg
age: 4105
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8527 bytes)
Hash
6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3FyboAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:33 GMT
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
age: 11915
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7101 bytes)
Hash
41580a501cc07c328e6ab6b167a110dc
a4dfa0f479b5f9a036b75b2eea6dffabd3a3486e
0fa45161e563101b3f1293f951a3edf84c88c9f3b29bed9b54f952ca325bf21d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7101
x-amzn-requestid: 479d8004-430a-45b9-99fa-11cbcc605a7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EHxqoAMFaug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-25ac3c54427748bc191fd1ba;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6h25M_XSVuTCF-9FkTtwujV0X-0-M9fvw4ouOBFmSnMWeApCSHmBsA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:13:30 GMT
age: 11738
etag: "a4dfa0f479b5f9a036b75b2eea6dffabd3a3486e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14071 bytes)
Hash
9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:05 GMT
age: 13263
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10253 bytes)
Hash
392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:32 GMT
age: 11916
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

rishamam.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.0.1

119.18.58.248

200 OK

3.1 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.0.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (17822), with no line terminators
Size
3.1 kB (3109 bytes)
Hash
f27a9ef898a7e207022d349709f9ee53
11da41b11be009ce706bad1afbf8078d9777e6a6
7f68cd281ae8dd425cbda6cfc1c464911c97ef67a7728323863909d32bd4cd7a

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.0.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 19:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3109
Content-Type: text/css

rishamam.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.3

119.18.58.248

409 Conflict

83 B

URL HTTP/1.1
rishamam.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.3
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.3 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 409 Conflict
Date: Sat, 04 Feb 2023 01:29:07 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

demo.cmssuperheroes.com/themeforest/kindori/wp-content/themes/kindori/assets/images/image-404.png

34.91.95.185

200 OK

92 kB

URL HTTP/2
demo.cmssuperheroes.com/themeforest/kindori/wp-content/themes/kindori/assets/images/image-404.png
IP
34.91.95.185:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 585 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size
92 kB (92452 bytes)
Hash
382562baf7a4050945d4da465c085af4
510a48ac562d60ef2c7323091b8c678e658689ca
74c28a5a3ff5f5ba9d529010203861fece729056910b398e36af0e28c3e48193

HTTP Headers

GET /themeforest/kindori/wp-content/themes/kindori/assets/images/image-404.png HTTP/1.1
Host: demo.cmssuperheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rishamam.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 01:29:08 GMT
content-type: image/png
content-length: 92452
last-modified: Fri, 11 Feb 2022 03:52:32 GMT
etag: "6205dd80-16924"
expires: Sat, 03 Feb 2024 20:57:52 GMT
cache-control: max-age=31536000
x-cdn-c: all
x-sg-cdn: 1
x-proxy-cache: HIT
host-header: 8441280b0c35cbc1147f8ba998a563a7
accept-ranges: bytes
X-Firefox-Spdy: h2

rishamam.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.0.1

119.18.58.248

200 OK

13 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.0.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (62733), with no line terminators
Size
13 kB (13266 bytes)
Hash
c5c7ff574df6b62d0f01c746737287a4
a08ebdffb67b78db6b8c25e42a0df499f570efe4
05c2f1ac1fbff2c67233f2af11281e87c22e03bd082f8e192517240832ec363c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.0.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 19:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13266
Content-Type: text/css

rishamam.com/wp-content/themes/kindori/assets/css/bootstrap.min.css?ver=4.0.0

119.18.58.248

200 OK

30 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/css/bootstrap.min.css?ver=4.0.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (65313), with CRLF line terminators
Size
30 kB (29543 bytes)
Hash
807643d78b34d72e38ee89432e1b90f1
758b63d3eb1f10afcec6907bd8b52fab70b7db9c
ff020c6122ab6522b8f86c97ffdaa94b375888b5b68f82a3baeedacb13bb4e5c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/kindori/assets/css/bootstrap.min.css?ver=4.0.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css

rishamam.com/wp-content/themes/kindori/assets/css/awesome.min.css?ver=4.7.0

119.18.58.248

200 OK

7.1 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/css/awesome.min.css?ver=4.7.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (30837), with CRLF line terminators
Size
7.1 kB (7115 bytes)
Hash
a2fa80ff3234b284083314bd3f9ef6cd
4f4711077932bf001f5283f0892c6092cb6fe981
2becc0542cf63a23969ed93998ff8387f56a3f90b281059ab403a12960db5596

