r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b720c31d9c036cd2ef10e35fa29f5345
ac625d2e69284e5080bede4b37c31af62c26338b
323b76eceb5d3ad339a1c55bfa7eea4e39741258e08d5005b691f712a9e9c81c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "323B76ECEB5D3AD339A1C55BFA7EEA4E39741258E08D5005B691F712A9E9C81C"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3983
Expires: Fri, 04 Nov 2022 10:26:23 GMT
Date: Fri, 04 Nov 2022 09:20:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2842f538168981f07b56e2c69379841a
0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22
3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1730
Cache-Control: max-age=88798
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:00 GMT
Etag: "63638a5c-1d7"
Expires: Sat, 05 Nov 2022 09:59:58 GMT
Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2842f538168981f07b56e2c69379841a
0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22
3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1730
Cache-Control: max-age=88798
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:00 GMT
Etag: "63638a5c-1d7"
Expires: Sat, 05 Nov 2022 09:59:58 GMT
Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 078950c3ba9ad01927f3da494b1d1de4
443c8a8247e4e3e04c14d21e0227fc4e8f396142
dd5dd09fec51669adf36b3014bbf65d7bff608f72018d037f9ed9b414675037c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD5DD09FEC51669ADF36B3014BBF65D7BFF608F72018D037F9ED9B414675037C"
Last-Modified: Fri, 04 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14805
Expires: Fri, 04 Nov 2022 13:26:45 GMT
Date: Fri, 04 Nov 2022 09:20:00 GMT
Connection: keep-alive
terrazzomiami.com/office/mn/mafn.exe
192.185.112.43302 Found 232 B URL HTTP/1.1 terrazzomiami.com/office/mn/mafn.exe
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash aa01074bdac404ca872251898d6ad13e
baa0ad1503078117adb125c233b9b7973e44152e
fe10009649b1c2ceea877ce47c9dc0935da1e32b8e5f166f9e34a4773a3f30c7
Analyzer Verdict Alert fortinet Malware
GET /office/mn/mafn.exe HTTP/1.1
Host: terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 04 Nov 2022 09:20:02 GMT
Server: Apache
Location: https://www.terrazzomiami.com/office/mn/mafn.exe
Content-Length: 232
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: MxSPRHjTy27k1z+E+XUGMHEe8OdlXc+9gZBhU+TrdXnWfmWrrMBnBoKKdOlV05g62/I9LQ/Y1N0=
x-amz-request-id: XFJZWCJH43FC73GY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 04 Nov 2022 09:09:32 GMT
age: 628
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 09:20:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a7a2c3209df65ccefb357b4da0f746a9
7cd2f3309b6624d63e9edede228c70e9555a9f05
f412c828ac97da66063ad994cf508f5cf8a7674b544819c57d7fae4352e4b883
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F412C828AC97DA66063AD994CF508F5CF8A7674B544819C57D7FAE4352E4B883"
Last-Modified: Wed, 02 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 04 Nov 2022 15:20:00 GMT
Date: Fri, 04 Nov 2022 09:20:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670d0b2f341e8ff1e4ee9fe4fe21e210
dcd277daebf63623b985a81a96bcdc6a6f67c518
75029ab8db44811ac539aa3e2f1f8e015a45b80cb5a1099cec7d64e55e2a72a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5229
Cache-Control: max-age=87237
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:00 GMT
Etag: "63637698-1d7"
Expires: Sat, 05 Nov 2022 09:33:57 GMT
Last-Modified: Thu, 03 Nov 2022 08:06:48 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.161.231.36101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.231.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JI1AvxTGjj11dZythhULaw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KWlBIU0vvc73sAeUQ7X3SP3gOIc=
www.terrazzomiami.com/office/mn/mafn.exe
192.185.112.43404 Not Found 10 kB URL HTTP/2 www.terrazzomiami.com/office/mn/mafn.exe
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8047), with CRLF, LF line terminators
Hash 1442b0d3d5c5dbdf555d3b14e7c281db
964a8263b46704cf59da93f7784051b8268b8ebe
41b413a384e3587151f6af606ee3741ba3338509f3d2a535148992a8e6d0de40
Analyzer Verdict Alert fortinet Malware
GET /office/mn/mafn.exe HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.terrazzomiami.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 10537
content-type: text/html; charset=UTF-8
date: Fri, 04 Nov 2022 09:20:03 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash b88610b42bd507f0ac1700d26db03fbb
073bcc479dfbe62a2691dbdfc3c87a99bcdc2fc4
4e544dd8861a1438b1667462866044f8646dfefb42f3bc6cbac2de324de4b568
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash b88610b42bd507f0ac1700d26db03fbb
073bcc479dfbe62a2691dbdfc3c87a99bcdc2fc4
4e544dd8861a1438b1667462866044f8646dfefb42f3bc6cbac2de324de4b568
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.terrazzomiami.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
192.185.112.43200 OK 17 kB URL HTTP/2 www.terrazzomiami.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43771)
Hash 2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Jul 2022 22:49:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16594
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/css/preloader.css?ver=1
192.185.112.43200 OK 677 B URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/css/preloader.css?ver=1
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash e0f5118d19d52e4d2ae552e454850ba5
67e99be58f852e7da22fc2f7b4db7b3e32324998
d060c955bddd4f38b92e74ee4028eed4ee706501f5e1379168b638253af87ebf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cholot/css/preloader.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 677
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/css/animate.css?ver=1
192.185.112.43200 OK 3.8 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/css/animate.css?ver=1
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash ca78871d9ae986b13e88db47a00fdff3
43f478ce87ae9eb09336879c6987e9fc026c28da
1a5eaa076824ecd68558c8ea5d9028735cd08541f851e72d64de61d6fb909f8f
GET /wp-content/themes/cholot/css/animate.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3760
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash b88610b42bd507f0ac1700d26db03fbb
073bcc479dfbe62a2691dbdfc3c87a99bcdc2fc4
4e544dd8861a1438b1667462866044f8646dfefb42f3bc6cbac2de324de4b568
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.terrazzomiami.com/wp-content/themes/cholot/css/slicknav.css?ver=1
192.185.112.43200 OK 1.2 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/css/slicknav.css?ver=1
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 3aff49410562e01df94d70cfc46d7b25
479997f932e78df81a217747e0079445f437357f
6c17808ddaf852289bd86e0703031607b31b5a48202d6230741fc2963469b2d9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cholot/css/slicknav.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1154
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/css/magic.css?ver=1
192.185.112.43200 OK 2.3 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/css/magic.css?ver=1
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash a894dea9bdfb933e8ee1106a534ded64
6ad15c117152a95d53a4e64fded13c658e5be7f0
00a74f582973b9d5bdd3398078ad79c19ce49b13f3f90017b23e7827e26ed7e2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cholot/css/magic.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2252
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/css/font-awesome.min.css?ver=1
192.185.112.43200 OK 7.1 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/css/font-awesome.min.css?ver=1
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30837)
Hash 82a55032c4b614390aea6ef6870d3e90
bb21577feea531540a8d4f27ac3730ffac111e1b
4f068500ef9ef0dbffa5b76ac10f1970a7a9de8ff033f84228971a140eb20069
GET /wp-content/themes/cholot/css/font-awesome.min.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7114
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/css/slick.css?ver=1
192.185.112.43200 OK 564 B URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/css/slick.css?ver=1
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 52dc6a8e85abdf73203fdae4e4b6f9fd
d19e874bdab0b560891082c591b33b7a481149f7
a6ed9df694f9885f6959a20b8aa2090235427dd579b89eed311fbad2d70cfce7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cholot/css/slick.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 564
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/css/magnific-popup.css?ver=1
192.185.112.43200 OK 2.2 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/css/magnific-popup.css?ver=1
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5691b07253c4a30382130c2da4be8343
4c12d34016c7061965c996599c4086683958e0f1
095326e797678e4aa4be8217bf991180f7b79cdcce552897123ffa68981a0747
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cholot/css/magnific-popup.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2190
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
192.185.112.43409 Conflict 83 B URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/uploads/elementor/css/post-910.css?ver=1662389083
192.185.112.43200 OK 1.3 kB URL HTTP/2 www.terrazzomiami.com/wp-content/uploads/elementor/css/post-910.css?ver=1662389083
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6558), with no line terminators
Hash bdca8d85263d6e1c81fec958229da645
2ccae39524d7e1dea82c175296f95764df900425
713f24cf1b1529dcc707f8ace5647d96c54ef45c0adb15e75850fd3276500eea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-910.css?ver=1662389083 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 14:44:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1302
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.185.112.43200 OK 4.6 kB URL HTTP/2 www.terrazzomiami.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 Feb 2021 05:53:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
192.185.112.43409 Conflict 83 B URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
192.185.112.43409 Conflict 83 B URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/uploads/elementor/css/global.css?ver=1662384067
192.185.112.43200 OK 1.1 kB URL HTTP/2 www.terrazzomiami.com/wp-content/uploads/elementor/css/global.css?ver=1662384067
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6697)
Hash 7925a5df5ac6e4c7abb8d166d2d59e79
5a01c01c75e565a3248d9736b1dbf3d8e538034c
22d0e4d10ed3b16e146e95047de05f9033bdd9c8b646ee9ff3fb7b60ceb6035c
GET /wp-content/uploads/elementor/css/global.css?ver=1662384067 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:21:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1122
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/js/superfish.js?ver=6.0.3
192.185.112.43200 OK 2.6 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/js/superfish.js?ver=6.0.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 17ddfee78cac91f91bd35cb990c062df
2d81d55d1cf0bb1b3bc1efaddc6c718f42c74251
28df4a405c95b3b51480aa3ec0b19639ba2050da739567d03cd1e1c1ab6c54d3
GET /wp-content/themes/cholot/js/superfish.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2567
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
192.185.112.43200 OK 13 kB URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12577
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.sticky.js?ver=6.0.3
192.185.112.43200 OK 3.0 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.sticky.js?ver=6.0.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e3cea22516ec60740080799633b48ccd
488758da0421233b083853e054caaf9152c5709a
da21c4768cf429ddad3b97f762bc18a5726aedafedb0054c0585c71dd31c6b6f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cholot/js/jquery.sticky.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3009
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
192.185.112.43200 OK 4.0 kB URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19233)
Hash 2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4008
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
192.185.112.43200 OK 309 B URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/uploads/elementor/css/post-3199.css?ver=1662384067
192.185.112.43200 OK 358 B URL HTTP/2 www.terrazzomiami.com/wp-content/uploads/elementor/css/post-3199.css?ver=1662384067
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1120), with no line terminators
Hash 7c41b9b1f0ac3b83d0935df0bdfe6353
d2c16ca1404954d3448f67fcc2412e6011635f46
4c6de5b9a9adab4a87020cfbc0cb053ad4e8848e7bffcdbb9abc45c7d2c368f4
GET /wp-content/uploads/elementor/css/post-3199.css?ver=1662384067 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:21:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 358
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick.min.js
192.185.112.43200 OK 14 kB URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick.min.js
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32076)
Hash 6089654c2cdda263b23e7af02ce9af25
2ddcdfb5a759f83cc03ce3862742f815345de84f
c00aa1482aaf5aabc144c5b8859bb42476ff0d67cab68d7f895c9353ca8458a9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cholot_plugin/widgets/js/slick.min.js HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14096
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/cholot_plugin/inc/js/loader.js?ver=1.0.0
192.185.112.43200 OK 237 B URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/cholot_plugin/inc/js/loader.js?ver=1.0.0
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 0844e95907af4239c066b118ee93f20c
29975881f7b1f44da8bde242b5f0ad9765e4aabf
0bf19e6fb11ea0c469ccc20143f335ae789d68b93560c2f0bfbcaa049f4f6a5a
GET /wp-content/plugins/cholot_plugin/inc/js/loader.js?ver=1.0.0 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 237
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.fitvids.js?ver=6.0.3
192.185.112.43200 OK 1.2 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.fitvids.js?ver=6.0.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text
Hash 65c8431a803809836ca65aa7244b50a0
55ea723843c891fc91807f66630f2abfdcd25ffb
f494fa1b2f3dcdef5eb0187a94ef3d0466ad952888d1beace0bff1777074b917
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cholot/js/jquery.fitvids.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1154
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-includes/js/wp-util.min.js?ver=6.0.3
192.185.112.43200 OK 709 B URL HTTP/2 www.terrazzomiami.com/wp-includes/js/wp-util.min.js?ver=6.0.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1305)
Hash e9edb7bac979409cf7dbc48d7ab8aca7
ed3f941a8fe41e3994a3ca5e620219328628f532
2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 May 2022 05:35:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 709
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.6
192.185.112.43200 OK 374 B URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.6
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (754), with no line terminators
Hash ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.6 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 Aug 2022 08:10:41 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 374
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/uploads/2022/06/logo.png
192.185.112.43200 OK 43 kB URL HTTP/2 www.terrazzomiami.com/wp-content/uploads/2022/06/logo.png
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 464 x 167, 8-bit/color RGBA, non-interlaced\012- data
Hash 3d23e474af0803b10584d3bbbf118144
37c33c5a8d7c06d1c274eb6da18866cbb4b4d408
3bbffeb6d79da79f7f686a3c95456bd074b02253425d809efd2153f33b6b2f24
GET /wp-content/uploads/2022/06/logo.png HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 02 Jun 2022 12:47:41 GMT
accept-ranges: bytes
content-length: 43399
content-type: image/png
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/js/bootstrap.min.js?ver=6.0.3
192.185.112.43200 OK 14 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/js/bootstrap.min.js?ver=6.0.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32033)
Hash ad7339964f395566ac9d75903d96b9de
ea5756ab8d399418e0f862a8ff1249df3f77790f
3adfc0a685bd6eee9638948b1085d3db733c75caff8409b7582e356671588491
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cholot/js/bootstrap.min.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14394
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick-animation.js
192.185.112.43200 OK 494 B URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/cholot_plugin/widgets/js/slick-animation.js
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash d2138b9d12efb647f39687481db426e2
ee3442c41a111f7a84548425e5f56fb683bde8b1
8019e35683c70f99a7904690de518007b9318ba4b28bb1136973d0de22c41a0f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cholot_plugin/widgets/js/slick-animation.js HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 494
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
192.185.112.43200 OK 2.1 kB URL HTTP/2 www.terrazzomiami.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 Feb 2021 05:53:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2103
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/js/script.js?ver=6.0.3
192.185.112.43200 OK 1.4 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/js/script.js?ver=6.0.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 5c07d9e1621ac479dffacda7cf48c1fa
a4b16882d16f4a59da91cf45ac96b320f99d33b0
132db11507ddf378efee5d47709478c12addbba3575fe74f75b8cd12426f36a5
GET /wp-content/themes/cholot/js/script.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1403
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/js/totop.js?ver=6.0.3
192.185.112.43200 OK 300 B URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/js/totop.js?ver=6.0.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash f9805e64eff329a4b7d6783b49d76a52
a0720a0155a877b43b6ba6ee20e43b4ff920e938
5015f8d0800529f862108837e648450337171fc68c021656658fa657383ecf2e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cholot/js/totop.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 300
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.magnific-popup.min.js?ver=6.0.3
192.185.112.43200 OK 9.2 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.magnific-popup.min.js?ver=6.0.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (20087)
Hash 7a10ae63b238729dc4da7f7bd8986219
654c47168dca0ec7080f6c57e8c4482b57f879d4
b782185399b361358f7c409d6f23f22d45f695dcbb63876c35752c7b1de72db3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cholot/js/jquery.magnific-popup.min.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9204
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4
192.185.112.43200 OK 2.3 kB URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4918)
Hash ade58b4bc50a3603c7ef8c00e94a3c94
b3447ed5f0a8e66b73e0252bdcaa3e858c88686e
b8f350a014ec37cf6d952761896b4bd3ee0527212abd1cb1400b56be50095cfb
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2313
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.slicknav.js?ver=6.0.3
192.185.112.43200 OK 5.8 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/js/jquery.slicknav.js?ver=6.0.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash eb831ec51c8481eda45f6623b081b1bb
7851adfdb94d5317fc546f0f439d8c8fba6197f4
530a1089738c4062ed074dba7134424c1f93d1bdbbc2ba92ea2539b098fe0ba5
GET /wp-content/themes/cholot/js/jquery.slicknav.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5799
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
192.185.112.43200 OK 3.7 kB URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3747
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
192.185.112.43200 OK 8.2 kB URL HTTP/2 www.terrazzomiami.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash a0a1c8194f131320e1798f90a7b1262a
3346d35be1f2e4886f19e7fcc0cc96ee4753d9ed
7f618ab13cec0933ec2c61fa2b580ad77ca41522028649677494219fa9ce56db
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 May 2022 05:35:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8169
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4
192.185.112.43200 OK 13 kB URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash c764cb7a1a15ff10f87d4cffd828a1c2
f560e7d0873dbdf4df607ecd76232832689a7de4
72e40d8a22973f601fb4e89e9fa3ede7eb3ef6156fd0a8ea96d90b8d4a44fa6d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13281
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-includes/js/underscore.min.js?ver=1.13.3
192.185.112.43200 OK 8.3 kB URL HTTP/2 www.terrazzomiami.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18876)
Hash 61a4a3c276f704185a925bfa0f4d8b1b
0176eb701bb114d9cb170193f6208ec4fbb35f71
f0875cbb46e9eeb5e497dd52d8c33725509228193c2dbe9ab464f62a15c2f0e2
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 May 2022 05:35:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8313
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4
192.185.112.43200 OK 16 kB URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (40474)
Hash ac6c8aee88f098bc9d95d60f54eaced8
c519c2a8b2c283fe83bc1d7f23a7968442bddf7f
1c46c61e457d5ffabb844ccfb6fd0ae1a387162f48a48cdc09e868089566ccae
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16151
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.terrazzomiami.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:26:57 GMT
expires: Thu, 02 Nov 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 136385
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.terrazzomiami.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
192.185.112.43200 OK 12 kB URL HTTP/2 www.terrazzomiami.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 6e30c013adbc4eba0b94d5431119ea87
9d2a987240fc5b46a3135e8836ee435c5feff333
080e18a8c761c3d30b7ec08aa65f87109a0228367eafd0a12fcefda58d10e8ad
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 May 2022 05:35:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Hash 4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.terrazzomiami.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:26:57 GMT
expires: Thu, 02 Nov 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 136385
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
192.185.112.43409 Conflict 83 B URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 640694ccf55a37a2c3f7bc946065f849
3f43ab55882073a2a8636c0b683ed3b5d6f400c0
6e1f6ac1271486bca28a5974858183b5b0c4c2ffdcb0dc3b2c7e33fe450d73a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=147541
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:02 GMT
Etag: "63647697-116"
Expires: Sun, 06 Nov 2022 02:19:03 GMT
Last-Modified: Fri, 04 Nov 2022 02:19:03 GMT
Server: nginx
Content-Length: 278
www.terrazzomiami.com/wp-content/fonts/arbutus-slab/oY1Z8e7OuLXkJGbXtr5ba7ZlbKUaBFWVAA.woff
192.185.112.43200 OK 15 kB URL HTTP/2 www.terrazzomiami.com/wp-content/fonts/arbutus-slab/oY1Z8e7OuLXkJGbXtr5ba7ZlbKUaBFWVAA.woff
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 15184, version 1.1\012- data
Hash e16863e2999a2a31fd4ae7e25c87157e
4f248d5f78fa27b503d7b64813103ec850e566ed
788a7356de721920c44faa35c22fe8a561ae6bd02a51af32a921e680a5a18325
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/arbutus-slab/oY1Z8e7OuLXkJGbXtr5ba7ZlbKUaBFWVAA.woff HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Jun 2022 13:01:08 GMT
accept-ranges: bytes
content-length: 15184
content-type: font/woff
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/fonts/fontawesome-webfont.woff2?v=4.7.0
192.185.112.43200 OK 77 kB URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cholot/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.terrazzomiami.com/wp-content/themes/cholot/css/font-awesome.min.css?ver=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
content-length: 77160
content-type: font/woff2
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
192.185.112.43200 OK 78 kB URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.terrazzomiami.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
content-length: 78196
content-type: font/woff2
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/fonts/playfair-display/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtXK-F2qO0g.woff
192.185.112.43200 OK 26 kB URL HTTP/2 www.terrazzomiami.com/wp-content/fonts/playfair-display/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtXK-F2qO0g.woff
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 26080, version 1.1\012- data
Hash 88c74dfb3678d97079a4e39d4dda8f1c
fbef86daf97e9c6a1a0a40ac4f935807f384e5c1
db7ed1e8ee569d76b2e60e77ab7e77b6934a880e157f4a71c8f68826500f6e3d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/playfair-display/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtXK-F2qO0g.woff HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Jul 2022 14:00:26 GMT
accept-ranges: bytes
content-length: 26080
content-type: font/woff
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
192.185.112.43409 Conflict 83 B URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7761
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 09:20:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7761
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 09:20:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7761
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 09:20:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7761
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 09:20:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8d44f8-0c00-4a8a-be62-f3074a628773.webp
34.120.237.76200 OK 3.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8d44f8-0c00-4a8a-be62-f3074a628773.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c51fb56e3d2ff1c96ac94fa6dc04d7ff
4b6eeba25ea9eb878f06c9fdd158baa08095816a
5007b706cd8c32431ba8d023f2c85eb3d5faa29a89e52530f66a11fa6d56a487
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8d44f8-0c00-4a8a-be62-f3074a628773.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3129
x-amzn-requestid: d2f79c4c-1685-495e-add4-66db55669be5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1EeF2YoAMFzwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364354f-6957babc65b33a56575d4deb;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NoRwUtjf1DSIEZ8lMSJg8UT7lUyeew3B1Fwa44BrN3Av6H4TXsdTVw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:51:52 GMT
age: 41290
etag: "4b6eeba25ea9eb878f06c9fdd158baa08095816a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c67d8f51aff77b24d8cb3fd9ec479813
ebf192d282f763c6220d8d83423b4c1cb76332a1
941bab2bc237c080c6364198d3a183e5b513f72533c98b931b4503476f92e395
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 1f8c3db7-e6e5-4503-a865-1a2407d91ada
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0XYGP_oAMFvnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364342f-66953a9f6f31915c375fd6ab;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:43 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1vWc25iNyC4YygyUrZFKyk6DkYdFr2SibxZEfUzQ53ZEGp9VKgloNg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:51:37 GMT
age: 41305
etag: "ebf192d282f763c6220d8d83423b4c1cb76332a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca6c7517d7015fbc35fa290c1c2d6afd
594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c
a746b36be50209915a0e5657abd219aab382eee4b7556142aa1316daf3a9f5a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: f2e39db1-fb8a-4a9b-8a1d-ee08000ddeb6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1VyFHuIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636435be-7a03ef677f8dbd680f72de90;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:42:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I6mALhsUwtQqMP_p_HxFaiCyfRDTtVzPIJjeDrKSEq7Tc_d5EcNw3Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:00 GMT
age: 41222
etag: "594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c5889c4-d0fb-4545-94b4-f16b26e61aa2.webp
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c5889c4-d0fb-4545-94b4-f16b26e61aa2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 214b020ed417fbc4785b92f2bdb98834
57eed480ede736a0a948e9bd7c604427a8acf8a2
4228512d040b122d6e5d50418c507edeedbef4aee2fbb0a952da270734ece18f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c5889c4-d0fb-4545-94b4-f16b26e61aa2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8084
x-amzn-requestid: 2d0c493a-5c15-415e-a9d3-516c03b11dd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0WwGueIAMF--w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364342b-4d68f618620e18050704340e;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fSwsKH1erxART-SQu0L7QcUoKiGiSkFNu-no6OvsVFJMHu4yOUdAGg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 22:10:40 GMT
age: 40162
etag: "57eed480ede736a0a948e9bd7c604427a8acf8a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca38d141-58df-4cb1-a98e-9e926dce0b1e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca38d141-58df-4cb1-a98e-9e926dce0b1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e9d2fd6fad0411accce30c67be288f6
99e30a61aca3e5b861ec3f2f56ec242d06c84e03
36e0a989f24023e8df7e65f48d02b8ff44f5976c72e3add2a035f69a30a027ba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca38d141-58df-4cb1-a98e-9e926dce0b1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10102
x-amzn-requestid: 88180740-5e32-4c86-ac47-5385bf32ae6c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0RqG1joAMFtkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364340a-24dec56b1fff968d717cb075;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:06 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ekzGt2vPATtPpGvnlZOnwSAA1CzaAexQVHYWkaDWR2xDkKyt3dFUJA==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 22:21:08 GMT
age: 39534
etag: "99e30a61aca3e5b861ec3f2f56ec242d06c84e03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: w5Nv6yf06dCHv6q9wt8-guOfQSMywfZFoXxwWvcLc9FtdwgRIqPcUQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 18:32:15 GMT
age: 53267
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
theme.winnertheme.com/cholot/wp-content/uploadz/2019/07/1.jpg
172.67.163.80200 OK 27 kB URL HTTP/2 theme.winnertheme.com/cholot/wp-content/uploadz/2019/07/1.jpg
IP 172.67.163.80:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, baseline, precision 8, 1656x1100, components 1\012- data
Hash 37c4fcd5b31962513d0b2e8843146cea
f06c8c7b745abe4805e92600a6ff4b3823270edb
a9a888e41a988a9731030e3f3f3e09fe92c57828a84af64c596b28fadf38999f
GET /cholot/wp-content/uploadz/2019/07/1.jpg HTTP/1.1
Host: theme.winnertheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 09:20:02 GMT
content-type: image/jpeg
content-length: 27108
last-modified: Tue, 23 Jul 2019 16:33:37 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jftZeFvMyWT%2B7yjI1nbhP3BD9Dmu0HoCOOrwytRYjq%2BdGDyrti0%2BCs2rV%2BMTODQyuuqlvWzh8wCLtOVtN5qRBbVi350k7g9ohx6S8H99%2FIWvvuput%2B%2F25F9VLx3z9SgwWanBqLkcu9w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 764c457ea893b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 640694ccf55a37a2c3f7bc946065f849
3f43ab55882073a2a8636c0b683ed3b5d6f400c0
6e1f6ac1271486bca28a5974858183b5b0c4c2ffdcb0dc3b2c7e33fe450d73a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=147541
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 09:20:02 GMT
Etag: "63647697-116"
Expires: Sun, 06 Nov 2022 02:19:03 GMT
Last-Modified: Fri, 04 Nov 2022 02:19:03 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
www.terrazzomiami.com/wp-content/uploads/2022/06/cropped-favicon-32x32.png
192.185.112.43200 OK 1.2 kB URL HTTP/2 www.terrazzomiami.com/wp-content/uploads/2022/06/cropped-favicon-32x32.png
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 01124aa8d6e6137bb75ddeb5b3125e8e
ededd0ef60f3976058a22196d4b68f53a4dc7313
4234d5363c15017529546607a68d5c8e22d61d113608dd1215165744e24d37bc
GET /wp-content/uploads/2022/06/cropped-favicon-32x32.png HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 10:31:49 GMT
accept-ranges: bytes
content-length: 1175
content-type: image/png
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/uploads/2022/06/cropped-favicon-192x192.png
192.185.112.43200 OK 4.8 kB URL HTTP/2 www.terrazzomiami.com/wp-content/uploads/2022/06/cropped-favicon-192x192.png
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 75e2bc8103233af423283c90247cba5f
79e75643a8a61d7eb18331c0c1329b3da277147d
0b5b284ec3fe4e3da0534ec28c7e22ce4b7e0b059ab969a921e8aeafc284b15c
GET /wp-content/uploads/2022/06/cropped-favicon-192x192.png HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 10:31:49 GMT
accept-ranges: bytes
content-length: 4776
content-type: image/png
date: Fri, 04 Nov 2022 09:20:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/css/bootstrap.min.css?ver=1
192.185.112.43200 OK 0 B URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/css/bootstrap.min.css?ver=1
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/themes/cholot/css/bootstrap.min.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/js_composer%20wpbakery_v6.9.0/assets/css/js_composer.min.css?ver=6.9.0
192.185.112.43200 OK 0 B URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/js_composer%20wpbakery_v6.9.0/assets/css/js_composer.min.css?ver=6.9.0
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/js_composer%20wpbakery_v6.9.0/assets/css/js_composer.min.css?ver=6.9.0 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 01 Jun 2022 14:35:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
192.185.112.43200 OK 0 B URL HTTP/2 www.terrazzomiami.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 May 2022 05:35:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Source+Sans+Pro%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
IP 142.250.74.10:0
GET /css?family=Source+Sans+Pro%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 04 Nov 2022 09:20:01 GMT
date: Fri, 04 Nov 2022 09:20:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/style.css?ver=1
192.185.112.43200 OK 0 B URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/style.css?ver=1
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/themes/cholot/style.css?ver=1 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/themes/cholot/js/modernizr.js?ver=6.0.3
192.185.112.43200 OK 0 B URL HTTP/2 www.terrazzomiami.com/wp-content/themes/cholot/js/modernizr.js?ver=6.0.3
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/themes/cholot/js/modernizr.js?ver=6.0.3 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 07:43:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.terrazzomiami.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4
192.185.112.43200 OK 0 B URL HTTP/2 www.terrazzomiami.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4
IP 192.185.112.43:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4 HTTP/1.1
Host: www.terrazzomiami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/office/mn/mafn.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 13:00:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 04 Nov 2022 09:20:04 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Source+Sans+Pro%3A400%2C700%7CPlayfair+Display%3A400%2C700%2C900%26display%3Dswap&ver=1.0.0
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro%3A400%2C700%7CPlayfair+Display%3A400%2C700%2C900%26display%3Dswap&ver=1.0.0
IP 142.250.74.10:0
GET /css?family=Source+Sans+Pro%3A400%2C700%7CPlayfair+Display%3A400%2C700%2C900%26display%3Dswap&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.terrazzomiami.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 04 Nov 2022 09:20:01 GMT
date: Fri, 04 Nov 2022 09:20:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2