Report - terrazzomiami.com/office/mn/mafn.exe

Report Overview

Submitted URL
terrazzomiami.com/office/mn/mafn.exe
IP
192.185.112.43
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-11-04 09:20:11
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
66

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	1.7 kB	3.5 kB	142.250.74.35
theme.winnertheme.com	unknown			423 B	28 kB	172.67.163.80
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	1.7 kB	3.6 kB	93.184.220.29
terrazzomiami.com	unknown			367 B	486 B	192.185.112.43
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	35.161.231.36
www.terrazzomiami.com	unknown			26 kB	449 kB	192.185.112.43
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	1.0 kB	28 kB	216.58.207.195
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	53 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.4 kB	6.2 kB	23.36.76.226
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	1.4 kB	1.5 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-04	medium	terrazzomiami.com/office/mn/mafn.exe	Malware
2022-11-04	medium	www.terrazzomiami.com/office/mn/mafn.exe	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/themes/cholot/css/preloader.css?ver=1	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/themes/cholot/css/slicknav.css?ver=1	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/themes/cholot/css/magic.css?ver=1	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/themes/cholot/css/slick.css?ver=1	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/themes/cholot/css/magnific-popup.css?ver=1	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/uploads/elementor/css/post-910.css?ver=1662389083	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.sticky.js?ver=6.0.3	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick.min.js	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.fitvids.js?ver=6.0.3	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-includes/js/wp-util.min.js?ver=6.0.3	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.6	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/themes/cholot/js/bootstrap.min.js?ver=6.0.3	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick-animation.js	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/themes/cholot/js/totop.js?ver=6.0.3	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.magnific-popup.min.js?ver=6.0.3	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-includes/js/underscore.min.js?ver=1.13.3	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/fonts/arbutus-slab/oY1Z8e7OuLXkJGbXtr5ba7ZlbKUaBFWVAA.woff	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/themes/cholot/fonts/fontawesome-webfont.woff2?v=4.7.0	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/fonts/playfair-display/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtXK-F2qO0g.woff	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3	Malware
2022-11-04	medium	www.terrazzomiami.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (29)

	URL	Size	First Seen	Last Seen
	www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4	5.0 kB	2023-03-07	2024-03-31
Pretty URL www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:55 Last Seen2024-03-31 15:07:38 Times Seen270 Hash cbaa3f69dc7ed2f5913aff39b391617d 049c6d358a1f44ba299313509a8fcfa17f278fdf 272321688609293a373d0efbd424ff4425ed05237135aa2320a0ae4b662402be Loading...

	www.terrazzomiami.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.6	754 B	2023-03-07	2024-04-25
Pretty URL www.terrazzomiami.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.6 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-25 13:07:05 Times Seen2671 Hash afb55c29bdbcfc262d9fa56743572cad d4b6cb9df2b1b5477cd968fb05cf5faa1d13d6bf c30dab20b677f2b13f42a4a04385a3c6d380fa023a4a1c32f45f2996e152bfba Loading...

	www.terrazzomiami.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-26
Pretty URL www.terrazzomiami.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-26 04:19:35 Times Seen30974 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.magnific-popup.min.js?ver=6.0.3	20 kB	2023-03-07	2024-04-26
Pretty URL www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.magnific-popup.min.js?ver=6.0.3 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-26 06:24:48 Times Seen19538 Hash ba6cf724c8bb1cf5b084e79ff230626e f455c5f153f872e52265f87a644ff89fe14a6fb6 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Loading...

	www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick-animation.js	1.6 kB	2023-03-08	2023-12-29
Pretty URL www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick-animation.js IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:42:41 Last Seen2023-12-29 13:06:11 Times Seen75 Hash 4937b9d0b9ad3e3f786fb35a92301ed8 550d27eae7ff9980aa27da387a8dc9afe717aa1c 02a9e5da4798e0154974ae478591390a9570c771c890aca9951afd7446a1a383 Loading...

	www.terrazzomiami.com/office/mn/mafn.exe	96 B	2023-03-07	2024-04-26
Pretty URL www.terrazzomiami.com/office/mn/mafn.exe IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-04-26 04:19:34 Times Seen10630 Hash eb3a538fd2a39c22198e72c3b9f498a7 c966ebdbd2701a0980a85671126664f3892d4f1e ac233233e7bcaf806041b243578fab081dced8a045d9a82756410da9ea2382a1 Loading...

	www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick.min.js	42 kB	2023-03-07	2024-04-24
Pretty URL www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick.min.js IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-24 10:34:33 Times Seen5162 Hash b53bdfc29e18f4d493d775a8023fbdc8 e9fcbcc4fa70cba093b81d982a1b78509414cef7 e02af7df9a190d88380e2dcec2050ecaa493ae2d23526dbeec67f6907df3a752 Loading...

	www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4	33 kB	2023-03-07	2024-03-31
Pretty URL www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:55 Last Seen2024-03-31 15:07:38 Times Seen285 Hash 2c14a310ba03d9514354cd88cd85e9d4 ad5b3ec8dc78535ef8d1c726281d451516a96105 2d8fc0e5133c54c9c9d83aa54e7f6dd38cff44322a98a83c3a688f3bd96cc6b9 Loading...

	www.terrazzomiami.com/wp-includes/js/wp-util.min.js?ver=6.0.3	1.3 kB	2023-03-07	2024-04-22
Pretty URL www.terrazzomiami.com/wp-includes/js/wp-util.min.js?ver=6.0.3 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-04-22 09:02:49 Times Seen2728 Hash 8637362089372427b52fa10a43d8109c 6009bed674718329dce6055ab09fa95181162d81 b8e78b48acc08ce31457aff168d6fb2c814d51a8739a97693cdba585d60f5b35 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 07:52:11 Times Seen37086662 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.terrazzomiami.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3	19 kB	2023-03-07	2024-04-26
Pretty URL www.terrazzomiami.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 01:56:03 Times Seen38055 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	www.terrazzomiami.com/wp-content/themes/cholot/js/superfish.js?ver=6.0.3	7.0 kB	2023-03-07	2024-04-24
Pretty URL www.terrazzomiami.com/wp-content/themes/cholot/js/superfish.js?ver=6.0.3 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:47 Last Seen2024-04-24 16:19:50 Times Seen412 Hash e25125463e3a68f85b0683f3bc21433b ed17fd0bf4f1d0790a2b8c0ed42bc5636781ce4f de374484df39f525b35a5a5bc8f64a8c00b3c6d2c95e353bbe077710adc49620 Loading...

	www.terrazzomiami.com/wp-content/themes/cholot/js/totop.js?ver=6.0.3	573 B	2023-03-09	2024-01-11
Pretty URL www.terrazzomiami.com/wp-content/themes/cholot/js/totop.js?ver=6.0.3 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:05:58 Last Seen2024-01-11 01:19:53 Times Seen60 Hash 4133747b3f14b2f3febc93c59e91795e c5647ba04efffaaca4c9564c599d8c1c7f46ea8c 5d3398acadceac7aa1ec36966a782b0eb6b4efb513d9e145053ed3e98b08f1f1 Loading...

	www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-26
Pretty URL www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 06:21:32 Times Seen52788 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	www.terrazzomiami.com/wp-includes/js/underscore.min.js?ver=1.13.3	19 kB	2023-03-07	2024-04-24
Pretty URL www.terrazzomiami.com/wp-includes/js/underscore.min.js?ver=1.13.3 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-24 13:45:07 Times Seen2359 Hash 42aa17e1f850a414638ee4a32a3aa807 2e42d03a5e042701191650c041eae1cfb2d6c7b9 0da4791b446818516f710c51707081aec7b23a7c5212fc0b2629c973210136a4 Loading...

	www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4	40 kB	2023-03-07	2024-03-31
Pretty URL www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:55 Last Seen2024-03-31 15:07:38 Times Seen353 Hash 7036d87210ae766b2d8655fe7b11095d 1817102e57db7be2b61e900076f9d2e39e44e050 5bc95c7fb8d4a568a7966755e750aa5392a39abe08521d3b4895442de86a1678 Loading...

	www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.fitvids.js?ver=6.0.3	2.9 kB	2023-03-07	2024-04-05
Pretty URL www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.fitvids.js?ver=6.0.3 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:01:20 Last Seen2024-04-05 13:28:11 Times Seen40 Hash 52ab5a64e61a5a817e25d9927d8216ce 35740238925586ac1a3800fe2822f93fe3e00a3d defa63a204978c13830f59930ee6fdb902a8c35a8dfd5946c09869c335010544 Loading...

	www.terrazzomiami.com/office/mn/mafn.exe	2.0 kB	2023-03-10	2023-03-10
Pretty URL www.terrazzomiami.com/office/mn/mafn.exe IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 20:03:18 Last Seen2023-03-10 20:03:18 Times Seen1 Hash 5d01218263a7928b7fa83ca593892782 0edaf980e8ada2bfe104a3940c43307512e4f0a9 71d20662d1256ae671cbe1268cb0685cae158a3d170fe472487c3fe60ce08c4e Loading...

	www.terrazzomiami.com/office/mn/mafn.exe	2.2 kB	2023-03-10	2023-03-10
Pretty URL www.terrazzomiami.com/office/mn/mafn.exe IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 20:03:18 Last Seen2023-03-10 20:03:18 Times Seen1 Hash 8f4d8ce187b4a4338fee04248e0904b5 20f0bb3e80f0a08cbb5bcdbb7c03f203d0c9525d bc168b1cfb43834f285be9e41abdfd6af80b795aaf884cf15ee06c71b8693580 Loading...

	www.terrazzomiami.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-26
Pretty URL www.terrazzomiami.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 05:52:00 Times Seen68654 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.slicknav.js?ver=6.0.3	21 kB	2023-03-07	2024-03-25
Pretty URL www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.slicknav.js?ver=6.0.3 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:10:15 Last Seen2024-03-25 08:06:36 Times Seen314 Hash 706b521b4b0df58ba4d5406a1fde17fe 274a4f5ce6fa4219b1e2f140d7cfc32a747a6d97 cbe53415f0a681aa0dff918aa261056649122716050d6b925b37289987855b58 Loading...

	www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.sticky.js?ver=6.0.3	10 kB	2023-03-07	2024-04-04
Pretty URL www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.sticky.js?ver=6.0.3 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:35 Last Seen2024-04-04 19:23:46 Times Seen958 Hash 24823208c60bfc2a92deaa50cbdc6c29 f2a855219e71fc4224376732b7c64e34670d855d bcf6b9b28cec8958f9d3f3ee39070e85ffd46d670f1f0baa7cd21aa24c188a00 Loading...

	www.terrazzomiami.com/wp-content/themes/cholot/js/bootstrap.min.js?ver=6.0.3	37 kB	2023-03-07	2024-04-26
Pretty URL www.terrazzomiami.com/wp-content/themes/cholot/js/bootstrap.min.js?ver=6.0.3 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-26 07:35:43 Times Seen54663 Hash 5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef Loading...

	www.terrazzomiami.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	21 kB	2023-03-07	2024-04-25
Pretty URL www.terrazzomiami.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 18:37:12 Times Seen3655 Hash 6aaf0a4e8eac131defea126f5b1b5fbf 24da0326af36303e5a1e9799a3c26f7a1077928c 240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5 Loading...

	www.terrazzomiami.com/office/mn/mafn.exe	135 B	2023-03-10	2023-03-10
Pretty URL www.terrazzomiami.com/office/mn/mafn.exe IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 20:03:18 Last Seen2023-03-10 20:03:18 Times Seen1 Hash 298e2c0b1ef5c9d192fe0207ba9dcfa6 9eefc101492edc57d4a251f60e933b2672e0d45b f281a714677156756477ec1cec6a7b1e38454d1ccd1e86e1162a816d0813bcd0 Loading...

