Report - www.footballshahr.ir/wp-content/plugins/wellsfargo.com/

Report Overview

Submitted URL
www.footballshahr.ir/wp-content/plugins/wellsfargo.com/
IP
213.108.240.16
ASN
#200296 Hamed Kavosh Vira Co. (PJS)
Submitted
2023-05-26 04:11:26
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
116

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
lab1.avisapp.dev	unknown	2020-03-31	2021-07-02	2022-12-23	2.0 kB	50 kB	213.108.240.16
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2023-05-25	457 B	2.1 kB	104.17.24.14
www.footballshahr.ir	unknown	unknown	2018-07-03	2023-05-26	511 B	1.1 kB	213.108.240.16
footballshahr.ir	unknown	unknown	2016-06-17	2023-05-26	40 kB	465 kB	213.108.240.16
trustseal.e-rasaneh.ir	unknown	unknown	2022-08-31	2023-05-25	1.9 kB	12 kB	78.157.38.183

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-26	medium	www.footballshahr.ir/wp-content/plugins/wellsfargo.com/
2023-05-26	medium	footballshahr.ir/wp-content/plugins/wellsfargo.com/
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/css/all.css?ver=85335
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/css/rtl.css?ver=314359
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/zoom/zoom.css?ver=2
2023-05-26	medium	footballshahr.ir/site/color?ver=692523
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/jquery-migrate/dist/jquery-migrate.min.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/popper.js/dist/umd/popper.min.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap/bootstrap.min.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/appear.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/jquery.countdown.min.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/svg-injector/dist/svg-injector.min.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.concat.min.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/jquery-validation/dist/jquery.validate.min.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/ion-rangeslider/js/ion.rangeSlider.min.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/slick-carousel/slick/slick.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap-select/dist/js/bootstrap-select.min2.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/hs.core.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.countdown.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.header.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.hamburgers.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.unfold.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.focus-state.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.malihu-scrollbar.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.validation.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.onscroll-animation.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.slick-carousel.js?ver=j17938909
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.quantity-counter.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.range-slider.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.show-animation.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.svg-injector.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.scroll-nav.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.go-to.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/zoom/zoom.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lightgallery.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-pager.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-autoplay.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-fullscreen.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-zoom.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-hash.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-thumbnail.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-rotate.js
2023-05-26	medium	footballshahr.ir/backend/web/rest_library/jquery.cookie.js
2023-05-26	medium	footballshahr.ir/backend/web/rest_library/toast/jquery.toast.js
2023-05-26	medium	footballshahr.ir/backend/web/rest_library/util.js?ver=j13523016
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/components/hs.selectpicker.js?ver=j14187371
2023-05-26	medium	footballshahr.ir/backend/web/assets2/js/reset_pass.js
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/cart.js?ver=j12066567
2023-05-26	medium	footballshahr.ir/theme_asset/all-needed/essential.js?ver=j19493869
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/js/checkout.js?ver=j16606372
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/jquery/dist/jquery.min.js
2023-05-26	medium	footballshahr.ir/fonts/shiva_roar_light.woff2
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/fonts/font-electro.woff
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/font-awesome/webfonts/fa-solid-900.woff2
2023-05-26	medium	footballshahr.ir/theme_asset/electro/assets/vendor/appear.js
2023-05-26	medium	footballshahr.ir/fonts/shiva_roar_bold.woff2
2023-05-26	medium	footballshahr.ir/site/get-mchin

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (52)

	URL	Size	First Seen	Last Seen
	footballshahr.ir/theme_asset/electro/assets/js/components/hs.hamburgers.js	791 B	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.hamburgers.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 83fabd2c671de18c4101732d2088cd71 f376afb2ca881e9a7576d6b1accdf1622b6a3b4b 53db84f8c3742ea19382f0aa071c1f3c9d1760a1a9e0b4d990a464eeb20fc3c2 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.validation.js	1.8 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.validation.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash a6b8c33a4c36033935bead3510c8efcd d4b7ec1f2643ccafd5a04417d1739faba6ee9e59 8cd748c3ddcbfff8d819bbb507f14ecc9cf2f6c2b034050583ed391f1984246d Loading...

	footballshahr.ir/theme_asset/electro/assets/js/zoom/zoom.js	3.0 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/zoom/zoom.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash ca7efc2fb569e05fea2e6d02c205cee6 41400aed1f02d9c76a2d593b98d031e3ddd5d926 30f10a9936e73adabebf270c03bd10c0fbd518faa36cc2072cc8eea9f9bfb936 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.range-slider.js	3.0 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.range-slider.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash cceb7a29a3a56af3b25851a68d636f5c e53123af1bb46463f6956cec568329679d1658d7 5718b1d98756200a1da90fb49a01ef7158b87ab218b93e91270a120ccb3f4206 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-thumbnail.js	9.1 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-thumbnail.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 69d2abdd9d48f0cff59aef61f3476b41 28a9ea2ea9a1b7ce3e791a4cf3f3b0212f32cfec 55dac825f2c8434e9063727d0e3915d396d514285ff36a26f3c626a71e486f06 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/custom.js?ver=j11441216	0 B	2023-03-07	2024-04-19
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/custom.js?ver=j11441216 IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 23:02:51 Times Seen36968024 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/jquery/dist/jquery.min.js	87 kB	2023-03-07	2024-04-19
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/jquery/dist/jquery.min.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 22:54:25 Times Seen105359 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	footballshahr.ir/theme_asset/all-needed/essential.js?ver=j19493869	30 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/all-needed/essential.js?ver=j19493869 IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 28d670b18d56cd352a1d33658f794c60 2a5942d4f1e1a9fca732c5fd2b4c83216c53d60e e0297584c346305ca0face7472162df91842dad32a3dae323e19263def9caed9 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.malihu-scrollbar.js	803 B	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.malihu-scrollbar.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash f2bffb7a90f27212657d5e24b827c943 9da163b6e7734b4dee9d25433fe7a98de1908863 53be627ad8b64da029ad666f1a344b998edac96a3b91eb398049efd842308268 Loading...

	footballshahr.ir/backend/web/rest_library/toast/jquery.toast.js	13 kB	2023-03-10	2023-12-17
Pretty URL footballshahr.ir/backend/web/rest_library/toast/jquery.toast.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:24:33 Last Seen2023-12-17 22:31:23 Times Seen70 Hash d965adbbe561c096e20cde1500dda2ee cc349d57c34b836a44178b459ba670f3ada6d12e e67c49f53176a9ba4260f3192b19558c1c79391e114e7532b1d3347ad1acfc38 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.svg-injector.js	744 B	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.svg-injector.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash c2db1aa23f3fa0ba18e123680603e272 24741d21513606981aee47f827df8de4eac95fed 100a1bddebc8ea7bbf62a49066c0ec9315df22219ea4e43f39aad74bc6ca1eff Loading...

	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-autoplay.js	4.1 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-autoplay.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 4a0b281e1d206d768e9593a003ec40f7 78304097dae21190ac18c6f4167ed6a6cfb956fb 67dc778a8de5e3a3410f9f9859a6401447c1ddea6cd892826b963c7380f911ac Loading...

	footballshahr.ir/backend/web/rest_library/util.js?ver=j13523016	20 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/backend/web/rest_library/util.js?ver=j13523016 IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 38c9faea21a3d300d05701f895915ca0 aab196bfa5320ad7af80038956e3e675e1051afd e5e18b5c8185880e5caca70a4550efee28a67cdd17c418daac86b9fb3f9dbb57 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-fullscreen.js	2.9 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-fullscreen.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 65402c8667947cdc9fe067c1fc89e1fd ac18d6c11aab585604d4b7970158230fda318039 c7c59aee4620142913be5e216a5cc08bf0026d8210227be1687263d572566470 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-rotate.js	4.3 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-rotate.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash dac7aa87cb1c95920f9b27499ed9f5a1 91c66940367cb0d14f685cf94d5f7bb3dc12008e 8807072094eb0dbb729f021874d70497658119defeefda2d990ef885e0d3be6e Loading...

	footballshahr.ir/wp-content/plugins/wellsfargo.com/	32 B	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/wp-content/plugins/wellsfargo.com/ IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen3 Hash d1e9c6466f302800325e6af449dd7a9a 2f5c48166ea11f032f98ae0b7c0938b065b652f0 f842a23cfb9b2aa34cb9b31785e1f8a508c3650e05ef36dd42665c8d27136e12 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.onscroll-animation.js	2.5 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.onscroll-animation.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 0b21f4728a6e63f8d2e38d7cd68f6260 ce0e94d4ca71621f32a850de50656f0e2595feaf 2f8fe7ad3600468b211c1acd8922e80d8f817831451c86ead270e2fa272cc180 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.scroll-nav.js	3.9 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.scroll-nav.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 3f759eb63655a4f0078ad88e78e5ce91 4c4d09ca58255eb1007b7c99b3a2c1a07d540765 b9fb988109e98b82144652f01d8dff367e0d6fd480c3b7f5858f39aca0368789 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.selectpicker.js?ver=j14187371	4.2 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.selectpicker.js?ver=j14187371 IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash b89cde560f8547d5f57cfdeb8c483dbd 1bc398a27de5ca28ff0a45b70d36cd16892c0737 aed674e8e0fe027e7c09cb0c65cfc3a8a040a43c628fb9f876da806150a8baa0 Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/jquery.countdown.min.js	5.3 kB	2023-03-07	2024-04-19
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/jquery.countdown.min.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 15:43:39 Times Seen7480 Hash 5d3ff3c3fbaa67cc639501f44eeb07be bd66e4cd58de09c198e7abc77fa4c883955d189e 2249399b2268c260d0698542503d16afebc80e437c846239f12196744ebbd40f Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap-select/dist/js/bootstrap-select.min2.js	52 kB	2023-03-07	2024-04-18
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap-select/dist/js/bootstrap-select.min2.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:50 Last Seen2024-04-18 15:46:34 Times Seen1220 Hash ba9d5bbe072f5626909db4e31da3ba4d 44f87f163f71d0bac27876272fa98f615381fcf8 6763de73150d26e3296cd0154ff12dede3b5d39251c734c0ae4f8af4e437e4cc Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.slick-carousel.js?ver=j17938909	6.9 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.slick-carousel.js?ver=j17938909 IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 397d53fa9b98c1bc6be64a4de318cf98 edc1ad65cab5ed6a1208fe4355f0374b4068eb98 76949d345bbb35143d7390c8a0529cf235befa856d0d1229892a1627a9735807 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.go-to.js	2.0 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.go-to.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 01b594be786064a0bba2abf03e63a386 7d632bdc97567fea8b1fd623d8b3beff895f6325 d103e5a6f1d256cb723e5ee0396263fbace1b279834c59e4e5ef7799a03572d5 Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.concat.min.js	40 kB	2023-03-07	2024-01-29
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.concat.min.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:33:28 Last Seen2024-01-29 20:04:15 Times Seen49 Hash 273eb3e98756c261fba6049f716c056b 1c84588d328b60c75b977fe5f4908ac52862d27e f98e54ed7bf9bda32a9479cde705656b547db35e0d4a4c2a63dd190b44b63567 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.focus-state.js	403 B	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.focus-state.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash bb3c1560631963393d8434e8e47afe2c 149922382a90119750935309d7445c81d215c3ab 716c26fbaa7b702b7f1af84d5e122bc174f09ab8bd346a56a2adbd222fa159a4 Loading...

	footballshahr.ir/backend/web/rest_library/jquery.cookie.js	3.1 kB	2023-03-07	2024-04-19
Pretty URL footballshahr.ir/backend/web/rest_library/jquery.cookie.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:43 Last Seen2024-04-19 05:53:24 Times Seen3108 Hash 0f1f6cd6e0036897019b376d38593403 498b29de6e170fffc8535183b7d6550490f0a159 8c0301b3dba5061632d7321cd8bb7bd527f48288d5cb15ff614ea0c1dcc1ad69 Loading...

	footballshahr.ir/wp-content/plugins/wellsfargo.com/	95 B	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/wp-content/plugins/wellsfargo.com/ IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen3 Hash 2206649b17a20ff14e47299413b851a2 69aa2dd495bd96245882f69a181f8bdd2d0fbaa4 eac2ede3d784437972e296f648ada8c2ee136f4ff46d23a8f4af80941297cb2f Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap/bootstrap.min.js	58 kB	2023-03-07	2024-04-19
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap/bootstrap.min.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-04-19 22:53:37 Times Seen19523 Hash e1d98d47689e00f8ecbc5d9f61bdb42e 6778fed3cf095a318141a31f455c8f4663885bde 0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/svg-injector/dist/svg-injector.min.js	4.6 kB	2023-03-07	2024-03-25
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/svg-injector/dist/svg-injector.min.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:24 Last Seen2024-03-25 00:24:22 Times Seen356 Hash ca13b5502c9296d0931c85eab9ca11fd 924dc02731d9dfde3e1774448afd5b508a4a4dd6 0a306526fc6a2c25361cccc5ba74de9592c51c225daa00e81e2fea18959d4499 Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/jquery-validation/dist/jquery.validate.min.js	23 kB	2023-04-05	2024-04-19
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/jquery-validation/dist/jquery.validate.min.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 10:49:04 Last Seen2024-04-19 18:27:15 Times Seen1019 Hash c74e1b8c32903df80bfa35b92e96041c 8a474ec9b4f1d3573855f41286e43b0000a1dba5 4ffadde8da37f59253cb4cd5541262b6042ff2ca2308579fadb21bf802dfba89 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.quantity-counter.js	676 B	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.quantity-counter.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash da85878bfc064fb6a8ce7e89edf1491d 85a65c76947910117473118ae97fa6b984e66018 ce82eb5ae6788b11193861ec4320f12cb9b6dc7772b70a15708e977e1dc7eea3 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-hash.js	1.9 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-hash.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 5aae2cd5b773dec96fd8939646fb81a0 3a8b634c001fdaa3ee336b2e8f2156a3e80224f0 5a3b8dc59f6d4152d80da8cc6ec2dbb13ee139f644ffd47d608bc3be8450dd2c Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/slick-carousel/slick/slick.js	43 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/slick-carousel/slick/slick.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 88530d2b47ba1d1f2a490b52a702d070 b90c2237c6c3a226ec97a1527bb6c2759896d4e3 a15ed5d5889f5c9b6ee63cabd3cf4871a285394c664f1107cbd29e61242c68eb Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery-mousewheel/3.1.13/jquery.mousewheel.min.js	2.8 kB	2023-03-07	2024-04-18
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery-mousewheel/3.1.13/jquery.mousewheel.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:38 Last Seen2024-04-18 10:42:03 Times Seen3371 Hash d5843dbdc71ff8014a5eafd346a262da 127e1d971efab9341db8079f10663dc28e8e0a2f 8e73a30d35c83ea6a597c3343324d2b7df097ad26e67b62efb5266ee12d317b5 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/hs.core.js	1.7 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/hs.core.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 3742ce050ebfb55ba445d2ecfe2523c4 13eca3e12ad5edb7deba39ea3dd653c36794e156 eed8352c2d007c6195c5cd713973bf8f5d6f578fcb8a413680ee6c6773540bbc Loading...

	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lightgallery.js	25 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lightgallery.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 383e127bb225cd358d082bc7a3cc9af0 b389d5798caad6a6c7c5dea63cf38a1fae144460 1ed6e56fbf8407e331818c7f98d993b28093b90a8c77574789a868c4444e8a3a Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/ion-rangeslider/js/ion.rangeSlider.min.js	41 kB	2023-03-07	2024-02-22
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/ion-rangeslider/js/ion.rangeSlider.min.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:29 Last Seen2024-02-22 17:50:59 Times Seen92 Hash 564f698afdf84d959325ffb4fdd42b97 c5ae747a001c5b04821fb9e6c732653074787ae2 7b2ece6a3be35cccac5de58b6c08f49928afb409d2dff0e7372892f9cbd2b167 Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/appear.js	2.1 kB	2023-05-26	2023-11-18
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/appear.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-11-18 11:35:11 Times Seen11 Hash 2c932d2e89a7b5fc8734d52ffaa7ceeb 7fc8a238eb264a2a431c73222ceaef515449d4f0 0be473eaa663335384c702e4e23bf3f133cebce946456096437c4dc0d70e3f27 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-pager.js	2.8 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-pager.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 41518f8e5c82f1a1e6996e22dbf8018e 0ade7ecad16b59578e9cb39e1d5ae9d4e13afd25 b6b8ec8d7d7c46a84a76877bd7eeca7e232823d43c00716ac2a56d3825dca985 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/cart.js?ver=j12066567	5.0 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/cart.js?ver=j12066567 IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash b3856df37843a18a87e20066e7d1d1fc 983ccd32f8cf4f71433c320ea8c6e11ab025a5d1 cec279e41f9ab9e66457166575e706d96cf0f285ab8c3bd81e5d19dd098c53d9 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/checkout.js?ver=j16606372	3.6 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/checkout.js?ver=j16606372 IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash ab379ea3cdb9ce825fdd0108a7cd17ea f42fcf769d4154c9bb79474cd657f5c19292ad99 d1dd270307440c3008aaed5c9704bec6b8bc74a46e4645dcf0ce025e2e411d32 Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.js	11 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 966e8e43ca70f8d93ac6cfacd8938d34 88c1b3a0f6ba82aadc1e769a797d54f88dc4bb4b cad4bdd0c1cd9fdfe00c8fd8cf9d6681734c4e6b60153c6aa1b438c9a057c2a1 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.header.js	24 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.header.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 2a75ec8d82702caae04ffff8017ce2dd 6128212b17689d00f174a2f6390faeae7c05cc82 1b88926d15f21ab7e44913e8cb0de6d34028de785379b818208f03de9ac9d60a Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/jquery-migrate/dist/jquery-migrate.min.js	8.4 kB	2023-03-10	2023-08-29
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/jquery-migrate/dist/jquery-migrate.min.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:35:07 Last Seen2023-08-29 19:27:22 Times Seen11 Hash 5020df2f97199efea38e67af551a7dd7 22277e05b36814a3f801af3217e0cdd0e5a9bf4d a8e4ad453744734ee74bec4a888c481fa5fc84893a05d3a987096dc036290735 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.show-animation.js	1.1 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.show-animation.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash aeb41e5bebc0263322629809a1df383b 52eb6efa8f8f51a48bc8d7992de4b3979a30e4e8 ed4b6ae32d43ec372185f0bc52f3471fb4ad970e9ce07d822fd507a28b0c9a92 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-zoom.js	12 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-zoom.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash a78fac6c0dcad54563ba941b7c83487a a6d9caa0e669a43486418a5a4ed49b03f84baecc d0fe31bc9232e96f6b0063210c7cde57df445ccf34508f9e0780645dbfa5f71c Loading...

	footballshahr.ir/backend/web/assets2/js/reset_pass.js	4.6 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/backend/web/assets2/js/reset_pass.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 2680dc591f92306a76fa462ae18bb6cb 20b88f7e891490ab3ba4c182971f9028666b564a 5eff8b0e08ebfb8259be0c0ee3c5f1dc6d24a9fefaea9a67c45af2d22fff7c09 Loading...

	footballshahr.ir/theme_asset/electro/assets/vendor/popper.js/dist/umd/popper.min.js	20 kB	2023-03-07	2024-04-09
Pretty URL footballshahr.ir/theme_asset/electro/assets/vendor/popper.js/dist/umd/popper.min.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:09 Last Seen2024-04-09 10:44:24 Times Seen401 Hash 84910d80281fc6b554f4ae2d14612494 af6f046adaab7e1501adee034fb7c366b8c059fc 106b3d4f5c4c1ddbccd6078cf233e9a28f04675575551b26709cfc381c8434b0 Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.countdown.js	5.4 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.countdown.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen6 Hash 9a4e8aa12dd5d1dd1bdb9989f81940da a1e1aeaae89cfceef6ee1c5d81d53a8a7088a2a3 cb42790bef1bd75b9cea02d167f863a41354ef08ca717a5e61e271614de8985e Loading...

	footballshahr.ir/theme_asset/electro/assets/js/components/hs.unfold.js	8.7 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/theme_asset/electro/assets/js/components/hs.unfold.js IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 06:10:44 Last Seen2023-05-27 05:17:56 Times Seen6 Hash d047cfc79198fabf470f0c83fef9fe4b b47dc5b5a7402e73bb2dea3c14c9bb68781012fa e94efbb581e03d5dabcbdb2510aa547a995877931797212cdb2b125ccf6dfd19 Loading...

	trustseal.e-rasaneh.ir/trustseal.js	4.7 kB	2023-03-26	2024-03-02
Pretty URL trustseal.e-rasaneh.ir/trustseal.js IP 78.157.38.183 ASN #62442 Dade Samane Fanava Company (PJS) Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 04:36:02 Last Seen2024-03-02 05:42:59 Times Seen18 Hash 9ff1580864b244bc8565f716b52971bb 32fe1b36d733df6b780c4557ee232ad108c7abdc 4b4c971d8ebbfb51c6cfff9ad8c69741cc660641e760c030fe0616723e7423ac Loading...

	footballshahr.ir/wp-content/plugins/wellsfargo.com/	7.3 kB	2023-05-26	2023-05-27
Pretty URL footballshahr.ir/wp-content/plugins/wellsfargo.com/ IP 213.108.240.16 ASN #200296 Hamed Kavosh Vira Co. (PJS) Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 06:10:45 Last Seen2023-05-27 05:17:56 Times Seen3 Hash 7439bde538cf243f1ed2ce286cb7418f 1c81ef015ac828818440f862d858ad46e3c23f83 e69f348f2d662a90029efa827d86288dca5962589bd8af7de2159bd18e75eb16 Loading...

HTTP Transactions (80)

URL IP Response Size

www.footballshahr.ir/wp-content/plugins/wellsfargo.com/

213.108.240.16

301 Moved Permanently

707 B

URL User Request GET HTTP/2
www.footballshahr.ir/wp-content/plugins/wellsfargo.com/
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/wellsfargo.com/ HTTP/1.1
Host: www.footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Fri, 26 May 2023 04:11:07 GMT
location: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
vary: User-Agent
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

footballshahr.ir/wp-content/plugins/wellsfargo.com/

213.108.240.16

301 Moved Permanently

707 B

URL User Request GET HTTP/1.1
footballshahr.ir/wp-content/plugins/wellsfargo.com/
IP
213.108.240.16:80
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/wellsfargo.com/ HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 26 May 2023 04:11:07 GMT
location: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
vary: User-Agent
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/font-awesome/css/fontawesome-all.min.css

213.108.240.16

200 OK

12 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/font-awesome/css/fontawesome-all.min.css
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (54926)
Size
12 kB (11588 bytes)
Hash
e4c542a7f6bf6f74fdd8cdf6e8096396
3a0571a695a35f238026b9398386dc99d9a0c56d
eeb17a45a48aca1d7adbcf04de155dcd0b47cb36ad036310446bb471fea9aaa3

HTTP Headers

GET /theme_asset/electro/assets/vendor/font-awesome/css/fontawesome-all.min.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Sat, 25 Dec 2021 06:03:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11588
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/css/font-electro.css

213.108.240.16

200 OK

645 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/css/font-electro.css
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (2508), with no line terminators
Size
645 B (645 bytes)
Hash
75dbbd01c65e3e69e513f9bdc6214057
327507f2299a0db98071ff3478aaeafe3ca5245b
16f50a69c13e4d274c8aad996dca3fe68a49843e99d648b217c52ed5779427be

HTTP Headers

GET /theme_asset/electro/assets/css/font-electro.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 10:53:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 645
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/ion-rangeslider/css/ion.rangeSlider.css

213.108.240.16

200 OK

497 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/ion-rangeslider/css/ion.rangeSlider.css
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (1913), with no line terminators
Size
497 B (497 bytes)
Hash
5a9203a1cadb558fba830c22de439ab5
6c563aad9f054009f68e1b657a77526a68e0174e
79fcb0d0f806d23f37ebfca54de3f0975ed71a7447abf2c5f6ed155f8d0fee9b

HTTP Headers

GET /theme_asset/electro/assets/vendor/ion-rangeslider/css/ion.rangeSlider.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 10:55:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 497
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/animate.css/animate.min.css

213.108.240.16

200 OK

4.0 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/animate.css/animate.min.css
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (57790)
Size
4.0 kB (4019 bytes)
Hash
c78e4003414fbf2814dc097a5e1c784a
de9d5645ef10c5362ec1f893bb83995594eadf99
1ed082521f47921ffff14d4ec1c6c3f1ea55114741bee23cc23d4ab6a3213642

HTTP Headers

GET /theme_asset/electro/assets/vendor/animate.css/animate.min.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4019
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.css

213.108.240.16

200 OK

522 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.css
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (2941), with no line terminators
Size
522 B (522 bytes)
Hash
a70c1f3910bdba853b7e5114f8188c63
17322df10322f236e5abbcc4cbc29e7a0a0f2d2a
40cb71a77d81fea8546fdb97f0296b9f912a6a92b621c815364d43dfc83f8c18

HTTP Headers

GET /theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 10:56:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 522
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.css

213.108.240.16

200 OK

3.8 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.css
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (43174), with no line terminators
Size
3.8 kB (3803 bytes)
Hash
22c75bfb6ac1cc51223ff8a03ba5129d
b72711c1d8628b60e398edaa8e3bfaed0bdecc78
22e5024d754deff6df56c038b8363e662f670dac54bb51f987277fc6503d8d12

HTTP Headers

GET /theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 10:59:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3803
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/fancybox/jquery.fancybox.css

213.108.240.16

200 OK

3.2 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/fancybox/jquery.fancybox.css
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
Unicode text, UTF-8 text, with very long lines (14095), with no line terminators
Size
3.2 kB (3156 bytes)
Hash
7427de3dcf5d4f9f7da5fd0460a14204
c46cd11718a40999a085d677a0fc753c8e0885e1
88bdc81e5b40517d31c39b50d5bcd9370c2f421699a9d2340912e0567765ba3a

HTTP Headers

GET /theme_asset/electro/assets/vendor/fancybox/jquery.fancybox.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 11:00:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3156
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/slick-carousel/slick/slick.css

213.108.240.16

200 OK

395 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/slick-carousel/slick/slick.css
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (1327), with no line terminators
Size
395 B (395 bytes)
Hash
da4e146913da6966d85a6b8686886edb
03a28dac9dfc6c33e6175c9c185911c56525d31b
fb3ed351cd5c0f1f30f88778ee1f9b056598e6d25ac4fdcab1eebcd8be521cd9

HTTP Headers

GET /theme_asset/electro/assets/vendor/slick-carousel/slick/slick.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 11:01:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 395
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap-select/dist/css/bootstrap-select.min2.css

213.108.240.16

200 OK

2.0 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap-select/dist/css/bootstrap-select.min2.css
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (10879), with CRLF line terminators
Size
2.0 kB (2004 bytes)
Hash
2d868f5f03695620ad1c172dfb4ebbdc
ca09c1cfac0e43f60db2f0845768caa5838cecab
69279bee49c5f3502f7a3f07358da1562cc0a10d57e8a56cfc0f8977d367c99f

HTTP Headers

GET /theme_asset/electro/assets/vendor/bootstrap-select/dist/css/bootstrap-select.min2.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Fri, 18 Nov 2022 09:33:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2004
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/css/theme.css

213.108.240.16

200 OK

72 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/css/theme.css
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (65307)
Size
72 kB (71852 bytes)
Hash
6eebd71eddd246a9a7106326bcc22d2c
e2953ee4c9215dea4a3aee5444fe2a86bf92b1e4
f35d589b1345d45b69dd3d8f181306d54315a5b4dfddb0c5b68128a0800d802c

HTTP Headers

GET /theme_asset/electro/assets/css/theme.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 11:05:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 71852
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/css/all.css?ver=85335

213.108.240.16

200 OK

4.5 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/css/all.css?ver=85335
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text
Size
4.5 kB (4544 bytes)
Hash
c349c3371e3d2514a8d4888765c60442
d9510ae72c11c96bcbd71370fe46cd3b59cfd0c2
c51f06fe7b9458742e427209677ae6200e8cc1f5c479e6c24a246116f3e3d31c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/css/all.css?ver=85335 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Sat, 24 Dec 2022 10:34:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4544
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/css/rtl.css?ver=314359

213.108.240.16

200 OK

1.0 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/css/rtl.css?ver=314359
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
assembler source, ASCII text, with very long lines (3293), with no line terminators
Size
1.0 kB (1017 bytes)
Hash
99b4f643d0bbfea6926de19f67261fb0
0908781f7063832d3dfd5129d1771ba549659c6f
13d662a7efaa298252bb441559a69411fd675ff1875694c4b0ea115cc52366c5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/css/rtl.css?ver=314359 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 11:06:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1017
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/zoom/zoom.css?ver=2

213.108.240.16

200 OK

3.7 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/zoom/zoom.css?ver=2
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (20452)
Size
3.7 kB (3698 bytes)
Hash
9f43788738ac9b6e6d5c0acb9439d0f1
0b6cfd88d1aca43ce7529c2bb1186917e18fcb40
93a0fe4cf50374b90492f05d8d4a897f8aed0e8ff392bb276e81784360209218

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/zoom/zoom.css?ver=2 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3698
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/site/color?ver=692523

213.108.240.16

200 OK

925 B

URL GET HTTP/3
footballshahr.ir/site/color?ver=692523
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
assembler source, ASCII text
Size
925 B (925 bytes)
Hash
bafcbd822b1f9d1de518ad64325b9713
7837b41cc890191fbaea7ebed444269de1022a46
39bd78900efff3d9c060b12f9fbbf17684be6289a5e4c6e676aab18d3086ff5f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /site/color?ver=692523 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/css;charset=UTF-8
vary: Accept-Encoding,User-Agent
content-length: 925
content-encoding: gzip
date: Fri, 26 May 2023 04:11:08 GMT

footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/css/lightgallery.css

213.108.240.16

200 OK

3.6 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/css/lightgallery.css
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (21527), with no line terminators
Size
3.6 kB (3599 bytes)
Hash
c4fe4c39847373118ed654764a0d16dc
634e5b00aa18c50e4b9d0c015fddacd638d1943d
e23dcd159d8f6bb9a6d6ce481bbf4223ac00dffc19ef0a22ea937a6720595eb9

HTTP Headers

GET /theme_asset/electro/assets/js/zoom/lgjs/css/lightgallery.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 16:08:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3599
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/backend/web/rest_library/toast/jquery.toast.css

213.108.240.16

200 OK

2.5 kB

URL GET HTTP/3
footballshahr.ir/backend/web/rest_library/toast/jquery.toast.css
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (893)
Size
2.5 kB (2457 bytes)
Hash
ec478074f1e313acda29ba97c1c5f459
857f12ece13fb8cfb40910eee51e5a83a41d80d1
372190448cecd04378f02e414079e27d0001d4af0e89161d742d8bd72b42eabb

HTTP Headers

GET /backend/web/rest_library/toast/jquery.toast.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 06:37:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2457
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/jquery-migrate/dist/jquery-migrate.min.js

213.108.240.16

200 OK

3.0 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/jquery-migrate/dist/jquery-migrate.min.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (8419), with no line terminators
Size
3.0 kB (2953 bytes)
Hash
5020df2f97199efea38e67af551a7dd7
22277e05b36814a3f801af3217e0cdd0e5a9bf4d
a8e4ad453744734ee74bec4a888c481fa5fc84893a05d3a987096dc036290735

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/jquery-migrate/dist/jquery-migrate.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 11:10:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2953
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/popper.js/dist/umd/popper.min.js

213.108.240.16

200 OK

7.0 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/popper.js/dist/umd/popper.min.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (20363)
Size
7.0 kB (7007 bytes)
Hash
84910d80281fc6b554f4ae2d14612494
af6f046adaab7e1501adee034fb7c366b8c059fc
106b3d4f5c4c1ddbccd6078cf233e9a28f04675575551b26709cfc381c8434b0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/popper.js/dist/umd/popper.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7007
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap/bootstrap.min.js

213.108.240.16

200 OK

15 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap/bootstrap.min.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (57791)
Size
15 kB (14764 bytes)
Hash
e1d98d47689e00f8ecbc5d9f61bdb42e
6778fed3cf095a318141a31f455c8f4663885bde
0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/bootstrap/bootstrap.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 14764
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/appear.js

213.108.240.16

200 OK

864 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/appear.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (2088), with no line terminators
Size
864 B (864 bytes)
Hash
2c932d2e89a7b5fc8734d52ffaa7ceeb
7fc8a238eb264a2a431c73222ceaef515449d4f0
0be473eaa663335384c702e4e23bf3f133cebce946456096437c4dc0d70e3f27

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/appear.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 11:11:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 864
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/jquery.countdown.min.js

213.108.240.16

200 OK

2.2 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/jquery.countdown.min.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (4136)
Size
2.2 kB (2238 bytes)
Hash
5d3ff3c3fbaa67cc639501f44eeb07be
bd66e4cd58de09c198e7abc77fa4c883955d189e
2249399b2268c260d0698542503d16afebc80e437c846239f12196744ebbd40f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/jquery.countdown.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2238
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.js

213.108.240.16

200 OK

2.5 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (11343), with no line terminators
Size
2.5 kB (2511 bytes)
Hash
966e8e43ca70f8d93ac6cfacd8938d34
88c1b3a0f6ba82aadc1e769a797d54f88dc4bb4b
cad4bdd0c1cd9fdfe00c8fd8cf9d6681734c4e6b60153c6aa1b438c9a057c2a1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 11:15:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2511
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/svg-injector/dist/svg-injector.min.js

213.108.240.16

200 OK

2.0 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/svg-injector/dist/svg-injector.min.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (4335)
Size
2.0 kB (2022 bytes)
Hash
ca13b5502c9296d0931c85eab9ca11fd
924dc02731d9dfde3e1774448afd5b508a4a4dd6
0a306526fc6a2c25361cccc5ba74de9592c51c225daa00e81e2fea18959d4499

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/svg-injector/dist/svg-injector.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2022
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.concat.min.js

213.108.240.16

200 OK

11 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.concat.min.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (39884), with no line terminators
Size
11 kB (11343 bytes)
Hash
273eb3e98756c261fba6049f716c056b
1c84588d328b60c75b977fe5f4908ac52862d27e
f98e54ed7bf9bda32a9479cde705656b547db35e0d4a4c2a63dd190b44b63567

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11343
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/jquery-validation/dist/jquery.validate.min.js

213.108.240.16

200 OK

7.3 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/jquery-validation/dist/jquery.validate.min.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
Unicode text, UTF-8 text, with very long lines (23122)
Size
7.3 kB (7260 bytes)
Hash
93c1dd8416ac2af1850652d5b620a142
6a76e4c7db479053350580469aa010febfdcacd0
17a879e50c3ab3078afaded288e257fb66e94806b76ff7e796b54226f9848f50

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/jquery-validation/dist/jquery.validate.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7260
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/ion-rangeslider/js/ion.rangeSlider.min.js

213.108.240.16

200 OK

8.7 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/ion-rangeslider/js/ion.rangeSlider.min.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (632)
Size
8.7 kB (8725 bytes)
Hash
564f698afdf84d959325ffb4fdd42b97
c5ae747a001c5b04821fb9e6c732653074787ae2
7b2ece6a3be35cccac5de58b6c08f49928afb409d2dff0e7372892f9cbd2b167

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/ion-rangeslider/js/ion.rangeSlider.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 8725
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/slick-carousel/slick/slick.js

213.108.240.16

200 OK

10 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/slick-carousel/slick/slick.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (43006), with no line terminators
Size
10 kB (10152 bytes)
Hash
88530d2b47ba1d1f2a490b52a702d070
b90c2237c6c3a226ec97a1527bb6c2759896d4e3
a15ed5d5889f5c9b6ee63cabd3cf4871a285394c664f1107cbd29e61242c68eb

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/slick-carousel/slick/slick.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:31:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10152
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap-select/dist/js/bootstrap-select.min2.js

213.108.240.16

200 OK

15 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap-select/dist/js/bootstrap-select.min2.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (51959)
Size
15 kB (15031 bytes)
Hash
ba9d5bbe072f5626909db4e31da3ba4d
44f87f163f71d0bac27876272fa98f615381fcf8
6763de73150d26e3296cd0154ff12dede3b5d39251c734c0ae4f8af4e437e4cc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/bootstrap-select/dist/js/bootstrap-select.min2.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Fri, 18 Nov 2022 09:34:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 15031
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/hs.core.js

213.108.240.16

200 OK

692 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/hs.core.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (1681), with no line terminators
Size
692 B (692 bytes)
Hash
3742ce050ebfb55ba445d2ecfe2523c4
13eca3e12ad5edb7deba39ea3dd653c36794e156
eed8352c2d007c6195c5cd713973bf8f5d6f578fcb8a413680ee6c6773540bbc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/hs.core.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:38:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 692
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.countdown.js

213.108.240.16

200 OK

1.2 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.countdown.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (5383), with no line terminators
Size
1.2 kB (1165 bytes)
Hash
9a4e8aa12dd5d1dd1bdb9989f81940da
a1e1aeaae89cfceef6ee1c5d81d53a8a7088a2a3
cb42790bef1bd75b9cea02d167f863a41354ef08ca717a5e61e271614de8985e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.countdown.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:39:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1165
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.header.js

213.108.240.16

200 OK

3.0 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.header.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (23731), with no line terminators
Size
3.0 kB (2974 bytes)
Hash
2a75ec8d82702caae04ffff8017ce2dd
6128212b17689d00f174a2f6390faeae7c05cc82
1b88926d15f21ab7e44913e8cb0de6d34028de785379b818208f03de9ac9d60a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.header.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:40:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2974
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.hamburgers.js

213.108.240.16

200 OK

380 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.hamburgers.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (791), with no line terminators
Size
380 B (380 bytes)
Hash
83fabd2c671de18c4101732d2088cd71
f376afb2ca881e9a7576d6b1accdf1622b6a3b4b
53db84f8c3742ea19382f0aa071c1f3c9d1760a1a9e0b4d990a464eeb20fc3c2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.hamburgers.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:42:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 380
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.unfold.js

213.108.240.16

200 OK

2.1 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.unfold.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (8700), with no line terminators
Size
2.1 kB (2149 bytes)
Hash
d047cfc79198fabf470f0c83fef9fe4b
b47dc5b5a7402e73bb2dea3c14c9bb68781012fa
e94efbb581e03d5dabcbdb2510aa547a995877931797212cdb2b125ccf6dfd19

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.unfold.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:45:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2149
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.focus-state.js

213.108.240.16

200 OK

188 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.focus-state.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (403), with no line terminators
Size
188 B (188 bytes)
Hash
bb3c1560631963393d8434e8e47afe2c
149922382a90119750935309d7445c81d215c3ab
716c26fbaa7b702b7f1af84d5e122bc174f09ab8bd346a56a2adbd222fa159a4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.focus-state.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:47:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 188
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.malihu-scrollbar.js

213.108.240.16

200 OK

365 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.malihu-scrollbar.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (803), with no line terminators
Size
365 B (365 bytes)
Hash
f2bffb7a90f27212657d5e24b827c943
9da163b6e7734b4dee9d25433fe7a98de1908863
53be627ad8b64da029ad666f1a344b998edac96a3b91eb398049efd842308268

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.malihu-scrollbar.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:50:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 365
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.validation.js

213.108.240.16

200 OK

627 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.validation.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (1781), with no line terminators
Size
627 B (627 bytes)
Hash
a6b8c33a4c36033935bead3510c8efcd
d4b7ec1f2643ccafd5a04417d1739faba6ee9e59
8cd748c3ddcbfff8d819bbb507f14ecc9cf2f6c2b034050583ed391f1984246d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.validation.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:50:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 627
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.onscroll-animation.js

213.108.240.16

200 OK

719 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.onscroll-animation.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (2487), with no line terminators
Size
719 B (719 bytes)
Hash
0b21f4728a6e63f8d2e38d7cd68f6260
ce0e94d4ca71621f32a850de50656f0e2595feaf
2f8fe7ad3600468b211c1acd8922e80d8f817831451c86ead270e2fa272cc180

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.onscroll-animation.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:52:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 719
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.slick-carousel.js?ver=j17938909

213.108.240.16

200 OK

2.3 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.slick-carousel.js?ver=j17938909
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
HTML document, ASCII text, with very long lines (6889), with no line terminators
Size
2.3 kB (2312 bytes)
Hash
397d53fa9b98c1bc6be64a4de318cf98
edc1ad65cab5ed6a1208fe4355f0374b4068eb98
76949d345bbb35143d7390c8a0529cf235befa856d0d1229892a1627a9735807

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.slick-carousel.js?ver=j17938909 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:56:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2312
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.quantity-counter.js

213.108.240.16

200 OK

324 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.quantity-counter.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (676), with no line terminators
Size
324 B (324 bytes)
Hash
da85878bfc064fb6a8ce7e89edf1491d
85a65c76947910117473118ae97fa6b984e66018
ce82eb5ae6788b11193861ec4320f12cb9b6dc7772b70a15708e977e1dc7eea3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.quantity-counter.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:58:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 324
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.range-slider.js

213.108.240.16

200 OK

866 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.range-slider.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (3035), with no line terminators
Size
866 B (866 bytes)
Hash
cceb7a29a3a56af3b25851a68d636f5c
e53123af1bb46463f6956cec568329679d1658d7
5718b1d98756200a1da90fb49a01ef7158b87ab218b93e91270a120ccb3f4206

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.range-slider.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:00:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 866
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.show-animation.js

213.108.240.16

200 OK

465 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.show-animation.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (1111), with no line terminators
Size
465 B (465 bytes)
Hash
aeb41e5bebc0263322629809a1df383b
52eb6efa8f8f51a48bc8d7992de4b3979a30e4e8
ed4b6ae32d43ec372185f0bc52f3471fb4ad970e9ce07d822fd507a28b0c9a92

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.show-animation.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:00:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 465
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.svg-injector.js

213.108.240.16

200 OK

388 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.svg-injector.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (744), with no line terminators
Size
388 B (388 bytes)
Hash
c2db1aa23f3fa0ba18e123680603e272
24741d21513606981aee47f827df8de4eac95fed
100a1bddebc8ea7bbf62a49066c0ec9315df22219ea4e43f39aad74bc6ca1eff

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.svg-injector.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:01:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 388
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.scroll-nav.js

213.108.240.16

200 OK

1.2 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.scroll-nav.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (3918), with no line terminators
Size
1.2 kB (1216 bytes)
Hash
3f759eb63655a4f0078ad88e78e5ce91
4c4d09ca58255eb1007b7c99b3a2c1a07d540765
b9fb988109e98b82144652f01d8dff367e0d6fd480c3b7f5858f39aca0368789

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.scroll-nav.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:03:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1216
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.go-to.js

213.108.240.16

200 OK

675 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.go-to.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (1954), with no line terminators
Size
675 B (675 bytes)
Hash
01b594be786064a0bba2abf03e63a386
7d632bdc97567fea8b1fd623d8b3beff895f6325
d103e5a6f1d256cb723e5ee0396263fbace1b279834c59e4e5ef7799a03572d5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.go-to.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:03:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 675
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

trustseal.e-rasaneh.ir/trustseal.js

78.157.38.183

200 OK

1.8 kB

URL GET HTTP/2
trustseal.e-rasaneh.ir/trustseal.js
IP
78.157.38.183:443
ASN
#62442 Dade Samane Fanava Company (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerUnizeto Technologies S.A.
Subjecttrustseal.e-rasaneh.ir
Fingerprint12:EE:2F:B4:F8:11:35:FD:88:FF:CD:28:AF:C3:94:29:7F:43:B1:C9
ValidityWed, 31 Aug 2022 12:19:08 GMT - Thu, 31 Aug 2023 12:19:07 GMT

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (3649), with CRLF line terminators
Size
1.8 kB (1781 bytes)
Hash
691f95d11bb50d8d4d2ffad24f42fae6
bfd031c475e6b3b8d649e9b89c1bd046d6afd022
e07982f29c9565b6bd9f7a020e3f183370857ccc0f6a579b454ba5ffaa620683

HTTP Headers

GET /trustseal.js HTTP/1.1
Host: trustseal.e-rasaneh.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 11 Oct 2022 07:40:17 GMT
accept-ranges: bytes
etag: "8046e7b444ddd81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
access-control-allow-credentials: true
date: Fri, 26 May 2023 04:10:07 GMT
content-length: 1781
X-Firefox-Spdy: h2

footballshahr.ir/theme_asset/electro/assets/js/zoom/zoom.js

213.108.240.16

200 OK

1.2 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/zoom/zoom.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (2550)
Size
1.2 kB (1164 bytes)
Hash
ca7efc2fb569e05fea2e6d02c205cee6
41400aed1f02d9c76a2d593b98d031e3ddd5d926
30f10a9936e73adabebf270c03bd10c0fbd518faa36cc2072cc8eea9f9bfb936

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/zoom/zoom.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1164
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lightgallery.js

213.108.240.16

200 OK

6.6 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lightgallery.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (24803), with no line terminators
Size
6.6 kB (6649 bytes)
Hash
383e127bb225cd358d082bc7a3cc9af0
b389d5798caad6a6c7c5dea63cf38a1fae144460
1ed6e56fbf8407e331818c7f98d993b28093b90a8c77574789a868c4444e8a3a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/zoom/lgjs/js/lightgallery.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:10:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6649
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-pager.js

213.108.240.16

200 OK

999 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-pager.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (2798), with no line terminators
Size
999 B (999 bytes)
Hash
41518f8e5c82f1a1e6996e22dbf8018e
0ade7ecad16b59578e9cb39e1d5ae9d4e13afd25
b6b8ec8d7d7c46a84a76877bd7eeca7e232823d43c00716ac2a56d3825dca985

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-pager.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:10:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 999
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-autoplay.js

213.108.240.16

200 OK

1.3 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-autoplay.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (4064), with no line terminators
Size
1.3 kB (1271 bytes)
Hash
4a0b281e1d206d768e9593a003ec40f7
78304097dae21190ac18c6f4167ed6a6cfb956fb
67dc778a8de5e3a3410f9f9859a6401447c1ddea6cd892826b963c7380f911ac

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-autoplay.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:11:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1271
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-fullscreen.js

213.108.240.16

200 OK

972 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-fullscreen.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (2863), with no line terminators
Size
972 B (972 bytes)
Hash
65402c8667947cdc9fe067c1fc89e1fd
ac18d6c11aab585604d4b7970158230fda318039
c7c59aee4620142913be5e216a5cc08bf0026d8210227be1687263d572566470

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-fullscreen.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 972
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-zoom.js

213.108.240.16

200 OK

3.1 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-zoom.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (11858), with no line terminators
Size
3.1 kB (3118 bytes)
Hash
a78fac6c0dcad54563ba941b7c83487a
a6d9caa0e669a43486418a5a4ed49b03f84baecc
d0fe31bc9232e96f6b0063210c7cde57df445ccf34508f9e0780645dbfa5f71c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-zoom.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:13:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3118
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-hash.js

213.108.240.16

200 OK

820 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-hash.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (1934), with no line terminators
Size
820 B (820 bytes)
Hash
5aae2cd5b773dec96fd8939646fb81a0
3a8b634c001fdaa3ee336b2e8f2156a3e80224f0
5a3b8dc59f6d4152d80da8cc6ec2dbb13ee139f644ffd47d608bc3be8450dd2c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-hash.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:14:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 820
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-thumbnail.js

213.108.240.16

200 OK

2.6 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-thumbnail.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (9080), with no line terminators
Size
2.6 kB (2594 bytes)
Hash
69d2abdd9d48f0cff59aef61f3476b41
28a9ea2ea9a1b7ce3e791a4cf3f3b0212f32cfec
55dac825f2c8434e9063727d0e3915d396d514285ff36a26f3c626a71e486f06

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-thumbnail.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:14:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2594
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-rotate.js

213.108.240.16

200 OK

1.3 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-rotate.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (4256), with no line terminators
Size
1.3 kB (1297 bytes)
Hash
dac7aa87cb1c95920f9b27499ed9f5a1
91c66940367cb0d14f685cf94d5f7bb3dc12008e
8807072094eb0dbb729f021874d70497658119defeefda2d990ef885e0d3be6e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-rotate.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:16:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1297
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/backend/web/rest_library/jquery.cookie.js

213.108.240.16

200 OK

1.2 kB

URL GET HTTP/3
footballshahr.ir/backend/web/rest_library/jquery.cookie.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text
Size
1.2 kB (1235 bytes)
Hash
0f1f6cd6e0036897019b376d38593403
498b29de6e170fffc8535183b7d6550490f0a159
8c0301b3dba5061632d7321cd8bb7bd527f48288d5cb15ff614ea0c1dcc1ad69

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /backend/web/rest_library/jquery.cookie.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sun, 25 Jul 2021 08:34:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1235
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/backend/web/rest_library/toast/jquery.toast.js

213.108.240.16

200 OK

2.4 kB

URL GET HTTP/3
footballshahr.ir/backend/web/rest_library/toast/jquery.toast.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text
Size
2.4 kB (2369 bytes)
Hash
d965adbbe561c096e20cde1500dda2ee
cc349d57c34b836a44178b459ba670f3ada6d12e
e67c49f53176a9ba4260f3192b19558c1c79391e114e7532b1d3347ad1acfc38

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /backend/web/rest_library/toast/jquery.toast.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 29 Jul 2021 07:36:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2369
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/backend/web/rest_library/util.js?ver=j13523016

213.108.240.16

200 OK

5.1 kB

URL GET HTTP/3
footballshahr.ir/backend/web/rest_library/util.js?ver=j13523016
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
Unicode text, UTF-8 text, with very long lines (330)
Size
5.1 kB (5111 bytes)
Hash
38c9faea21a3d300d05701f895915ca0
aab196bfa5320ad7af80038956e3e675e1051afd
e5e18b5c8185880e5caca70a4550efee28a67cdd17c418daac86b9fb3f9dbb57

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /backend/web/rest_library/util.js?ver=j13523016 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 14:07:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5111
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/components/hs.selectpicker.js?ver=j14187371

213.108.240.16

200 OK

1.0 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/components/hs.selectpicker.js?ver=j14187371
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
1.0 kB (1025 bytes)
Hash
b89cde560f8547d5f57cfdeb8c483dbd
1bc398a27de5ca28ff0a45b70d36cd16892c0737
aed674e8e0fe027e7c09cb0c65cfc3a8a040a43c628fb9f876da806150a8baa0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/components/hs.selectpicker.js?ver=j14187371 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 24 Dec 2022 10:44:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1025
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/backend/web/assets2/js/reset_pass.js

213.108.240.16

200 OK

1.2 kB

URL GET HTTP/3
footballshahr.ir/backend/web/assets2/js/reset_pass.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
Unicode text, UTF-8 text
Size
1.2 kB (1219 bytes)
Hash
2680dc591f92306a76fa462ae18bb6cb
20b88f7e891490ab3ba4c182971f9028666b564a
5eff8b0e08ebfb8259be0c0ee3c5f1dc6d24a9fefaea9a67c45af2d22fff7c09

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /backend/web/assets2/js/reset_pass.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 14:35:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1219
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/cart.js?ver=j12066567

213.108.240.16

200 OK

1.6 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/cart.js?ver=j12066567
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (741)
Size
1.6 kB (1593 bytes)
Hash
b3856df37843a18a87e20066e7d1d1fc
983ccd32f8cf4f71433c320ea8c6e11ab025a5d1
cec279e41f9ab9e66457166575e706d96cf0f285ab8c3bd81e5d19dd098c53d9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/cart.js?ver=j12066567 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Mon, 13 Jun 2022 11:44:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1593
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/all-needed/essential.js?ver=j19493869

213.108.240.16

200 OK

6.7 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/all-needed/essential.js?ver=j19493869
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
Unicode text, UTF-8 text, with very long lines (748)
Size
6.7 kB (6653 bytes)
Hash
28d670b18d56cd352a1d33658f794c60
2a5942d4f1e1a9fca732c5fd2b4c83216c53d60e
e0297584c346305ca0face7472162df91842dad32a3dae323e19263def9caed9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/all-needed/essential.js?ver=j19493869 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 25 May 2023 09:55:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6653
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/checkout.js?ver=j16606372

213.108.240.16

200 OK

850 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/checkout.js?ver=j16606372
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
Unicode text, UTF-8 text
Size
850 B (850 bytes)
Hash
ab379ea3cdb9ce825fdd0108a7cd17ea
f42fcf769d4154c9bb79474cd657f5c19292ad99
d1dd270307440c3008aaed5c9704bec6b8bc74a46e4645dcf0ce025e2e411d32

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/js/checkout.js?ver=j16606372 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sun, 27 Nov 2022 12:29:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 850
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/js/custom.js?ver=j11441216

213.108.240.16

200 OK

0 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/js/custom.js?ver=j11441216
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /theme_asset/electro/assets/js/custom.js?ver=j11441216 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 24 Dec 2022 10:36:51 GMT
accept-ranges: bytes
content-length: 0
date: Fri, 26 May 2023 04:11:08 GMT
vary: User-Agent
access-control-allow-origin: *

lab1.avisapp.dev/globe_uploads/338966396/2022/11/338966396-120095784020730-1667302291.jpg

213.108.240.16

200 OK

47 kB

URL GET HTTP/3
lab1.avisapp.dev/globe_uploads/338966396/2022/11/338966396-120095784020730-1667302291.jpg
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 614x274, components 3\012- data
Size
47 kB (47347 bytes)
Hash
9c35fec5f60a6319edee2472a75b42c6
eaab5ebe7071dc1244dfa7feb05c3a20b1e1ea8c
9342aa469c470ac08e0b7257e1cd60931b39bd0938d8131051c2754c152cfc42

HTTP Headers

GET /globe_uploads/338966396/2022/11/338966396-120095784020730-1667302291.jpg HTTP/1.1
Host: lab1.avisapp.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: image/jpeg
last-modified: Tue, 01 Nov 2022 11:31:31 GMT
accept-ranges: bytes
content-length: 47347
date: Fri, 26 May 2023 04:11:08 GMT
vary: User-Agent

footballshahr.ir/theme_asset/electro/assets/vendor/jquery/dist/jquery.min.js

213.108.240.16

200 OK

30 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/jquery/dist/jquery.min.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (65451)
Size
30 kB (29664 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/jquery/dist/jquery.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 29664
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *

cdnjs.cloudflare.com/ajax/libs/jquery-mousewheel/3.1.13/jquery.mousewheel.min.js

104.17.24.14

200 OK

1.0 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery-mousewheel/3.1.13/jquery.mousewheel.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (2609)
Size
1.0 kB (1046 bytes)
Hash
d5843dbdc71ff8014a5eafd346a262da
127e1d971efab9341db8079f10663dc28e8e0a2f
8e73a30d35c83ea6a597c3343324d2b7df097ad26e67b62efb5266ee12d317b5

HTTP Headers

GET /ajax/libs/jquery-mousewheel/3.1.13/jquery.mousewheel.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 May 2023 04:11:09 GMT
content-type: application/javascript; charset=utf-8
content-length: 1046
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-ad3"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4273192
expires: Wed, 15 May 2024 04:11:09 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zaxSlliyYwzMGQVFtc5hQDeqMje55bMWSyN47vJo3fMVVD6hKoFRt8CwI%2FMqCCN7PTqwC22K6Jk81kyWNIs%2Fei07r0PTspt40mQ%2Fc%2BeSXQuADQq8IVXqiX%2BrqsQkAuToTUcuvBb1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cd32c25be33b511-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

footballshahr.ir/fonts/shiva_roar_light.woff2

213.108.240.16

200 OK

36 kB

URL GET HTTP/3
footballshahr.ir/fonts/shiva_roar_light.woff2
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 36456, version 2.0\012- data
Size
36 kB (36456 bytes)
Hash
34c8c0194922b7987785f3f14a9f0181
cf1c5333e046e819964ce7fae3e2d78599fbcdfa
a1e5f5d868406af7427ba44409a805db099b53109cc1433109d23c8edf58bdff

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /fonts/shiva_roar_light.woff2 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/site/color?ver=692523
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:09 GMT
content-type: font/woff2
last-modified: Sat, 06 Nov 2021 08:28:26 GMT
accept-ranges: bytes
content-length: 36456
date: Fri, 26 May 2023 04:11:09 GMT
vary: User-Agent
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/fonts/font-electro.woff

213.108.240.16

200 OK

8.9 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/fonts/font-electro.woff
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
Web Open Font Format, CFF, length 8864, version 1.0\012- data
Size
8.9 kB (8864 bytes)
Hash
9b2f99f18869f448ba8f2d6c7af416e6
6f1024724f2267d4dbf2ae016c59865513a43692
94516a5ee70cc31bde343c26d191420263540f4141756f246582855d946338cb

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/fonts/font-electro.woff HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/theme_asset/electro/assets/css/font-electro.css
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:09 GMT
content-type: font/woff
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-length: 8864
date: Fri, 26 May 2023 04:11:09 GMT
vary: User-Agent
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/font-awesome/webfonts/fa-solid-900.woff2

213.108.240.16

200 OK

74 kB

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/font-awesome/webfonts/fa-solid-900.woff2
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 74256, version 329.-17761\012- data
Size
74 kB (74256 bytes)
Hash
418dad87601f9c8abd0e5798c0dc1feb
a6b003ef506e92d05cde73adf67487d7fd7ec6df
f18c486a80175cf02fee0e05c2b4acd86c04cdbaecec61c1ef91f920509b5efe

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/theme_asset/electro/assets/vendor/font-awesome/css/fontawesome-all.min.css
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:09 GMT
content-type: font/woff2
last-modified: Sat, 25 Dec 2021 06:03:15 GMT
accept-ranges: bytes
content-length: 74256
date: Fri, 26 May 2023 04:11:09 GMT
vary: User-Agent
access-control-allow-origin: *

footballshahr.ir/theme_asset/electro/assets/vendor/appear.js

213.108.240.16

200 OK

864 B

URL GET HTTP/3
footballshahr.ir/theme_asset/electro/assets/vendor/appear.js
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with very long lines (2088), with no line terminators
Size
864 B (864 bytes)
Hash
2c932d2e89a7b5fc8734d52ffaa7ceeb
7fc8a238eb264a2a431c73222ceaef515449d4f0
0be473eaa663335384c702e4e23bf3f133cebce946456096437c4dc0d70e3f27

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /theme_asset/electro/assets/vendor/appear.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:09 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 11:11:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 864
date: Fri, 26 May 2023 04:11:09 GMT
access-control-allow-origin: *

footballshahr.ir/fonts/shiva_roar_bold.woff2

213.108.240.16

200 OK

36 kB

URL GET HTTP/3
footballshahr.ir/fonts/shiva_roar_bold.woff2
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 36328, version 2.0\012- data
Size
36 kB (36328 bytes)
Hash
58dfaa0dd4917658c6ae61035587d4b5
1a6e31546592fcb6a2644532d255ac284a1bf49b
f965d8268cf0c0a9c52a1ca1656892eaa1be3089f59db7da65c9ceb6da7a86d8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /fonts/shiva_roar_bold.woff2 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/site/color?ver=692523
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:09 GMT
content-type: font/woff2
last-modified: Sat, 06 Nov 2021 08:28:23 GMT
accept-ranges: bytes
content-length: 36328
date: Fri, 26 May 2023 04:11:09 GMT
vary: User-Agent
access-control-allow-origin: *

trustseal.e-rasaneh.ir/Trustseal

78.157.38.183

200 OK

0 B

URL POST HTTP/2
trustseal.e-rasaneh.ir/Trustseal
IP
78.157.38.183:443
ASN
#62442 Dade Samane Fanava Company (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerUnizeto Technologies S.A.
Subjecttrustseal.e-rasaneh.ir
Fingerprint12:EE:2F:B4:F8:11:35:FD:88:FF:CD:28:AF:C3:94:29:7F:43:B1:C9
ValidityWed, 31 Aug 2022 12:19:08 GMT - Thu, 31 Aug 2023 12:19:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /Trustseal HTTP/1.1
Host: trustseal.e-rasaneh.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://footballshahr.ir/
Origin: https://footballshahr.ir
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
allow: OPTIONS, TRACE, GET, HEAD, POST
server: Microsoft-IIS/10.0
public: OPTIONS, TRACE, GET, HEAD, POST
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
access-control-allow-credentials: true
date: Fri, 26 May 2023 04:10:08 GMT
content-length: 0
X-Firefox-Spdy: h2

lab1.avisapp.dev/order/load-cart

213.108.240.16

200 OK

20 B

URL POST HTTP/3
lab1.avisapp.dev/order/load-cart
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
gzip compressed data, from Unix\012- data
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

HTTP Headers

POST /order/load-cart HTTP/1.1
Host: lab1.avisapp.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------349120627832599256091326838876
Content-Length: 305
Origin: https://footballshahr.ir
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
content-type: text/html; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-length: 20
content-encoding: gzip
date: Fri, 26 May 2023 04:11:09 GMT

footballshahr.ir/site/get-mchin

213.108.240.16

200 OK

52 B

URL POST HTTP/3
footballshahr.ir/site/get-mchin
IP
213.108.240.16:443
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
ASCII text, with no line terminators
Size
52 B (52 bytes)
Hash
e333bf7e9379bb6db49ff5c58590cd71
67baf093a886a634b4a210aefeae7e7e5480cb87
bee4de5d52803764ed19670bdf366dcb74f8a3330d1315e79c234b4602435dd4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /site/get-mchin HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://footballshahr.ir
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-length: 52
content-encoding: gzip
date: Fri, 26 May 2023 04:11:09 GMT

trustseal.e-rasaneh.ir/Trustseal

78.157.38.183

200 OK

453 B

URL POST HTTP/2
trustseal.e-rasaneh.ir/Trustseal
IP
78.157.38.183:443
ASN
#62442 Dade Samane Fanava Company (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerUnizeto Technologies S.A.
Subjecttrustseal.e-rasaneh.ir
Fingerprint12:EE:2F:B4:F8:11:35:FD:88:FF:CD:28:AF:C3:94:29:7F:43:B1:C9
ValidityWed, 31 Aug 2022 12:19:08 GMT - Thu, 31 Aug 2023 12:19:07 GMT

File type
JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (387), with no line terminators
Size
453 B (453 bytes)
Hash
b01410a4e62b24503d585536c487af91
956a7f4284310e0aac859c6740dc81c2f8acc43f
73d6183a21720eebd54875deab4b5502e35d87d7dc59c0dfcdf37ad4d497e2a4

HTTP Headers

POST /Trustseal HTTP/1.1
Host: trustseal.e-rasaneh.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 181
Origin: https://footballshahr.ir
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: private
content-type: application/json; charset=utf-8
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=bghilegz52lcxkn2e3544h0c; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
access-control-allow-credentials: true
date: Fri, 26 May 2023 04:10:08 GMT
content-length: 453
X-Firefox-Spdy: h2

trustseal.e-rasaneh.ir/Image/215597-KEIDJLKFIK

78.157.38.183

200 OK

7.5 kB

URL GET HTTP/2
trustseal.e-rasaneh.ir/Image/215597-KEIDJLKFIK
IP
78.157.38.183:443
ASN
#62442 Dade Samane Fanava Company (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerUnizeto Technologies S.A.
Subjecttrustseal.e-rasaneh.ir
Fingerprint12:EE:2F:B4:F8:11:35:FD:88:FF:CD:28:AF:C3:94:29:7F:43:B1:C9
ValidityWed, 31 Aug 2022 12:19:08 GMT - Thu, 31 Aug 2023 12:19:07 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 150x150, components 3\012- data
Size
7.5 kB (7458 bytes)
Hash
1916f5d4443d038904c5bca18a291c8a
8a3756ab330c987e582486299da69d7c01435984
6a2753957bf03a32fd0d7d17f83cfbf385d7f0b6bf96c3430c6cdc5af5774efe

HTTP Headers

GET /Image/215597-KEIDJLKFIK HTTP/1.1
Host: trustseal.e-rasaneh.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: private
content-length: 7458
content-type: image/jpeg
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=zz140fhc401vnugwdyvpeq5q; path=/; HttpOnly; SameSite=Lax
content-disposition: filename=True.jpg
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
access-control-allow-credentials: true
date: Fri, 26 May 2023 04:10:08 GMT
X-Firefox-Spdy: h2

lab1.avisapp.dev/globe_uploads/338966396

213.108.240.16

707 B

URL GET
lab1.avisapp.dev/globe_uploads/338966396
IP
213.108.240.16:0
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

HTTP Headers

GET /globe_uploads/338966396 HTTP/1.1
Host: lab1.avisapp.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 301 Moved Permanently
content-type: text/html
content-length: 707
date: Fri, 26 May 2023 04:11:09 GMT
location: https://lab1.avisapp.dev/frontend/web/globe_uploads/338966396/
vary: User-Agent

lab1.avisapp.dev/frontend/web/globe_uploads/338966396/

213.108.240.16

747 B

URL GET
lab1.avisapp.dev/frontend/web/globe_uploads/338966396/
IP
213.108.240.16:0
ASN
#200296 Hamed Kavosh Vira Co. (PJS)

Requested by
https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate
IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (429)
Size
747 B (747 bytes)
Hash
5d7c93be97df75484fbf0dd803cfe91b
7fb7fdcc80b1cc564e9a1318db2a7a8f8a2074f1
15b9f1ee928db17e457acb43e63a5dd5105d0dcee103793e3a11171cef204052

HTTP Headers

GET /frontend/web/globe_uploads/338966396/ HTTP/1.1
Host: lab1.avisapp.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://footballshahr.ir/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
vary: Accept-Encoding
content-type: text/html; charset=UTF-8
content-length: 747
content-encoding: gzip
date: Fri, 26 May 2023 04:11:09 GMT

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (52)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML