Report - maglare.com/aliquid-consequatur/documents.zip

Report Overview

Submitted URL
maglare.com/aliquid-consequatur/documents.zip
IP
111.118.215.27
ASN
#394695 PUBLIC-DOMAIN-REGISTRY
Submitted
2022-09-08 18:21:18
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
52

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	421 B	9.2 kB	142.250.74.138
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	55 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	6.2 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
maglare.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	18 kB	518 kB	111.118.215.27
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	487 B	46 kB	142.250.74.163
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
translate.googleapis.com	1005	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	4.6 kB	142.250.74.74
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.214.236.46
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	7.7 kB	142.250.74.3
translate.google.com	1156	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	394 B	807 B	142.250.74.46
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	746 B	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-08	medium	maglare.com/aliquid-consequatur/documents.zip	Malware
2022-09-08	medium	maglare.com/aliquid-consequatur/documents.zip	Malware
2022-09-08	medium	maglare.com/wp-content/themes/maglare-final/includes/css/jquery.fancybox.css?ver=4.7.24	Malware
2022-09-08	medium	maglare.com/wp-content/themes/maglare-final/includes/css/nice-options.css?ver=4.7.24	Malware
2022-09-08	medium	maglare.com/wp-content/uploads/maxmegamenu/style.css?ver=ddf61b	Malware
2022-09-08	medium	maglare.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	Malware
2022-09-08	medium	maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-alert.css?ver=1.3.0.2	Malware
2022-09-08	medium	maglare.com/wp-content/plugins/apply-online/public/js/applyonline-public.js?ver=1.5.1	Malware
2022-09-08	medium	maglare.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4	Malware
2022-09-08	medium	maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-form.css?ver=1.3.0.2	Malware
2022-09-08	medium	maglare.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b	Malware
2022-09-08	medium	maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-grid.css?ver=1.3.0.2	Malware
2022-09-08	medium	maglare.com/wp-includes/js/wp-embed.min.js?ver=4.7.24	Malware
2022-09-08	medium	maglare.com/wp-content/themes/maglare-final/includes/js/imagesloaded.min.js?ver=4.7.24	Malware
2022-09-08	medium	maglare.com/wp-content/themes/maglare-final/includes/js/superfish.min.js?ver=4.7.24	Malware
2022-09-08	medium	maglare.com/wp-content/themes/maglare-final/includes/js/jquery.quicksand.js?ver=4.7.24	Malware
2022-09-08	medium	maglare.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1	Malware
2022-09-08	medium	maglare.com/wp-content/plugins/caldera-forms/assets/js/frontend-script-init.min.js?ver=1.3.0.2	Malware
2022-09-08	medium	maglare.com/wp-content/plugins/caldera-forms/includes/cf-ajax/js/ajax-core.min.js?ver=1.3.0.2	Malware
2022-09-08	medium	maglare.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0	Malware
2022-09-08	medium	maglare.com/wp-content/plugins/caldera-forms/assets/css/fields.min.css?ver=1.3.0.2	Malware
2022-09-08	medium	maglare.com/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.4	Malware
2022-09-08	medium	maglare.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4	Malware
2022-09-08	medium	maglare.com/wp-content/themes/maglare-final/includes/js/general.js?ver=4.7.24	Malware
2022-09-08	medium	maglare.com/wp-includes/css/dashicons.min.css?ver=4.7.24	Malware
2022-09-08	medium	maglare.com/wp-includes/js/jquery/jquery.js?ver=1.12.4	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (31)

	URL	Size	First Seen	Last Seen
	maglare.com/wp-includes/js/masonry.min.js?ver=3.3.2	29 kB	2023-03-07	2024-03-26
Pretty URL maglare.com/wp-includes/js/masonry.min.js?ver=3.3.2 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:51 Last Seen2024-03-26 02:41:28 Times Seen2927 Hash 5420b6516c14245b504e7240a8310f2c bf6d46e754eca13c3074f002abb124e55ef4c3aa 3ca3e467b7d4d6b403aa4619019d9250b11449c8ee9c91c90bcbc9acdd64fea2 Loading...

	maglare.com/wp-includes/js/jquery/jquery.js?ver=1.12.4	97 kB	2023-03-07	2024-04-18
Pretty URL maglare.com/wp-includes/js/jquery/jquery.js?ver=1.12.4 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-04-18 21:08:33 Times Seen10179 Hash dc5ba5044fccc0297be7b262ce669a7c f137ff98ae379e35b0702967d3b6866a0a40e3be cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3 Loading...

	maglare.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0	7.9 kB	2023-03-07	2024-03-28
Pretty URL maglare.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:41 Last Seen2024-03-28 19:23:41 Times Seen898 Hash f5c25c9c6d60162ba8865649b89e56fc 520fa90c637f9e93f16ec3674136c61a0c1e3d60 337c515e1a749dfe4d3fc568c830b631f7ed4de0a1ee9ba28ed5c8c430ec1f9a Loading...

	maglare.com/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.4	17 kB	2023-03-07	2024-04-07
Pretty URL maglare.com/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.4 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2024-04-07 20:54:25 Times Seen13 Hash 299592dd5bfde6e6021a7278199a38a2 9191da674ec5f7c633093ff45e4b5f7f32c8d4c2 d882e57f89e960f071dfcc08ff798e8c0f0455284c1e493254a9044d40bffdc7 Loading...

	maglare.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b	1.8 kB	2023-03-07	2024-03-04
Pretty URL maglare.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2024-03-04 05:51:06 Times Seen352 Hash 57a06ff5d51e2c930127670adc905ae9 08400121f742f4b58e2d222f58bc7d09b15e3792 f9a749c4d9faccf5fb9d13db27dc760e8cc571685e3f772487eaec4f884a542c Loading...

	translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback	17 kB	2023-03-07	2024-04-19
Pretty URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-19 06:41:05 Times Seen14108 Hash a3eefe14b1b4698460d992bd1673a26b a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4 87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067 Loading...

	maglare.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-04-19
Pretty URL maglare.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-19 07:01:55 Times Seen37084 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	maglare.com/aliquid-consequatur/documents.zip	105 B	2023-03-07	2023-03-07
Pretty URL maglare.com/aliquid-consequatur/documents.zip IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2023-03-07 15:29:40 Times Seen1 Hash 66ad1b7f86a42ab0944033a5609609dd fc8f0f24fe743d111c17a6bc0448bef1f962e2c8 87656725a7e339953defaa1e50691795e8c7211f5f4964b332847e8379041dd0 Loading...

	translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit	78 kB	2023-03-07	2023-03-07
Pretty URL translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2023-03-07 13:58:22 Times Seen1 Hash 2aa60b217c28aa0e15182655ce069487 7f6cb58363b48d2dfe9c2da67cba92825152549d cc5a56609a36bd0ea08e04c814d7e9cfee1a0e17ad6656e0ac22e5e4000e5b11 Loading...

	maglare.com/wp-content/plugins/caldera-forms/assets/js/fields.min.js?ver=1.3.0.2	105 kB	2023-03-07	2023-03-07
Pretty URL maglare.com/wp-content/plugins/caldera-forms/assets/js/fields.min.js?ver=1.3.0.2 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2023-03-07 15:29:40 Times Seen1 Hash 1e958c332dd12d3a707eec871d5e95d9 802e66efcc1675f61ba5341fd4d627a99dba6390 d15d59f948fdbe2ece1877f8e8ceed3045958a077d25be53ffdde8d71afdaf90 Loading...

	maglare.com/wp-content/plugins/apply-online/public/js/applyonline-public.js?ver=1.5.1	4.0 kB	2023-03-07	2023-03-07
Pretty URL maglare.com/wp-content/plugins/apply-online/public/js/applyonline-public.js?ver=1.5.1 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2023-03-07 14:22:41 Times Seen1 Hash 7f4190ebd15ac6c6058704be0358f93b 5143bcad46d0ca95c2926252947d5f23a1f0e64d 5b131bee765e2353441695141148d21c5e98b241ad2dccc62a29c5925e5d701e Loading...

	maglare.com/wp-includes/js/wp-embed.min.js?ver=4.7.24	1.4 kB	2023-03-07	2024-04-06
Pretty URL maglare.com/wp-includes/js/wp-embed.min.js?ver=4.7.24 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:32 Last Seen2024-04-06 23:49:07 Times Seen555 Hash 92c80d35c5362a549518e2b474d23ea1 2807bfdd0dac15e0784cc9eb74a90ac132c38f6d 57dd85466749e869c5958a2652e548673557a2390ec68490a353916353ecc74e Loading...

	maglare.com/wp-content/plugins/caldera-forms/includes/cf-ajax/js/ajax-core.min.js?ver=1.3.0.2	1.4 kB	2023-03-07	2023-03-07
Pretty URL maglare.com/wp-content/plugins/caldera-forms/includes/cf-ajax/js/ajax-core.min.js?ver=1.3.0.2 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2023-03-07 15:29:40 Times Seen1 Hash 42b38e78af87cff98c64e210c31f0f0e 191e40eaf36020b9db31c1ab19ebe31cbd58559d 1f1fca1e332d93b960ff255522308281558bba20cfea1d0a27c6093436a22aad Loading...

	http:srcdoc	1.2 kB	2023-03-07	2023-10-23
Pretty URL http:srcdoc IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2023-10-23 05:00:07 Times Seen4 Hash 1de62a4f326c081c49d5fdbb380837a9 2306f80fa6c73543b3af799b105ef6fc812d89d0 71a8551572997ad5c34fb5e73b002d5b1ce1d900c9e5453f1fe24dfb68bd6c13 Loading...

	maglare.com/wp-content/themes/maglare-final/includes/js/imagesloaded.min.js?ver=4.7.24	6.4 kB	2023-03-07	2024-04-17
Pretty URL maglare.com/wp-content/themes/maglare-final/includes/js/imagesloaded.min.js?ver=4.7.24 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2024-04-17 08:25:12 Times Seen288 Hash 9d8cb7de22bcd6b8ef20f937fb0100bd 27a20d2018659a1a301b21322f4c99b51ab4cf65 c7fb370709d626d9c877f742ad956108c0d94fd40c63cc7a55cffdf39b70f372 Loading...

	maglare.com/wp-content/themes/maglare-final/includes/js/jquery.quicksand.js?ver=4.7.24	15 kB	2023-03-07	2024-04-16
Pretty URL maglare.com/wp-content/themes/maglare-final/includes/js/jquery.quicksand.js?ver=4.7.24 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:08 Last Seen2024-04-16 14:06:13 Times Seen160 Hash 3bc84a2b9acf5f6cc1f372a71440d100 313e1f14095ed5ca75c2cc1170f89624a4cdfefb c67a802ec53700c0af5dbc4ef39d2808808ed45eb7a9c44b1250212de4f2b3f5 Loading...

	maglare.com/wp-content/themes/maglare-final/includes/js/jquery.fancybox.js?ver=4.7.24	23 kB	2023-03-07	2023-11-02
Pretty URL maglare.com/wp-content/themes/maglare-final/includes/js/jquery.fancybox.js?ver=4.7.24 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2023-11-02 13:35:43 Times Seen7 Hash c7dfed34277b8efedb2e7092099a719a efbf56f61ccf1566bf2f50a52cff62c7ddcd198e a416a89c4e2d3b11cf0624ea4d671ac11bf168033d6c0468a671a799128025a8 Loading...

	maglare.com/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.13	14 kB	2023-03-07	2024-04-17
Pretty URL maglare.com/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.13 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:43 Last Seen2024-04-17 04:46:33 Times Seen575 Hash 9ce2ef9c51d872136c9bd85bd5428ea8 4b4f270db4ec228296f5127f22df9a0b502cec84 37b945e5fe609563e83b37edcbfe3d18aac072a55fc8962978afdf597a3c4aa8 Loading...

	maglare.com/wp-content/plugins/caldera-forms/assets/js/frontend-script-init.min.js?ver=1.3.0.2	3.0 kB	2023-03-07	2023-03-07
Pretty URL maglare.com/wp-content/plugins/caldera-forms/assets/js/frontend-script-init.min.js?ver=1.3.0.2 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2023-03-07 15:29:40 Times Seen1 Hash 55e5a3d0b59f4604f5333a6b772eb098 15b67e56cfd758ed69082ce0957cdd1d7819c132 4cae50411f39e39b3914d081f6b2cd8853c2b61bd1b2aca428dc5df06060f51c Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.37BLOAlmXRY.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrUGiCETWGRNOBEJN7r7a5YcSys-A/m=el_main	268 kB	2023-03-07	2023-03-07
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.37BLOAlmXRY.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrUGiCETWGRNOBEJN7r7a5YcSys-A/m=el_main IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:46:37 Last Seen2023-03-07 13:59:19 Times Seen1 Hash 7f8f42abf33dfef29efb8ace79a23b9d 5dd5357e86b8b60ac9484d0f19bd15e5f063690c e8a0d7eceffa557711009fe4b50d20fe6658979d01ddef39d89a30d90d0025d2 Loading...

	maglare.com/wp-content/plugins/caldera-forms/assets/js/jquery.baldrick.min.js?ver=1.3.0.2	11 kB	2023-03-07	2023-03-07
Pretty URL maglare.com/wp-content/plugins/caldera-forms/assets/js/jquery.baldrick.min.js?ver=1.3.0.2 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2023-03-07 15:29:40 Times Seen1 Hash 7cdebe135c37ba7f3cc002fe248a01a9 66fdfe07ea7c7360c16b9fe14a3e25db5afc7e37 53fbe81a376f3c8b20de280881c17dfe2e75fcdd159649e233a3743fec9107dd Loading...

	maglare.com/aliquid-consequatur/documents.zip	164 B	2023-03-07	2023-03-07
Pretty URL maglare.com/aliquid-consequatur/documents.zip IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2023-03-07 15:29:40 Times Seen1 Hash abce64875001445aaab77668196e4290 3386a9c3d259ba10e95175868d93a44c52ada4f4 e5179fbec58ae0c4a8c31fc4f76da2d0a2f624001898cad981c24e495851ca54 Loading...

	maglare.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4	36 kB	2023-03-07	2024-03-27
Pretty URL maglare.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:44 Last Seen2024-03-27 12:35:04 Times Seen623 Hash cb1f7699be677def94bc41a5d9da4f82 b1aff76bd04ba59abed8e19a71db339332d9e15d 131c19ca61ef3ab0c3199b1db78997ec2efb8327722cef4df46f09c4892d273d Loading...

	maglare.com/aliquid-consequatur/documents.zip	616 B	2023-03-07	2024-04-17
Pretty URL maglare.com/aliquid-consequatur/documents.zip IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:44 Last Seen2024-04-17 05:54:43 Times Seen775 Hash dbb14fb296945e09a607f4ffc8a8da52 73977a2c0d08bad9790597988fedbaaf5ead054f 20adabea74e67d597e882751a5a8b27b89161075d1b0d635bf43a84a6a957a95 Loading...

	maglare.com/wp-content/themes/maglare-final/includes/js/superfish.min.js?ver=4.7.24	4.2 kB	2023-03-07	2024-04-18
Pretty URL maglare.com/wp-content/themes/maglare-final/includes/js/superfish.min.js?ver=4.7.24 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:04 Last Seen2024-04-18 21:05:04 Times Seen254 Hash ea1e327cbbcc3b18c7aaa7bc952971c0 1789b21ad51582bf91116ba2173e67a3e0ee72a8 a718cba753fabbd42e5b6ae41e4bd5b7aed2062053f896d254e962b7e9e20a4c Loading...

	maglare.com/aliquid-consequatur/documents.zip	78 B	2023-03-07	2024-04-18
Pretty URL maglare.com/aliquid-consequatur/documents.zip IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:09 Last Seen2024-04-18 12:49:19 Times Seen2736 Hash 01e23790be4ce2b3aba2dc09884a374c 23e94090b7c158bea7e8a9c732423a1c7ec29e85 3b42ad7bcd4a7cd47666bd0d1b0d2daff953e15314f1b0577f51d90a192e0a12 Loading...

	maglare.com/aliquid-consequatur/documents.zip	2.0 kB	2023-03-07	2023-03-07
Pretty URL maglare.com/aliquid-consequatur/documents.zip IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2023-03-07 15:29:40 Times Seen1 Hash b5a29c1568213c45b81f41c1ec378e14 82f365378bb58c5df70e01936a88d1e85ee4a70d fe88b27c0999a63dbebfeb8902abbdd211813fcc2aedc11b69ec51ac7a64abde Loading...

	maglare.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4	3.9 kB	2023-03-07	2024-04-15
Pretty URL maglare.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-15 15:38:28 Times Seen3887 Hash e6784d91bf2c668bc4093063c5b15113 687e1d2e957a821280dbd205ae66182f16dfdc30 194ebae85ff853319e8668f23a4c5bf371a7d9f5d550a40980ab53026ddaaa17 Loading...

	maglare.com/wp-content/themes/maglare-final/includes/js/general.js?ver=4.7.24	9.5 kB	2023-03-07	2023-11-02
Pretty URL maglare.com/wp-content/themes/maglare-final/includes/js/general.js?ver=4.7.24 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2023-11-02 13:35:43 Times Seen7 Hash 0c88000aec307681dd523f09e0a4fff2 390b8152a9f29c97c55df693a82abe72d9894c04 11dac56e86a49a6e6836ada7136ab61073d9150599487d7d736ad85cfb291234 Loading...

	maglare.com/aliquid-consequatur/documents.zip	268 B	2023-03-07	2023-03-07
Pretty URL maglare.com/aliquid-consequatur/documents.zip IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2023-03-07 15:29:40 Times Seen1 Hash 4043095635193bb7a328a3d13f84aca6 df71c1bde598a4994a4cb946e8397ab7611fe0a8 1956bf2ce1b0e6a59bd07c49f2b916df83b0a14d44291b9108489cd077cd38d4 Loading...

	maglare.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1	1.1 kB	2023-03-07	2024-04-18
Pretty URL maglare.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1 IP 111.118.215.27 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2024-04-18 21:08:33 Times Seen1401 Hash 3dc5811cb7bb6e67b9054c8c39f9f4c9 ced11144eb84a14db2b3b0ab92998128c5e88204 124f0860b7201dc2fa46889b30ac0e4269e84ac2e71c33dc025ed14ed15bd8f0 Loading...

HTTP Transactions (76)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 18:05:21 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MjX-kVMEBsQ1Vj49js1nDyMQEsmJMIu-JCSzI4Ybx8t9WBwe9jpgag==
Age: 946

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8334
Expires: Thu, 08 Sep 2022 20:40:01 GMT
Date: Thu, 08 Sep 2022 18:21:07 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: n5gqF91xlmIv6r1w8QWn3ouLoVt5F0bCQQVgoBTZ-3P8mshC3LsyoA==
age: 52473
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:21:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 08 Sep 2022 17:38:18 GMT
Expires: Thu, 08 Sep 2022 18:28:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5gelIQA8MBEC07nx8slz5L7PiPhPh18t05x7XPISMePUte2baIca5w==
Age: 2569

maglare.com/aliquid-consequatur/documents.zip

111.118.215.27

301 Moved Permanently

0 B

URL HTTP/1.1
maglare.com/aliquid-consequatur/documents.zip
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /aliquid-consequatur/documents.zip HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Sep 2022 18:21:07 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Upgrade: h2,h2c
Connection: Upgrade
Location: https://maglare.com/aliquid-consequatur/documents.zip
Content-Length: 0
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
042105f89c8d64b470d84e052cd412d1
a26c7e2559b3760ea2765b16a3f8d1be27f5dcf4
fadb8cdd22f4d7773d5c20d576f6400ab25e20e1efe3e3fe50d2ae39ca6f2725

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3898
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:21:08 GMT
Last-Modified: Thu, 08 Sep 2022 17:16:10 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.214.236.46

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.214.236.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UAb5qJzsTCOux6ltDmXuhA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Z6riuX68ZXS+tmyUxSXqMb1ZaZs=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0e018cba643a707177aad92c70e9d3e3
dbfb89205a19321c391edd273d38eb6cb19c8a86
3044d8b40ad084e43b755aec5eb5db518ff2b4376d7880d24eaeb9811b6bef55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3044D8B40AD084E43B755AEC5EB5DB518FF2B4376D7880D24EAEB9811B6BEF55"
Last-Modified: Tue, 06 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 09 Sep 2022 00:21:08 GMT
Date: Thu, 08 Sep 2022 18:21:08 GMT
Connection: keep-alive

maglare.com/aliquid-consequatur/documents.zip

111.118.215.27

404 Not Found

9.1 kB

URL HTTP/2
maglare.com/aliquid-consequatur/documents.zip
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1724), with CRLF, LF line terminators
Size
9.1 kB (9128 bytes)
Hash
79f0d8e813b77d1f58372885ad7e7c14
19ca40a7286566fc8eb105c1ca72604a8a58479f
4ecfc409d6d97d57577901c13c8fe133fe462c44ae80aca73e550481ec5a9033

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /aliquid-consequatur/documents.zip HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://maglare.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 9128
content-type: text/html; charset=UTF-8
date: Thu, 08 Sep 2022 18:21:08 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
721eb245d022db7af3e30ad4e6b94226
4a53b4e9ad119295498594089826bddea4d0b9a6
6f350e89f4e7a0cea74c003493ea950c768ffcbea234bcf68a818b60842a2f3e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/themes/smoothness/jquery-ui.css?ver=4.7.24

142.250.74.138

200 OK

8.1 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/themes/smoothness/jquery-ui.css?ver=4.7.24
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2363)
Size
8.1 kB (8060 bytes)
Hash
f82cf2fcc0d83528c760595267f4b13c
6ceabb58082f73c764dc15636f38de0e3ad31935
90a65ba22d8ab66098ba901006963f75f54be465bd2df2dd11c434e483fd3a75

HTTP Headers

GET /ajax/libs/jqueryui/1.11.4/themes/smoothness/jquery-ui.css?ver=4.7.24 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 8060
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 12:33:31 GMT
expires: Thu, 07 Sep 2023 12:33:31 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 107258
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/css; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
55362bc853c99806e54641de1e0fdb0c
1c84425554ce994c84fd4d3b95833fed9bf16023
936a1c711aea3c55e6e270aec23f72818b7bbfed28b1c9859697050ebe9aaf4e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
61fa8fd39230a3bf012693c99bb8e386
a3499cec773718f5fda599d792416fd70e55e053
8019f604412926da7c7514ea3bf02fc413f5cf36e79c9f3e9a8189b5b42a904e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7892
Expires: Thu, 08 Sep 2022 20:32:41 GMT
Date: Thu, 08 Sep 2022 18:21:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7892
Expires: Thu, 08 Sep 2022 20:32:41 GMT
Date: Thu, 08 Sep 2022 18:21:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7892
Expires: Thu, 08 Sep 2022 20:32:41 GMT
Date: Thu, 08 Sep 2022 18:21:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7892
Expires: Thu, 08 Sep 2022 20:32:41 GMT
Date: Thu, 08 Sep 2022 18:21:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7892
Expires: Thu, 08 Sep 2022 20:32:41 GMT
Date: Thu, 08 Sep 2022 18:21:09 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffca3b7c7-528e-421a-8910-451f0b9b667f.webp

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffca3b7c7-528e-421a-8910-451f0b9b667f.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8162 bytes)
Hash
09267c271a56ba4c2d4197543f264fac
67ae4acd88571da51b81fa7ed963b7f2a71845b4
906163f9e1bb8908ae7fcfbf4debc2a42fd14a3f90c8814536025a57ee851dbe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffca3b7c7-528e-421a-8910-451f0b9b667f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8162
x-amzn-requestid: decb1d93-bcc9-4a71-a054-c537ad7d1add
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YJvndF1fIAMFv7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a2c95-27cef2465fd0e6c849da81af;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 17:55:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: C_J0m9xfkCb5qsoO934KB2Ldk1-yMaMXkgiv9gWus7JqjN3M_HCpdg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 17:56:29 GMT
age: 1480
etag: "67ae4acd88571da51b81fa7ed963b7f2a71845b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6214 bytes)
Hash
f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 05:34:36 GMT
age: 45993
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11365 bytes)
Hash
6f73ee4e91b38eaa36cadd4c437785f8
6ceea057f5ae50b9cef505da0a358e3d3b7d6a38
778d28e14b28c154843403470136d0efdcdd5e93e4b5aab784c12d4344e7af6f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11365
x-amzn-requestid: d50039cd-381c-4221-997e-9231d40ecfbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9V0EHEoAMFeag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f58-11cab61904bd14462cd13d0d;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: z7RyNwWgq5r9B2WMa5ibpo3d8DXFSFCCrEHpMvc0Q5SqE2x1ovaV-g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:41:33 GMT
age: 70776
etag: "6ceea057f5ae50b9cef505da0a358e3d3b7d6a38"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

maglare.com/wp-content/themes/maglare-final/includes/css/jquery.fancybox.css?ver=4.7.24

111.118.215.27

200 OK

1.2 kB

URL HTTP/2
maglare.com/wp-content/themes/maglare-final/includes/css/jquery.fancybox.css?ver=4.7.24
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (306)
Size
1.2 kB (1230 bytes)
Hash
0a4108d988a3be40afd0d28ac234b34d
ce5d07ae5a77f76221aee18d6b4a1cbc8dc87042
ec0ead0831dabc45d61970b33834942e36c787b9b6ee4beb8c05af11575f5099

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/maglare-final/includes/css/jquery.fancybox.css?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:41:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1230
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7885 bytes)
Hash
7ca5b5d4ac26d97b5729a30ecdc688bc
3e633bc6c4ab9adfe84899e5209d73bef1d097eb
2c8275d1819d933f86df9685b76aea030842ba5a341c59ea88ffd2da99a5a3d5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7885
x-amzn-requestid: 305dc6b7-eb3d-40ad-af89-8b60be935637
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9ThE3DIAMFRtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7c0b58644e26de7f27c5b388;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ry2D03udnweYHan_7KhC9IDhT01g9_73G40Fa10BdIX21tgK0Cgjiw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:48:35 GMT
etag: "3e633bc6c4ab9adfe84899e5209d73bef1d097eb"
content-type: image/jpeg
age: 73954
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

maglare.com/wp-content/themes/maglare-final/includes/css/nice-options.css?ver=4.7.24

111.118.215.27

200 OK

0 B

URL HTTP/2
maglare.com/wp-content/themes/maglare-final/includes/css/nice-options.css?ver=4.7.24
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/maglare-final/includes/css/nice-options.css?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:41:20 GMT
accept-ranges: bytes
content-length: 0
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7492 bytes)
Hash
a07d553b6441514870ed7e9e989a29a7
98c145b9326d1e6036fa9089d87a25232dd45b0b
373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6mfdlMHJozdykr4faiijvUuJPXVrJGU_n0MxJgCrZ-uWWdejGYfiAQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:33:06 GMT
age: 71283
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

maglare.com/wp-content/themes/maglare-final/includes/css/font-awesome.min.css?ver=4.7.24

111.118.215.27

200 OK

4.0 kB

URL HTTP/2
maglare.com/wp-content/themes/maglare-final/includes/css/font-awesome.min.css?ver=4.7.24
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (17615), with no line terminators
Size
4.0 kB (3975 bytes)
Hash
011bf0dc8507abed994f9e5cb036db49
eb3d3f3323e153a87f896f41b2476e7a16c66344
dd2d73bc55dca266b7817433ca44a98b7e0217c6b647507aebb6a2ea3a194267

HTTP Headers

GET /wp-content/themes/maglare-final/includes/css/font-awesome.min.css?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:41:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3975
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7251 bytes)
Hash
1cd778a615e9a4ca3a25119790398434
d6daca74fc85d39274b3c7536f34528bef93ae97
e6b5a7a525e314e09c30985b22da7c34806df09cbe98ad52b00dcbf93a0dc054

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7251
x-amzn-requestid: 26b2021a-4440-47ce-8dba-d971cae60cc1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9bmHcmoAMF3Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f7d-5471edce7de2374c3b8af888;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: d3MrDEyDFDylQKyfxONQ12_7IBvRAg8o0rSZ64WNRGNvDHqQyDmqJA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:16:27 GMT
age: 72282
etag: "d6daca74fc85d39274b3c7536f34528bef93ae97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/apply-online/public/css/applyonline-public.css?ver=1.11.4

111.118.215.27

200 OK

1.2 kB

URL HTTP/2
maglare.com/wp-content/plugins/apply-online/public/css/applyonline-public.css?ver=1.11.4
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
1.2 kB (1176 bytes)
Hash
a5b74003759ff108bbb60a7090d859a5
4f2990fcfe45e2475252e8dbf47e945fdbc5aca8
8aad6a17b6a9f3c494f32a24f44b5ebdda5de82b115bd3014f3bc3f2121a07f6

HTTP Headers

GET /wp-content/plugins/apply-online/public/css/applyonline-public.css?ver=1.11.4 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 07 Feb 2017 10:51:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1176
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/uploads/maxmegamenu/style.css?ver=ddf61b

111.118.215.27

200 OK

6.3 kB

URL HTTP/2
maglare.com/wp-content/uploads/maxmegamenu/style.css?ver=ddf61b
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (742)
Size
6.3 kB (6334 bytes)
Hash
66013fa603e3d3d7181471e34b24d766
cfe3830e80e6f3f2e69d4d3b1ddf0bd7fd56b88f
a4fb7ad3382ae0748a7c24bbd43b5012c3633780509637810c71527399356197

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/maxmegamenu/style.css?ver=ddf61b HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:59:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6334
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.13

111.118.215.27

200 OK

13 kB

URL HTTP/2
maglare.com/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.13
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
13 kB (13137 bytes)
Hash
58dd59686fb83f247d72c74284641945
3f36fc8f2c2921f025ea2dee95d475a5705dc84e
df199699d2cda0f41a52e5f3396111fe8868f798b92e0fe2e39018ad39cf497c

HTTP Headers

GET /wp-content/plugins/google-language-translator/css/style.css?ver=6.0.13 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 22 Feb 2022 06:14:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13137
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

111.118.215.27

200 OK

4.4 kB

URL HTTP/2
maglare.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (9959)
Size
4.4 kB (4444 bytes)
Hash
1e40dfe689f1e989e1a3de2e3c6e26bf
4196eddc5203fd18f63e90065d777f757088ca2f
b40b1ef07db6e093ad2df064e8cb582906eb2448e1caacc2f5b721cd5d0e3cb4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 31 Jan 2017 07:37:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4444
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/themes/maglare-final/custom.css

111.118.215.27

200 OK

0 B

URL HTTP/2
maglare.com/wp-content/themes/maglare-final/custom.css
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/themes/maglare-final/custom.css HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:41:09 GMT
accept-ranges: bytes
content-length: 0
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-alert.css?ver=1.3.0.2

111.118.215.27

200 OK

621 B

URL HTTP/2
maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-alert.css?ver=1.3.0.2
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
621 B (621 bytes)
Hash
9cdb18378b6cd8d15dc113b5c1e5e859
073da2caca0f2c17011fe826fdb57746597d7b5b
2cfdd3831b8f2bfef7f269e45431a97c379e5e3fbad313747b58a4ae8f377769

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/caldera-forms/assets/css/caldera-alert.css?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:42:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 621
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/apply-online/public/js/applyonline-public.js?ver=1.5.1

111.118.215.27

200 OK

1.3 kB

URL HTTP/2
maglare.com/wp-content/plugins/apply-online/public/js/applyonline-public.js?ver=1.5.1
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
1.3 kB (1266 bytes)
Hash
cb61dedac097bf1fe19824eca9119b4c
5794e3c00ad8001458405c4b25b46ab4c533d96f
04f718eb8fabc1f99ea5c82e8f2abe01e935b68921f4b3ae255ff571cd15636d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/apply-online/public/js/applyonline-public.js?ver=1.5.1 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 07 Feb 2017 10:51:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1266
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4

111.118.215.27

200 OK

1.9 kB

URL HTTP/2
maglare.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (3704)
Size
1.9 kB (1893 bytes)
Hash
4da7257348968d061b28e145e26a4639
6a9e0f37940c7bc32efc1434b12da6d9d8e54571
33a59fbe2e521f58b4982d80c7659a0135f436a0d32f3594e5d9803b286433ec

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 03:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1893
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/uploads/2015/09/maglare-logo1.png

111.118.215.27

200 OK

26 kB

URL HTTP/2
maglare.com/wp-content/uploads/2015/09/maglare-logo1.png
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 300 x 86, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (25795 bytes)
Hash
3b45ca76e7af24ed042a5dca288a4936
fc1d7f6050981eb390a975c0320913549dd6054b
ef0fbb046ab727aa9534f48bebd1e4f67b4337637f545c0f9e8f79d62350d868

HTTP Headers

GET /wp-content/uploads/2015/09/maglare-logo1.png HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 31 Jan 2017 07:25:14 GMT
accept-ranges: bytes
content-length: 25795
content-type: image/png
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-form.css?ver=1.3.0.2

111.118.215.27

200 OK

5.7 kB

URL HTTP/2
maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-form.css?ver=1.3.0.2
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (27140), with no line terminators
Size
5.7 kB (5677 bytes)
Hash
b722946abae93e5106f2ff7d306703f1
eda0efa0b5488022b75e77bdefaf58ccaf8f92ad
83919c740347c44b083ecf631b3713f2b1f19e5057692ff635226a825de65224

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/caldera-forms/assets/css/caldera-form.css?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:42:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5677
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/uploads/2017/10/mnrelogo.png

111.118.215.27

200 OK

25 kB

URL HTTP/2
maglare.com/wp-content/uploads/2017/10/mnrelogo.png
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 196 x 67, 8-bit/color RGBA, non-interlaced\012- data
Size
25 kB (25197 bytes)
Hash
f5ef0e5cb099cffcab4e8c8d6248054d
441d9fdd0a3864b9f95077e2be98b7891c950315
19b3e047e93fc03be9e7ae8462eb0ab280f97dc633b38ef5b8bed67da8cc2d06

HTTP Headers

GET /wp-content/uploads/2017/10/mnrelogo.png HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 26 Oct 2017 07:48:49 GMT
accept-ranges: bytes
content-length: 25197
content-type: image/png
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b

111.118.215.27

200 OK

701 B

URL HTTP/2
maglare.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (1613)
Size
701 B (701 bytes)
Hash
07fa8d25c4e2ca93082772f1fffcf179
344a180acf5b1282c4ea15fb58a97cecffbdef10
2a1b9f76a46bd2025faff324df7c771b4a3ea1cedd22e3a82db050155ef80285

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 03:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 701
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-grid.css?ver=1.3.0.2

111.118.215.27

200 OK

5.6 kB

URL HTTP/2
maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-grid.css?ver=1.3.0.2
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
5.6 kB (5611 bytes)
Hash
483f5d262109dcb15b32af810121c168
8921ddff6bb6df1afbee664169994ba2fd0e6772
c3e626f4dcebde821c25ff108028627408b3ca3b8b99aa4c2d820ed75876a994

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/caldera-forms/assets/css/caldera-grid.css?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:42:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5611
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-includes/js/wp-embed.min.js?ver=4.7.24

111.118.215.27

200 OK

748 B

URL HTTP/2
maglare.com/wp-includes/js/wp-embed.min.js?ver=4.7.24
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (1386), with no line terminators
Size
748 B (748 bytes)
Hash
3d6a96ac061c191da5303f6bc1155c1c
d6cc1367e067e17b1ddd39232d470f52eeb473be
45d28c4dff03f277762685eba6370a8411510c969a222f076e3cd7a6b2651470

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 03:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 748
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/themes/maglare-final/includes/js/imagesloaded.min.js?ver=4.7.24

111.118.215.27

200 OK

2.4 kB

URL HTTP/2
maglare.com/wp-content/themes/maglare-final/includes/js/imagesloaded.min.js?ver=4.7.24
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (6309)
Size
2.4 kB (2387 bytes)
Hash
c8a077f733d6e2fa48aa72099fb64131
b857843038718ab3c94f6184daf2c2cb59937a46
e35a178fad0a471002324d520d6849c60f36993e02e5649bf53316544197ca21

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/maglare-final/includes/js/imagesloaded.min.js?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:51:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2387
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/themes/maglare-final/includes/js/superfish.min.js?ver=4.7.24

111.118.215.27

200 OK

1.9 kB

URL HTTP/2
maglare.com/wp-content/themes/maglare-final/includes/js/superfish.min.js?ver=4.7.24
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (3978)
Size
1.9 kB (1871 bytes)
Hash
a23734718526460e72962833d30eb859
097f0e6dbb7c507a29d892b52c343a7375a09621
78c0142aa6d91c030ef150d0b8f1e480f9545dcaec3bffd8b82b33b4e855d3c4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/maglare-final/includes/js/superfish.min.js?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Sep 2015 08:02:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1871
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/themes/maglare-final/includes/js/jquery.quicksand.js?ver=4.7.24

111.118.215.27

200 OK

4.1 kB

URL HTTP/2
maglare.com/wp-content/themes/maglare-final/includes/js/jquery.quicksand.js?ver=4.7.24
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
4.1 kB (4082 bytes)
Hash
1426c50ef58ad60fab4ba26398d85e4e
ec00abf551c7d76a89330a9a9fb940ca444645f8
26cc70af32843fca01214c28c294548736a00039b760d1392549eae140c36f8c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/maglare-final/includes/js/jquery.quicksand.js?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:51:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4082
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1

111.118.215.27

200 OK

461 B

URL HTTP/2
maglare.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (1087), with no line terminators
Size
461 B (461 bytes)
Hash
3a2a8769be5c880aeeb5e504b1456f2c
394f14b24ec2298e2140f12515e3ed596fc85703
99032f8783df12492fe4ef9da67ba94304250f72beaa6132a7c0847401fa594d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/hoverIntent.min.js?ver=1.8.1 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 03:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 461
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/caldera-forms/assets/js/frontend-script-init.min.js?ver=1.3.0.2

111.118.215.27

200 OK

1.1 kB

URL HTTP/2
maglare.com/wp-content/plugins/caldera-forms/assets/js/frontend-script-init.min.js?ver=1.3.0.2
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (2967), with no line terminators
Size
1.1 kB (1076 bytes)
Hash
af5a025c1070b38af6c68cd19d777201
30f37e59ed430941f191a9d269782080d04b6160
f140ef25f26896cff1f36fe6661115b058682ded27b6e8a85f8b7e49515d0c27

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/caldera-forms/assets/js/frontend-script-init.min.js?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:50:41 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1076
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/caldera-forms/includes/cf-ajax/js/ajax-core.min.js?ver=1.3.0.2

111.118.215.27

200 OK

597 B

URL HTTP/2
maglare.com/wp-content/plugins/caldera-forms/includes/cf-ajax/js/ajax-core.min.js?ver=1.3.0.2
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (1432), with no line terminators
Size
597 B (597 bytes)
Hash
8e335e7c1235a7aa1b63bd157a37016c
087ae0b17ba5379bbcf3dc4f727892c35fb9cf69
8eef97ed84ad56dbeb19dfa9a574e77de4abc2eca37a347c200b94058765a4f7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/caldera-forms/includes/cf-ajax/js/ajax-core.min.js?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:51:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 597
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/caldera-forms/assets/js/jquery.baldrick.min.js?ver=1.3.0.2

111.118.215.27

200 OK

3.7 kB

URL HTTP/2
maglare.com/wp-content/plugins/caldera-forms/assets/js/jquery.baldrick.min.js?ver=1.3.0.2
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (11063), with no line terminators
Size
3.7 kB (3726 bytes)
Hash
276d6a3dfb2201789c4d426bef78ac1e
b32c5068fd9cb691f3e92b3769e3468b9c0a4292
f26e137bd6a5ab9ccffb85948abb4f4f59c4ba11a7c1d32ee647377defe80ca5

HTTP Headers

GET /wp-content/plugins/caldera-forms/assets/js/jquery.baldrick.min.js?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:49:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3726
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0

111.118.215.27

200 OK

2.8 kB

URL HTTP/2
maglare.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (7855), with no line terminators
Size
2.8 kB (2759 bytes)
Hash
a49e99c3de3b2981ea5aefc453ea38de
12ec0e23669671edad05f47713a2a781b25b88f5
a74b7fac628d26e3d20f2f6e7581e7ff29b073ca5432407d89549000959ba5cd

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 03:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2759
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/themes/maglare-final/includes/js/jquery.fancybox.js?ver=4.7.24

111.118.215.27

200 OK

10 kB

URL HTTP/2
maglare.com/wp-content/themes/maglare-final/includes/js/jquery.fancybox.js?ver=4.7.24
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (596)
Size
10 kB (10242 bytes)
Hash
d52af2101f9d5fc83d0b33ea66d826c3
da9b2ab17ddcc088873e68aeef9deab6ce423e2a
9cfd0357e6c4f2679fccb8770a555b2fc86c4503ceeddd0af4d20fb40da92118

HTTP Headers

GET /wp-content/themes/maglare-final/includes/js/jquery.fancybox.js?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:51:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10242
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.13

111.118.215.27

200 OK

3.8 kB

URL HTTP/2
maglare.com/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.13
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
3.8 kB (3787 bytes)
Hash
c963e3e85da0f47cf30b60e2e3c6f863
5a769960db02381c20771e203e11645701700af3
79a2a8fb91b167b46e79a1f535179771d979deeb35d41d8d6c01d2dd208037f2

HTTP Headers

GET /wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.13 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 22 Feb 2022 06:14:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3787
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/caldera-forms/assets/css/fields.min.css?ver=1.3.0.2

111.118.215.27

200 OK

10 kB

URL HTTP/2
maglare.com/wp-content/plugins/caldera-forms/assets/css/fields.min.css?ver=1.3.0.2
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (56297)
Size
10 kB (10343 bytes)
Hash
8c105ce8ef66dfc4630be68a1b60cdd0
3cb9f8a3b46dcec67ac114908fed649ac1882961
e53d72028bfcf9ad4946dd861ba3e56dfa1c1cf6cb3ac9a5b1aed7126d07d645

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/caldera-forms/assets/css/fields.min.css?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 16 Sep 2015 08:51:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10343
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.4

111.118.215.27

200 OK

4.2 kB

URL HTTP/2
maglare.com/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.4
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
4.2 kB (4161 bytes)
Hash
67cca8d0798500c6fc99af9bbf9697a6
8113bb545c0c5356df5a5bfe41db00c1d357f102
d4fd517945473b5709d49b3e2ee0081400653f04586b4f700f4c00eeeb1713ae

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.4 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 31 Oct 2017 08:45:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4161
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4

111.118.215.27

200 OK

14 kB

URL HTTP/2
maglare.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (35951)
Size
14 kB (13685 bytes)
Hash
fba979daca6855192f43240438556caa
ff27ba6026259130bfbd6d0d4a8997e1b4baefa7
e8e87820dacf94c1b4727cbe4b24672d497e42a8f2e88f9c652bcc54e00b1bfd

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 03:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13685
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-includes/js/masonry.min.js?ver=3.3.2

111.118.215.27

200 OK

11 kB

URL HTTP/2
maglare.com/wp-includes/js/masonry.min.js?ver=3.3.2
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (28817)
Size
11 kB (10818 bytes)
Hash
ef4a34b1e5d01abf2365208308e2cbbf
124eb37ac36a01a011f19189d4f553562d6b80b7
8e3c12244c958fb8ace1c84f1165d23df99ae09ab0cd5404a76a2db458f56f4d

HTTP Headers

GET /wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 31 Jan 2017 07:37:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10818
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/themes/maglare-final/includes/js/general.js?ver=4.7.24

111.118.215.27

200 OK

3.2 kB

URL HTTP/2
maglare.com/wp-content/themes/maglare-final/includes/js/general.js?ver=4.7.24
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text
Size
3.2 kB (3209 bytes)
Hash
90741e3386397645efb814d687276fe2
fd1348efec639ff845c9050bc4dc04bae45e80a6
46fec1fc75708b1b3f5e4ee2bc69c3a1aadae7f67175da57410e6ce9702eafa9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/maglare-final/includes/js/general.js?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:51:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3209
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
61961ee76ab6c28f6e17eb7a1df4a3ea
ab4e8c9c284a0eed6b2fab77c9df432839158b3a
9e3bec23cc8ea49ab4e3a3a244a428c59e6c48c80359c473155584807ba0de41

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:21:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:21:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.163

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://maglare.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 08:31:01 GMT
expires: Wed, 06 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 208209
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:21:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

translate.googleapis.com/translate_static/css/translateelement.css

142.250.74.74

200 OK

3.6 kB

URL HTTP/2
translate.googleapis.com/translate_static/css/translateelement.css
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (18670)
Size
3.6 kB (3619 bytes)
Hash
897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0

HTTP Headers

GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 18:13:19 GMT
expires: Thu, 08 Sep 2022 19:13:19 GMT
cache-control: public, max-age=3600
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
age: 471
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maglare.com/wp-content/themes/maglare-final/images/social.png

111.118.215.27

200 OK

148 kB

URL HTTP/2
maglare.com/wp-content/themes/maglare-final/images/social.png
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
PNG image data, 1120 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
148 kB (148068 bytes)
Hash
3f318c25f620a5eabeb90f70c15dbcb9
b7426c517af3e6ea7d3a60f70c58cec0c1c0dfa2
4e7d199c87d03c3226b25ef0c9549799f578f42ea7b6f07a4750965cec367986

HTTP Headers

GET /wp-content/themes/maglare-final/images/social.png HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/wp-content/themes/maglare-final/style.css?ver=4.7.24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 15 Feb 2017 11:32:53 GMT
accept-ranges: bytes
content-length: 148068
content-type: image/png
date: Thu, 08 Sep 2022 18:21:10 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/plugins/caldera-forms/assets/js/fields.min.js?ver=1.3.0.2

111.118.215.27

200 OK

133 kB

URL HTTP/2
maglare.com/wp-content/plugins/caldera-forms/assets/js/fields.min.js?ver=1.3.0.2
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
ASCII text, with very long lines (32306)
Size
133 kB (133175 bytes)
Hash
1697e5f9a62bfb5813159c6e3fd6c02b
f305c8779dbaae80ffec0d5b4628c21920e8dc30
35120642183c2e2dd202b8cac073bc7ff81b34408d8251d162ed177646086de9

HTTP Headers

GET /wp-content/plugins/caldera-forms/assets/js/fields.min.js?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:48:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/themes/maglare-final/includes/fonts/fontawesome-webfont.woff?v=4.0.3

111.118.215.27

200 OK

44 kB

URL HTTP/2
maglare.com/wp-content/themes/maglare-final/includes/fonts/fontawesome-webfont.woff?v=4.0.3
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Size
44 kB (44432 bytes)
Hash
3293616ec0c605c7c2db25829a0a509e
04c3bf56d87a0828935bd6b4aee859995f321693
0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849

HTTP Headers

GET /wp-content/themes/maglare-final/includes/fonts/fontawesome-webfont.woff?v=4.0.3 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://maglare.com/wp-content/themes/maglare-final/includes/css/font-awesome.min.css?ver=4.7.24
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Sep 2015 08:02:07 GMT
accept-ranges: bytes
content-length: 44432
content-type: font/woff
date: Thu, 08 Sep 2022 18:21:10 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db433121f8c8215d44bcd26aff290172
f96b386796e3589437cd57fac6782842c17ce746
455323a3f807014a498118929131b6aad4ec5283f95be23108b2afd329576098

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db433121f8c8215d44bcd26aff290172
f96b386796e3589437cd57fac6782842c17ce746
455323a3f807014a498118929131b6aad4ec5283f95be23108b2afd329576098

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maglare.com/wp-content/uploads/2015/09/favicon.ico

111.118.215.27

200 OK

1.4 kB

URL HTTP/2
maglare.com/wp-content/uploads/2015/09/favicon.ico
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type
MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Size
1.4 kB (1406 bytes)
Hash
b247f16aa003662ab0137ff0c83a2023
a12d1e1e839c014fef2b17d6f7ec88ac9227513a
43ec48ac87df660c3ce1c6ebbbc45e1486ca196778226f87b917d29a4f372392

HTTP Headers

GET /wp-content/uploads/2015/09/favicon.ico HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 08 Sep 2022 18:21:10 GMT
server: Apache
content-type: image/x-icon
content-length: 1406
last-modified: Wed, 16 Sep 2015 10:08:09 GMT
cache-control: max-age=604800
expires: Tue, 13 Sep 2022 12:49:58 GMT
x-server-cache: true
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit

142.250.74.46

200 OK

0 B

URL HTTP/2
translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /translate_a/element.js?cb=GoogleLanguageTranslatorInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 08 Sep 2022 18:21:09 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+469; expires=Sat, 07-Sep-2024 18:21:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maglare.com/wp-includes/css/dashicons.min.css?ver=4.7.24

111.118.215.27

200 OK

0 B

URL HTTP/2
maglare.com/wp-includes/css/dashicons.min.css?ver=4.7.24
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/dashicons.min.css?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 31 Jan 2017 07:37:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-content/themes/maglare-final/style.css?ver=4.7.24

111.118.215.27

200 OK

0 B

URL HTTP/2
maglare.com/wp-content/themes/maglare-final/style.css?ver=4.7.24
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/maglare-final/style.css?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 21 Apr 2018 10:06:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

maglare.com/wp-includes/js/jquery/jquery.js?ver=1.12.4

111.118.215.27

200 OK

0 B

URL HTTP/2
maglare.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
111.118.215.27:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 05 Sep 2019 02:51:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 08 Sep 2022 18:21:09 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:r,i,b,bi

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:r,i,b,bi
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans:r,i,b,bi HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Sep 2022 18:21:09 GMT
date: Thu, 08 Sep 2022 18:21:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations