firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 12 Sep 2022 22:08:31 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XX35Zg5EphCAONfLbmmxv7passirNK02ScB_2FyiTyo0dSQOc3BQJw==
Age: 3553
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6036
Expires: Tue, 13 Sep 2022 00:48:21 GMT
Date: Mon, 12 Sep 2022 23:07:45 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RzetmSiSslWKllBhoi9JDx247X7X4l-SY7-pVqr_7dB6gSOKl-xsTg==
age: 57033
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 12 Sep 2022 23:07:45 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 12 Sep 2022 22:56:07 GMT
Cache-Control: max-age=3600
Expires: Mon, 12 Sep 2022 23:54:31 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YoaYX_52jNXmXCIZazTChGagORnfh-PVyQWG4id0XQ69BC_vuY7G8w==
Age: 698
maglare.com/aliquid-consequatur/documents.zip
111.118.215.27301 Moved Permanently 0 B URL HTTP/1.1 maglare.com/aliquid-consequatur/documents.zip
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /aliquid-consequatur/documents.zip HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 12 Sep 2022 23:07:45 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Upgrade: h2,h2c
Connection: Upgrade
Location: https://maglare.com/aliquid-consequatur/documents.zip
Content-Length: 0
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cb674936db4af4be99c3c397eff8c6ae
de79d76bac3fae5799b0ff35ecc19360595dfb06
992b884b64f9f6fdb76a6ba91c48fed329325b95b99d8003b282879a52093c08
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3660
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:07:45 GMT
Last-Modified: Mon, 12 Sep 2022 22:06:45 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.80.131.74101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.80.131.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y42DiToBg0/Pw1i4o/QRlg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pwv0bNLTZhxO13pJZFRRDfoAS98=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c05444b02e767be3c5b1e69f346fa708
5ffaa9bdc7cc160243fee2af0b41b615348630db
f8e9301439f79fad63e02d13cbab37ec0f25792a60c5295006e55274d4034519
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8E9301439F79FAD63E02D13CBAB37EC0F25792A60C5295006E55274D4034519"
Last-Modified: Sun, 11 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 13 Sep 2022 05:07:46 GMT
Date: Mon, 12 Sep 2022 23:07:46 GMT
Connection: keep-alive
maglare.com/aliquid-consequatur/documents.zip
111.118.215.27404 Not Found 9.1 kB URL HTTP/2 maglare.com/aliquid-consequatur/documents.zip
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1724), with CRLF, LF line terminators
Hash c4a9e87202359e027ebc5bc71db740ca
481ea95bf1483312b43805957346dd5ff329af7c
8830f320cc1a85260d5c2e119d5c9f899ecf16953c8b3820b80eeaf3183156e4
Analyzer Verdict Alert fortinet Malware
GET /aliquid-consequatur/documents.zip HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://maglare.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 9123
content-type: text/html; charset=UTF-8
date: Mon, 12 Sep 2022 23:07:46 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6526c70eb74c821b7a95487ad9a4e13d
0b8c610a7755437ab815b845f52cbb27e6c95008
059d15ca6ac7cb1830286ae635731e03b56c01d7d050291dabe2b3f3db866c9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:07:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6526c70eb74c821b7a95487ad9a4e13d
0b8c610a7755437ab815b845f52cbb27e6c95008
059d15ca6ac7cb1830286ae635731e03b56c01d7d050291dabe2b3f3db866c9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:07:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7333
Expires: Tue, 13 Sep 2022 01:10:00 GMT
Date: Mon, 12 Sep 2022 23:07:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7333
Expires: Tue, 13 Sep 2022 01:10:00 GMT
Date: Mon, 12 Sep 2022 23:07:47 GMT
Connection: keep-alive
ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/themes/smoothness/jquery-ui.css?ver=4.7.24
216.58.207.202200 OK 8.1 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/themes/smoothness/jquery-ui.css?ver=4.7.24
IP 216.58.207.202:0
File type ASCII text, with very long lines (2363)
Hash f82cf2fcc0d83528c760595267f4b13c
6ceabb58082f73c764dc15636f38de0e3ad31935
90a65ba22d8ab66098ba901006963f75f54be465bd2df2dd11c434e483fd3a75
GET /ajax/libs/jqueryui/1.11.4/themes/smoothness/jquery-ui.css?ver=4.7.24 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 8060
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 05:03:24 GMT
expires: Tue, 12 Sep 2023 05:03:24 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/css; charset=UTF-8
age: 65063
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ad439cab56126bcc402ee9f92365a209
a4b48a9a733c53cbc7020e190b8c787e1f80f55a
d0e2e52b66a8dec8c57092ec332f452a7348941d778d7b4686ca32696aabd065
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:07:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7333
Expires: Tue, 13 Sep 2022 01:10:00 GMT
Date: Mon, 12 Sep 2022 23:07:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F898fa8c6-1f06-4fa4-88d0-333a32c1a7a8.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F898fa8c6-1f06-4fa4-88d0-333a32c1a7a8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 019416755742a78ddf35671ba5eaccc7
ec2e96359ef3a236514cab21af80ea5b9420e9c3
a6b0e0ec56c2ce2f94dae8032e0deb297236c35f7a8928a14a254e3fdb2a255a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F898fa8c6-1f06-4fa4-88d0-333a32c1a7a8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10245
x-amzn-requestid: 25331636-a1cd-4ceb-84cc-fd85cfd8a861
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG23AGLIoAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631904f9-6fbb23ec3dc9d55e344bc6d7;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 20:54:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UkNBQ0iwXl3OWeO5PDgT_DgkaU5q6jqSorpyircPEtEW2f--bWHqlg==
via: 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:17:40 GMT
age: 3007
etag: "ec2e96359ef3a236514cab21af80ea5b9420e9c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c1314c7778ea0d32e8c69dae0c38b6d
c4772b9b182f9f905fead84f3761fe296073ca65
5fc8dc23f9b4d150b834aa69b358edd9f9f5f449607df07d579df66098d8aac6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10366
x-amzn-requestid: c66a0e06-d45c-4d16-ba0c-bf6a2368cfc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YVQPkH2RoAMFX2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ec730-5174741f2d86d3ea018e452f;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 05:44:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 0ieBLVDdyIQuPO5pdM8wzjY2XwaMhLJhJWAUtsLfgiWTKVBTOws1tQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:58:04 GMT
etag: "c4772b9b182f9f905fead84f3761fe296073ca65"
content-type: image/jpeg
age: 4183
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae7d16fad4da4300a1953a916fb59688
488c58f73c81bb4d45e496c458fe3197a0884c26
4d4946932d53caad6e97bcc66527bd9cad658c0cf6f4215d01943b8a9e832959
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7720
x-amzn-requestid: 7670a969-cb9c-4583-8455-10f7512ee9c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YT9YJG__oAMF4YA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e429a-674ef5a4727826ab0d60529e;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 20:18:34 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OOCryyfLht-3ebVn-5aWtQI_JnVkWxMGggv07cUoomDlgb5ogru7vg==
via: 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:01:55 GMT
age: 32317
etag: "488c58f73c81bb4d45e496c458fe3197a0884c26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 557695ec8ffeebb0272c099542a14ace
ad627b434e1c3b693d8636675bcea0f8794e0dc2
4d79c7830caa73b921d6abaa97771ab1f4dc8fd709597f01ba04c268c03b6157
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10407
x-amzn-requestid: 85df5ad9-f229-4d33-90b9-5dd28c77578a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YH396F2SIAMFnGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63196d25-3ee08f1e27cd37e96dba0f40;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 04:18:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Oep2UJdadBnTBuCy7CexUcezT0cCvm_9hroZnV-UrC9lQQxwUc4rkw==
via: 1.1 07c02ae6c53d85283eb15380264d9998.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 05:35:24 GMT
age: 63143
etag: "ad627b434e1c3b693d8636675bcea0f8794e0dc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9ab2ec10c79b91d15edb1d1e3dc763c
744fee4a0baa22ba3aa352d60620a916972b47dd
f7bb66f5bb572d73f936fc74823f51ede1f2c4e309a939b39d9529ff8f757fbe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9945
x-amzn-requestid: a347749f-a63a-4533-a274-7151b9f235ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXcX8HAKoAMF5EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa765-56cff18515b2a5b3397231df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:40:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lZ3FmD1gM8YBgZNt97kuYSol1kj0GQqRjyLT_7715VtH9GR1WpMDxA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:20 GMT
age: 5127
etag: "744fee4a0baa22ba3aa352d60620a916972b47dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0afb7a6-50b1-4622-b497-1cd872b91e83.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0afb7a6-50b1-4622-b497-1cd872b91e83.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1b3f38b1294f2f10537cba5a856ed04a
2a6c1f297d97f4248d77eba6736b4d937bda582b
9c8de94c3cb87a1a2c967b010c715387bbc09fa92dd67bab988d367603a0cece
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0afb7a6-50b1-4622-b497-1cd872b91e83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12838
x-amzn-requestid: ad4ebca9-e16d-4fce-ab16-b3b3477c8c06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3rT7H86IAMF1kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312f27f-5bf5c45d6c2be4973f0f946a;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 06:21:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0y9HXQIrrRjMoaTo3_00lFQMJ5eIywY_22cbVXml0RZjpvfQVctKTg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 14:00:55 GMT
age: 32812
etag: "2a6c1f297d97f4248d77eba6736b4d937bda582b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6526c70eb74c821b7a95487ad9a4e13d
0b8c610a7755437ab815b845f52cbb27e6c95008
059d15ca6ac7cb1830286ae635731e03b56c01d7d050291dabe2b3f3db866c9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:07:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6526c70eb74c821b7a95487ad9a4e13d
0b8c610a7755437ab815b845f52cbb27e6c95008
059d15ca6ac7cb1830286ae635731e03b56c01d7d050291dabe2b3f3db866c9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:07:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ad439cab56126bcc402ee9f92365a209
a4b48a9a733c53cbc7020e190b8c787e1f80f55a
d0e2e52b66a8dec8c57092ec332f452a7348941d778d7b4686ca32696aabd065
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:07:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maglare.com/wp-content/themes/maglare-final/includes/css/jquery.fancybox.css?ver=4.7.24
111.118.215.27200 OK 1.2 kB URL HTTP/2 maglare.com/wp-content/themes/maglare-final/includes/css/jquery.fancybox.css?ver=4.7.24
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (306)
Hash 0a4108d988a3be40afd0d28ac234b34d
ce5d07ae5a77f76221aee18d6b4a1cbc8dc87042
ec0ead0831dabc45d61970b33834942e36c787b9b6ee4beb8c05af11575f5099
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/maglare-final/includes/css/jquery.fancybox.css?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:41:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1230
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/themes/maglare-final/includes/css/font-awesome.min.css?ver=4.7.24
111.118.215.27200 OK 4.0 kB URL HTTP/2 maglare.com/wp-content/themes/maglare-final/includes/css/font-awesome.min.css?ver=4.7.24
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (17615), with no line terminators
Hash 011bf0dc8507abed994f9e5cb036db49
eb3d3f3323e153a87f896f41b2476e7a16c66344
dd2d73bc55dca266b7817433ca44a98b7e0217c6b647507aebb6a2ea3a194267
GET /wp-content/themes/maglare-final/includes/css/font-awesome.min.css?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:41:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3975
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/apply-online/public/css/applyonline-public.css?ver=1.11.4
111.118.215.27200 OK 1.2 kB URL HTTP/2 maglare.com/wp-content/plugins/apply-online/public/css/applyonline-public.css?ver=1.11.4
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash a5b74003759ff108bbb60a7090d859a5
4f2990fcfe45e2475252e8dbf47e945fdbc5aca8
8aad6a17b6a9f3c494f32a24f44b5ebdda5de82b115bd3014f3bc3f2121a07f6
GET /wp-content/plugins/apply-online/public/css/applyonline-public.css?ver=1.11.4 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 07 Feb 2017 10:51:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1176
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/uploads/maxmegamenu/style.css?ver=ddf61b
111.118.215.27200 OK 6.3 kB URL HTTP/2 maglare.com/wp-content/uploads/maxmegamenu/style.css?ver=ddf61b
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (742)
Hash 66013fa603e3d3d7181471e34b24d766
cfe3830e80e6f3f2e69d4d3b1ddf0bd7fd56b88f
a4fb7ad3382ae0748a7c24bbd43b5012c3633780509637810c71527399356197
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/maxmegamenu/style.css?ver=ddf61b HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:59:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6334
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/themes/maglare-final/includes/css/nice-options.css?ver=4.7.24
111.118.215.27200 OK 0 B URL HTTP/2 maglare.com/wp-content/themes/maglare-final/includes/css/nice-options.css?ver=4.7.24
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/maglare-final/includes/css/nice-options.css?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:41:20 GMT
accept-ranges: bytes
content-length: 0
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
111.118.215.27200 OK 4.4 kB URL HTTP/2 maglare.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (9959)
Hash 1e40dfe689f1e989e1a3de2e3c6e26bf
4196eddc5203fd18f63e90065d777f757088ca2f
b40b1ef07db6e093ad2df064e8cb582906eb2448e1caacc2f5b721cd5d0e3cb4
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 Jan 2017 07:37:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4444
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.13
111.118.215.27200 OK 13 kB URL HTTP/2 maglare.com/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.13
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 58dd59686fb83f247d72c74284641945
3f36fc8f2c2921f025ea2dee95d475a5705dc84e
df199699d2cda0f41a52e5f3396111fe8868f798b92e0fe2e39018ad39cf497c
GET /wp-content/plugins/google-language-translator/css/style.css?ver=6.0.13 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Feb 2022 06:14:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13137
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/themes/maglare-final/custom.css
111.118.215.27200 OK 0 B URL HTTP/2 maglare.com/wp-content/themes/maglare-final/custom.css
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/maglare-final/custom.css HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:41:09 GMT
accept-ranges: bytes
content-length: 0
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
111.118.215.27200 OK 1.9 kB URL HTTP/2 maglare.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3704)
Hash 4da7257348968d061b28e145e26a4639
6a9e0f37940c7bc32efc1434b12da6d9d8e54571
33a59fbe2e521f58b4982d80c7659a0135f436a0d32f3594e5d9803b286433ec
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 03:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1893
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/themes/maglare-final/includes/js/general.js?ver=4.7.24
111.118.215.27200 OK 3.2 kB URL HTTP/2 maglare.com/wp-content/themes/maglare-final/includes/js/general.js?ver=4.7.24
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 90741e3386397645efb814d687276fe2
fd1348efec639ff845c9050bc4dc04bae45e80a6
46fec1fc75708b1b3f5e4ee2bc69c3a1aadae7f67175da57410e6ce9702eafa9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/maglare-final/includes/js/general.js?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:51:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3209
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/themes/maglare-final/includes/js/jquery.quicksand.js?ver=4.7.24
111.118.215.27200 OK 4.1 kB URL HTTP/2 maglare.com/wp-content/themes/maglare-final/includes/js/jquery.quicksand.js?ver=4.7.24
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 1426c50ef58ad60fab4ba26398d85e4e
ec00abf551c7d76a89330a9a9fb940ca444645f8
26cc70af32843fca01214c28c294548736a00039b760d1392549eae140c36f8c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/maglare-final/includes/js/jquery.quicksand.js?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:51:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4082
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/caldera-forms/assets/css/fields.min.css?ver=1.3.0.2
111.118.215.27200 OK 10 kB URL HTTP/2 maglare.com/wp-content/plugins/caldera-forms/assets/css/fields.min.css?ver=1.3.0.2
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (56297)
Hash 8c105ce8ef66dfc4630be68a1b60cdd0
3cb9f8a3b46dcec67ac114908fed649ac1882961
e53d72028bfcf9ad4946dd861ba3e56dfa1c1cf6cb3ac9a5b1aed7126d07d645
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/caldera-forms/assets/css/fields.min.css?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Sep 2015 08:51:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10343
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
111.118.215.27200 OK 14 kB URL HTTP/2 maglare.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (35951)
Hash fba979daca6855192f43240438556caa
ff27ba6026259130bfbd6d0d4a8997e1b4baefa7
e8e87820dacf94c1b4727cbe4b24672d497e42a8f2e88f9c652bcc54e00b1bfd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 03:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13685
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-alert.css?ver=1.3.0.2
111.118.215.27200 OK 621 B URL HTTP/2 maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-alert.css?ver=1.3.0.2
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 9cdb18378b6cd8d15dc113b5c1e5e859
073da2caca0f2c17011fe826fdb57746597d7b5b
2cfdd3831b8f2bfef7f269e45431a97c379e5e3fbad313747b58a4ae8f377769
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/caldera-forms/assets/css/caldera-alert.css?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:42:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 621
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/themes/maglare-final/includes/js/jquery.fancybox.js?ver=4.7.24
111.118.215.27200 OK 10 kB URL HTTP/2 maglare.com/wp-content/themes/maglare-final/includes/js/jquery.fancybox.js?ver=4.7.24
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (596)
Hash d52af2101f9d5fc83d0b33ea66d826c3
da9b2ab17ddcc088873e68aeef9deab6ce423e2a
9cfd0357e6c4f2679fccb8770a555b2fc86c4503ceeddd0af4d20fb40da92118
GET /wp-content/themes/maglare-final/includes/js/jquery.fancybox.js?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:51:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10242
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/apply-online/public/js/applyonline-public.js?ver=1.5.1
111.118.215.27200 OK 1.3 kB URL HTTP/2 maglare.com/wp-content/plugins/apply-online/public/js/applyonline-public.js?ver=1.5.1
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash cb61dedac097bf1fe19824eca9119b4c
5794e3c00ad8001458405c4b25b46ab4c533d96f
04f718eb8fabc1f99ea5c82e8f2abe01e935b68921f4b3ae255ff571cd15636d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/apply-online/public/js/applyonline-public.js?ver=1.5.1 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 07 Feb 2017 10:51:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1266
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/themes/maglare-final/includes/js/imagesloaded.min.js?ver=4.7.24
111.118.215.27200 OK 2.4 kB URL HTTP/2 maglare.com/wp-content/themes/maglare-final/includes/js/imagesloaded.min.js?ver=4.7.24
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (6309)
Hash c8a077f733d6e2fa48aa72099fb64131
b857843038718ab3c94f6184daf2c2cb59937a46
e35a178fad0a471002324d520d6849c60f36993e02e5649bf53316544197ca21
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/maglare-final/includes/js/imagesloaded.min.js?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:51:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2387
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/themes/maglare-final/includes/js/superfish.min.js?ver=4.7.24
111.118.215.27200 OK 1.9 kB URL HTTP/2 maglare.com/wp-content/themes/maglare-final/includes/js/superfish.min.js?ver=4.7.24
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3978)
Hash a23734718526460e72962833d30eb859
097f0e6dbb7c507a29d892b52c343a7375a09621
78c0142aa6d91c030ef150d0b8f1e480f9545dcaec3bffd8b82b33b4e855d3c4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/maglare-final/includes/js/superfish.min.js?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Sep 2015 08:02:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1871
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.13
111.118.215.27200 OK 3.8 kB URL HTTP/2 maglare.com/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.13
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash c963e3e85da0f47cf30b60e2e3c6f863
5a769960db02381c20771e203e11645701700af3
79a2a8fb91b167b46e79a1f535179771d979deeb35d41d8d6c01d2dd208037f2
GET /wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.13 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Feb 2022 06:14:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3787
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1
111.118.215.27200 OK 461 B URL HTTP/2 maglare.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1087), with no line terminators
Hash 3a2a8769be5c880aeeb5e504b1456f2c
394f14b24ec2298e2140f12515e3ed596fc85703
99032f8783df12492fe4ef9da67ba94304250f72beaa6132a7c0847401fa594d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/hoverIntent.min.js?ver=1.8.1 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 03:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 461
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-form.css?ver=1.3.0.2
111.118.215.27200 OK 5.7 kB URL HTTP/2 maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-form.css?ver=1.3.0.2
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (27140), with no line terminators
Hash b722946abae93e5106f2ff7d306703f1
eda0efa0b5488022b75e77bdefaf58ccaf8f92ad
83919c740347c44b083ecf631b3713f2b1f19e5057692ff635226a825de65224
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/caldera-forms/assets/css/caldera-form.css?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:42:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5677
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
111.118.215.27200 OK 701 B URL HTTP/2 maglare.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1613)
Hash 07fa8d25c4e2ca93082772f1fffcf179
344a180acf5b1282c4ea15fb58a97cecffbdef10
2a1b9f76a46bd2025faff324df7c771b4a3ea1cedd22e3a82db050155ef80285
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 03:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 701
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-includes/js/wp-embed.min.js?ver=4.7.24
111.118.215.27200 OK 748 B URL HTTP/2 maglare.com/wp-includes/js/wp-embed.min.js?ver=4.7.24
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1386), with no line terminators
Hash 3d6a96ac061c191da5303f6bc1155c1c
d6cc1367e067e17b1ddd39232d470f52eeb473be
45d28c4dff03f277762685eba6370a8411510c969a222f076e3cd7a6b2651470
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 03:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 748
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0
111.118.215.27200 OK 2.8 kB URL HTTP/2 maglare.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (7855), with no line terminators
Hash a49e99c3de3b2981ea5aefc453ea38de
12ec0e23669671edad05f47713a2a781b25b88f5
a74b7fac628d26e3d20f2f6e7581e7ff29b073ca5432407d89549000959ba5cd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 03:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2759
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/uploads/2017/10/mnrelogo.png
111.118.215.27200 OK 25 kB URL HTTP/2 maglare.com/wp-content/uploads/2017/10/mnrelogo.png
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 196 x 67, 8-bit/color RGBA, non-interlaced\012- data
Hash f5ef0e5cb099cffcab4e8c8d6248054d
441d9fdd0a3864b9f95077e2be98b7891c950315
19b3e047e93fc03be9e7ae8462eb0ab280f97dc633b38ef5b8bed67da8cc2d06
GET /wp-content/uploads/2017/10/mnrelogo.png HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Oct 2017 07:48:49 GMT
accept-ranges: bytes
content-length: 25197
content-type: image/png
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.4
111.118.215.27200 OK 4.2 kB URL HTTP/2 maglare.com/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.4
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 67cca8d0798500c6fc99af9bbf9697a6
8113bb545c0c5356df5a5bfe41db00c1d357f102
d4fd517945473b5709d49b3e2ee0081400653f04586b4f700f4c00eeeb1713ae
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.4 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 Oct 2017 08:45:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4161
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/uploads/2015/09/maglare-logo1.png
111.118.215.27200 OK 26 kB URL HTTP/2 maglare.com/wp-content/uploads/2015/09/maglare-logo1.png
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 300 x 86, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b45ca76e7af24ed042a5dca288a4936
fc1d7f6050981eb390a975c0320913549dd6054b
ef0fbb046ab727aa9534f48bebd1e4f67b4337637f545c0f9e8f79d62350d868
GET /wp-content/uploads/2015/09/maglare-logo1.png HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 Jan 2017 07:25:14 GMT
accept-ranges: bytes
content-length: 25795
content-type: image/png
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-includes/js/masonry.min.js?ver=3.3.2
111.118.215.27200 OK 11 kB URL HTTP/2 maglare.com/wp-includes/js/masonry.min.js?ver=3.3.2
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (28817)
Hash ef4a34b1e5d01abf2365208308e2cbbf
124eb37ac36a01a011f19189d4f553562d6b80b7
8e3c12244c958fb8ace1c84f1165d23df99ae09ab0cd5404a76a2db458f56f4d
GET /wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 Jan 2017 07:37:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10818
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/caldera-forms/includes/cf-ajax/js/ajax-core.min.js?ver=1.3.0.2
111.118.215.27200 OK 597 B URL HTTP/2 maglare.com/wp-content/plugins/caldera-forms/includes/cf-ajax/js/ajax-core.min.js?ver=1.3.0.2
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1432), with no line terminators
Hash 8e335e7c1235a7aa1b63bd157a37016c
087ae0b17ba5379bbcf3dc4f727892c35fb9cf69
8eef97ed84ad56dbeb19dfa9a574e77de4abc2eca37a347c200b94058765a4f7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/caldera-forms/includes/cf-ajax/js/ajax-core.min.js?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:51:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 597
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/caldera-forms/assets/js/frontend-script-init.min.js?ver=1.3.0.2
111.118.215.27200 OK 1.1 kB URL HTTP/2 maglare.com/wp-content/plugins/caldera-forms/assets/js/frontend-script-init.min.js?ver=1.3.0.2
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2967), with no line terminators
Hash af5a025c1070b38af6c68cd19d777201
30f37e59ed430941f191a9d269782080d04b6160
f140ef25f26896cff1f36fe6661115b058682ded27b6e8a85f8b7e49515d0c27
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/caldera-forms/assets/js/frontend-script-init.min.js?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:50:41 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1076
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/caldera-forms/assets/js/jquery.baldrick.min.js?ver=1.3.0.2
111.118.215.27200 OK 3.7 kB URL HTTP/2 maglare.com/wp-content/plugins/caldera-forms/assets/js/jquery.baldrick.min.js?ver=1.3.0.2
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (11063), with no line terminators
Hash 276d6a3dfb2201789c4d426bef78ac1e
b32c5068fd9cb691f3e92b3769e3468b9c0a4292
f26e137bd6a5ab9ccffb85948abb4f4f59c4ba11a7c1d32ee647377defe80ca5
GET /wp-content/plugins/caldera-forms/assets/js/jquery.baldrick.min.js?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:49:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3726
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bd7b5eb635d48acf1428c326eaa892a1
ba9f6c0db831a88b7d6dbdd98f19e76b4b501258
557466a3b642e90e352898073ff23f6a034c3b233e8aee0f0f69cd6ca83d49f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:07:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maglare.com/wp-includes/css/dashicons.min.css?ver=4.7.24
111.118.215.27200 OK 29 kB URL HTTP/2 maglare.com/wp-includes/css/dashicons.min.css?ver=4.7.24
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash dd645fe288ecfbf79373f8ccbfebaa7e
5bf37c3b3824f1a32835d0089bbb5ff776c69a40
eab1e5bee492d1b6a61368173238f05708b4255fd568e15637239fed8332ffbb
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dashicons.min.css?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 Jan 2017 07:37:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://maglare.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 08:31:01 GMT
expires: Wed, 06 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 571007
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maglare.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
111.118.215.27200 OK 43 kB URL HTTP/2 maglare.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash d3f59261f01e3049bc694cf2533846dd
12f38b40ae3351288b2603dbdd876821843f61ec
925c58542a976b7d2202962a6d7057df617fe8ea1f000bb1e1d0b4f88f8b271a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 05 Sep 2019 02:51:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/themes/maglare-final/images/social.png
111.118.215.27200 OK 148 kB URL HTTP/2 maglare.com/wp-content/themes/maglare-final/images/social.png
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 1120 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size 148 kB (148068 bytes)
Hash 3f318c25f620a5eabeb90f70c15dbcb9
b7426c517af3e6ea7d3a60f70c58cec0c1c0dfa2
4e7d199c87d03c3226b25ef0c9549799f578f42ea7b6f07a4750965cec367986
GET /wp-content/themes/maglare-final/images/social.png HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/wp-content/themes/maglare-final/style.css?ver=4.7.24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Feb 2017 11:32:53 GMT
accept-ranges: bytes
content-length: 148068
content-type: image/png
date: Mon, 12 Sep 2022 23:07:48 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/themes/maglare-final/includes/fonts/fontawesome-webfont.woff?v=4.0.3
111.118.215.27200 OK 44 kB URL HTTP/2 maglare.com/wp-content/themes/maglare-final/includes/fonts/fontawesome-webfont.woff?v=4.0.3
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Hash 3293616ec0c605c7c2db25829a0a509e
04c3bf56d87a0828935bd6b4aee859995f321693
0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849
GET /wp-content/themes/maglare-final/includes/fonts/fontawesome-webfont.woff?v=4.0.3 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://maglare.com/wp-content/themes/maglare-final/includes/css/font-awesome.min.css?ver=4.7.24
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Sep 2015 08:02:07 GMT
accept-ranges: bytes
content-length: 44432
content-type: font/woff
date: Mon, 12 Sep 2022 23:07:48 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/uploads/2015/09/favicon.ico
111.118.215.27200 OK 1.4 kB URL HTTP/2 maglare.com/wp-content/uploads/2015/09/favicon.ico
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Hash b247f16aa003662ab0137ff0c83a2023
a12d1e1e839c014fef2b17d6f7ec88ac9227513a
43ec48ac87df660c3ce1c6ebbbc45e1486ca196778226f87b917d29a4f372392
GET /wp-content/uploads/2015/09/favicon.ico HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 23:07:48 GMT
server: Apache
content-type: image/x-icon
content-length: 1406
last-modified: Wed, 16 Sep 2015 10:08:09 GMT
cache-control: max-age=604800
expires: Tue, 13 Sep 2022 12:49:58 GMT
x-server-cache: true
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-grid.css?ver=1.3.0.2
111.118.215.27200 OK 0 B URL HTTP/2 maglare.com/wp-content/plugins/caldera-forms/assets/css/caldera-grid.css?ver=1.3.0.2
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/caldera-forms/assets/css/caldera-grid.css?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 23 Sep 2015 13:42:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5611
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:r,i,b,bi
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:r,i,b,bi
IP 142.250.74.10:0
GET /css?family=Open+Sans:r,i,b,bi HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 12 Sep 2022 23:07:47 GMT
date: Mon, 12 Sep 2022 23:07:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
142.250.74.46200 OK 0 B URL HTTP/2 translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
IP 142.250.74.46:0
GET /translate_a/element.js?cb=GoogleLanguageTranslatorInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 12 Sep 2022 23:07:47 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+012; expires=Wed, 11-Sep-2024 23:07:47 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maglare.com/wp-content/themes/maglare-final/style.css?ver=4.7.24
111.118.215.27200 OK 0 B URL HTTP/2 maglare.com/wp-content/themes/maglare-final/style.css?ver=4.7.24
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /wp-content/themes/maglare-final/style.css?ver=4.7.24 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 21 Apr 2018 10:06:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2
maglare.com/wp-content/plugins/caldera-forms/assets/js/fields.min.js?ver=1.3.0.2
111.118.215.27200 OK 0 B URL HTTP/2 maglare.com/wp-content/plugins/caldera-forms/assets/js/fields.min.js?ver=1.3.0.2
IP 111.118.215.27:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /wp-content/plugins/caldera-forms/assets/js/fields.min.js?ver=1.3.0.2 HTTP/1.1
Host: maglare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maglare.com/aliquid-consequatur/documents.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Sep 2015 15:48:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 12 Sep 2022 23:07:47 GMT
server: Apache
X-Firefox-Spdy: h2