HTTP Headers

GET /wp-content/themes/kindori/assets/css/awesome.min.css?ver=4.7.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7115
Content-Type: text/css

rishamam.com/wp-content/themes/kindori/assets/css/flaticon.css?ver=2.2.1

119.18.58.248

200 OK

600 B

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/css/flaticon.css?ver=2.2.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
600 B (600 bytes)
Hash
885aa47d82fcb8887caa57360fa5c9cb
23e95dac02ab1c6bb02fabd9cdbe45d59e65866b
886555e47cfae928fcc2ea9e2415c71b58269d6dd609d03b083632d4f7f482c6

HTTP Headers

GET /wp-content/themes/kindori/assets/css/flaticon.css?ver=2.2.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 600
Content-Type: text/css

rishamam.com/wp-content/themes/kindori/assets/css/material-design-iconic-font.min.css?ver=2.2.0

119.18.58.248

200 OK

13 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/css/material-design-iconic-font.min.css?ver=2.2.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
13 kB (12914 bytes)
Hash
5f8f980aaea728ab0829e0939d37dc0f
6e726ded257ce8f35f770f7d12c805c3b27bc007
8f367052b6e6659fd6889db2eaa65613a6d28b77f8c10caf84957f8f567f2b0c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/kindori/assets/css/material-design-iconic-font.min.css?ver=2.2.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12914
Content-Type: text/css

rishamam.com/wp-content/themes/kindori/assets/css/magnific-popup.css?ver=1.0.0

119.18.58.248

200 OK

2.1 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/css/magnific-popup.css?ver=1.0.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with CRLF line terminators
Size
2.1 kB (2130 bytes)
Hash
ed1bb732be01a221e796e6c682c75857
ed019d858239e495b1cff488d9412319446c4835
44206b63a7a5d68d7e86598102da315c4b2120f6d66988ea3bbdb736e1a0577d

HTTP Headers

GET /wp-content/themes/kindori/assets/css/magnific-popup.css?ver=1.0.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2130
Content-Type: text/css

rishamam.com/wp-content/themes/kindori/assets/css/awesome5.min.css?ver=5.8.0

119.18.58.248

200 OK

16 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/css/awesome5.min.css?ver=5.8.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (65406)
Size
16 kB (16389 bytes)
Hash
a201de9a5b83e8c06f67363b5f16b918
c9984a5decffc6d06b1dee4562d479eadc976ce7
f78d77286a276bf555ed8ac9fb1f0357c3203c97917ca814ae5bea4643e3ad61

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/kindori/assets/css/awesome5.min.css?ver=5.8.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16389
Content-Type: text/css

rishamam.com/wp-content/themes/kindori/style.css?ver=6.1.1

119.18.58.248

200 OK

445 B

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/style.css?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (390), with CRLF line terminators
Size
445 B (445 bytes)
Hash
cc1e6457541963edfbd8105973f6916b
df9f6752ff2a9e2706517dade51db79c2f0cb8bc
b2afc536a7e9f5d5484110578eb2e5d68b84af3c492de3597f280e38e157d8e3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/kindori/style.css?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Tue, 25 May 2021 09:34:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 445
Content-Type: text/css

rishamam.com/wp-content/themes/kindori/assets/css/flaticon3.css?ver=2.2.3

119.18.58.248

200 OK

553 B

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/css/flaticon3.css?ver=2.2.3
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
553 B (553 bytes)
Hash
1218b6136056b9c062e33ee9b9b91cfd
b13a6af6e602fb55d8fc92a1ada6188f04769f02
8eabad1f745e86c8c9a9521528048527c1a3668ca0aa931641288289207b2a55

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/kindori/assets/css/flaticon3.css?ver=2.2.3 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 553
Content-Type: text/css

rishamam.com/wp-content/plugins/newsletter/style.css?ver=7.3.4

119.18.58.248

200 OK

1.8 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/newsletter/style.css?ver=7.3.4
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
1.8 kB (1845 bytes)
Hash
719b310d17acd4a4989c5ab1b490da4b
0bfc129ac7bf7c9ff5035e38b5bc99c94b6cb0f2
c8dcf7ccfdadd83e1bc4f0665c45229fd4ea9dedb28ea909416d422b3ccbaffc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/newsletter/style.css?ver=7.3.4 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:05:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1845
Content-Type: text/css

rishamam.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

119.18.58.248

200 OK

39 kB

URL HTTP/1.1
rishamam.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (65447)
Size
39 kB (39153 bytes)
Hash
32f58a61f7c5a7e10f8b2dcf8e9a8e34
865c25589283ab1debd45bdfa6c4d8c6ecf15ad3
481cb2216fbdb0797af8c61b69c0bda2c10d025f7b11f2cdfac382d35dc45d63

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 07:54:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript

rishamam.com/wp-content/plugins/elementor-theme-core/assets/js/lib/jquery.serializejson.js?ver=3.2.1

119.18.58.248

200 OK

5.4 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/elementor-theme-core/assets/js/lib/jquery.serializejson.js?ver=3.2.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
5.4 kB (5431 bytes)
Hash
11ea7e75f8b2214a62dec4dc766c584d
16f2b8ee69e430be2a366883e41a1ccb60eb0fd0
06aa3856ad2e3c2ef87544f4027ab81c31a58cf05e051ef5adc9fb3e034ccfc4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor-theme-core/assets/js/lib/jquery.serializejson.js?ver=3.2.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:05:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5431
Content-Type: application/javascript

rishamam.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

119.18.58.248

200 OK

4.6 kB

URL HTTP/1.1
rishamam.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (11126)
Size
4.6 kB (4618 bytes)
Hash
acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 14:36:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Content-Type: application/javascript

rishamam.com/wp-content/plugins/elementor-theme-core/assets/js/main.js?ver=1.0.0

119.18.58.248

200 OK

197 B

URL HTTP/1.1
rishamam.com/wp-content/plugins/elementor-theme-core/assets/js/main.js?ver=1.0.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
197 B (197 bytes)
Hash
7f7604818956df65fca4bab9df967903
2b4c1fa0cd8a52ad4813ef2bca38a548defc3f53
34aa15c8f3a244a892e3dc29d4034d543c36403f3658793d311444bb37ff478f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor-theme-core/assets/js/main.js?ver=1.0.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:05:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 197
Content-Type: application/javascript

rishamam.com/wp-content/plugins/team-builder/assets/js/owl.carousel.min.js?ver=6.1.1

119.18.58.248

200 OK

20 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/team-builder/assets/js/owl.carousel.min.js?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
20 kB (20139 bytes)
Hash
99bdda3086e0b4f9baec591c73b8f9a4
1694135b50d419822461d99ff9e193ec9fdcf17f
7b23c63fe9a5470f081588e621f1c71eb10a57c851da17f5e7426f66e2450517

HTTP Headers

GET /wp-content/plugins/team-builder/assets/js/owl.carousel.min.js?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Mon, 27 Dec 2021 19:03:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript

rishamam.com/wp-content/themes/kindori/assets/js/elementor-custom-classes.js?ver=1.0.0

119.18.58.248

200 OK

288 B

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/js/elementor-custom-classes.js?ver=1.0.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
288 B (288 bytes)
Hash
9f1142d49f10f516b1bff823f426a0af
d879252f24a9981c770a36695a864ef8d256e0bc
02407abeb49dd48ead2c7eb2518fc3b974fdd28d4101838e3472bc50fdcb069d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/kindori/assets/js/elementor-custom-classes.js?ver=1.0.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 288
Content-Type: application/javascript

rishamam.com/wp-content/themes/kindori/assets/css/theme.css?ver=1.1

119.18.58.248

200 OK

113 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/css/theme.css?ver=1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (946), with CRLF line terminators
Size
113 kB (112579 bytes)
Hash
bee1edbc939c0d8d430a92d63d154468
8f8d6cf0cf3a0696561d7d73ba6add20acd169bd
a87ad852e8255fe6802a5146439162be0a9c7fa3127cb8c9705371186e2be37f

HTTP Headers

GET /wp-content/themes/kindori/assets/css/theme.css?ver=1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:08 GMT
Server: Apache
Last-Modified: Sat, 04 Feb 2023 01:29:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css

rishamam.com/wp-content/plugins/wp-call-button/assets/block/build/index.css?ver=a1dbfd3fcfcfb0740ca8c4771bbdc4c3

119.18.58.248

200 OK

334 B

URL HTTP/1.1
rishamam.com/wp-content/plugins/wp-call-button/assets/block/build/index.css?ver=a1dbfd3fcfcfb0740ca8c4771bbdc4c3
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (769)
Size
334 B (334 bytes)
Hash
9f52a0fb1282ec0a8855406a3699fe6c
7c934b6a2e86a11db889c1a184a75c33e2659556
370b6ecbd9cedb466ff0029fa291f3030078b75a3d5e3851840c3b3c043c5976

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/wp-call-button/assets/block/build/index.css?ver=a1dbfd3fcfcfb0740ca8c4771bbdc4c3 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Wed, 26 Jan 2022 18:29:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 334
Content-Type: text/css

rishamam.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.3.3

119.18.58.248

200 OK

1.7 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.3.3
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (5305), with no line terminators
Size
1.7 kB (1723 bytes)
Hash
0332c949167f256eaeb32063c28950ae
55d38da2c11e1b193de19a9fa3a6a275a4accdfe
1c1dcbb08352422a98b8dd9632753b904e9040eea0a538dc2d169935e7fa5fb3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.3.3 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 19:39:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1723
Content-Type: text/css

rishamam.com/wp-includes/css/classic-themes.min.css?ver=1

119.18.58.248

200 OK

189 B

URL HTTP/1.1
rishamam.com/wp-includes/css/classic-themes.min.css?ver=1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
189 B (189 bytes)
Hash
5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 07:54:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 189
Content-Type: text/css

rishamam.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.9

119.18.58.248

200 OK

16 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.9
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (12602)
Size
16 kB (16395 bytes)
Hash
0037a4f54e08da3820effdb14e066c05
e6380be62a9beb312465b7440f3d7483bf2b42ee
049f49bae85c6647acf82b2390d121d8c0e212d0a6dc53ac8dff5dde31eb26da

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.9 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:06:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16395
Content-Type: text/css

rishamam.com/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.8

119.18.58.248

200 OK

2.1 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.8
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (5441), with no line terminators
Size
2.1 kB (2092 bytes)
Hash
d4cd62433e2359c22de2d8bc27de53f3
3bb4c16345ea148be8944a59e3d526681a5cbd1d
d2ba5147059e7ad228a3d12eccc0301a8235aabe4613cac09a0d23c55141d70c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.8 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Wed, 26 Jan 2022 18:19:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2092
Content-Type: application/javascript

rishamam.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

119.18.58.248

200 OK

2.7 kB

URL HTTP/1.1
rishamam.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (6475), with no line terminators
Size
2.7 kB (2675 bytes)
Hash
45bd1d6f7fc3a4069fc6fd400b90c961
903c7e28c7141e9fc1bdb4dfc62d043a97a01e2d
c638a0057b4be0a61cfb65b1860a855a327397e9871f5dde28fa2f138fb394dc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 01:56:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2675
Content-Type: application/javascript

rishamam.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

119.18.58.248

200 OK

7.6 kB

URL HTTP/1.1
rishamam.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Size
7.6 kB (7621 bytes)
Hash
66c68f2158dcf7d97a02f3719a17aab0
fdb04fb4c632b9fb4275006a4e402cd0d4fa393a
e4b360f0e6ae1afc06f05f958e8696e5ae45257912bc2ab0b9334bd1382a51aa

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 07:54:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7621
Content-Type: application/javascript

rishamam.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.3.3

119.18.58.248

200 OK

40 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.3.3
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size
40 kB (39473 bytes)
Hash
9b67988a7d2552bee86565ee282c9113
496b4270baf6065879d7efcd995a69acdc0e4049
b61c40828a2c19501b52360ce7169d748beccfb06bb1ced76d7e7541c761a21d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.3.3 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 19:39:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css

rishamam.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3

119.18.58.248

409 Conflict

83 B

URL HTTP/1.1
rishamam.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 409 Conflict
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KYNod.woff2

216.58.207.227

200 OK

18 kB

URL HTTP/1.1
fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KYNod.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17640, version 1.0\012- data
Size
18 kB (17640 bytes)
Hash
450efa33fd7d38461701d7f0a37fbe2f
aae243f636749420fd77c0cf3aa9b683b47ed3e2
b7be1a25fcda009175b0f140bbd7ed9afdb5798d0c93717b44c62ddc19aef582

HTTP Headers

GET /s/prompt/v10/-W__XJnvUD7dzB2KYNod.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rishamam.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17640
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 29 Jan 2023 22:03:40 GMT
Expires: Mon, 29 Jan 2024 22:03:40 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 15:46:13 GMT
Content-Type: font/woff2
Age: 444329

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

rishamam.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.9

119.18.58.248

200 OK

57 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.9
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (42889)
Size
57 kB (57134 bytes)
Hash
1a93a307454b3062f911dfb85b33aa19
05d8ce1b51543c540820e8acb0b2b333f911af27
71ec56f1877ef70e9cf76b12c68eb772ce8cda5648b24602c9861ecc4b51c521

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.9 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:06:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/fredokaone/v13/k3kUo8kEI-tA1RRcTZGmTlHGCac.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/fredokaone/v13/k3kUo8kEI-tA1RRcTZGmTlHGCac.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15596, version 1.0\012- data
Size
16 kB (15596 bytes)
Hash
72bb194f7e275c92ecf5536060952844
a7419d2e8b92cbc5f89c3c03771f45c4f632964c
e9986c62b19bce3791c4c103a4aa87c91d22d9e1c9f252f7f802ea26d3405769

HTTP Headers

GET /s/fredokaone/v13/k3kUo8kEI-tA1RRcTZGmTlHGCac.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rishamam.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:03 GMT
expires: Mon, 29 Jan 2024 22:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:51:58 GMT
content-type: font/woff2
age: 444426
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

rishamam.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

119.18.58.248

200 OK

8.3 kB

URL HTTP/1.1
rishamam.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
8.3 kB (8344 bytes)
Hash
838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 07:54:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8344
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C2_8IaWMu.woff2

216.58.207.227

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C2_8IaWMu.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17960, version 1.0\012- data
Size
18 kB (17960 bytes)
Hash
2c5face834f241354099d05fe63a8cca
2df467a4438a6961ea8118ed1486b5fb172908ce
e4208432ab62e4e5a5e5901bbc6db5ca3119001facc45108f137e9c5b5370352

HTTP Headers

GET /s/prompt/v10/-W_8XJnvUD7dzB2C2_8IaWMu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rishamam.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 21:11:03 GMT
expires: Wed, 31 Jan 2024 21:11:03 GMT
cache-control: public, max-age=31536000
age: 274686
last-modified: Wed, 27 Apr 2022 15:47:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KYNod.woff2

216.58.207.227

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KYNod.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17640, version 1.0\012- data
Size
18 kB (17640 bytes)
Hash
450efa33fd7d38461701d7f0a37fbe2f
aae243f636749420fd77c0cf3aa9b683b47ed3e2
b7be1a25fcda009175b0f140bbd7ed9afdb5798d0c93717b44c62ddc19aef582

HTTP Headers

GET /s/prompt/v10/-W__XJnvUD7dzB2KYNod.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rishamam.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17640
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 01:09:02 GMT
expires: Fri, 02 Feb 2024 01:09:02 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:46:13 GMT
content-type: font/woff2
age: 174007
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

rishamam.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2

119.18.58.248

200 OK

4.8 kB

URL HTTP/1.1
rishamam.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (11760)
Size
4.8 kB (4757 bytes)
Hash
06401577a89308edc33538a5f7508ec2
20269cbcf05f719cb5188b6c33b8039e2bd75613
33a958aae57665e9558d1266012d646ed8c513c32370a821e58fb45b57167af6

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 07:54:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4757
Content-Type: application/javascript

rishamam.com/wp-content/plugins/timetable/js/jquery.qtip.min.js?ver=6.1.1

119.18.58.248

200 OK

20 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/timetable/js/jquery.qtip.min.js?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (32049)
Size
20 kB (19903 bytes)
Hash
e9b130450371aa13312331eb7be5b699
834a3cc6ab71486930181865acd1f0ba3d592543
f227e5a2172ea359874497886876853c14e34cbe376cabcf277c21f58728e09c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/timetable/js/jquery.qtip.min.js?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:06:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript

rishamam.com/wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=6.1.1

119.18.58.248

200 OK

16 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (35720)
Size
16 kB (16331 bytes)
Hash
0b808de0324d22f6710d59f299d7d512
9fd5f6115b9a28300b989921e8fd7c45a945ae8b
5ab22c861c7eda5c0fb622573f50ff6dc9bd103a1a4652ba3979052468225df1

HTTP Headers

GET /wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:06:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16331
Content-Type: application/javascript

rishamam.com/wp-content/plugins/timetable/js/timetable.js?ver=6.1.1

119.18.58.248

200 OK

7.3 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/timetable/js/timetable.js?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (353)
Size
7.3 kB (7316 bytes)
Hash
6b4ad082a482a1d6fa04c757927baab8
c4c502c5dc05435cf219a31fad2e14d03be7b8cc
78447e2d24b3198bb7b6ff33d223ea1ef10e983ada0e4b810004c4c156b6e255

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/timetable/js/timetable.js?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:06:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7316
Content-Type: application/javascript

rishamam.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.9

119.18.58.248

200 OK

132 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.9
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (64288)
Size
132 kB (131909 bytes)
Hash
b25a74e4f3eaebf6c2d5b1a03bdd91aa
ebab70dec9c78a4b514434a5880ec513cb1c1936
c1ca03d05469d52fdd385bf8779c950bb420426c9f1783a96e5eb318d8578174

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.9 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:06:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript

rishamam.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.0.1

119.18.58.248

200 OK

4.0 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.0.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (9139)
Size
4.0 kB (3957 bytes)
Hash
5f3c95f97f566ce33b859d6b874d116d
e47be9178d33d8d8eefda83c853b560aaed71413
a0cea478b83a24f0c90bfaf776ed62fe8747395838a92d8c9f06ceb79b3e5918

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.0.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 19:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3957
Content-Type: application/javascript

rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.0.1

119.18.58.248

200 OK

1.2 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.0.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with very long lines (3037), with no line terminators
Size
1.2 kB (1200 bytes)
Hash
57b5945094a547e06221f8f949e6d335
76fc7361f00684ea29ffbf4b7d46e5429b8c245a
f9d0da987075df31cc4cf8aed46bc193467ce7165568d83c8016e6fe904e72c3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.0.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 19:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1200
Content-Type: application/javascript

rishamam.com/wp-content/plugins/timetable/js/jquery.ba-bbq.min.js?ver=6.1.1

119.18.58.248

200 OK

2.6 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/timetable/js/jquery.ba-bbq.min.js?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (2697)
Size
2.6 kB (2613 bytes)
Hash
a06d219e3ba9f2798222f9c4601b7caf
4b4cdc838b0e1475c56d10f57aab0839831447bb
e54ac6c105344af73ce00548e19b7d030d0a6c260061c37fdd7ef2c1b0d381ea

HTTP Headers

GET /wp-content/plugins/timetable/js/jquery.ba-bbq.min.js?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Fri, 17 Dec 2021 01:06:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2613
Content-Type: application/javascript

rishamam.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.0.1

119.18.58.248

200 OK

1.0 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.0.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (1668)
Size
1.0 kB (1000 bytes)
Hash
0bebfb5722cbc8ac04e62aa40698be49
3bc5e4f29cb19a2d80d46dee242dabf7e42c0fd3
70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.0.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 19:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1000
Content-Type: application/javascript

rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.0.1

119.18.58.248

200 OK

792 B

URL HTTP/1.1
rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.0.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (2139), with no line terminators
Size
792 B (792 bytes)
Hash
1ca3f41c13e0027acc45f0601f8b640f
cced34af0c6a59e9cee4229faa66ab39c7031506
d3bc5eaf4c6be9473dbba690825cce9a1a6f4accb6721dae7875efef54942f41

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.0.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 19:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 792
Content-Type: application/javascript

rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.0.1

119.18.58.248

200 OK

1.1 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.0.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (2938), with no line terminators
Size
1.1 kB (1093 bytes)
Hash
769e9d3f7fc383ec1a02024e39730474
4f5a5edf28ed19b48c5e40747ec6896f0df8f09e
4636689d57889e984a7a1a1c6e2516b7a2d951407ca826aaf505c50002e2b486

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.0.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 19:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1093
Content-Type: application/javascript

rishamam.com/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.6.0.1

119.18.58.248

200 OK

764 B

URL HTTP/1.1
rishamam.com/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.6.0.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (1241)
Size
764 B (764 bytes)
Hash
df49f7626b17e5a7d5755a5d5df0e8b4
3c78d1227c341d1c019aff945bea41c045e1781f
668a644b354b953121d4114a3fd64fd7b7eb3333288513b64b3b3d766af5f236

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.6.0.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 19:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 764
Content-Type: application/javascript

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
451fb429f386d7a039d0cea4fc7b8b19
05088e76a45ef9cceb0e70d5e206d235878c2350
d658a05ab43fc7bc9950dce24771c9c99a3fe9a0a666e984a3b5400e0a0c3cb7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D658A05AB43FC7BC9950DCE24771C9C99A3FE9A0A666E984A3B5400E0A0C3CB7"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21558
Expires: Sat, 04 Feb 2023 07:28:28 GMT
Date: Sat, 04 Feb 2023 01:29:10 GMT
Connection: keep-alive

rishamam.com/wp-content/themes/kindori/assets/js/nice-select.min.js?ver=all

119.18.58.248

200 OK

1.1 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/js/nice-select.min.js?ver=all
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (2828), with CRLF line terminators
Size
1.1 kB (1084 bytes)
Hash
f68d338e1f4478ff2b710fd68bd447eb
00cb6c66a7a3cfbf399c63fc3afae5642ebbc209
97f659feb8450ea5f5d6412e1ed667bdbba24e47c3a31889853c58c7470b0e4e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/kindori/assets/js/nice-select.min.js?ver=all HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:09 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1084
Content-Type: application/javascript

rishamam.com/wp-content/themes/kindori/assets/js/enscroll.js?ver=all

119.18.58.248

200 OK

6.7 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/js/enscroll.js?ver=all
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (17885), with CRLF line terminators
Size
6.7 kB (6702 bytes)
Hash
2a92c21a18ebf70449ca05288dd63249
e72fa4004ae2a858b99c4c174e826e2435c2f7a7
bf74d16e135a683654c7ded61c17dcb7848426cb07e59bc35ed68731208a57ba

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/kindori/assets/js/enscroll.js?ver=all HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6702
Content-Type: application/javascript

rishamam.com/wp-content/themes/kindori/assets/js/sidebar-scroll-fixed.js?ver=1.0.0

119.18.58.248

200 OK

1.7 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/js/sidebar-scroll-fixed.js?ver=1.0.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with very long lines (493), with CRLF line terminators
Size
1.7 kB (1723 bytes)
Hash
97c790cf616be9db2f8cad29915c1631
f5275c16746bced72a4f1f275a952a004f39a5cc
2161ea54363b0ff19e7728ab93f673576296d05094b3ef31c65bd4c53696171f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/kindori/assets/js/sidebar-scroll-fixed.js?ver=1.0.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1723
Content-Type: application/javascript

rishamam.com/wp-content/themes/kindori/assets/js/match-height-min.js?ver=1.0.0

119.18.58.248

200 OK

1.3 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/js/match-height-min.js?ver=1.0.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (531), with CRLF line terminators
Size
1.3 kB (1312 bytes)
Hash
173ec963b0e10eeff59c89bf8d088317
5fb3059ab2675a0280bdb0363247be0f817997e3
dbad520c6a17d5181a77d989aff3bd6d563fdfa19b0f9f9c0aa81678827ce5a3

HTTP Headers

GET /wp-content/themes/kindori/assets/js/match-height-min.js?ver=1.0.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1312
Content-Type: application/javascript

rishamam.com/wp-content/themes/kindori/assets/js/magnific-popup.min.js?ver=1.0.0

119.18.58.248

200 OK

18 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/js/magnific-popup.min.js?ver=1.0.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
18 kB (18417 bytes)
Hash
5f5b20a264fc80ad556d949f961ea991
2804e04af187c72b11d6b985ab848e9914a4e876
caedaa1d4d02fcf633cb01c03cc43cd602eb59a0f1b79c3d9753710b2524eb92

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/kindori/assets/js/magnific-popup.min.js?ver=1.0.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript

rishamam.com/wp-content/themes/kindori/assets/js/wow.min.js?ver=1.0.0

119.18.58.248

200 OK

3.6 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/js/wow.min.js?ver=1.0.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (8099)
Size
3.6 kB (3557 bytes)
Hash
d1676fbf434d34158e0cbf711154ab1a
261ce505a6de3c2d9cb1a7d6a3fefac0a1d68d1f
48f2d6e355f85da52da0d6e99755af808b4ba5e63b12545ce43982835d9864ca

HTTP Headers

GET /wp-content/themes/kindori/assets/js/wow.min.js?ver=1.0.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3557
Content-Type: application/javascript

rishamam.com/wp-content/themes/kindori/assets/js/main.js?ver=1.1

119.18.58.248

200 OK

4.4 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/js/main.js?ver=1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with CRLF line terminators
Size
4.4 kB (4416 bytes)
Hash
60c4a392825a03b68f4e010d05e5b8d1
4189fc7632278c698aba97c27eba4f0357af7f1c
ce44d302f5606416d237153eee569d6dc9452572ae4d45ce658327aed2a1e1b3

HTTP Headers

GET /wp-content/themes/kindori/assets/js/main.js?ver=1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Last-Modified: Tue, 02 Mar 2021 07:43:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4416
Content-Type: application/javascript

rishamam.com/wp-content/themes/kindori/woocommerce/woocommerce.js?ver=1.1

119.18.58.248

200 OK

530 B

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/woocommerce/woocommerce.js?ver=1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with CRLF line terminators
Size
530 B (530 bytes)
Hash
a0da61771dc8da335bc77dd8a57d16ba
d9889fd5317941e9ca076d55c16ce762bdd256c3
380a59c36bc3e0400230928c8fedbea237f970f53a4a42aa79ba518be9b7275f

HTTP Headers

GET /wp-content/themes/kindori/woocommerce/woocommerce.js?ver=1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 530
Content-Type: application/javascript

rishamam.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6

119.18.58.248

200 OK

10 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Unicode text, UTF-8 text, with very long lines (24733), with no line terminators
Size
10 kB (10524 bytes)
Hash
045b2e4fb439a7260bec75f77134c189
47fa8f88be8a3501305369697b2934a89adb8e2a
4d53dcbb6f07ecbe0f9a8f3ed9ce769665f3551c3c63c3ad64fa24c733c7fda3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Last-Modified: Sat, 25 Dec 2021 09:08:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10524
Content-Type: application/javascript

rishamam.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

119.18.58.248

200 OK

5.3 kB

URL HTTP/1.1
rishamam.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (15660)
Size
5.3 kB (5321 bytes)
Hash
710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 01:56:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5321
Content-Type: application/javascript

rishamam.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3

119.18.58.248

409 Conflict

83 B

URL HTTP/1.1
rishamam.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 409 Conflict
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

rishamam.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.0.1

119.18.58.248

200 OK

1.3 kB

URL HTTP/1.1
rishamam.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.0.1
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (7043), with no line terminators
Size
1.3 kB (1294 bytes)
Hash
23030da399d26bb36e2effda3c58d488
2480e4b14c65a29b6013515cea8a55a6646aa85a
026d41f0bbec9c4116e05c06d43d3bbae4e9ec0975f84140565760431eaa88d7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.0.1 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 19:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1294
Content-Type: text/css

rishamam.com/wp-content/themes/kindori/assets/fonts/Material-Design-Iconic-Font.woff2?v=2.2.0

119.18.58.248

200 OK

38 kB

URL HTTP/1.1
rishamam.com/wp-content/themes/kindori/assets/fonts/Material-Design-Iconic-Font.woff2?v=2.2.0
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Web Open Font Format (Version 2), TrueType, length 38384, version 1.0\012- data
Size
38 kB (38384 bytes)
Hash
a4d31128b633bc0b1cc1f18a34fb3851
6ee4c79372c3fd679706306ede47e4b03cf53d60
e8eea96e29a7c0a72612ab85ca3229979666467a28349642c2176e7189a1a39c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/kindori/assets/fonts/Material-Design-Iconic-Font.woff2?v=2.2.0 HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://rishamam.com/wp-content/themes/kindori/assets/css/material-design-iconic-font.min.css?ver=2.2.0

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Last-Modified: Mon, 14 Sep 2020 20:49:00 GMT
Accept-Ranges: bytes
Content-Length: 38384
Content-Type: font/woff2

rishamam.com/wp-content/uploads/2020/08/bg-404.jpg

119.18.58.248

200 OK

576 kB

URL HTTP/2
rishamam.com/wp-content/uploads/2020/08/bg-404.jpg
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1200, components 3\012- data
Size
576 kB (576403 bytes)
Hash
8cea4a6093869778bc4d70c97f7084d9
8712a51bb5461a797687d18c30b6f01641a1a87a
cbaada6f8be2607282c9f3ebd97087c327799b92fcdf9d65752787f9ec025176

HTTP Headers

GET /wp-content/uploads/2020/08/bg-404.jpg HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rishamam.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Fri, 17 Dec 2021 01:10:10 GMT
accept-ranges: bytes
content-length: 576403
content-type: image/jpeg
date: Sat, 04 Feb 2023 01:29:10 GMT
server: Apache
X-Firefox-Spdy: h2

rishamam.com/wp-content/uploads/2020/07/favicon.png

119.18.58.248

200 OK

11 kB

URL HTTP/2
rishamam.com/wp-content/uploads/2020/07/favicon.png
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 137 x 137, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10945 bytes)
Hash
0ad301a2fc74d10962ffb241194e2e63
b92d9edcd1cf77a64496a4d46ccdd3c7deea9452
9e778215a1994eab7f3492a218ee160d9e1c102893a42eff8171958e906c19f7

HTTP Headers

GET /wp-content/uploads/2020/07/favicon.png HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rishamam.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 17 Dec 2021 01:10:10 GMT
accept-ranges: bytes
content-length: 10945
content-type: image/png
date: Sat, 04 Feb 2023 01:29:11 GMT
server: Apache
X-Firefox-Spdy: h2

rishamam.com/?wc-ajax=get_refreshed_fragments

119.18.58.248

200 OK

2.4 kB

URL HTTP/1.1
rishamam.com/?wc-ajax=get_refreshed_fragments
IP
119.18.58.248:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document, ASCII text, with very long lines (15252)
Size
2.4 kB (2364 bytes)
Hash
c30b6b8659571692f9fcc4618e38c1ad
b8bb2eb97ee80eadeeb4684565cfdcfd173781ec
34f538255fa70b7555bbc189f0770d5a4d868ac1f5d51c6b8c1029baf4a61993

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: rishamam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://rishamam.com
Connection: keep-alive
Referer: http://rishamam.com/wp-includes/css/BDO/sso/login.php

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:29:10 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2364
Content-Type: text/html; charset=UTF-8

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9500 bytes)
Hash
3ac51fd6789cbe19c2d484c9022b0e39
bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9
300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9500
x-amzn-requestid: 8fe94388-e8d9-4329-b73a-e9a356df76bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9QEA1IAMF3Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8054-51f954ac4bec16d1055e38f5;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FkTJ6wQ4eFYBPDyS0l5vLeWvHHiQIx-cYyFzT4ggHJ8M5Gg3dozFxQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:30:36 GMT
age: 10719
etag: "bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (49)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML