prosecmalta.com/
148.72.158.229301 Moved Permanently 232 B IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3553345508eaa72c16c3642923a74f36
960f5dc5e92586c924e61352fbe37ad1843f67de
2cc0a281ea58b81ed0ea3c8dc9f6873757ca23a94fb2ebd84294e2494b70b1c4
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 22:51:59 GMT
Server: Apache
Location: https://prosecmalta.com/
Content-Length: 232
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4815
Expires: Sun, 27 Nov 2022 00:12:14 GMT
Date: Sat, 26 Nov 2022 22:51:59 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6361
Cache-Control: max-age=134710
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:51:59 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 12:17:09 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 22:19:17 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1962
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5665
Expires: Sun, 27 Nov 2022 00:26:24 GMT
Date: Sat, 26 Nov 2022 22:51:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: c4AEIUtcSspFZxrD1ZPoIYZx2iAMwTF24HghXcIn/9D7vuj80hNhPmA03zj1ycp6qq+fq7vRtsPrfaT7+gF+WQ==
x-amz-request-id: 846KZYX5WE8ER9PR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 22:44:24 GMT
age: 455
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:51:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 22:11:12 GMT
cache-control: public,max-age=3600
age: 2448
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1028
Cache-Control: max-age=124319
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:52:00 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 09:23:59 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
prosecmalta.com/
148.72.158.229301 Moved Permanently 0 B IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 22:52:00 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
X-Redirect-By: WordPress
Location: https://www.prosecmalta.com/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
52.89.217.163101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.217.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: w8TFY/E1UXzV6QMlXkRBQQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +7WFGMqQUiMOEBeh2pNg7b+EWFQ=
www.prosecmalta.com/
148.72.158.229200 OK 53 kB IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8166), with CRLF, LF line terminators
Hash 1d95cd21d3601dacd9e0734143d54408
8a6685d18b09aabf8756d766f6fba717d414c44d
508af887c3f3ee79bc351087bdb6d5c8a95b0f5b0d026b47ca20cd614bcce304
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:01 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Link: <https://www.prosecmalta.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:52:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.prosecmalta.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
148.72.158.229200 OK 83 kB URL HTTP/1.1 www.prosecmalta.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (39791)
Hash 7e7a1a9e3712cd16dade7c6e811ba28b
45e216af145ea7c3f30099c869482785ad921bc2
cdbdaa122823601390c7dcbdd1afde33c2f1a432b8c5ff025c6137ee99ba541a
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 23:21:23 GMT
Accept-Ranges: bytes
Content-Length: 83419
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
148.72.158.229200 OK 2.7 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:19:51 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.prosecmalta.com/wp-content/themes/bodyguard/css/vendor/component.css?ver=5.9.5
148.72.158.229200 OK 1.1 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/css/vendor/component.css?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash c58c57e32888eaac869e45a416d9fde0
530f4f62108100a5333379b300b9640cfb3daecb
398c96fefd1be833ff9545caf4c7012232a0c79bf1b29fdbb02dc8bf96555c2d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/css/vendor/component.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 1089
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14290
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:52:02 GMT
Connection: keep-alive
www.prosecmalta.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
148.72.158.229200 OK 18 kB URL HTTP/1.1 www.prosecmalta.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (15224)
Hash 116c86c56f8db0bb63f15ceda50fdc98
75e308982ecf7cd43644b8b426e6aa1a0b0fbe26
def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Wed, 09 Jun 2021 07:45:12 GMT
Accept-Ranges: bytes
Content-Length: 18181
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/style.css?ver=5.9.5
148.72.158.229200 OK 1.6 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/style.css?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash b1e96fc305381b509888b4f4216299df
c33484d0106ded41eeb00e4972e8fa5876c2253d
77bcffaeed0a78858cab840367c85a0c10cf379048e5fd78be6f7bf021b1e94c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/style.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 1568
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14290
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:52:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8aa8094-2375-4409-9501-0fe4e50b766d.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8aa8094-2375-4409-9501-0fe4e50b766d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6328cb630204883d77babc9922075f1
e440f7b94b53b6e7880b26f9653b1b266aae0190
b15144c88277e24acde95b45e56fb2d237f5b1d34a9590aa5aa2741f7102a9fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8aa8094-2375-4409-9501-0fe4e50b766d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8584
x-amzn-requestid: ef9e42a9-be9d-4239-831d-4c4250b0cb8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCKAsGTDIAMFa1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8a04-17e610e05ee024007d64c6ea;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 02:48:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yeEzjiU_qN75issum4uP2zFM3C-DlSfIm728WgTPLvfvUmT0fWf-lA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 22:02:07 GMT
age: 2995
etag: "e440f7b94b53b6e7880b26f9653b1b266aae0190"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-krGE6AIAMF2Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6v42KU65wdKKPvjE7TRA3Li3o2dvrdPH7oGVDZGPPsAepqFFjQJkkA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 16:15:20 GMT
age: 23802
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.prosecmalta.com/wp-content/themes/bodyguard/css/owl.carousel.css?ver=5.9.5
148.72.158.229200 OK 4.9 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/css/owl.carousel.css?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash c5d0fe265b70a523ef7ad331a91d31b7
5b6150d34d2fadf70b7eeaf08cd705a32ff8e5d9
f22b79cdd8f3873289450d997863d49e69f6dcf0d460c5ceceef97601c06c2b0
GET /wp-content/themes/bodyguard/css/owl.carousel.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 4880
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f80a9a9b55da31c98663e157dde74a19
26b8dd82140c0db021048e11bff65a391dc6b444
680c39e4ea1d784db9831958942a64f3e83618dc443c8bcaa34223d85bb5b926
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6859
x-amzn-requestid: 4a1b13ad-9455-401d-a914-c1ada2191977
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYTHRroAMFR8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-4e5d630b23cdeb2e4b6d75d1;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D24B6xoLZ2nu1NdlMU5TgJSc-DfzD6vrMzgU3s6tAiAsUuzBb_t89Q==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 08:23:04 GMT
age: 52138
etag: "26b8dd82140c0db021048e11bff65a391dc6b444"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8197b890-dd48-403d-9c61-3406a67e2578.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8197b890-dd48-403d-9c61-3406a67e2578.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 48713d6090df316bed8ab2b1e6698d70
767a6fef172a54d7659417d9cb809d955d130562
702a09de59300336419371adafae4185f7ad8bca43dc4e633f748f68feb967c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8197b890-dd48-403d-9c61-3406a67e2578.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 3669
x-amzn-requestid: 66d1c64e-532e-4661-84dc-90b0d1569a3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8Jr3FUtIAMFc1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2318-6946a6345e5702cb7d968616;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:04:56 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: Nt2hePjJ3CZ4bJR0I87O25Z0lX_4KOcoD4_DitVZteBlMJiuG1JCcg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 3bb2b699cd244bf37141ea08a6a61732.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 14:48:20 GMT
age: 29022
etag: "767a6fef172a54d7659417d9cb809d955d130562"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14290
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:52:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 3625
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 433875a1b1fef34e45f2d8ac344c07e3
f2129466436cbbdd58abe42a47fb7af19eba58e6
ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5099
x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4jFBvoAMFl1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VsdLWuh4rCawI5V0YYGaHxEMl2YEVNgsbjfCwzDsrnCZhRK2FkCkVw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:41 GMT
age: 3621
etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14290
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:52:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14290
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:52:02 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:52:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.prosecmalta.com/wp-content/themes/bodyguard/css/font-awesome.min.css?ver=5.9.5
148.72.158.229200 OK 24 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/css/font-awesome.min.css?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (23577), with CRLF line terminators
Hash f667e6132f8470a39d2395b81ab4ef09
3e435d5167460aaf367836e1973e90a47039faea
222d75918bb518d46a4d283da7de243b4409d597a8c6856070a07e96b600e6d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/css/font-awesome.min.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 23742
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.prosecmalta.com/wp-content/themes/bodyguard/css/dark.css?ver=5.9.5
148.72.158.229200 OK 18 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/css/dark.css?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 6b02b592b501d62c202d58bf0c517047
6eee302cd02c9cf53ffc71da93c8bd42159528cd
b8d3626ec2f4a2b02629ff022d84d86c35b954d3633c3952833a65316d5d4b3d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/css/dark.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 18293
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.prosecmalta.com/wp-content/themes/bodyguard/css/animate-custom.css?ver=5.9.5
148.72.158.229200 OK 60 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/css/animate-custom.css?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (459), with CRLF line terminators
Hash 1adb17b4a44fb147d3a96d0be9e011bd
6c03f3e2ea36a49f554fab25059ce8b22bb805be
3dcc8378fdceaa8da92a4449ccf5403d7cad85cf7b54896a6369311453287eb8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/css/animate-custom.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 60377
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.prosecmalta.com/wp-content/themes/bodyguard/css/mediaelementplayer.css?ver=5.9.5
148.72.158.229200 OK 24 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/css/mediaelementplayer.css?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (303), with CRLF line terminators
Hash 2d04c2773dfe75076f97a5a281eaef14
b883245401a9f2872fcaa801418743bd982acfc7
b18d10f5d6ef2676323b9860b9411cc5d9fb43b9922ab96796aa0fdbd8939789
GET /wp-content/themes/bodyguard/css/mediaelementplayer.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 24114
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.prosecmalta.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
148.72.158.229200 OK 11 kB URL HTTP/1.1 www.prosecmalta.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 19:36:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8
148.72.158.229200 OK 124 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (42889)
Size 124 kB (124134 bytes)
Hash e4bc260935352e71791596e3c8b0c205
336eff1507c4d4f88bbc8f9630f405e827357cde
a5f70e90e97e6ac1952a1a116dba485b468fa98dca2977853768a946227c7bc0
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:51:31 GMT
Accept-Ranges: bytes
Content-Length: 124134
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/appear.js?ver=5.9.5
148.72.158.229200 OK 1.2 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/appear.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (979), with CRLF line terminators
Hash 3968db150cdc55e8c0d9362ed5b9e639
2f3bd73ae8d25958386c1e317ce441bf921883e6
034374df5359af2bf7d4d04c4da1f648de516b968a4ca2f9db8440313b600211
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/js/vendor/appear.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 1156
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/sharrre.js?ver=5.9.5
148.72.158.229200 OK 14 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/sharrre.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (13990), with CRLF line terminators
Hash 0de23c15ca3c7e5593c4c4607c1426c9
c55f361a96e64bf697d560054c7d1190f7d77050
ecb734f5f29d0b7b82a4dfd8077785c503414ccc4167caadbd9a4f0c5a2c30f0
GET /wp-content/themes/bodyguard/js/vendor/sharrre.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 14221
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
148.72.158.229200 OK 90 kB URL HTTP/1.1 www.prosecmalta.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Thu, 11 Mar 2021 01:37:24 GMT
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easing.js?ver=5.9.5
148.72.158.229200 OK 3.9 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easing.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (3601), with CRLF line terminators
Hash 28b79e6ee39268897ff4e47c0f58b8b5
59e5105fa0da217c28722ff8d3b3914aa24bc211
6734bb552e5012dc14c9bdb286cd07e28b7d09aae999f281bf3690a89d2b86dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/js/vendor/easing.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 3934
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/mediaelement.js?ver=5.9.5
148.72.158.229200 OK 27 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/mediaelement.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (1015), with CRLF line terminators
Hash 8d7e2fc80075682245b85b1acb880dc4
cca0a917a32a0001e2ead10ee2d500738ae7b224
9f28ed29f8801ba6c92d45d9ebcda4a0cd552b19737ef5b879b973a4e56ae1d4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/js/vendor/mediaelement.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 26733
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8
148.72.158.229200 OK 380 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (64288)
Size 380 kB (379836 bytes)
Hash ea5cf2c55fc416c211bb6bdfe2a5ea3d
53bf239da2028044e61ac2edd5d292ca00d09726
edc00efff9674105335e75964130281682159ea89058596862a28da1dcaff293
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:51:31 GMT
Accept-Ranges: bytes
Content-Length: 379836
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/modernizr.js?ver=5.9.5
148.72.158.229200 OK 9.4 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/modernizr.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document, ASCII text, with very long lines (9163), with CRLF line terminators
Hash dc1a7ae9c7ae0c6384d718367d2ed487
1842cf2c2bba348f29d7c75ae96771714dcca317
1e5b3c890a4de6f0de831bd0803446aa3cdc6914f7ec133a527d673a6ed49f84
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/js/vendor/modernizr.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 9379
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/owl.carousel.min.js?ver=5.9.5
148.72.158.229200 OK 40 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/owl.carousel.min.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32068), with CRLF line terminators
Hash c938be57305c6c33d463d381c0becbae
2a3dbc84e21d43693371c24006bc3856c2e69547
ec657df6969dc06ecef461e660742441c801e85bf2b18d6333ed80b3d266e0b4
GET /wp-content/themes/bodyguard/js/vendor/owl.carousel.min.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 40428
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/foundation.responsive.js?ver=5.9.5
148.72.158.229200 OK 103 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/foundation.responsive.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (32098), with CRLF line terminators
Size 103 kB (102811 bytes)
Hash 5cc81248bbad06940ccaa6dc75f3f460
3764822e0e32cefe36c929a85fcafd50d36edd9e
ad5c48a07c6687cd4d4429a3b862a7169d5448234b9c4758b32364cb748b4890
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/js/vendor/foundation.responsive.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 102811
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/packery.metafizzy.js?ver=5.9.5
148.72.158.229200 OK 35 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/packery.metafizzy.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32079), with CRLF line terminators
Hash 21237cc5394cc4313be0e08466135482
0dcbb5493e0adea3ec9c3588288799c58b6a47fd
74851e05fe3b4d2578a96db032574a519b7c33a68c2bdc5e5fddb1a08df5efd1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/js/vendor/packery.metafizzy.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 34601
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/counterup.js?ver=5.9.5
148.72.158.229200 OK 1.1 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/counterup.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (918), with CRLF line terminators
Hash e1e1c0dfa96098648b9e90abbf15427a
885d02eaf0471a0581028819bdc9a3925c9afff8
6fd2a01091ee262d75fecad9bb8563e5ce2e01321119be8cf2e0bcd6b72d092d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/js/vendor/counterup.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 1074
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easypiechart.js?ver=5.9.5
148.72.158.229200 OK 3.8 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/easypiechart.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (3545), with CRLF line terminators
Hash eb7eb2a6a2d615f65943063d4cdface2
94e9ddadf481158355d76a4230846851319a54f3
e41d5188e9bfe975f4ce9b9cb1863ffb80f300921f635a03b7f739d2afc53344
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/js/vendor/easypiechart.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 3775
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/waypoints.js?ver=5.9.5
148.72.158.229200 OK 8.0 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/vendor/waypoints.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (7828), with CRLF line terminators
Hash 3a11eebee659e6090ecec87abac40330
a46e0be6eef25aa7cd26c349fd40a5d31762b833
6690f10daf037153fa8c3e475a8e24640ec77cb3838601c50c9cfe356f07bd71
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/js/vendor/waypoints.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 8049
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/wd_owlcarousel.js?ver=5.9.5
148.72.158.229200 OK 7.2 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/wd_owlcarousel.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash b05fcef39237bbf3faa82a8c44137e9e
ffe3f29f171ae9a3b6c447b0f8224969b895fb3b
57930f1985f65f7d8e4f7556237051e908a56178649590f13b896ad6b5236ca7
GET /wp-content/themes/bodyguard/js/wd_owlcarousel.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 7214
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/shortcode/script-shortcodes.js?ver=5.9.5
148.72.158.229200 OK 3.9 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/shortcode/script-shortcodes.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 340ac123585eb2cea9ba786c7579a5dc
968beb608c7e89540282c25a8c95eb14cd460bd0
67eb0b4f7c1778759b1f97ef05a057872d3fcdee5c67f72f1379cccd98732e12
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/js/shortcode/script-shortcodes.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 3891
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
148.72.158.229200 OK 1.5 kB URL HTTP/1.1 www.prosecmalta.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1465)
Hash 8767142f87d8ba86f0094540b29b6d97
754645c23f4faf070fd3460c5aed47ef99314790
491ee20092ce969e6785601ae4595748d4ac5ee4df19012b19b77de6c9dfd357
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Tue, 04 Jan 2022 01:33:18 GMT
Accept-Ranges: bytes
Content-Length: 1500
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/scripts.js?ver=5.9.5
148.72.158.229200 OK 13 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/scripts.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 9a766f19649d3fba7aba7e8ffc210ab6
3e431acf7a4647ead8a4c0de2517a6cde632a563
6cea3d4ac2fb4fb91b7611ef789b82705a866d56386ea326b1a1790849fccfd1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/js/scripts.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 13321
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/js/isMobile.min.js?ver=5.9.5
148.72.158.229200 OK 1.7 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/js/isMobile.min.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1743), with no line terminators
Hash c4a54028decdeff2bb3ba00e869763ee
d33194f55e24ba13d68b2df3d5536193fd4a9bc5
4c400e40ad8c9344807c7008c6b75fde78266841137fb1f39c1a544275b256b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/js/isMobile.min.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 1743
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.8
148.72.158.229200 OK 58 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.8
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash 4c3247fd7a9515c2bb4c588f29590de2
e027694b5bcf5f282c35b37761c25d39bf047af0
c30c5b740610275fd73ab469fea10cc11844d60befb266be86845c738b2ecec4
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.8 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:51:31 GMT
Accept-Ranges: bytes
Content-Length: 57682
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
148.72.158.229200 OK 9.9 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9937), with no line terminators
Hash dc74c9954b1944928eca0172c3b8c6b3
e9e00e587e0e28491b69563b4e768945ff2e0ed5
d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:19:51 GMT
Accept-Ranges: bytes
Content-Length: 9937
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
148.72.158.229200 OK 12 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 1f9968a7c7a2a02491393fb9d4103dae
0032c8a6a692e6f072b2cef20828449402fdd57d
f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 11:19:51 GMT
Accept-Ranges: bytes
Content-Length: 12310
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.9.5
148.72.158.229200 OK 1.2 kB URL HTTP/1.1 www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1193), with no line terminators
Hash f34f415aa56ed900eecf3f212adb57e2
352dfeec21817198c07ab11705b53d813420cea3
7f34b768792b90cf0b04fced2470e43d8fab7644f6565d5178fbfb49c4859cee
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Thu, 07 Jan 2021 01:59:24 GMT
Accept-Ranges: bytes
Content-Length: 1193
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/uploads/2017/06/rsz_1rsz_prob11.png
148.72.158.229301 Moved Permanently 282 B URL HTTP/1.1 www.prosecmalta.com/wp-content/uploads/2017/06/rsz_1rsz_prob11.png
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1cef38acce06bd153e966ae67f07b80d
b46546d96b1e74831011075d8094ff534d6addfa
bcefc7e938f9efa9bddad59ccd047c55c72c7cafea46e16d2591c872878c815c
GET /wp-content/uploads/2017/06/rsz_1rsz_prob11.png HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Location: https://www.prosecmalta.com/wp-content/uploads/2017/06/rsz_1rsz_prob11.png
Content-Length: 282
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.prosecmalta.com/wp-content/themes/bodyguard/images/contact-icons.png
148.72.158.229200 OK 1.6 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/images/contact-icons.png
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type PNG image data, 63 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash 56b5ffa33ee54b8038276e42e87162ce
18660a6df5978db6bc3d787218e5c79d1b318a14
c6ca5ce2355efb7a4ea9da70a66ab62935989b53cbbdb07c949344a2a6c9d6ff
GET /wp-content/themes/bodyguard/images/contact-icons.png HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/wp-content/themes/bodyguard/css/app.css?ver=5.9.5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 1578
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
148.72.158.229200 OK 158 kB URL HTTP/1.1 www.prosecmalta.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65266)
Size 158 kB (157610 bytes)
Hash 6de31d697a1b1b2b0e2a3b29b1fb458b
c9b6c996a66918f7c4d49c9b60134ce282c47143
443ba0af7a7ed827223c7fb3c008c02b9ff1d651b6492e9c270378b07d9f6008
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Wed, 30 Sep 2020 01:23:06 GMT
Accept-Ranges: bytes
Content-Length: 157610
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.prosecmalta.com/wp-content/themes/bodyguard/fonts/fontawesome-webfont.woff2?v=4.3.0
148.72.158.229200 OK 57 kB URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bodyguard/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.prosecmalta.com/wp-content/themes/bodyguard/css/font-awesome.min.css?ver=5.9.5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 56780
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff2
www.prosecmalta.com/favicon.ico
148.72.158.229302 Moved Temporarily 0 B URL HTTP/1.1 www.prosecmalta.com/favicon.ico
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Moved Temporarily
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Link: <https://www.prosecmalta.com/wp-json/>; rel="https://api.w.org/"
X-Redirect-By: WordPress
Location: https://www.prosecmalta.com/wp-includes/images/w-logo-blue-white-bg.png
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.prosecmalta.com/wp-includes/images/w-logo-blue-white-bg.png
148.72.158.229200 OK 4.1 kB URL HTTP/1.1 www.prosecmalta.com/wp-includes/images/w-logo-blue-white-bg.png
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.prosecmalta.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:04 GMT
Server: Apache
Last-Modified: Tue, 16 Nov 2021 10:34:02 GMT
Accept-Ranges: bytes
Content-Length: 4119
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
www.prosecmalta.com/wp-content/uploads/2015/03/workplace-violence-words-767x813-767x350.jpg
148.72.158.229404 Not Found 0 B URL HTTP/1.1 www.prosecmalta.com/wp-content/uploads/2015/03/workplace-violence-words-767x813-767x350.jpg
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
GET /wp-content/uploads/2015/03/workplace-violence-words-767x813-767x350.jpg HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.prosecmalta.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.prosecmalta.com/wp-content/themes/bodyguard/css/app.css?ver=5.9.5
148.72.158.229200 OK 0 B URL HTTP/1.1 www.prosecmalta.com/wp-content/themes/bodyguard/css/app.css?ver=5.9.5
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
GET /wp-content/themes/bodyguard/css/app.css?ver=5.9.5 HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:52:02 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 08:49:54 GMT
Accept-Ranges: bytes
Content-Length: 305000
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.prosecmalta.com/wp-content/uploads/2015/03/security-agent-880x350.jpg
148.72.158.229404 Not Found 0 B URL HTTP/1.1 www.prosecmalta.com/wp-content/uploads/2015/03/security-agent-880x350.jpg
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
GET /wp-content/uploads/2015/03/security-agent-880x350.jpg HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.prosecmalta.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.prosecmalta.com/wp-content/uploads/2017/06/rsz_1rsz_prob11.png
148.72.158.229404 Not Found 0 B URL HTTP/1.1 www.prosecmalta.com/wp-content/uploads/2017/06/rsz_1rsz_prob11.png
IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
GET /wp-content/uploads/2017/06/rsz_1rsz_prob11.png HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.prosecmalta.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.prosecmalta.com/of
148.72.158.229404 Not Found 0 B IP 148.72.158.229:0
ASN #30083 AS-30083-GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /of HTTP/1.1
Host: www.prosecmalta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 26 Nov 2022 22:52:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.prosecmalta.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/css?family=Open%2BSans%3A400%2C300%2C700%26subset%3Dlatin%2Clatin-ext&ver=1.0.0
142.250.74.10400 Bad Request 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open%2BSans%3A400%2C300%2C700%26subset%3Dlatin%2Clatin-ext&ver=1.0.0
IP 142.250.74.10:0
GET /css?family=Open%2BSans%3A400%2C300%2C700%26subset%3Dlatin%2Clatin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.prosecmalta.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 26 Nov 2022 22:52:02 GMT
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2