	www.terrazzomiami.com/wp-content/themes/cholot/js/script.js?ver=6.0.3	3.4 kB	2023-03-10	2023-03-10
Pretty URL www.terrazzomiami.com/wp-content/themes/cholot/js/script.js?ver=6.0.3 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 20:03:18 Last Seen2023-03-10 20:03:18 Times Seen1 Hash 1fe547cdb6d7f1d4826aae7d953558b3 35e56d15b122c64b66037d5bd0e6c3e1aa569335 9f6f301667b5b5fb29088a4aa1bef19ac32aba476fd6a4b992296c6e3803da8e Loading...

	www.terrazzomiami.com/office/mn/mafn.exe	110 B	2023-03-07	2024-04-25
Pretty URL www.terrazzomiami.com/office/mn/mafn.exe IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:16 Last Seen2024-04-25 15:09:13 Times Seen2276 Hash f17a1ca0e09b355fe605ac1ad37c4105 ce25a6e7d65c97829444381397e5ca58954bfeaf ac0bae1f39bff1aee40d5c283b0c0ca756959d7a442d9ad4b2a6d2634369698e Loading...

	www.terrazzomiami.com/wp-content/themes/cholot/js/modernizr.js?ver=6.0.3	53 kB	2023-03-07	2023-12-01
Pretty URL www.terrazzomiami.com/wp-content/themes/cholot/js/modernizr.js?ver=6.0.3 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:41:57 Last Seen2023-12-01 15:47:42 Times Seen15 Hash a2658683aeb146514d9168f5d3d1bd0a d501c9ebb229ebd786cac24f2b5d0013ba596b94 fdb23f5e493376ac2e5a6dc113ab632b7c0aa36159c3403bd89b44110281c8a4 Loading...

	www.terrazzomiami.com/wp-content/plugins/cholot_plugin/inc/js/loader.js?ver=1.0.0	350 B	2023-03-10	2023-03-10
Pretty URL www.terrazzomiami.com/wp-content/plugins/cholot_plugin/inc/js/loader.js?ver=1.0.0 IP 192.185.112.43 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 20:03:18 Last Seen2023-03-10 20:03:18 Times Seen1 Hash 707c4beebf4093ee53f9c5cfceb0e3f4 e56fb1a221ff54f8cd7b3afecd5ced03262fff45 5c22f3d44d1b0070be3d2e69410efc64f060000076773b74573f500b0aad1c1b Loading...

HTTP Transactions (87)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b720c31d9c036cd2ef10e35fa29f5345
ac625d2e69284e5080bede4b37c31af62c26338b
323b76eceb5d3ad339a1c55bfa7eea4e39741258e08d5005b691f712a9e9c81c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "323B76ECEB5D3AD339A1C55BFA7EEA4E39741258E08D5005B691F712A9E9C81C"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3983
Expires: Fri, 04 Nov 2022 10:26:23 GMT
Date: Fri, 04 Nov 2022 09:20:00 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2842f538168981f07b56e2c69379841a
0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22
3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1730
Cache-Control: max-age=88798
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:00 GMT
Etag: "63638a5c-1d7"
Expires: Sat, 05 Nov 2022 09:59:58 GMT
Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2842f538168981f07b56e2c69379841a
0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22
3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1730
Cache-Control: max-age=88798
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:00 GMT
Etag: "63638a5c-1d7"
Expires: Sat, 05 Nov 2022 09:59:58 GMT
Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
078950c3ba9ad01927f3da494b1d1de4
443c8a8247e4e3e04c14d21e0227fc4e8f396142
dd5dd09fec51669adf36b3014bbf65d7bff608f72018d037f9ed9b414675037c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD5DD09FEC51669ADF36B3014BBF65D7BFF608F72018D037F9ED9B414675037C"
Last-Modified: Fri, 04 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14805
Expires: Fri, 04 Nov 2022 13:26:45 GMT
Date: Fri, 04 Nov 2022 09:20:00 GMT
Connection: keep-alive

terrazzomiami.com/office/mn/mafn.exe

192.185.112.43

302 Found

232 B

URL HTTP/1.1
terrazzomiami.com/office/mn/mafn.exe
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
232 B (232 bytes)
Hash
aa01074bdac404ca872251898d6ad13e
baa0ad1503078117adb125c233b9b7973e44152e
fe10009649b1c2ceea877ce47c9dc0935da1e32b8e5f166f9e34a4773a3f30c7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /office/mn/mafn.exe HTTP/1.1
Host: terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Fri, 04 Nov 2022 09:20:02 GMT
Server: Apache
Location: https://www.terrazzomiami.com/office/mn/mafn.exe
Content-Length: 232
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: MxSPRHjTy27k1z+E+XUGMHEe8OdlXc+9gZBhU+TrdXnWfmWrrMBnBoKKdOlV05g62/I9LQ/Y1N0=
x-amz-request-id: XFJZWCJH43FC73GY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 04 Nov 2022 09:09:32 GMT
age: 628
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 09:20:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a7a2c3209df65ccefb357b4da0f746a9
7cd2f3309b6624d63e9edede228c70e9555a9f05
f412c828ac97da66063ad994cf508f5cf8a7674b544819c57d7fae4352e4b883

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F412C828AC97DA66063AD994CF508F5CF8A7674B544819C57D7FAE4352E4B883"
Last-Modified: Wed, 02 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 04 Nov 2022 15:20:00 GMT
Date: Fri, 04 Nov 2022 09:20:00 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
670d0b2f341e8ff1e4ee9fe4fe21e210
dcd277daebf63623b985a81a96bcdc6a6f67c518
75029ab8db44811ac539aa3e2f1f8e015a45b80cb5a1099cec7d64e55e2a72a6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5229
Cache-Control: max-age=87237
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:00 GMT
Etag: "63637698-1d7"
Expires: Sat, 05 Nov 2022 09:33:57 GMT
Last-Modified: Thu, 03 Nov 2022 08:06:48 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.161.231.36

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.231.36:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JI1AvxTGjj11dZythhULaw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KWlBIU0vvc73sAeUQ7X3SP3gOIc=

www.terrazzomiami.com/office/mn/mafn.exe

192.185.112.43

404 Not Found

10 kB

URL HTTP/2
www.terrazzomiami.com/office/mn/mafn.exe
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8047), with CRLF, LF line terminators
Size
10 kB (10537 bytes)
Hash
1442b0d3d5c5dbdf555d3b14e7c281db
964a8263b46704cf59da93f7784051b8268b8ebe
41b413a384e3587151f6af606ee3741ba3338509f3d2a535148992a8e6d0de40

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /office/mn/mafn.exe HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.terrazzomiami.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 10537
content-type: text/html; charset=UTF-8
date: Fri, 04 Nov 2022 09:20:03 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b88610b42bd507f0ac1700d26db03fbb
073bcc479dfbe62a2691dbdfc3c87a99bcdc2fc4
4e544dd8861a1438b1667462866044f8646dfefb42f3bc6cbac2de324de4b568

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b88610b42bd507f0ac1700d26db03fbb
073bcc479dfbe62a2691dbdfc3c87a99bcdc2fc4
4e544dd8861a1438b1667462866044f8646dfefb42f3bc6cbac2de324de4b568

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.terrazzomiami.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3

192.185.112.43

200 OK

17 kB

URL HTTP/2
www.terrazzomiami.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (43771)
Size
17 kB (16594 bytes)
Hash
2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 12 Jul 2022 22:49:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16594
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/css/preloader.css?ver=1

192.185.112.43

200 OK

677 B

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/css/preloader.css?ver=1
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
677 B (677 bytes)
Hash
e0f5118d19d52e4d2ae552e454850ba5
67e99be58f852e7da22fc2f7b4db7b3e32324998
d060c955bddd4f38b92e74ee4028eed4ee706501f5e1379168b638253af87ebf

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/cholot/css/preloader.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 677
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/css/animate.css?ver=1

192.185.112.43

200 OK

3.8 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/css/animate.css?ver=1
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
3.8 kB (3760 bytes)
Hash
ca78871d9ae986b13e88db47a00fdff3
43f478ce87ae9eb09336879c6987e9fc026c28da
1a5eaa076824ecd68558c8ea5d9028735cd08541f851e72d64de61d6fb909f8f

HTTP Headers

GET /wp-content/themes/cholot/css/animate.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3760
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b88610b42bd507f0ac1700d26db03fbb
073bcc479dfbe62a2691dbdfc3c87a99bcdc2fc4
4e544dd8861a1438b1667462866044f8646dfefb42f3bc6cbac2de324de4b568

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.terrazzomiami.com/wp-content/themes/cholot/css/slicknav.css?ver=1

192.185.112.43

200 OK

1.2 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/css/slicknav.css?ver=1
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
1.2 kB (1154 bytes)
Hash
3aff49410562e01df94d70cfc46d7b25
479997f932e78df81a217747e0079445f437357f
6c17808ddaf852289bd86e0703031607b31b5a48202d6230741fc2963469b2d9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/cholot/css/slicknav.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1154
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/css/magic.css?ver=1

192.185.112.43

200 OK

2.3 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/css/magic.css?ver=1
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
2.3 kB (2252 bytes)
Hash
a894dea9bdfb933e8ee1106a534ded64
6ad15c117152a95d53a4e64fded13c658e5be7f0
00a74f582973b9d5bdd3398078ad79c19ce49b13f3f90017b23e7827e26ed7e2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/cholot/css/magic.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2252
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/css/font-awesome.min.css?ver=1

192.185.112.43

200 OK

7.1 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/css/font-awesome.min.css?ver=1
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (30837)
Size
7.1 kB (7114 bytes)
Hash
82a55032c4b614390aea6ef6870d3e90
bb21577feea531540a8d4f27ac3730ffac111e1b
4f068500ef9ef0dbffa5b76ac10f1970a7a9de8ff033f84228971a140eb20069

HTTP Headers

GET /wp-content/themes/cholot/css/font-awesome.min.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7114
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/css/slick.css?ver=1

192.185.112.43

200 OK

564 B

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/css/slick.css?ver=1
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
564 B (564 bytes)
Hash
52dc6a8e85abdf73203fdae4e4b6f9fd
d19e874bdab0b560891082c591b33b7a481149f7
a6ed9df694f9885f6959a20b8aa2090235427dd579b89eed311fbad2d70cfce7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/cholot/css/slick.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 564
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/css/magnific-popup.css?ver=1

192.185.112.43

200 OK

2.2 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/css/magnific-popup.css?ver=1
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
2.2 kB (2190 bytes)
Hash
5691b07253c4a30382130c2da4be8343
4c12d34016c7061965c996599c4086683958e0f1
095326e797678e4aa4be8217bf991180f7b79cdcce552897123ffa68981a0747

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/cholot/css/magnific-popup.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2190
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3

192.185.112.43

409 Conflict

83 B

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/uploads/elementor/css/post-910.css?ver=1662389083

192.185.112.43

200 OK

1.3 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/uploads/elementor/css/post-910.css?ver=1662389083
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (6558), with no line terminators
Size
1.3 kB (1302 bytes)
Hash
bdca8d85263d6e1c81fec958229da645
2ccae39524d7e1dea82c175296f95764df900425
713f24cf1b1529dcc707f8ace5647d96c54ef45c0adb15e75850fd3276500eea

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/elementor/css/post-910.css?ver=1662389083 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 14:44:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1302
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

192.185.112.43

200 OK

4.6 kB

URL HTTP/2
www.terrazzomiami.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11126)
Size
4.6 kB (4618 bytes)
Hash
acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 26 Feb 2021 05:53:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3

192.185.112.43

409 Conflict

83 B

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3

192.185.112.43

409 Conflict

83 B

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/uploads/elementor/css/global.css?ver=1662384067

192.185.112.43

200 OK

1.1 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/uploads/elementor/css/global.css?ver=1662384067
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (6697)
Size
1.1 kB (1122 bytes)
Hash
7925a5df5ac6e4c7abb8d166d2d59e79
5a01c01c75e565a3248d9736b1dbf3d8e538034c
22d0e4d10ed3b16e146e95047de05f9033bdd9c8b646ee9ff3fb7b60ceb6035c

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1662384067 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:21:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1122
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/js/superfish.js?ver=6.0.3

192.185.112.43

200 OK

2.6 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/js/superfish.js?ver=6.0.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
2.6 kB (2567 bytes)
Hash
17ddfee78cac91f91bd35cb990c062df
2d81d55d1cf0bb1b3bc1efaddc6c718f42c74251
28df4a405c95b3b51480aa3ec0b19639ba2050da739567d03cd1e1c1ab6c54d3

HTTP Headers

GET /wp-content/themes/cholot/js/superfish.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2567
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

192.185.112.43

200 OK

13 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (57726)
Size
13 kB (12577 bytes)
Hash
dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12577
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.sticky.js?ver=6.0.3

192.185.112.43

200 OK

3.0 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.sticky.js?ver=6.0.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
3.0 kB (3009 bytes)
Hash
e3cea22516ec60740080799633b48ccd
488758da0421233b083853e054caaf9152c5709a
da21c4768cf429ddad3b97f762bc18a5726aedafedb0054c0585c71dd31c6b6f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/cholot/js/jquery.sticky.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3009
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

192.185.112.43

200 OK

4.0 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (19233)
Size
4.0 kB (4008 bytes)
Hash
2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4008
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

192.185.112.43

200 OK

309 B

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (483)
Size
309 B (309 bytes)
Hash
0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/uploads/elementor/css/post-3199.css?ver=1662384067

192.185.112.43

200 OK

358 B

URL HTTP/2
www.terrazzomiami.com/wp-content/uploads/elementor/css/post-3199.css?ver=1662384067
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1120), with no line terminators
Size
358 B (358 bytes)
Hash
7c41b9b1f0ac3b83d0935df0bdfe6353
d2c16ca1404954d3448f67fcc2412e6011635f46
4c6de5b9a9adab4a87020cfbc0cb053ad4e8848e7bffcdbb9abc45c7d2c368f4

HTTP Headers

GET /wp-content/uploads/elementor/css/post-3199.css?ver=1662384067 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:21:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 358
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick.min.js

192.185.112.43

200 OK

14 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick.min.js
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32076)
Size
14 kB (14096 bytes)
Hash
6089654c2cdda263b23e7af02ce9af25
2ddcdfb5a759f83cc03ce3862742f815345de84f
c00aa1482aaf5aabc144c5b8859bb42476ff0d67cab68d7f895c9353ca8458a9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/cholot_plugin/widgets/js/slick.min.js HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14096
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/cholot_plugin/inc/js/loader.js?ver=1.0.0

192.185.112.43

200 OK

237 B

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/cholot_plugin/inc/js/loader.js?ver=1.0.0
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
237 B (237 bytes)
Hash
0844e95907af4239c066b118ee93f20c
29975881f7b1f44da8bde242b5f0ad9765e4aabf
0bf19e6fb11ea0c469ccc20143f335ae789d68b93560c2f0bfbcaa049f4f6a5a

HTTP Headers

GET /wp-content/plugins/cholot_plugin/inc/js/loader.js?ver=1.0.0 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 237
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.fitvids.js?ver=6.0.3

192.185.112.43

200 OK

1.2 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.fitvids.js?ver=6.0.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text
Size
1.2 kB (1154 bytes)
Hash
65c8431a803809836ca65aa7244b50a0
55ea723843c891fc91807f66630f2abfdcd25ffb
f494fa1b2f3dcdef5eb0187a94ef3d0466ad952888d1beace0bff1777074b917

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/cholot/js/jquery.fitvids.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1154
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-includes/js/wp-util.min.js?ver=6.0.3

192.185.112.43

200 OK

709 B

URL HTTP/2
www.terrazzomiami.com/wp-includes/js/wp-util.min.js?ver=6.0.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1305)
Size
709 B (709 bytes)
Hash
e9edb7bac979409cf7dbc48d7ab8aca7
ed3f941a8fe41e3994a3ca5e620219328628f532
2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 31 May 2022 05:35:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 709
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.6

192.185.112.43

200 OK

374 B

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.6
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (754), with no line terminators
Size
374 B (374 bytes)
Hash
ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.6 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 26 Aug 2022 08:10:41 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 374
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/uploads/2022/06/logo.png

192.185.112.43

200 OK

43 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/uploads/2022/06/logo.png
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 464 x 167, 8-bit/color RGBA, non-interlaced\012- data
Size
43 kB (43399 bytes)
Hash
3d23e474af0803b10584d3bbbf118144
37c33c5a8d7c06d1c274eb6da18866cbb4b4d408
3bbffeb6d79da79f7f686a3c95456bd074b02253425d809efd2153f33b6b2f24

HTTP Headers

GET /wp-content/uploads/2022/06/logo.png HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 02 Jun 2022 12:47:41 GMT
accept-ranges: bytes
content-length: 43399
content-type: image/png
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/js/bootstrap.min.js?ver=6.0.3

192.185.112.43

200 OK

14 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/js/bootstrap.min.js?ver=6.0.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32033)
Size
14 kB (14394 bytes)
Hash
ad7339964f395566ac9d75903d96b9de
ea5756ab8d399418e0f862a8ff1249df3f77790f
3adfc0a685bd6eee9638948b1085d3db733c75caff8409b7582e356671588491

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/cholot/js/bootstrap.min.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14394
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick-animation.js

192.185.112.43

200 OK

494 B

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick-animation.js
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
494 B (494 bytes)
Hash
d2138b9d12efb647f39687481db426e2
ee3442c41a111f7a84548425e5f56fb683bde8b1
8019e35683c70f99a7904690de518007b9318ba4b28bb1136973d0de22c41a0f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/cholot_plugin/widgets/js/slick-animation.js HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 494
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4

192.185.112.43

200 OK

2.1 kB

URL HTTP/2
www.terrazzomiami.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5477)
Size
2.1 kB (2103 bytes)
Hash
f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 26 Feb 2021 05:53:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2103
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/js/script.js?ver=6.0.3

192.185.112.43

200 OK

1.4 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/js/script.js?ver=6.0.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
1.4 kB (1403 bytes)
Hash
5c07d9e1621ac479dffacda7cf48c1fa
a4b16882d16f4a59da91cf45ac96b320f99d33b0
132db11507ddf378efee5d47709478c12addbba3575fe74f75b8cd12426f36a5

HTTP Headers

GET /wp-content/themes/cholot/js/script.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1403
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/js/totop.js?ver=6.0.3

192.185.112.43

200 OK

300 B

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/js/totop.js?ver=6.0.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
300 B (300 bytes)
Hash
f9805e64eff329a4b7d6783b49d76a52
a0720a0155a877b43b6ba6ee20e43b4ff920e938
5015f8d0800529f862108837e648450337171fc68c021656658fa657383ecf2e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/cholot/js/totop.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 300
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.magnific-popup.min.js?ver=6.0.3

192.185.112.43

200 OK

9.2 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.magnific-popup.min.js?ver=6.0.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (20087)
Size
9.2 kB (9204 bytes)
Hash
7a10ae63b238729dc4da7f7bd8986219
654c47168dca0ec7080f6c57e8c4482b57f879d4
b782185399b361358f7c409d6f23f22d45f695dcbb63876c35752c7b1de72db3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/cholot/js/jquery.magnific-popup.min.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9204
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4

192.185.112.43

200 OK

2.3 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4918)
Size
2.3 kB (2313 bytes)
Hash
ade58b4bc50a3603c7ef8c00e94a3c94
b3447ed5f0a8e66b73e0252bdcaa3e858c88686e
b8f350a014ec37cf6d952761896b4bd3ee0527212abd1cb1400b56be50095cfb

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2313
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.slicknav.js?ver=6.0.3

192.185.112.43

200 OK

5.8 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.slicknav.js?ver=6.0.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
5.8 kB (5799 bytes)
Hash
eb831ec51c8481eda45f6623b081b1bb
7851adfdb94d5317fc546f0f439d8c8fba6197f4
530a1089738c4062ed074dba7134424c1f93d1bdbbc2ba92ea2539b098fe0ba5

HTTP Headers

GET /wp-content/themes/cholot/js/jquery.slicknav.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5799
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

192.185.112.43

200 OK

3.7 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (12198), with no line terminators
Size
3.7 kB (3747 bytes)
Hash
e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3747
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1

192.185.112.43

200 OK

8.2 kB

URL HTTP/2
www.terrazzomiami.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
8.2 kB (8169 bytes)
Hash
a0a1c8194f131320e1798f90a7b1262a
3346d35be1f2e4886f19e7fcc0cc96ee4753d9ed
7f618ab13cec0933ec2c61fa2b580ad77ca41522028649677494219fa9ce56db

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 31 May 2022 05:35:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8169
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4

192.185.112.43

200 OK

13 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (32889)
Size
13 kB (13281 bytes)
Hash
c764cb7a1a15ff10f87d4cffd828a1c2
f560e7d0873dbdf4df607ecd76232832689a7de4
72e40d8a22973f601fb4e89e9fa3ede7eb3ef6156fd0a8ea96d90b8d4a44fa6d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13281
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-includes/js/underscore.min.js?ver=1.13.3

192.185.112.43

200 OK

8.3 kB

URL HTTP/2
www.terrazzomiami.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (18876)
Size
8.3 kB (8313 bytes)
Hash
61a4a3c276f704185a925bfa0f4d8b1b
0176eb701bb114d9cb170193f6208ec4fbb35f71
f0875cbb46e9eeb5e497dd52d8c33725509228193c2dbe9ab464f62a15c2f0e2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 31 May 2022 05:35:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8313
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4

192.185.112.43

200 OK

16 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (40474)
Size
16 kB (16151 bytes)
Hash
ac6c8aee88f098bc9d95d60f54eaced8
c519c2a8b2c283fe83bc1d7f23a7968442bddf7f
1c46c61e457d5ffabb844ccfb6fd0ae1a387162f48a48cdc09e868089566ccae

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16151
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2

216.58.207.195

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Size
13 kB (13036 bytes)
Hash
0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0

HTTP Headers

GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.terrazzomiami.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:26:57 GMT
expires: Thu, 02 Nov 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 136385
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.terrazzomiami.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3

192.185.112.43

200 OK

12 kB

URL HTTP/2
www.terrazzomiami.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
12 kB (12408 bytes)
Hash
6e30c013adbc4eba0b94d5431119ea87
9d2a987240fc5b46a3135e8836ee435c5feff333
080e18a8c761c3d30b7ec08aa65f87109a0228367eafd0a12fcefda58d10e8ad

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 31 May 2022 05:35:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2

216.58.207.195

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Size
13 kB (12924 bytes)
Hash
4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4

HTTP Headers

GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.terrazzomiami.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:26:57 GMT
expires: Thu, 02 Nov 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 136385
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3

192.185.112.43

409 Conflict

83 B

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
640694ccf55a37a2c3f7bc946065f849
3f43ab55882073a2a8636c0b683ed3b5d6f400c0
6e1f6ac1271486bca28a5974858183b5b0c4c2ffdcb0dc3b2c7e33fe450d73a1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=147541
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:02 GMT
Etag: "63647697-116"
Expires: Sun, 06 Nov 2022 02:19:03 GMT
Last-Modified: Fri, 04 Nov 2022 02:19:03 GMT
Server: nginx
Content-Length: 278

www.terrazzomiami.com/wp-content/fonts/arbutus-slab/oY1Z8e7OuLXkJGbXtr5ba7ZlbKUaBFWVAA.woff

192.185.112.43

200 OK

15 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/fonts/arbutus-slab/oY1Z8e7OuLXkJGbXtr5ba7ZlbKUaBFWVAA.woff
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 15184, version 1.1\012- data
Size
15 kB (15184 bytes)
Hash
e16863e2999a2a31fd4ae7e25c87157e
4f248d5f78fa27b503d7b64813103ec850e566ed
788a7356de721920c44faa35c22fe8a561ae6bd02a51af32a921e680a5a18325

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/fonts/arbutus-slab/oY1Z8e7OuLXkJGbXtr5ba7ZlbKUaBFWVAA.woff HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 16 Jun 2022 13:01:08 GMT
accept-ranges: bytes
content-length: 15184
content-type: font/woff
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/fonts/fontawesome-webfont.woff2?v=4.7.0

192.185.112.43

200 OK

77 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/cholot/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.terrazzomiami.com/wp-content/themes/cholot/css/font-awesome.min.css?ver=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
content-length: 77160
content-type: font/woff2
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

192.185.112.43

200 OK

78 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
content-length: 78196
content-type: font/woff2
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/fonts/playfair-display/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtXK-F2qO0g.woff

192.185.112.43

200 OK

26 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/fonts/playfair-display/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtXK-F2qO0g.woff
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 26080, version 1.1\012- data
Size
26 kB (26080 bytes)
Hash
88c74dfb3678d97079a4e39d4dda8f1c
fbef86daf97e9c6a1a0a40ac4f935807f384e5c1
db7ed1e8ee569d76b2e60e77ab7e77b6934a880e157f4a71c8f68826500f6e3d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/fonts/playfair-display/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtXK-F2qO0g.woff HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 20 Jul 2022 14:00:26 GMT
accept-ranges: bytes
content-length: 26080
content-type: font/woff
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3

192.185.112.43

409 Conflict

83 B

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7761
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 09:20:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7761
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 09:20:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7761
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 09:20:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7761
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 09:20:02 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8d44f8-0c00-4a8a-be62-f3074a628773.webp

34.120.237.76

200 OK

3.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8d44f8-0c00-4a8a-be62-f3074a628773.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.1 kB (3129 bytes)
Hash
c51fb56e3d2ff1c96ac94fa6dc04d7ff
4b6eeba25ea9eb878f06c9fdd158baa08095816a
5007b706cd8c32431ba8d023f2c85eb3d5faa29a89e52530f66a11fa6d56a487

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8d44f8-0c00-4a8a-be62-f3074a628773.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3129
x-amzn-requestid: d2f79c4c-1685-495e-add4-66db55669be5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1EeF2YoAMFzwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364354f-6957babc65b33a56575d4deb;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NoRwUtjf1DSIEZ8lMSJg8UT7lUyeew3B1Fwa44BrN3Av6H4TXsdTVw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:51:52 GMT
age: 41290
etag: "4b6eeba25ea9eb878f06c9fdd158baa08095816a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7993 bytes)
Hash
c67d8f51aff77b24d8cb3fd9ec479813
ebf192d282f763c6220d8d83423b4c1cb76332a1
941bab2bc237c080c6364198d3a183e5b513f72533c98b931b4503476f92e395

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 1f8c3db7-e6e5-4503-a865-1a2407d91ada
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0XYGP_oAMFvnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364342f-66953a9f6f31915c375fd6ab;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:43 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1vWc25iNyC4YygyUrZFKyk6DkYdFr2SibxZEfUzQ53ZEGp9VKgloNg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:51:37 GMT
age: 41305
etag: "ebf192d282f763c6220d8d83423b4c1cb76332a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6557 bytes)
Hash
ca6c7517d7015fbc35fa290c1c2d6afd
594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c
a746b36be50209915a0e5657abd219aab382eee4b7556142aa1316daf3a9f5a4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: f2e39db1-fb8a-4a9b-8a1d-ee08000ddeb6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1VyFHuIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636435be-7a03ef677f8dbd680f72de90;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:42:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I6mALhsUwtQqMP_p_HxFaiCyfRDTtVzPIJjeDrKSEq7Tc_d5EcNw3Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:00 GMT
age: 41222
etag: "594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c5889c4-d0fb-4545-94b4-f16b26e61aa2.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8084 bytes)
Hash
214b020ed417fbc4785b92f2bdb98834
57eed480ede736a0a948e9bd7c604427a8acf8a2
4228512d040b122d6e5d50418c507edeedbef4aee2fbb0a952da270734ece18f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c5889c4-d0fb-4545-94b4-f16b26e61aa2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8084
x-amzn-requestid: 2d0c493a-5c15-415e-a9d3-516c03b11dd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0WwGueIAMF--w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364342b-4d68f618620e18050704340e;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fSwsKH1erxART-SQu0L7QcUoKiGiSkFNu-no6OvsVFJMHu4yOUdAGg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 22:10:40 GMT
age: 40162
etag: "57eed480ede736a0a948e9bd7c604427a8acf8a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca38d141-58df-4cb1-a98e-9e926dce0b1e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10102 bytes)
Hash
9e9d2fd6fad0411accce30c67be288f6
99e30a61aca3e5b861ec3f2f56ec242d06c84e03
36e0a989f24023e8df7e65f48d02b8ff44f5976c72e3add2a035f69a30a027ba

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca38d141-58df-4cb1-a98e-9e926dce0b1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10102
x-amzn-requestid: 88180740-5e32-4c86-ac47-5385bf32ae6c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0RqG1joAMFtkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364340a-24dec56b1fff968d717cb075;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:06 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ekzGt2vPATtPpGvnlZOnwSAA1CzaAexQVHYWkaDWR2xDkKyt3dFUJA==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 22:21:08 GMT
age: 39534
etag: "99e30a61aca3e5b861ec3f2f56ec242d06c84e03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10462 bytes)
Hash
4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: w5Nv6yf06dCHv6q9wt8-guOfQSMywfZFoXxwWvcLc9FtdwgRIqPcUQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 18:32:15 GMT
age: 53267
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

theme.winnertheme.com/cholot/wp-content/uploadz/2019/07/1.jpg

172.67.163.80

200 OK

27 kB

URL HTTP/2
theme.winnertheme.com/cholot/wp-content/uploadz/2019/07/1.jpg
IP
172.67.163.80:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, baseline, precision 8, 1656x1100, components 1\012- data
Size
27 kB (27108 bytes)
Hash
37c4fcd5b31962513d0b2e8843146cea
f06c8c7b745abe4805e92600a6ff4b3823270edb
a9a888e41a988a9731030e3f3f3e09fe92c57828a84af64c596b28fadf38999f

HTTP Headers

GET /cholot/wp-content/uploadz/2019/07/1.jpg HTTP/1.1
Host: theme.winnertheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 04 Nov 2022 09:20:02 GMT
content-type: image/jpeg
content-length: 27108
last-modified: Tue, 23 Jul 2019 16:33:37 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jftZeFvMyWT%2B7yjI1nbhP3BD9Dmu0HoCOOrwytRYjq%2BdGDyrti0%2BCs2rV%2BMTODQyuuqlvWzh8wCLtOVtN5qRBbVi350k7g9ohx6S8H99%2FIWvvuput%2B%2F25F9VLx3z9SgwWanBqLkcu9w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 764c457ea893b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
640694ccf55a37a2c3f7bc946065f849
3f43ab55882073a2a8636c0b683ed3b5d6f400c0
6e1f6ac1271486bca28a5974858183b5b0c4c2ffdcb0dc3b2c7e33fe450d73a1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=147541
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:02 GMT
Etag: "63647697-116"
Expires: Sun, 06 Nov 2022 02:19:03 GMT
Last-Modified: Fri, 04 Nov 2022 02:19:03 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278

www.terrazzomiami.com/wp-content/uploads/2022/06/cropped-favicon-32x32.png

192.185.112.43

200 OK

1.2 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/uploads/2022/06/cropped-favicon-32x32.png
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size
1.2 kB (1175 bytes)
Hash
01124aa8d6e6137bb75ddeb5b3125e8e
ededd0ef60f3976058a22196d4b68f53a4dc7313
4234d5363c15017529546607a68d5c8e22d61d113608dd1215165744e24d37bc

HTTP Headers

GET /wp-content/uploads/2022/06/cropped-favicon-32x32.png HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 10:31:49 GMT
accept-ranges: bytes
content-length: 1175
content-type: image/png
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/uploads/2022/06/cropped-favicon-192x192.png

192.185.112.43

200 OK

4.8 kB

URL HTTP/2
www.terrazzomiami.com/wp-content/uploads/2022/06/cropped-favicon-192x192.png
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
4.8 kB (4776 bytes)
Hash
75e2bc8103233af423283c90247cba5f
79e75643a8a61d7eb18331c0c1329b3da277147d
0b5b284ec3fe4e3da0534ec28c7e22ce4b7e0b059ab969a921e8aeafc284b15c

HTTP Headers

GET /wp-content/uploads/2022/06/cropped-favicon-192x192.png HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 10:31:49 GMT
accept-ranges: bytes
content-length: 4776
content-type: image/png
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/css/bootstrap.min.css?ver=1

192.185.112.43

200 OK

0 B

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/css/bootstrap.min.css?ver=1
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/cholot/css/bootstrap.min.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/js_composer%20wpbakery_v6.9.0/assets/css/js_composer.min.css?ver=6.9.0

192.185.112.43

200 OK

0 B

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/js_composer%20wpbakery_v6.9.0/assets/css/js_composer.min.css?ver=6.9.0
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/js_composer%20wpbakery_v6.9.0/assets/css/js_composer.min.css?ver=6.9.0 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 01 Jun 2022 14:35:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

192.185.112.43

200 OK

0 B

URL HTTP/2
www.terrazzomiami.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 31 May 2022 05:35:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Source+Sans+Pro%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Source+Sans+Pro%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Source+Sans+Pro%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 04 Nov 2022 09:20:01 GMT
date: Fri, 04 Nov 2022 09:20:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/style.css?ver=1

192.185.112.43

200 OK

0 B

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/style.css?ver=1
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/cholot/style.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/themes/cholot/js/modernizr.js?ver=6.0.3

192.185.112.43

200 OK

0 B

URL HTTP/2
www.terrazzomiami.com/wp-content/themes/cholot/js/modernizr.js?ver=6.0.3
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/cholot/js/modernizr.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.terrazzomiami.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4

192.185.112.43

200 OK

0 B

URL HTTP/2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4
IP
192.185.112.43:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Source+Sans+Pro%3A400%2C700%7CPlayfair+Display%3A400%2C700%2C900%26display%3Dswap&ver=1.0.0

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Source+Sans+Pro%3A400%2C700%7CPlayfair+Display%3A400%2C700%2C900%26display%3Dswap&ver=1.0.0
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Source+Sans+Pro%3A400%2C700%7CPlayfair+Display%3A400%2C700%2C900%26display%3Dswap&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 04 Nov 2022 09:20:01 GMT
date: Fri, 04 Nov 2022 09:20:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (29)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations