Report - prosecmalta.com/

Report Overview

Submitted URL
prosecmalta.com/
IP
148.72.158.229
ASN
#30083 AS-30083-GO-DADDY-COM-LLC
Submitted
2022-11-26 22:52:10
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
58

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.89.217.163
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.35
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	44 kB	34.120.237.76
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	453 B	633 B	142.250.74.10
prosecmalta.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	792 B	776 B	148.72.158.229
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
www.prosecmalta.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	20 kB	1.5 MB	148.72.158.229

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-26	medium	prosecmalta.com/	Phishing
2022-11-26	medium	prosecmalta.com/	Phishing
2022-11-26	medium	www.prosecmalta.com/	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/css/vendor/component.css?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/style.css?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/css/font-awesome.min.css?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/css/dark.css?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/css/animate-custom.css?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/appear.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easing.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/mediaelement.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/modernizr.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/foundation.responsive.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/packery.metafizzy.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/counterup.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easypiechart.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/waypoints.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/js/shortcode/script-shortcodes.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/js/scripts.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/js/isMobile.min.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.9.5	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16	Phishing
2022-11-26	medium	www.prosecmalta.com/wp-content/themes/bodyguard/fonts/fontawesome-webfont.woff2?v=4.3.0	Phishing
2022-11-26	medium	www.prosecmalta.com/of	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (30)

	URL	Size	First Seen	Last Seen
	www.prosecmalta.com/wp-content/themes/bodyguard/js/wd_owlcarousel.js?ver=5.9.5	7.2 kB	2023-03-11	2023-03-11
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/wd_owlcarousel.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-03-11 21:00:14 Times Seen1 Hash b05fcef39237bbf3faa82a8c44137e9e ffe3f29f171ae9a3b6c447b0f8224969b895fb3b 57930f1985f65f7d8e4f7556237051e908a56178649590f13b896ad6b5236ca7 Loading...

	www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	9.9 kB	2023-03-08	2024-04-18
Pretty URL www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-18 12:23:23 Times Seen3132 Hash dc74c9954b1944928eca0172c3b8c6b3 e9e00e587e0e28491b69563b4e768945ff2e0ed5 d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b Loading...

	www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	12 kB	2023-03-08	2024-04-18
Pretty URL www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-18 12:23:25 Times Seen3477 Hash 1f9968a7c7a2a02491393fb9d4103dae 0032c8a6a692e6f072b2cef20828449402fdd57d f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49 Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/sharrre.js?ver=5.9.5	14 kB	2023-03-11	2023-05-10
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/sharrre.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-05-10 05:45:29 Times Seen5 Hash 0de23c15ca3c7e5593c4c4607c1426c9 c55f361a96e64bf697d560054c7d1190f7d77050 ecb734f5f29d0b7b82a4dfd8077785c503414ccc4167caadbd9a4f0c5a2c30f0 Loading...

	www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8	380 kB	2023-03-07	2024-04-07
Pretty URL www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:19 Last Seen2024-04-07 22:26:54 Times Seen668 Hash ea5cf2c55fc416c211bb6bdfe2a5ea3d 53bf239da2028044e61ac2edd5d292ca00d09726 edc00efff9674105335e75964130281682159ea89058596862a28da1dcaff293 Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/modernizr.js?ver=5.9.5	9.4 kB	2023-03-09	2023-11-29
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/modernizr.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:26:59 Last Seen2023-11-29 02:04:32 Times Seen9 Hash dc1a7ae9c7ae0c6384d718367d2ed487 1842cf2c2bba348f29d7c75ae96771714dcca317 1e5b3c890a4de6f0de831bd0803446aa3cdc6914f7ec133a527d673a6ed49f84 Loading...

	www.prosecmalta.com/	2.3 kB	2023-03-07	2024-04-17
Pretty URL www.prosecmalta.com/ IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:11 Last Seen2024-04-17 20:34:07 Times Seen1827 Hash be435481837b62187ea43999d905c91a 403a7bb5b4764bf8951e239b7ad591cd0eb62d7e fc772d0508e695b6dc294b8734e7693bbdc64bbeae89239a03bf32e8b56aea2b Loading...

	www.prosecmalta.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL www.prosecmalta.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 07:32:31 Times Seen68489 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/shortcode/script-shortcodes.js?ver=5.9.5	3.9 kB	2023-03-11	2023-03-11
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/shortcode/script-shortcodes.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-03-11 21:00:14 Times Seen1 Hash 340ac123585eb2cea9ba786c7579a5dc 968beb608c7e89540282c25a8c95eb14cd460bd0 67eb0b4f7c1778759b1f97ef05a057872d3fcdee5c67f72f1379cccd98732e12 Loading...

	www.prosecmalta.com/	2.4 kB	2023-03-07	2024-04-18
Pretty URL www.prosecmalta.com/ IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:59 Last Seen2024-04-18 19:01:08 Times Seen3798 Hash 49f89aeeb8e861051ed61fc00d636b9b 9077f9d9ebc3b661bb3a81161c6a4e2de2531231 4190f2c4f25f9a34cbbfdb92f91a25359570d773ef7cff97c924e224ad877759 Loading...

	www.prosecmalta.com/	2.2 kB	2023-03-11	2023-03-11
Pretty URL www.prosecmalta.com/ IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-03-11 21:00:14 Times Seen1 Hash 8ca7dd9824b9ecd24b3850f8411ace93 d0a60d28fc56382d9a1db5b1052eb88e836454cb e8c0aed3caadd727a8eb1b72bc12db7d318d3be422cc390954fc665b2572a8fc Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/foundation.responsive.js?ver=5.9.5	103 kB	2023-03-11	2023-03-11
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/foundation.responsive.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-03-11 21:00:14 Times Seen1 Hash 5cc81248bbad06940ccaa6dc75f3f460 3764822e0e32cefe36c929a85fcafd50d36edd9e ad5c48a07c6687cd4d4429a3b862a7169d5448234b9c4758b32364cb748b4890 Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/waypoints.js?ver=5.9.5	8.0 kB	2023-03-11	2023-03-11
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/waypoints.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-03-11 21:00:14 Times Seen1 Hash 3a11eebee659e6090ecec87abac40330 a46e0be6eef25aa7cd26c349fd40a5d31762b833 6690f10daf037153fa8c3e475a8e24640ec77cb3838601c50c9cfe356f07bd71 Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/isMobile.min.js?ver=5.9.5	1.7 kB	2023-03-09	2023-09-19
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/isMobile.min.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:01:23 Last Seen2023-09-19 02:53:33 Times Seen21 Hash c4a54028decdeff2bb3ba00e869763ee d33194f55e24ba13d68b2df3d5536193fd4a9bc5 4c400e40ad8c9344807c7008c6b75fde78266841137fb1f39c1a544275b256b6 Loading...

	www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16	158 kB	2023-03-07	2024-04-16
Pretty URL www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-04-16 10:51:58 Times Seen2397 Hash 6de31d697a1b1b2b0e2a3b29b1fb458b c9b6c996a66918f7c4d49c9b60134ce282c47143 443ba0af7a7ed827223c7fb3c008c02b9ff1d651b6492e9c270378b07d9f6008 Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/scripts.js?ver=5.9.5	13 kB	2023-03-11	2023-03-11
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/scripts.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-03-11 21:00:14 Times Seen1 Hash 9a766f19649d3fba7aba7e8ffc210ab6 3e431acf7a4647ead8a4c0de2517a6cde632a563 6cea3d4ac2fb4fb91b7611ef789b82705a866d56386ea326b1a1790849fccfd1 Loading...

	www.prosecmalta.com/	333 B	2023-03-07	2024-04-18
Pretty URL www.prosecmalta.com/ IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:46 Last Seen2024-04-18 12:49:19 Times Seen2551 Hash 9a5803e16e1c8a5b74b0dc6b17c87b38 0b5315661272a83ffe56b7dd01aa6d8e9d00e25b 42392a8bf5d00bd666f2da27e3fe34817f89fe46eebe81aafe355932ab1119d9 Loading...

	www.prosecmalta.com/	133 B	2023-03-11	2023-03-11
Pretty URL www.prosecmalta.com/ IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-03-11 21:00:14 Times Seen1 Hash b4306d23b0782cbcecd313d145aa00e1 f0a992d542ffbb9ea75b9d885bafc8cf2f8886d7 0122b10d48024cdfe7e186217c35ddfd02fb32d71929abd32348d344b8d06568 Loading...

	www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8	124 kB	2023-03-07	2024-04-17
Pretty URL www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:11 Last Seen2024-04-17 20:34:07 Times Seen2981 Hash e4bc260935352e71791596e3c8b0c205 336eff1507c4d4f88bbc8f9630f405e827357cde a5f70e90e97e6ac1952a1a116dba485b468fa98dca2977853768a946227c7bc0 Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/mediaelement.js?ver=5.9.5	27 kB	2023-03-11	2023-03-11
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/mediaelement.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-03-11 21:00:14 Times Seen1 Hash 8d7e2fc80075682245b85b1acb880dc4 cca0a917a32a0001e2ead10ee2d500738ae7b224 9f28ed29f8801ba6c92d45d9ebcda4a0cd552b19737ef5b879b973a4e56ae1d4 Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/owl.carousel.min.js?ver=5.9.5	40 kB	2023-03-11	2023-03-11
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/owl.carousel.min.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-03-11 21:00:14 Times Seen1 Hash c938be57305c6c33d463d381c0becbae 2a3dbc84e21d43693371c24006bc3856c2e69547 ec657df6969dc06ecef461e660742441c801e85bf2b18d6333ed80b3d266e0b4 Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/packery.metafizzy.js?ver=5.9.5	35 kB	2023-03-11	2023-05-10
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/packery.metafizzy.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-05-10 05:45:29 Times Seen5 Hash 21237cc5394cc4313be0e08466135482 0dcbb5493e0adea3ec9c3588288799c58b6a47fd 74851e05fe3b4d2578a96db032574a519b7c33a68c2bdc5e5fddb1a08df5efd1 Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easing.js?ver=5.9.5	3.9 kB	2023-03-11	2023-05-10
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easing.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-05-10 05:45:29 Times Seen5 Hash 28b79e6ee39268897ff4e47c0f58b8b5 59e5105fa0da217c28722ff8d3b3914aa24bc211 6734bb552e5012dc14c9bdb286cd07e28b7d09aae999f281bf3690a89d2b86dc Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easypiechart.js?ver=5.9.5	3.8 kB	2023-03-11	2023-03-11
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easypiechart.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-03-11 21:00:14 Times Seen1 Hash eb7eb2a6a2d615f65943063d4cdface2 94e9ddadf481158355d76a4230846851319a54f3 e41d5188e9bfe975f4ce9b9cb1863ffb80f300921f635a03b7f739d2afc53344 Loading...

	www.prosecmalta.com/	149 B	2023-03-07	2024-04-16
Pretty URL www.prosecmalta.com/ IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-04-16 10:51:58 Times Seen2854 Hash 931deb2e7bef82d78d1c1b0a3fe4fe32 2a468d77a19124c4bcd1745b7f51eff01b269ade afb2b21f29cd5d7fc5b63a8ea02ece9649603b9e63a2afa55927c508345e1ee7 Loading...

	www.prosecmalta.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5	18 kB	2023-03-07	2024-04-19
Pretty URL www.prosecmalta.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 01:16:23 Times Seen12555 Hash 116c86c56f8db0bb63f15ceda50fdc98 75e308982ecf7cd43644b8b426e6aa1a0b0fbe26 def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7 Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/appear.js?ver=5.9.5	1.2 kB	2023-03-11	2023-03-11
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/appear.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-03-11 21:00:14 Times Seen1 Hash 3968db150cdc55e8c0d9362ed5b9e639 2f3bd73ae8d25958386c1e317ce441bf921883e6 034374df5359af2bf7d4d04c4da1f648de516b968a4ca2f9db8440313b600211 Loading...

	www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/counterup.js?ver=5.9.5	1.1 kB	2023-03-11	2023-05-10
Pretty URL www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/counterup.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:00:14 Last Seen2023-05-10 05:45:29 Times Seen5 Hash e1e1c0dfa96098648b9e90abbf15427a 885d02eaf0471a0581028819bdc9a3925c9afff8 6fd2a01091ee262d75fecad9bb8563e5ce2e01321119be8cf2e0bcd6b72d092d Loading...

	www.prosecmalta.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2	1.5 kB	2023-03-07	2024-04-04
Pretty URL www.prosecmalta.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:56 Last Seen2024-04-04 11:14:13 Times Seen516 Hash 8767142f87d8ba86f0094540b29b6d97 754645c23f4faf070fd3460c5aed47ef99314790 491ee20092ce969e6785601ae4595748d4ac5ee4df19012b19b77de6c9dfd357 Loading...

	www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.9.5	1.2 kB	2023-03-07	2024-04-16
Pretty URL www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.9.5 IP 148.72.158.229 ASN #30083 AS-30083-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:23 Last Seen2024-04-16 10:51:58 Times Seen2506 Hash f34f415aa56ed900eecf3f212adb57e2 352dfeec21817198c07ab11705b53d813420cea3 7f34b768792b90cf0b04fced2470e43d8fab7644f6565d5178fbfb49c4859cee Loading...

HTTP Transactions (71)

URL IP Response Size

prosecmalta.com/

148.72.158.229

301 Moved Permanently

232 B

URL HTTP/1.1
prosecmalta.com/
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
232 B (232 bytes)
Hash
3553345508eaa72c16c3642923a74f36
960f5dc5e92586c924e61352fbe37ad1843f67de
2cc0a281ea58b81ed0ea3c8dc9f6873757ca23a94fb2ebd84294e2494b70b1c4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 22:51:59 GMT
Server: Apache
Location: https://prosecmalta.com/
Content-Length: 232
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4815
Expires: Sun, 27 Nov 2022 00:12:14 GMT
Date: Sat, 26 Nov 2022 22:51:59 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6361
Cache-Control: max-age=134710
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:51:59 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 12:17:09 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 22:19:17 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1962
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5665
Expires: Sun, 27 Nov 2022 00:26:24 GMT
Date: Sat, 26 Nov 2022 22:51:59 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: c4AEIUtcSspFZxrD1ZPoIYZx2iAMwTF24HghXcIn/9D7vuj80hNhPmA03zj1ycp6qq+fq7vRtsPrfaT7+gF+WQ==
x-amz-request-id: 846KZYX5WE8ER9PR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 22:44:24 GMT
age: 455
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:51:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 22:11:12 GMT
cache-control: public,max-age=3600
age: 2448
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1028
Cache-Control: max-age=124319
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:52:00 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 09:23:59 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

prosecmalta.com/

148.72.158.229

301 Moved Permanently

0 B

URL HTTP/1.1
prosecmalta.com/
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 22:52:00 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Redirect-By: WordPress
Location: https://www.prosecmalta.com/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

push.services.mozilla.com/

52.89.217.163

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.89.217.163:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: w8TFY/E1UXzV6QMlXkRBQQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +7WFGMqQUiMOEBeh2pNg7b+EWFQ=

www.prosecmalta.com/

148.72.158.229

200 OK

53 kB

URL HTTP/1.1
www.prosecmalta.com/
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8166), with CRLF, LF line terminators
Size
53 kB (53195 bytes)
Hash
1d95cd21d3601dacd9e0734143d54408
8a6685d18b09aabf8756d766f6fba717d414c44d
508af887c3f3ee79bc351087bdb6d5c8a95b0f5b0d026b47ca20cd614bcce304

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:01 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Link: <https://www.prosecmalta.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:52:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.prosecmalta.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5

148.72.158.229

200 OK

83 kB

URL HTTP/1.1
www.prosecmalta.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (39791)
Size
83 kB (83419 bytes)
Hash
7e7a1a9e3712cd16dade7c6e811ba28b
45e216af145ea7c3f30099c869482785ad921bc2
cdbdaa122823601390c7dcbdd1afde33c2f1a432b8c5ff025c6137ee99ba541a

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 23:21:23 GMT
Accept-Ranges: bytes
Content-Length: 83419
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4

148.72.158.229

200 OK

2.7 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text
Size
2.7 kB (2731 bytes)
Hash
e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:19:51 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.prosecmalta.com/wp-content/themes/bodyguard/css/vendor/component.css?ver=5.9.5

148.72.158.229

200 OK

1.1 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/css/vendor/component.css?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1089 bytes)
Hash
c58c57e32888eaac869e45a416d9fde0
530f4f62108100a5333379b300b9640cfb3daecb
398c96fefd1be833ff9545caf4c7012232a0c79bf1b29fdbb02dc8bf96555c2d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/css/vendor/component.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 1089
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14290
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:52:02 GMT
Connection: keep-alive

www.prosecmalta.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5

148.72.158.229

200 OK

18 kB

URL HTTP/1.1
www.prosecmalta.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (15224)
Size
18 kB (18181 bytes)
Hash
116c86c56f8db0bb63f15ceda50fdc98
75e308982ecf7cd43644b8b426e6aa1a0b0fbe26
def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Wed, 09 Jun 2021 07:45:12 GMT
Accept-Ranges: bytes
Content-Length: 18181
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/style.css?ver=5.9.5

148.72.158.229

200 OK

1.6 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/style.css?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with CRLF line terminators
Size
1.6 kB (1568 bytes)
Hash
b1e96fc305381b509888b4f4216299df
c33484d0106ded41eeb00e4972e8fa5876c2253d
77bcffaeed0a78858cab840367c85a0c10cf379048e5fd78be6f7bf021b1e94c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/style.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 1568
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14290
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:52:02 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8aa8094-2375-4409-9501-0fe4e50b766d.jpeg

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8aa8094-2375-4409-9501-0fe4e50b766d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8584 bytes)
Hash
d6328cb630204883d77babc9922075f1
e440f7b94b53b6e7880b26f9653b1b266aae0190
b15144c88277e24acde95b45e56fb2d237f5b1d34a9590aa5aa2741f7102a9fe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8aa8094-2375-4409-9501-0fe4e50b766d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8584
x-amzn-requestid: ef9e42a9-be9d-4239-831d-4c4250b0cb8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCKAsGTDIAMFa1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8a04-17e610e05ee024007d64c6ea;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 02:48:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yeEzjiU_qN75issum4uP2zFM3C-DlSfIm728WgTPLvfvUmT0fWf-lA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 22:02:07 GMT
age: 2995
etag: "e440f7b94b53b6e7880b26f9653b1b266aae0190"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8817 bytes)
Hash
741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-krGE6AIAMF2Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6v42KU65wdKKPvjE7TRA3Li3o2dvrdPH7oGVDZGPPsAepqFFjQJkkA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 16:15:20 GMT
age: 23802
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.prosecmalta.com/wp-content/themes/bodyguard/css/owl.carousel.css?ver=5.9.5

148.72.158.229

200 OK

4.9 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/css/owl.carousel.css?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with CRLF line terminators
Size
4.9 kB (4880 bytes)
Hash
c5d0fe265b70a523ef7ad331a91d31b7
5b6150d34d2fadf70b7eeaf08cd705a32ff8e5d9
f22b79cdd8f3873289450d997863d49e69f6dcf0d460c5ceceef97601c06c2b0

HTTP Headers

GET /wp-content/themes/bodyguard/css/owl.carousel.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 4880
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6859 bytes)
Hash
f80a9a9b55da31c98663e157dde74a19
26b8dd82140c0db021048e11bff65a391dc6b444
680c39e4ea1d784db9831958942a64f3e83618dc443c8bcaa34223d85bb5b926

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 6859
x-amzn-requestid: 4a1b13ad-9455-401d-a914-c1ada2191977
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYTHRroAMFR8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-4e5d630b23cdeb2e4b6d75d1;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D24B6xoLZ2nu1NdlMU5TgJSc-DfzD6vrMzgU3s6tAiAsUuzBb_t89Q==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 08:23:04 GMT
age: 52138
etag: "26b8dd82140c0db021048e11bff65a391dc6b444"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8197b890-dd48-403d-9c61-3406a67e2578.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.7 kB (3669 bytes)
Hash
48713d6090df316bed8ab2b1e6698d70
767a6fef172a54d7659417d9cb809d955d130562
702a09de59300336419371adafae4185f7ad8bca43dc4e633f748f68feb967c3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8197b890-dd48-403d-9c61-3406a67e2578.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 3669
x-amzn-requestid: 66d1c64e-532e-4661-84dc-90b0d1569a3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8Jr3FUtIAMFc1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2318-6946a6345e5702cb7d968616;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:04:56 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: Nt2hePjJ3CZ4bJR0I87O25Z0lX_4KOcoD4_DitVZteBlMJiuG1JCcg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 3bb2b699cd244bf37141ea08a6a61732.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 14:48:20 GMT
age: 29022
etag: "767a6fef172a54d7659417d9cb809d955d130562"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14290
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:52:02 GMT
Connection: keep-alive

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 3625
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5099 bytes)
Hash
433875a1b1fef34e45f2d8ac344c07e3
f2129466436cbbdd58abe42a47fb7af19eba58e6
ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 5099
x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4jFBvoAMFl1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VsdLWuh4rCawI5V0YYGaHxEMl2YEVNgsbjfCwzDsrnCZhRK2FkCkVw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:41 GMT
age: 3621
etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14290
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:52:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14290
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:52:02 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:52:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.prosecmalta.com/wp-content/themes/bodyguard/css/font-awesome.min.css?ver=5.9.5

148.72.158.229

200 OK

24 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/css/font-awesome.min.css?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (23577), with CRLF line terminators
Size
24 kB (23742 bytes)
Hash
f667e6132f8470a39d2395b81ab4ef09
3e435d5167460aaf367836e1973e90a47039faea
222d75918bb518d46a4d283da7de243b4409d597a8c6856070a07e96b600e6d7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/css/font-awesome.min.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 23742
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.prosecmalta.com/wp-content/themes/bodyguard/css/dark.css?ver=5.9.5

148.72.158.229

200 OK

18 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/css/dark.css?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with CRLF line terminators
Size
18 kB (18293 bytes)
Hash
6b02b592b501d62c202d58bf0c517047
6eee302cd02c9cf53ffc71da93c8bd42159528cd
b8d3626ec2f4a2b02629ff022d84d86c35b954d3633c3952833a65316d5d4b3d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/css/dark.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 18293
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.prosecmalta.com/wp-content/themes/bodyguard/css/animate-custom.css?ver=5.9.5

148.72.158.229

200 OK

60 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/css/animate-custom.css?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (459), with CRLF line terminators
Size
60 kB (60377 bytes)
Hash
1adb17b4a44fb147d3a96d0be9e011bd
6c03f3e2ea36a49f554fab25059ce8b22bb805be
3dcc8378fdceaa8da92a4449ccf5403d7cad85cf7b54896a6369311453287eb8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/css/animate-custom.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 60377
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.prosecmalta.com/wp-content/themes/bodyguard/css/mediaelementplayer.css?ver=5.9.5

148.72.158.229

200 OK

24 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/css/mediaelementplayer.css?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (303), with CRLF line terminators
Size
24 kB (24114 bytes)
Hash
2d04c2773dfe75076f97a5a281eaef14
b883245401a9f2872fcaa801418743bd982acfc7
b18d10f5d6ef2676323b9860b9411cc5d9fb43b9922ab96796aa0fdbd8939789

HTTP Headers

GET /wp-content/themes/bodyguard/css/mediaelementplayer.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 24114
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.prosecmalta.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

148.72.158.229

200 OK

11 kB

URL HTTP/1.1
www.prosecmalta.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (11126)
Size
11 kB (11224 bytes)
Hash
79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 19:36:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8

148.72.158.229

200 OK

124 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (42889)
Size
124 kB (124134 bytes)
Hash
e4bc260935352e71791596e3c8b0c205
336eff1507c4d4f88bbc8f9630f405e827357cde
a5f70e90e97e6ac1952a1a116dba485b468fa98dca2977853768a946227c7bc0

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:51:31 GMT
Accept-Ranges: bytes
Content-Length: 124134
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/appear.js?ver=5.9.5

148.72.158.229

200 OK

1.2 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/appear.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (979), with CRLF line terminators
Size
1.2 kB (1156 bytes)
Hash
3968db150cdc55e8c0d9362ed5b9e639
2f3bd73ae8d25958386c1e317ce441bf921883e6
034374df5359af2bf7d4d04c4da1f648de516b968a4ca2f9db8440313b600211

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/js/vendor/appear.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 1156
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/sharrre.js?ver=5.9.5

148.72.158.229

200 OK

14 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/sharrre.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
HTML document, ASCII text, with very long lines (13990), with CRLF line terminators
Size
14 kB (14221 bytes)
Hash
0de23c15ca3c7e5593c4c4607c1426c9
c55f361a96e64bf697d560054c7d1190f7d77050
ecb734f5f29d0b7b82a4dfd8077785c503414ccc4167caadbd9a4f0c5a2c30f0

HTTP Headers

GET /wp-content/themes/bodyguard/js/vendor/sharrre.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 14221
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

148.72.158.229

200 OK

90 kB

URL HTTP/1.1
www.prosecmalta.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (65447)
Size
90 kB (89521 bytes)
Hash
02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Thu, 11 Mar 2021 01:37:24 GMT
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easing.js?ver=5.9.5

148.72.158.229

200 OK

3.9 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easing.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
Unicode text, UTF-8 text, with very long lines (3601), with CRLF line terminators
Size
3.9 kB (3934 bytes)
Hash
28b79e6ee39268897ff4e47c0f58b8b5
59e5105fa0da217c28722ff8d3b3914aa24bc211
6734bb552e5012dc14c9bdb286cd07e28b7d09aae999f281bf3690a89d2b86dc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/js/vendor/easing.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 3934
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/mediaelement.js?ver=5.9.5

148.72.158.229

200 OK

27 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/mediaelement.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
HTML document, ASCII text, with very long lines (1015), with CRLF line terminators
Size
27 kB (26733 bytes)
Hash
8d7e2fc80075682245b85b1acb880dc4
cca0a917a32a0001e2ead10ee2d500738ae7b224
9f28ed29f8801ba6c92d45d9ebcda4a0cd552b19737ef5b879b973a4e56ae1d4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/js/vendor/mediaelement.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 26733
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8

148.72.158.229

200 OK

380 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (64288)
Size
380 kB (379836 bytes)
Hash
ea5cf2c55fc416c211bb6bdfe2a5ea3d
53bf239da2028044e61ac2edd5d292ca00d09726
edc00efff9674105335e75964130281682159ea89058596862a28da1dcaff293

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:51:31 GMT
Accept-Ranges: bytes
Content-Length: 379836
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/modernizr.js?ver=5.9.5

148.72.158.229

200 OK

9.4 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/modernizr.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
HTML document text\012- HTML document, ASCII text, with very long lines (9163), with CRLF line terminators
Size
9.4 kB (9379 bytes)
Hash
dc1a7ae9c7ae0c6384d718367d2ed487
1842cf2c2bba348f29d7c75ae96771714dcca317
1e5b3c890a4de6f0de831bd0803446aa3cdc6914f7ec133a527d673a6ed49f84

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/js/vendor/modernizr.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 9379
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/owl.carousel.min.js?ver=5.9.5

148.72.158.229

200 OK

40 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/owl.carousel.min.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (32068), with CRLF line terminators
Size
40 kB (40428 bytes)
Hash
c938be57305c6c33d463d381c0becbae
2a3dbc84e21d43693371c24006bc3856c2e69547
ec657df6969dc06ecef461e660742441c801e85bf2b18d6333ed80b3d266e0b4

HTTP Headers

GET /wp-content/themes/bodyguard/js/vendor/owl.carousel.min.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 40428
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/foundation.responsive.js?ver=5.9.5

148.72.158.229

200 OK

103 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/foundation.responsive.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
HTML document, ASCII text, with very long lines (32098), with CRLF line terminators
Size
103 kB (102811 bytes)
Hash
5cc81248bbad06940ccaa6dc75f3f460
3764822e0e32cefe36c929a85fcafd50d36edd9e
ad5c48a07c6687cd4d4429a3b862a7169d5448234b9c4758b32364cb748b4890

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/js/vendor/foundation.responsive.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 102811
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/packery.metafizzy.js?ver=5.9.5

148.72.158.229

200 OK

35 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/packery.metafizzy.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (32079), with CRLF line terminators
Size
35 kB (34601 bytes)
Hash
21237cc5394cc4313be0e08466135482
0dcbb5493e0adea3ec9c3588288799c58b6a47fd
74851e05fe3b4d2578a96db032574a519b7c33a68c2bdc5e5fddb1a08df5efd1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/js/vendor/packery.metafizzy.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 34601
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/counterup.js?ver=5.9.5

148.72.158.229

200 OK

1.1 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/counterup.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (918), with CRLF line terminators
Size
1.1 kB (1074 bytes)
Hash
e1e1c0dfa96098648b9e90abbf15427a
885d02eaf0471a0581028819bdc9a3925c9afff8
6fd2a01091ee262d75fecad9bb8563e5ce2e01321119be8cf2e0bcd6b72d092d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/js/vendor/counterup.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 1074
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easypiechart.js?ver=5.9.5

148.72.158.229

200 OK

3.8 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easypiechart.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (3545), with CRLF line terminators
Size
3.8 kB (3775 bytes)
Hash
eb7eb2a6a2d615f65943063d4cdface2
94e9ddadf481158355d76a4230846851319a54f3
e41d5188e9bfe975f4ce9b9cb1863ffb80f300921f635a03b7f739d2afc53344

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/js/vendor/easypiechart.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 3775
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/waypoints.js?ver=5.9.5

148.72.158.229

200 OK

8.0 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/waypoints.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (7828), with CRLF line terminators
Size
8.0 kB (8049 bytes)
Hash
3a11eebee659e6090ecec87abac40330
a46e0be6eef25aa7cd26c349fd40a5d31762b833
6690f10daf037153fa8c3e475a8e24640ec77cb3838601c50c9cfe356f07bd71

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/js/vendor/waypoints.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 8049
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/wd_owlcarousel.js?ver=5.9.5

148.72.158.229

200 OK

7.2 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/wd_owlcarousel.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with CRLF line terminators
Size
7.2 kB (7214 bytes)
Hash
b05fcef39237bbf3faa82a8c44137e9e
ffe3f29f171ae9a3b6c447b0f8224969b895fb3b
57930f1985f65f7d8e4f7556237051e908a56178649590f13b896ad6b5236ca7

HTTP Headers

GET /wp-content/themes/bodyguard/js/wd_owlcarousel.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 7214
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/shortcode/script-shortcodes.js?ver=5.9.5

148.72.158.229

200 OK

3.9 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/shortcode/script-shortcodes.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with CRLF line terminators
Size
3.9 kB (3891 bytes)
Hash
340ac123585eb2cea9ba786c7579a5dc
968beb608c7e89540282c25a8c95eb14cd460bd0
67eb0b4f7c1778759b1f97ef05a057872d3fcdee5c67f72f1379cccd98732e12

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/js/shortcode/script-shortcodes.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 3891
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2

148.72.158.229

200 OK

1.5 kB

URL HTTP/1.1
www.prosecmalta.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (1465)
Size
1.5 kB (1500 bytes)
Hash
8767142f87d8ba86f0094540b29b6d97
754645c23f4faf070fd3460c5aed47ef99314790
491ee20092ce969e6785601ae4595748d4ac5ee4df19012b19b77de6c9dfd357

HTTP Headers

GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Tue, 04 Jan 2022 01:33:18 GMT
Accept-Ranges: bytes
Content-Length: 1500
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/scripts.js?ver=5.9.5

148.72.158.229

200 OK

13 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/scripts.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with CRLF line terminators
Size
13 kB (13321 bytes)
Hash
9a766f19649d3fba7aba7e8ffc210ab6
3e431acf7a4647ead8a4c0de2517a6cde632a563
6cea3d4ac2fb4fb91b7611ef789b82705a866d56386ea326b1a1790849fccfd1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/js/scripts.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 13321
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/js/isMobile.min.js?ver=5.9.5

148.72.158.229

200 OK

1.7 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/js/isMobile.min.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (1743), with no line terminators
Size
1.7 kB (1743 bytes)
Hash
c4a54028decdeff2bb3ba00e869763ee
d33194f55e24ba13d68b2df3d5536193fd4a9bc5
4c400e40ad8c9344807c7008c6b75fde78266841137fb1f39c1a544275b256b6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/js/isMobile.min.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 1743
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.8

148.72.158.229

200 OK

58 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.8
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
Unicode text, UTF-8 text, with very long lines (12602)
Size
58 kB (57682 bytes)
Hash
4c3247fd7a9515c2bb4c588f29590de2
e027694b5bcf5f282c35b37761c25d39bf047af0
c30c5b740610275fd73ab469fea10cc11844d60befb266be86845c738b2ecec4

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.8 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:51:31 GMT
Accept-Ranges: bytes
Content-Length: 57682
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

148.72.158.229

200 OK

9.9 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (9937), with no line terminators
Size
9.9 kB (9937 bytes)
Hash
dc74c9954b1944928eca0172c3b8c6b3
e9e00e587e0e28491b69563b4e768945ff2e0ed5
d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:19:51 GMT
Accept-Ranges: bytes
Content-Length: 9937
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

148.72.158.229

200 OK

12 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
HTML document, ASCII text, with very long lines (12310), with no line terminators
Size
12 kB (12310 bytes)
Hash
1f9968a7c7a2a02491393fb9d4103dae
0032c8a6a692e6f072b2cef20828449402fdd57d
f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:19:51 GMT
Accept-Ranges: bytes
Content-Length: 12310
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.9.5

148.72.158.229

200 OK

1.2 kB

URL HTTP/1.1
www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (1193), with no line terminators
Size
1.2 kB (1193 bytes)
Hash
f34f415aa56ed900eecf3f212adb57e2
352dfeec21817198c07ab11705b53d813420cea3
7f34b768792b90cf0b04fced2470e43d8fab7644f6565d5178fbfb49c4859cee

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Thu, 07 Jan 2021 01:59:24 GMT
Accept-Ranges: bytes
Content-Length: 1193
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/uploads/2017/06/rsz_1rsz_prob11.png

148.72.158.229

301 Moved Permanently

282 B

URL HTTP/1.1
www.prosecmalta.com/wp-content/uploads/2017/06/rsz_1rsz_prob11.png
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
282 B (282 bytes)
Hash
1cef38acce06bd153e966ae67f07b80d
b46546d96b1e74831011075d8094ff534d6addfa
bcefc7e938f9efa9bddad59ccd047c55c72c7cafea46e16d2591c872878c815c

HTTP Headers

GET /wp-content/uploads/2017/06/rsz_1rsz_prob11.png HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Location: https://www.prosecmalta.com/wp-content/uploads/2017/06/rsz_1rsz_prob11.png
Content-Length: 282
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.prosecmalta.com/wp-content/themes/bodyguard/images/contact-icons.png

148.72.158.229

200 OK

1.6 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/images/contact-icons.png
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
PNG image data, 63 x 17, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1578 bytes)
Hash
56b5ffa33ee54b8038276e42e87162ce
18660a6df5978db6bc3d787218e5c79d1b318a14
c6ca5ce2355efb7a4ea9da70a66ab62935989b53cbbdb07c949344a2a6c9d6ff

HTTP Headers

GET /wp-content/themes/bodyguard/images/contact-icons.png HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/wp-content/themes/bodyguard/css/app.css?ver=5.9.5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 1578
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16

148.72.158.229

200 OK

158 kB

URL HTTP/1.1
www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (65266)
Size
158 kB (157610 bytes)
Hash
6de31d697a1b1b2b0e2a3b29b1fb458b
c9b6c996a66918f7c4d49c9b60134ce282c47143
443ba0af7a7ed827223c7fb3c008c02b9ff1d651b6492e9c270378b07d9f6008

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Wed, 30 Sep 2020 01:23:06 GMT
Accept-Ranges: bytes
Content-Length: 157610
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.prosecmalta.com/wp-content/themes/bodyguard/fonts/fontawesome-webfont.woff2?v=4.3.0

148.72.158.229

200 OK

57 kB

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/fonts/fontawesome-webfont.woff2?v=4.3.0
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Size
57 kB (56780 bytes)
Hash
97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bodyguard/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.prosecmalta.com/wp-content/themes/bodyguard/css/font-awesome.min.css?ver=5.9.5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 56780
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff2

www.prosecmalta.com/favicon.ico

148.72.158.229

302 Moved Temporarily

0 B

URL HTTP/1.1
www.prosecmalta.com/favicon.ico
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 302 Moved Temporarily
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Link: <https://www.prosecmalta.com/wp-json/>; rel="https://api.w.org/"
X-Redirect-By: WordPress
Location: https://www.prosecmalta.com/wp-includes/images/w-logo-blue-white-bg.png
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.prosecmalta.com/wp-includes/images/w-logo-blue-white-bg.png

148.72.158.229

200 OK

4.1 kB

URL HTTP/1.1
www.prosecmalta.com/wp-includes/images/w-logo-blue-white-bg.png
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4119 bytes)
Hash
000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0

HTTP Headers

GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.prosecmalta.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:04 GMT
Server: Apache
Last-Modified: Tue, 16 Nov 2021 10:34:02 GMT
Accept-Ranges: bytes
Content-Length: 4119
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

www.prosecmalta.com/wp-content/uploads/2015/03/workplace-violence-words-767x813-767x350.jpg

148.72.158.229

404 Not Found

0 B

URL HTTP/1.1
www.prosecmalta.com/wp-content/uploads/2015/03/workplace-violence-words-767x813-767x350.jpg
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2015/03/workplace-violence-words-767x813-767x350.jpg HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.prosecmalta.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.prosecmalta.com/wp-content/themes/bodyguard/css/app.css?ver=5.9.5

148.72.158.229

200 OK

0 B

URL HTTP/1.1
www.prosecmalta.com/wp-content/themes/bodyguard/css/app.css?ver=5.9.5
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/bodyguard/css/app.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 305000
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.prosecmalta.com/wp-content/uploads/2015/03/security-agent-880x350.jpg

148.72.158.229

404 Not Found

0 B

URL HTTP/1.1
www.prosecmalta.com/wp-content/uploads/2015/03/security-agent-880x350.jpg
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2015/03/security-agent-880x350.jpg HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.prosecmalta.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.prosecmalta.com/wp-content/uploads/2017/06/rsz_1rsz_prob11.png

148.72.158.229

404 Not Found

0 B

URL HTTP/1.1
www.prosecmalta.com/wp-content/uploads/2017/06/rsz_1rsz_prob11.png
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2017/06/rsz_1rsz_prob11.png HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 Not Found
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.prosecmalta.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.prosecmalta.com/of

148.72.158.229

404 Not Found

0 B

URL HTTP/1.1
www.prosecmalta.com/of
IP
148.72.158.229:0
ASN
#30083 AS-30083-GO-DADDY-COM-LLC

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /of HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.prosecmalta.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

fonts.googleapis.com/css?family=Open%2BSans%3A400%2C300%2C700%26subset%3Dlatin%2Clatin-ext&ver=1.0.0

142.250.74.10

400 Bad Request

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open%2BSans%3A400%2C300%2C700%26subset%3Dlatin%2Clatin-ext&ver=1.0.0
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open%2BSans%3A400%2C300%2C700%26subset%3Dlatin%2Clatin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 400 Bad Request
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 26 Nov 2022 22:52:02 GMT
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (30)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations