Report - hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive

Report Overview

Submitted URL
hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
IP
162.0.229.222
ASN
#22612 NAMECHEAP-NET
Submitted
2023-02-05 10:15:43
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
76

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	1.0 kB	2.9 kB	172.64.155.188
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	50 kB	34.120.237.76
unpkg.com	11693	2016-01-08T00:26:01Z	2023-03-13T08:09:51Z	1.2 kB	44 kB	104.16.123.175
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-13T05:09:29Z	813 B	92 kB	157.240.221.16
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	95.101.11.115
hajjproperties.com	unknown	2019-02-01T13:47:47Z	2023-02-05T10:55:08Z	31 kB	585 kB	162.0.229.222
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.1 kB	4.2 kB	142.250.74.131
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	388 B	44 kB	142.250.74.40
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	461 B	630 B	142.250.74.106
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.43.228.5
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	960 B	19 kB	142.250.74.35
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	375 B	21 kB	216.58.207.206
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	1.5 kB	93.184.220.29
aws-wwcloud.net	unknown	2022-09-30T18:50:35Z	2023-03-11T23:46:08Z	428 B	1.0 kB	5.34.176.223
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	919 B	449 B	216.239.32.36
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	957 B	2.4 kB	157.240.221.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-05	medium	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	Malware
2023-02-05	medium	hajjproperties.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1	Malware
2023-02-05	medium	hajjproperties.com/wp-includes/css/classic-themes.min.css?ver=1	Malware
2023-02-05	medium	hajjproperties.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3	Malware
2023-02-05	medium	hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css?ver=2.8.0	Malware
2023-02-05	medium	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	Malware
2023-02-05	medium	hajjproperties.com/wp-content/plugins/quick-and-easy-testimonials/public/css/quick-and-easy-testimonials-public.css?ver=1.1.0	Malware
2023-02-05	medium	hajjproperties.com/wp-content/themes/realhomes/assets/classic/styles/css/main.min.css?ver=4.0.0	Malware
2023-02-05	medium	hajjproperties.com/wp-content/themes/realhomes/common/css/frontend-styles.min.css?ver=4.0.0	Malware
2023-02-05	medium	hajjproperties.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.16	Malware
2023-02-05	medium	hajjproperties.com/wp-content/plugins/cf7-conditional-fields/style.css?ver=2.3.3	Malware
2023-02-05	medium	hajjproperties.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.12.1	Malware
2023-02-05	medium	hajjproperties.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Malware
2023-02-05	medium	hajjproperties.com/wp-content/plugins/easy-real-estate/js/ere-frontend.js?ver=1.1.7	Malware
2023-02-05	medium	hajjproperties.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	Malware
2023-02-05	medium	hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=6.1.1	Malware
2023-02-05	medium	hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=2.8.0	Malware
2023-02-05	medium	hajjproperties.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2	Malware
2023-02-05	medium	hajjproperties.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Malware
2023-02-05	medium	hajjproperties.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	Malware
2023-02-05	medium	hajjproperties.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca	Malware
2023-02-05	medium	hajjproperties.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5	Malware
2023-02-05	medium	hajjproperties.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2	Malware
2023-02-05	medium	hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/js/custom.js?ver=4.0.0	Malware
2023-02-05	medium	hajjproperties.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.2	Malware
2023-02-05	medium	hajjproperties.com/wp-content/themes/realhomes/common/js/inspiry-login.js?ver=4.0.0	Malware
2023-02-05	medium	hajjproperties.com/wp-content/themes/realhomes/common/js/locations.js?ver=4.0.0	Malware
2023-02-05	medium	hajjproperties.com/wp-content/themes/realhomes/common/js/common-custom.js?ver=4.0.0	Malware
2023-02-05	medium	hajjproperties.com/wp-content/themes/realhomes/common/js/cfos.js?ver=4.0.0	Malware
2023-02-05	medium	hajjproperties.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.16	Malware
2023-02-05	medium	hajjproperties.com/wp-content/plugins/google-analytics-for-wordpress/assets/images/monsterinsights-badge-light.svg	Malware
2023-02-05	medium	hajjproperties.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Malware
2023-02-05	medium	hajjproperties.com/wp-content/themes/realhomes/common/font-awesome/webfonts/fa-brands-400.woff2	Malware
2023-02-05	medium	hajjproperties.com/wp-content/themes/realhomes/common/font-awesome/webfonts/fa-solid-900.woff2	Malware
2023-02-05	medium	hajjproperties.com/wp-content/themes/realhomes/common/optimize/vendors.js?ver=4.0.0	Malware
2023-02-05	medium	aws-wwcloud.net/async/?id=4b87dkn8df17e3z8ez7911ahzna28nbd	Phishing
2023-02-05	medium	hajjproperties.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-05	medium	aws-wwcloud.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (55)

	URL	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=G-0L63DX5JQT&l=dataLayer&cx=c	222 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-0L63DX5JQT&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-13 17:31:58 Times Seen1 Hash 19ab88aaf9e46876d27e3a22cb660c9a 36cd05cf5794cce0779e7b5a2b04c9051f0d7891 fe01008660f181582fa84a4450bfadbdab29ee73e8bafc81c806a40372ab0c4b Loading...

	hajjproperties.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.2	6.2 kB	2023-03-08	2024-04-19
Pretty URL hajjproperties.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.2 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:32 Last Seen2024-04-19 20:39:51 Times Seen230 Hash 4f4c316dffd24d6729d7aaf427289ecb 386ef24f10e78632ebad109e85d8215484a82d70 033e0749f8158d222c10ec42a544afb64e164468b3343b87dbbd6717e380b7d7 Loading...

	www.googletagmanager.com/gtag/js?id=UA-179584278-1	112 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-179584278-1 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-13 17:31:58 Times Seen1 Hash f2dac269417a1559fa922d70de5e9035 23f4ef6b638ce1db7a60f85f823da200165468f0 688d0a4012533d5dfa663d1a597846c8dfc338ae0586aac6885cc7ab42e5a555 Loading...

	hajjproperties.com/wp-content/plugins/easy-real-estate/js/ere-frontend.js?ver=1.1.7	5.3 kB	2023-03-07	2024-02-22
Pretty URL hajjproperties.com/wp-content/plugins/easy-real-estate/js/ere-frontend.js?ver=1.1.7 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:50 Last Seen2024-02-22 22:16:09 Times Seen45 Hash 4297824a8d24832ca55ac2d103f35c10 3e00c5db25c2a806e70f841c6e4a1948a70ae028 e5290637c551b60cd1ab924b07b020157d2f5909e81dd8d1e4568f1157f2aaac Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	1.3 kB	2023-03-13	2023-08-13
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-08-13 10:07:57 Times Seen2 Hash 7a52927ddcb9de783204681e3964a593 cad7c79ffa4cb21fc12c1d40851b0d2da202e447 551a0feecb9e22c948a70f4837a023894de58fc2bb833911ebebfcee09b91a5b Loading...

	hajjproperties.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.16	8.2 kB	2023-03-13	2024-04-18
Pretty URL hajjproperties.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.16 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:09:20 Last Seen2024-04-18 13:38:35 Times Seen414 Hash 1214a727b057f647347550399057cae3 43dc87f981c3806229c225db639e6814e4fdff02 02469d206bab1af403af054a82e7c016cc7914f6701d62d75879f0521f216bed Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	6.4 kB	2023-03-13	2023-03-14
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-14 04:59:50 Times Seen1 Hash c3dd90585620fbfbb94ee6abec4a0698 7b0a27a21e121d7e46823a010d9bb4a01fe148be 0154c9e2a069b43238e8fbf19d372c08e36e9e1e1efffa718dc93b31978df7fd Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	263 B	2023-03-07	2024-04-24
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:28 Last Seen2024-04-24 18:24:17 Times Seen2578 Hash 6f35b6645bb854163663bd445d10a947 0ed94701f3b2f1e0312ad8f86c041658f23dce3b f70b1a7e02d635c75235a4a8351bb4bb3b4ba6e3a51acb1b1b231b3c230541b9 Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	201 B	2023-03-13	2023-12-24
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-12-24 19:31:13 Times Seen8 Hash d3fc371c6c73abcebe8d835291b54594 c33763dc216f5b5a5e239f6fc03a099f2d72ea42 ebd30014af01da014d54bb94170bff106a73a335cde06aa7934aa96d07935ce5 Loading...

	hajjproperties.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca	498 B	2023-03-07	2024-04-24
Pretty URL hajjproperties.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-04-24 19:12:41 Times Seen11719 Hash b0b80b0256874e70acdc820b52bbf1aa 9aace9a7989736bf535d65f229d0c10e9acea41b 166c7c3bb5f76f977a9f2a5490589b3466374eb2b3f064802e56f08bad71fbf0 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 216.58.207.206 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	hajjproperties.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-25
Pretty URL hajjproperties.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 01:37:46 Times Seen38039 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	129 B	2023-03-13	2023-08-13
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-08-13 10:07:57 Times Seen2 Hash 2565863154e6f5a2eadd9441a4f53ea2 d02c04103094f0c8a57a3917f691ce6a44651885 20e7eecae26cae9f2ab247af07174b97ef672061c48fae987e39b4d7782e4065 Loading...

	hajjproperties.com/wp-content/plugins/easy-real-estate/js/jquery.validate.min.js?ver=1.1.7	21 kB	2023-03-07	2024-02-22
Pretty URL hajjproperties.com/wp-content/plugins/easy-real-estate/js/jquery.validate.min.js?ver=1.1.7 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:51 Last Seen2024-02-22 22:16:09 Times Seen44 Hash d50ace707dd1f74a39fe77030815c175 681362157c8bd7e35a5941c5a7000354fa81b045 9c2ad30458837df4d3b191084f14f1b2e8b8ddf2f976f777fe9dc534adf05b73 Loading...

	hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=6.1.1	7.4 kB	2023-03-13	2023-03-14
Pretty URL hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=6.1.1 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-14 04:59:50 Times Seen1 Hash 745604a66e842a1ddab288bbae690c0f c57b3814e3266084a9f174eb1dc465bca475a98b 23b0ff831c460198c4da73fee20185506507bd3286e535c0b5343bccc4d97ed8 Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	222 B	2023-03-13	2023-03-14
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-14 04:59:50 Times Seen1 Hash 1ff90bde257db3b15a64cc36770d344b be9ef07164c73d88476756831eb5d987a3abbcb2 9fa2cbe2b29a68c4e22d24e24d1b96d3ddb1c25073d09abcadb6894e2237b339 Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	81 B	2023-03-07	2023-12-01
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:03:00 Last Seen2023-12-01 15:56:34 Times Seen21 Hash 64e041d4cee3f38a9a8e83981d354531 6b6a946f31b3747bc2cc1a5e98d5fb681d8589a9 799bbb100e0c8fa30544a15e009683fd5a0a7f7af670389c238ad07d96c330f4 Loading...

	www.google-analytics.com/plugins/ua/linkid.js	1.6 kB	2023-03-07	2024-04-15
Pretty URL www.google-analytics.com/plugins/ua/linkid.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-15 19:01:06 Times Seen1974 Hash 0cc3a63fe10060af4a349e5df666eefe 3e8d3925b550345123f2cab26568221fd4154f9c 92fca55833f48b4289ac8f1cedd48752b580fce4ec4b5d81670b8193d6e51b54 Loading...

	hajjproperties.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3	11 kB	2023-03-09	2024-04-25
Pretty URL hajjproperties.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:22:20 Last Seen2024-04-25 01:37:46 Times Seen8862 Hash 7f0734e228d3f1a255a8b817a5005b8e 3dfca70a7a3e298fc392f2393ca60d350eebb5fd 23bb39b607b39a93d953762d2a618a3cbc69c52ceaf70d96890137ca1d2b0228 Loading...

	hajjproperties.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2	10 kB	2023-03-08	2024-04-19
Pretty URL hajjproperties.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:32 Last Seen2024-04-19 20:39:51 Times Seen1112 Hash 087a7b1f3a0e6e458e47752247dea77f b50dc9b67f2440a0f7fd6369c0d0da9eb35f8f77 03a76dde100a17b38d2eaf65bd9d75ca09369d5d601e4262db5696778e930657 Loading...

	hajjproperties.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-24
Pretty URL hajjproperties.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen15494 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 02:43:38 Times Seen37052870 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=6.1.1	1.5 kB	2023-03-07	2024-04-21
Pretty URL hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=6.1.1 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:17 Last Seen2024-04-21 23:19:22 Times Seen1735 Hash 9205d1691f1303227809875d3a6ee811 71094c5c5a6f50bc3d94cf9f99f768708a437e6d 8577be08e13d868781746fd18e27a2d95ee4658c33221ec7659ece82d4d31463 Loading...

	hajjproperties.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2	8.5 kB	2023-03-08	2024-04-19
Pretty URL hajjproperties.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:32 Last Seen2024-04-19 20:39:51 Times Seen852 Hash 99017cd1ae098d1e3ad215171ca48290 2c4c8affe6e8deee8bd8b89c0d44d456b9438c63 3c891891a2abfdb8f5ef8f4b1e4e3c25013d934ca396fe8149e6626cc4ea1888 Loading...

	hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=6.1.1	12 kB	2023-03-07	2024-04-21
Pretty URL hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=6.1.1 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:17 Last Seen2024-04-21 23:19:22 Times Seen1610 Hash 2b01351f36285d266938cfb15ae487a4 643579a331557dedc16ed0bceb1c7780368b9a52 4c5e10b3496ff844faf3e2d032e243d4a366a5cbc95ad7bef5dd924322e31b3a Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	145 B	2023-03-13	2023-08-13
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-08-13 10:07:57 Times Seen2 Hash 3c436937c14b44d2c052dd0c4d85bb1a 291fd7e8715140e0d47729a42ca0d9eed64ef7b7 29db8a4bbf107a7ce544b05168245550db61fd0a46f96f2df8f7eb49c243fe4e Loading...

	hajjproperties.com/wp-content/plugins/cf7-conditional-fields/js/scripts.js?ver=2.3.3	140 kB	2023-03-07	2024-04-04
Pretty URL hajjproperties.com/wp-content/plugins/cf7-conditional-fields/js/scripts.js?ver=2.3.3 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:29:50 Last Seen2024-04-04 18:20:10 Times Seen346 Hash c6f53af9fcf3eec125d61c2211b2e49c 6adbac2da222bfa043117bc43ba61965632b9056 7c77990bc88d4b4834ee62a3ceb8da90c2e24be3d1b44209b6404d1865b99217 Loading...

	hajjproperties.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664	2.5 kB	2023-03-07	2024-04-24
Pretty URL hajjproperties.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:58 Last Seen2024-04-24 18:24:18 Times Seen6202 Hash 496baa8dab0a9861cd85d4e329f5aa77 5a036d58aecc5c5c471237d6dc719333cfe225e6 5df2942db2352e49e00bcf3393b875a71d0acee986e48fbdcc5879846f5c3689 Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	160 B	2023-03-13	2023-03-14
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-14 04:59:50 Times Seen1 Hash 0bf704d564ce67ef469d4850e5b38091 58211c3099ca7bea737b5677c6f09ed16b6bc8bf 150d862a44600da663aa79a2c8b7f45d7daf62fdf9627dfd6d5d4a24750e70fc Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	328 B	2023-03-07	2024-03-21
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:32 Last Seen2024-03-21 11:17:25 Times Seen776 Hash f0d5f710f1fe18a4dcd0201705f89cbd ec7b99089b565160d4fc319e5ddbd7ec81ca28b9 f5274b9a7a920605816df1ae91f95a8e8f29df7f73a76310d402c8f5693ae720 Loading...

	hajjproperties.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3	13 kB	2023-03-13	2024-04-24
Pretty URL hajjproperties.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:30:08 Last Seen2024-04-24 15:15:08 Times Seen1706 Hash c324038c8d6cd7e9990ff50520625008 a707f321bad9f20c442b776efa6812c8acadb8c0 af0f96462799a9eccfa6c5a30819ea991f9c0c4eddaa2984a638dc473c03ce2f Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	384 B	2023-03-13	2023-03-14
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-14 04:59:50 Times Seen1 Hash db4c5e37dfd71a8e8f2b69c20216e7ab 1b788058e3d15aedbb03618ebe104c7765ff0735 1b286c27de736cedfd3d86e2add3ec7b092c1bdc11008cf706eb33605364d207 Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	250 B	2023-03-13	2023-08-13
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-08-13 10:07:57 Times Seen2 Hash 02c8a532deca269d435a52f549551b03 77da01aaab4691f9db4159e9165f3d1dae60af69 e3bab4adb65df84210cdf8b1ed2e10dee0f290afd7dd78033d5a9683abd48663 Loading...

	unpkg.com/leaflet@1.3.4/dist/leaflet.js?ver=1.3.4	140 kB	2023-03-07	2024-02-27
Pretty URL unpkg.com/leaflet@1.3.4/dist/leaflet.js?ver=1.3.4 IP 104.16.123.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:51 Last Seen2024-02-27 17:16:30 Times Seen118 Hash 495a4539760f25a8cf4aa5c5ea428747 23bf40aac70196ac022a144cf6100c7af5184704 b5f70ba2bbff1964ab6dbb27e8d5607e55a9d583a64e3c89f075ad7d768e6897 Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	213 B	2023-03-07	2024-04-21
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:32 Last Seen2024-04-21 23:19:21 Times Seen851 Hash 91db495e87060fd19c7508c529725a41 bd81a81ca0327c586cfec175bb386dbd5b3a0f85 ff8bed9ae16005815dbaf8cdfb29263be1b1b59fbf91758a10d3514eb70ae0a7 Loading...

	hajjproperties.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae	10 kB	2023-03-08	2024-04-24
Pretty URL hajjproperties.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:32 Last Seen2024-04-24 16:05:58 Times Seen25613 Hash 8cd696505481e74ffee89b4995f37379 ee9aad199ef2bc60a3460f4c52f37d22907b2ec9 01c3955df67a9b9d1367957e2c187729eae46b72e92c2b52bdb217b14a8fc874 Loading...

	hajjproperties.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-04-24
Pretty URL hajjproperties.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-24 08:08:08 Times Seen9803 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	hajjproperties.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5	4.9 kB	2023-03-07	2024-04-24
Pretty URL hajjproperties.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen24388 Hash b33ab4d5dcf02436276a717e9d1b7c18 f47b9a9c41b3b11c9dffabca22945727c3ec6566 9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134 Loading...

	connect.facebook.net/en_US/sdk.js?hash=bdf3908301b8df6fe953509ae4bc5fe7	313 kB	2023-03-13	2023-03-13
Pretty URL connect.facebook.net/en_US/sdk.js?hash=bdf3908301b8df6fe953509ae4bc5fe7 IP 157.240.221.16 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-13 17:35:31 Times Seen1 Hash 44925c0f5a503d1f9e46f436d000af6b 21ed7917cdb3a888ddf76487b58a413a7662beeb 85cf9e7eb253dd54cd8af9181d198524f378526e096040dcb111cf3e073195c5 Loading...

	hajjproperties.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-25
Pretty URL hajjproperties.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 01:37:46 Times Seen68606 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	127 B	2023-03-13	2023-08-13
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-08-13 10:07:57 Times Seen2 Hash 602a063da4b20737ab08d3f611d0bff1 55d27e2ea55a7b96f8e8cc2456ed2feec7a5ddb3 64ac282b6260bba11465fb2820f996af61c0ef551793ada1fa7f0cd607136922 Loading...

	connect.facebook.net/en_US/sdk.js#xfbml=1&version=v2.5	3.1 kB	2023-03-13	2023-03-13
Pretty URL connect.facebook.net/en_US/sdk.js#xfbml=1&version=v2.5 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-13 17:31:58 Times Seen1 Hash 94e26aea7245c4b93b275f4675c50239 f87aaded80cb1a9a301eb80b762a406410dd24c2 672424badb9c192f2095db434f6ee8bb9c371f1d96ade8cbd4bd00b12fcedc50 Loading...

	hajjproperties.com/wp-content/themes/realhomes/common/js/inspiry-login.js?ver=4.0.0	12 kB	2023-03-13	2023-03-14
Pretty URL hajjproperties.com/wp-content/themes/realhomes/common/js/inspiry-login.js?ver=4.0.0 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-14 04:59:50 Times Seen1 Hash ab2810f2edce757d08daedc3550155fd 76e1f3af92f227583f70443d34944721cbec3ddb 36e01da0bfbd996e7fa684bfbadef1deb1b261f47eaec71d163b6dc637203cb3 Loading...

	hajjproperties.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0	16 kB	2023-03-08	2024-04-19
Pretty URL hajjproperties.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2024-04-19 20:39:52 Times Seen504 Hash 677c2f0968a30971c14028915d03af28 3b84de809a104c613617eec0f055be7535b318f0 bd947fc70043b66e61cf4aa9ccb2c0472e7ca8898879239c62b51582161c266c Loading...

	hajjproperties.com/wp-content/themes/realhomes/common/js/common-custom.js?ver=4.0.0	55 kB	2023-03-13	2023-03-14
Pretty URL hajjproperties.com/wp-content/themes/realhomes/common/js/common-custom.js?ver=4.0.0 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-14 04:59:50 Times Seen1 Hash 69e926d7e2c896c87214de171cb34aab 44a314f00f760b9dd8f957d41086ff1e74138114 2840f62da6ccef0882b882610d0b4b3da9baeaac3da2057c05155cbdc6ad5b76 Loading...

	hajjproperties.com/wp-content/themes/realhomes/common/js/cfos.js?ver=4.0.0	1.4 kB	2023-03-07	2024-02-22
Pretty URL hajjproperties.com/wp-content/themes/realhomes/common/js/cfos.js?ver=4.0.0 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:51 Last Seen2024-02-22 22:16:09 Times Seen91 Hash 5c16ba09d5dec314c9fa83860f835197 6592b63946bab0b9d2dff71b8236d889a4fc35ee 1347fc3f4445ec9bb8b63b025cb93e847d58754f6872a7d66ae4034d0286a677 Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	2.2 kB	2023-03-13	2023-03-14
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-14 04:59:50 Times Seen1 Hash 9aefaa1d4fbdb23e5be9ac97fffec6f8 4553646bcc04148f1ea745c8fb7fae1d76284eb8 1b9f0036d91e7252be0f377e2b044d9efecf9d00a2ac32153e5407fee1a89656 Loading...

	hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/vendors/vendors.min.js?ver=4.0.0	34 kB	2023-03-13	2023-03-14
Pretty URL hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/vendors/vendors.min.js?ver=4.0.0 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-03-14 04:59:50 Times Seen1 Hash e228d00312269435433e3b5eb7318d16 645d8dfd1046eacf46ac7d0055eacd9a03d991db cfb023190916ef927c37fc36234d50dff015ffac28cadaa3665320f6cb953e5d Loading...

	hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/js/custom.js?ver=4.0.0	45 kB	2023-03-13	2023-12-24
Pretty URL hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/js/custom.js?ver=4.0.0 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-12-24 19:31:14 Times Seen18 Hash 20e0355eb9a36af3b72a8a6e0c682d68 131bd8db50a0e6b95adf8b8b4d496eda3a096e7d 67020db3faab5ac34cc8cca730b44daa44251f4feb0668a2d79db3d96d37678c Loading...

	hajjproperties.com/wp-content/themes/realhomes/common/optimize/vendors.js?ver=4.0.0	352 kB	2023-03-13	2023-12-24
Pretty URL hajjproperties.com/wp-content/themes/realhomes/common/optimize/vendors.js?ver=4.0.0 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-12-24 19:31:14 Times Seen18 Hash 54d25beb57b3599c57f4939564f28ee0 9bd6ae263b8fbb27f66843e46adb5ee4e2937a8a 62a1f8c9961c2038d86a96ea2ed7501157fa6a828ca8948c6891b63c9122e439 Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	68 B	2023-03-07	2024-04-25
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 00:57:31 Times Seen22462 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	150 B	2023-03-07	2024-03-19
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:30:37 Last Seen2024-03-19 09:58:37 Times Seen102 Hash f55b2e239501082db80eda0116dae93f 2571e0c425b67833972c982e59350d1252902fcb 7de6abbaefd0c8d9ab67cd78197b3ece3d824dea482cae418e509a4692de81c2 Loading...

	hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive	126 B	2023-03-13	2023-08-13
Pretty URL hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-08-13 10:07:57 Times Seen2 Hash 2ef1027e6db79ed8c259893108db7702 aed1d9a830dbd1080a36668b98c00f4950cb9bad 21df549b873276eb32f64ae9f1782b00dfeaba776fe3f7089094069d3843892e Loading...

	hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/js/inspiry-search-form.js?ver=4.0.0	9.3 kB	2023-03-13	2023-12-24
Pretty URL hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/js/inspiry-search-form.js?ver=4.0.0 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:31:58 Last Seen2023-12-24 19:31:14 Times Seen26 Hash 3ac81c36c10bcccb1d62fe875f20e716 930b7aa8fe879e72fb8eef819cc5768fb4dc0900 3c36582c2ebb5c828507019d3bf333f0f5fc70fc59b1f51d17f0b3accb6f699a Loading...

	hajjproperties.com/wp-content/themes/realhomes/common/js/locations.js?ver=4.0.0	17 kB	2023-03-07	2024-02-22
Pretty URL hajjproperties.com/wp-content/themes/realhomes/common/js/locations.js?ver=4.0.0 IP 162.0.229.222 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:50 Last Seen2024-02-22 22:16:10 Times Seen83 Hash 37b6b949e5aafb5fd05cfeece30b6b16 403ba4f223a540943f0d8afa06a0164d0a2100d2 5a1142715a6859a6ab4dc6cf9229e3a570d080e495b9d090d8b2341c14cf5bbe Loading...

HTTP Transactions (101)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17026
Expires: Sun, 05 Feb 2023 14:59:18 GMT
Date: Sun, 05 Feb 2023 10:15:32 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8505
Expires: Sun, 05 Feb 2023 12:37:17 GMT
Date: Sun, 05 Feb 2023 10:15:32 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 09:36:17 GMT
content-type: application/json
age: 2355
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5245
Expires: Sun, 05 Feb 2023 11:42:57 GMT
Date: Sun, 05 Feb 2023 10:15:32 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: eNCjtkRXRdwYa7myiRBO0/ysWm2bL0QHAdxc3ZvtP91ZTGrBADleTMSxiY8xTB7U0i/8jpp318Y=
x-amz-request-id: Z3YYNWNS452N164V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 09:53:13 GMT
age: 1339
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive

162.0.229.222

301 Moved Permanently

707 B

URL HTTP/1.1
hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 05 Feb 2023 10:15:32 GMT
server: LiteSpeed
location: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
x-turbo-charged-by: LiteSpeed

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:15:32 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 10:07:20 GMT
age: 492
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1bfa40dc667f253b517ba0171cc39a00
4178c2bc3a0f73f15bf550b996639721c2649318
e0d23221d8aa2dc054cebd0c8a65d7deb1a8e62b9ae2e75a69ded3116b71b270

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 10:15:32 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 03:26:20 GMT
Expires: Fri, 10 Feb 2023 03:26:19 GMT
Etag: "4178c2bc3a0f73f15bf550b996639721c2649318"
Cache-Control: max-age=406846,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794ae2ae6fd8b4f3-OSL

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14068
Expires: Sun, 05 Feb 2023 14:10:01 GMT
Date: Sun, 05 Feb 2023 10:15:33 GMT
Connection: keep-alive

push.services.mozilla.com/

52.43.228.5

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.228.5:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bUTrdraqbTk8pA72EZP2BA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GkxU+n1b8cq3ND055uXUoLwFmK4=

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8386
Expires: Sun, 05 Feb 2023 12:35:20 GMT
Date: Sun, 05 Feb 2023 10:15:34 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8386
Expires: Sun, 05 Feb 2023 12:35:20 GMT
Date: Sun, 05 Feb 2023 10:15:34 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8386
Expires: Sun, 05 Feb 2023 12:35:20 GMT
Date: Sun, 05 Feb 2023 10:15:34 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9579 bytes)
Hash
b3e7140400336984afc6093c1246f863
59e0b21cdf4cfdac3f1ea05badd007727939ac42
4d927e74922159db5d07b9947fa1021cff74bb7b55759960cb3941d05c1e8f11

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9579
x-amzn-requestid: 377c182d-43e8-4251-8731-6364d29fb955
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRFs0oAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-1ad3e68f50fc15707ec0406a;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sUtUjqOLpq42m22bLgmLggmPbtatZC01og_xzkVI1o8rJtAnvhvqHA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 14:15:26 GMT
age: 72008
etag: "59e0b21cdf4cfdac3f1ea05badd007727939ac42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d53279-1206-40a7-be9b-b504e0748218.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5356 bytes)
Hash
7fff69db25a1c7a3fbe154a3c80ac5aa
638e08807f73b70ab87b804816f9eb3e8dd2aa74
be96b347ba90dda9c39975077d963ff875831a14a4269e28edc0d2f80928bba6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d53279-1206-40a7-be9b-b504e0748218.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: af4c4533-48b8-4b02-951a-3e61933fb126
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3fyFrMoAMFr_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c64-0346b30d0ded67912070f671;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:06:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IJBXK8DSlmaj48MVSTo-8A69jOe3x2cvnZYRLfyXZ7jZWqsMbTZsEg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:43:26 GMT
age: 45128
etag: "638e08807f73b70ab87b804816f9eb3e8dd2aa74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3474 bytes)
Hash
d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:51:26 GMT
age: 44648
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7589 bytes)
Hash
5beaead015b2b4fb6d36009926ba0378
67e7c49ea7648fc6d1dffc22588862c993b785b7
6ae0cec9ade23fd53e9c1407b0324a8060892a65a6b675ccffa4a4c82b66f1ff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 280f7003-2696-4a82-bd50-82b0a2b66faf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fsSpoEA0oAMFSBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db3170-35dcb9513c891af201b973d1;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 03:43:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IxfTibTq6T_wq9a5YCIBZLBb70BI7AOLEAYMYYuMZPhvVKjDbFfrvA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:52:08 GMT
etag: "67e7c49ea7648fc6d1dffc22588862c993b785b7"
content-type: image/jpeg
age: 44606
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12967 bytes)
Hash
8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:42:59 GMT
age: 23555
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (5014 bytes)
Hash
5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 11:30:27 GMT
age: 81907
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 10:15:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 10:15:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-179584278-1

142.250.74.40

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-179584278-1
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
44 kB (43888 bytes)
Hash
a84ada58d22c0d668924a1e95cd38042
ce00403da2122e796a061ede112f170f6b179249
fc2a9c70a104ff63ab704082a899a48d3d06b5b7756402b679ce57f26871d4b1

HTTP Headers

GET /gtag/js?id=UA-179584278-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 10:15:35 GMT
expires: Sun, 05 Feb 2023 10:15:35 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43888
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

unpkg.com/leaflet@1.3.4/dist/leaflet.js?ver=1.3.4

104.16.123.175

302 Found

42 kB

URL HTTP/2
unpkg.com/leaflet@1.3.4/dist/leaflet.js?ver=1.3.4
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
42 kB (42397 bytes)
Hash
444f755361f08203e1df9794777a923a
303c910bf031fe7aa511836e7bafd603acb2f65a
58ddbcf283a7cc3a052b1cf271e5248702a848111391cec36937ecdf2de8c186

HTTP Headers

GET /leaflet@1.3.4/dist/leaflet.js?ver=1.3.4 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
date: Sun, 05 Feb 2023 10:15:35 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
location: /leaflet@1.3.4/dist/leaflet.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GRGGWAX2T5ZV5MN3M9AXTM11-fra
cf-cache-status: HIT
age: 313
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794ae2bfb992b4eb-OSL
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

162.0.229.222

200 OK

12 kB

URL HTTP/2
hajjproperties.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (47826)
Size
12 kB (11616 bytes)
Hash
c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2023 22:39:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11616
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/css/classic-themes.min.css?ver=1

162.0.229.222

200 OK

217 B

URL HTTP/2
hajjproperties.com/wp-includes/css/classic-themes.min.css?ver=1
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
217 B (217 bytes)
Hash
95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2023 22:39:52 GMT
accept-ranges: bytes
content-length: 217
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 10:15:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hajjproperties.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3

162.0.229.222

200 OK

870 B

URL HTTP/2
hajjproperties.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
870 B (870 bytes)
Hash
db1891276028bf4b41d1e27e86517147
00b1fb3f26fd4b31d4ea0bf6ef5fb87e7a643d74
9351dbbea3e724e73cde04476a06a98a726c0b341c4cbe4a40354c4752494e5d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: text/css
last-modified: Thu, 26 Jan 2023 10:30:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 870
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css?ver=2.8.0

162.0.229.222

200 OK

12 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css?ver=2.8.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
12 kB (12300 bytes)
Hash
8984613f53a109cc01f6894ec1a4e934
629668fa02d3618bb28143538d2702213ad4f39b
f12987808aca5600c5f572bacfdc190cd554ed9655c18a8bfe5ee528a099e8a8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css?ver=2.8.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: text/css
last-modified: Tue, 29 Nov 2022 00:18:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12300
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/style.css?ver=4.0.0

162.0.229.222

200 OK

484 B

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/style.css?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (307)
Size
484 B (484 bytes)
Hash
9f76db7fcd555509502141f52b87c963
8057febf58ec1e417f0c1efc37671a2e4d285785
e43e2e26692ad0acb2542c8c771a747081d7bb13f0104610207654dd79d44a86

HTTP Headers

GET /wp-content/themes/realhomes/style.css?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: text/css
last-modified: Mon, 16 Jan 2023 14:33:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 484
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive

162.0.229.222

404 Not Found

33 kB

URL HTTP/2
hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9612)
Size
33 kB (33059 bytes)
Hash
69b8d2d8b96f54a3a6ecb7b32e08c5ea
7699cdcaa06db0f673208ed46c1961f37317563b
8d83df865291338149888b2906386533142bada7d91baf4dc0413951c610df1c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://hajjproperties.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/quick-and-easy-testimonials/public/css/quick-and-easy-testimonials-public.css?ver=1.1.0

162.0.229.222

200 OK

333 B

URL HTTP/2
hajjproperties.com/wp-content/plugins/quick-and-easy-testimonials/public/css/quick-and-easy-testimonials-public.css?ver=1.1.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
333 B (333 bytes)
Hash
af593b50cac8b7a394207e00de314645
2d8e8db2df6ed7eebe3f6616002cb79eea24521f
f8141626a8673a223c79e4e882fcbfcbc53109a660a3a7f1a77a330ffac5659a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/quick-and-easy-testimonials/public/css/quick-and-easy-testimonials-public.css?ver=1.1.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: text/css
last-modified: Mon, 14 Mar 2022 18:13:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 333
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/assets/classic/styles/css/custom.css?ver=4.0.0

162.0.229.222

200 OK

42 B

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/assets/classic/styles/css/custom.css?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with no line terminators
Size
42 B (42 bytes)
Hash
67017eb865758cf939fd041a90e414bd
b9a874118971e226c677b198bec7db4605dc4bb1
6bf0f2ee7d917bb13b02fc401094be664db8d0653a1983558d7c3cec8dee9ebb

HTTP Headers

GET /wp-content/themes/realhomes/assets/classic/styles/css/custom.css?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: text/css
last-modified: Mon, 16 Jan 2023 14:33:52 GMT
accept-ranges: bytes
content-length: 42
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/assets/classic/styles/css/main.min.css?ver=4.0.0

162.0.229.222

200 OK

85 kB

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/assets/classic/styles/css/main.min.css?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (65364)
Size
85 kB (85255 bytes)
Hash
2c13e7c06ec4024bc00aa9b88fb8da2f
63ff5dc86bff8b9fc3722cbd89b31832a6d4b00a
4b586ae42815b535eec8252158f71f84e6d8a31e270fc8cea45c812390f9f06f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/realhomes/assets/classic/styles/css/main.min.css?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: text/css
last-modified: Mon, 16 Jan 2023 14:33:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 85255
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/common/optimize/vendors.css?ver=4.0.0

162.0.229.222

200 OK

23 kB

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/common/optimize/vendors.css?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (29115)
Size
23 kB (23029 bytes)
Hash
0cc22d042ab03c8ac0e8933094f62db8
f3423f82e4a261f37ed504021fc75149f6b6f1ed
f144be191a005374e6d726b19ac5d2db5e6224a1e21e17ffd242adab572c63ae

HTTP Headers

GET /wp-content/themes/realhomes/common/optimize/vendors.css?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: text/css
last-modified: Mon, 16 Jan 2023 14:33:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 23029
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/common/css/frontend-styles.min.css?ver=4.0.0

162.0.229.222

200 OK

9.8 kB

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/common/css/frontend-styles.min.css?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
Size
9.8 kB (9827 bytes)
Hash
0c7c7acfdebdda18d4b1733afd7c7fd8
6a51f0bc158deb7c6e98e9d807f0123088e3dd8d
259dc560f532a670c4afe305c87d90d99a17c31151879f0bd41842ec99ea6bca

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/realhomes/common/css/frontend-styles.min.css?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: text/css
last-modified: Mon, 16 Jan 2023 14:33:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9827
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.16

162.0.229.222

200 OK

2.0 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.16
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (6087), with no line terminators
Size
2.0 kB (1965 bytes)
Hash
8f015f8adc478eaf54a2ee7155e13344
489ffbd9673e547c1f8d00b9ffd171d086d1555c
8d765644f78bb6d98f3d004cdb7ca1eae2490209839f1abb01e1e7569b9ba922

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.16 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: text/css
last-modified: Mon, 23 Jan 2023 10:25:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1965
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/cf7-conditional-fields/style.css?ver=2.3.3

162.0.229.222

200 OK

458 B

URL HTTP/2
hajjproperties.com/wp-content/plugins/cf7-conditional-fields/style.css?ver=2.3.3
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
458 B (458 bytes)
Hash
97c349e4fdd3a4a934d7129a4a8f96dd
1d69c633bad69396b1476a1456d7f9ccb273dd8d
96b65cb67b17a8f7e24e3e5dffc20f1c665db0d65b6813c23ffeb1c2d8160630

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/cf7-conditional-fields/style.css?ver=2.3.3 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: text/css
last-modified: Sun, 11 Dec 2022 20:17:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 458
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.12.1

162.0.229.222

200 OK

3.0 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.12.1
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1577)
Size
3.0 kB (3016 bytes)
Hash
f9bd58ff6ff8b6d519f6bedfd8466af2
058a2339d68391def5388ec52f38ab89ee06d877
7b854fbfa48aecfb3cbc79b884fb79385f08fbc994bf60269a68424c18e9958a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.12.1 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:40:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3016
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

162.0.229.222

200 OK

30 kB

URL HTTP/2
hajjproperties.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65447)
Size
30 kB (30324 bytes)
Hash
3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 30324
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/flat/flat_facebook.png

162.0.229.222

200 OK

375 B

URL HTTP/2
hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/flat/flat_facebook.png
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 52 x 52, 8-bit/color RGBA, non-interlaced\012- data
Size
375 B (375 bytes)
Hash
1bfd6f4ef8043e4898c3092c707334b3
711ad6624b4121aba707897edc6317fc39753262
31fe30e25330874ce416a149d0419c6447d2f78c0ce9eee0bdea01f59a5ba8e7

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/images/icons_theme/flat/flat_facebook.png HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: image/png
last-modified: Tue, 29 Nov 2022 00:18:15 GMT
accept-ranges: bytes
content-length: 375
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/images/visit_icons/Visit_us_fb/icon_Visit_us_en_US.png

162.0.229.222

200 OK

1.3 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/images/visit_icons/Visit_us_fb/icon_Visit_us_en_US.png
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 93 x 23, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1280 bytes)
Hash
548fa3151d19b56d39e6792f000f5975
3e703c35b76f4dceff1b1a0393cfd3cedb3cc763
15d91ab032211a3cfedf49470c5490ee1cc7ca322820fcfcdfa9ddcc1307549d

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/images/visit_icons/Visit_us_fb/icon_Visit_us_en_US.png HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: image/png
last-modified: Tue, 29 Nov 2022 00:18:15 GMT
accept-ranges: bytes
content-length: 1280
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/flat/flat_twitter.png

162.0.229.222

200 OK

801 B

URL HTTP/2
hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/flat/flat_twitter.png
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 52 x 52, 8-bit/color RGBA, non-interlaced\012- data
Size
801 B (801 bytes)
Hash
c910c63341951ca64f4d140922a69570
322c37d324893184447617c5045197f750d72837
201dfb5889442f9b22f43a051285ce4a1d2b7504974604985b8b541e11595c3f

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/images/icons_theme/flat/flat_twitter.png HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: image/png
last-modified: Tue, 29 Nov 2022 00:18:15 GMT
accept-ranges: bytes
content-length: 801
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/flat/flat_instagram.png

162.0.229.222

200 OK

1.1 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/flat/flat_instagram.png
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 52 x 52, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1093 bytes)
Hash
bbc966a7bd88fa2604468d14f5f222eb
4c8e83164de65c511ff26a57e9ccfb0344b725de
7b4a144d970109d0e3127dd6f1cc0c146343de869870768f05398c9973301789

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/images/icons_theme/flat/flat_instagram.png HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: image/png
last-modified: Tue, 29 Nov 2022 00:18:15 GMT
accept-ranges: bytes
content-length: 1093
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/uploads/2021/05/HAJJ-Properties-logo.png

162.0.229.222

200 OK

5.3 kB

URL HTTP/2
hajjproperties.com/wp-content/uploads/2021/05/HAJJ-Properties-logo.png
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 200 x 50, 8-bit colormap, non-interlaced\012- data
Size
5.3 kB (5277 bytes)
Hash
2efa1aa14aae8ad49a7bc103dc813dcb
c0cd6f14759d779edd4a02aeee31bf0ee68681f9
18bbb6202a812c2dc9be7f8bbf70416adddd8b513400d767d3a2c5b01048dcb5

HTTP Headers

GET /wp-content/uploads/2021/05/HAJJ-Properties-logo.png HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: image/png
last-modified: Wed, 18 Aug 2021 13:13:42 GMT
accept-ranges: bytes
content-length: 5277
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3

162.0.229.222

200 OK

2.9 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (10565), with no line terminators
Size
2.9 kB (2911 bytes)
Hash
70f3b9dd6a51a766210411d4ed0752de
5507f795072da10842897292e32c24b8cbf7827d
8ad70d44d761d4e24fdcdd496c7d529c52c68a7c7dce2471104d4efa2d01ca89

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 10:30:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2911
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0

162.0.229.222

200 OK

5.7 kB

URL HTTP/2
hajjproperties.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (15977), with no line terminators
Size
5.7 kB (5686 bytes)
Hash
071a1b0647ef601fe497ed94bb3c1e01
0b3bf87a22c50344b797f37550ed03c5e65edc55
8ebefdccc5e0b0939b14b0ca9405be3085d3c0d7e364262824870eb4eaf7fdfd

HTTP Headers

GET /wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5686
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/easy-real-estate/js/jquery.validate.min.js?ver=1.1.7

162.0.229.222

200 OK

6.1 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/easy-real-estate/js/jquery.validate.min.js?ver=1.1.7
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (20914)
Size
6.1 kB (6116 bytes)
Hash
573d57185a98f701d4cfe9b2df0005ef
a1911fbeb114eb7ab9699f50edd6b2a8eec3dd4f
5267084c5ad143dd2d4527022c55a08295a315bd41e36a548571c552cae97d7f

HTTP Headers

GET /wp-content/plugins/easy-real-estate/js/jquery.validate.min.js?ver=1.1.7 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Tue, 29 Nov 2022 00:17:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6116
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/easy-real-estate/js/ere-frontend.js?ver=1.1.7

162.0.229.222

200 OK

1.3 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/easy-real-estate/js/ere-frontend.js?ver=1.1.7
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
1.3 kB (1274 bytes)
Hash
52fcdd7cc43c4866017798d8da89dab2
a2d76ec3d6a035ad472167190d250ac9c20b8d9a
ad65aba5c850d23030aacb1a2b86c7d44c0a4c2ece2643c04e0a26b1036c59cd

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/easy-real-estate/js/ere-frontend.js?ver=1.1.7 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Tue, 29 Nov 2022 00:17:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1274
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

162.0.229.222

200 OK

6.8 kB

URL HTTP/2
hajjproperties.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
6.8 kB (6800 bytes)
Hash
3d0ff0f6731d9cef860af9a5a0e3ce62
13aed444304d782039e261475c8b4450b83e743e
e8d05db77732c71843ced6f386ea82eb32243ac36e7ca3e071cb7f53e2ffbce5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6800
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=6.1.1

162.0.229.222

200 OK

2.5 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=6.1.1
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4318), with CRLF, CR line terminators
Size
2.5 kB (2464 bytes)
Hash
997a850c43cb46efa091e004256d57ec
ee1f2f7845b93bb255a2a9adbe5220f803ef4f7e
fe93eb227ea2999c9a5784a1f7a60e48467ea78c2ee197803d0d9c2a6ae65b6d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js?ver=6.1.1 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 04 Dec 2022 20:04:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2464
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=6.1.1

162.0.229.222

200 OK

4.0 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=6.1.1
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (11484), with no line terminators
Size
4.0 kB (3953 bytes)
Hash
afba95e9d8b68de8a182844bf3d210c6
15ff42025d6279456ddcae01e40e518d18f56300
72df0c1220af2d9bc12439b1f788e797334059aa057e4c9ca94b8409ebc5782d

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=6.1.1 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Tue, 29 Nov 2022 00:18:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3953
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=6.1.1

162.0.229.222

200 OK

617 B

URL HTTP/2
hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=6.1.1
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1472), with no line terminators
Size
617 B (617 bytes)
Hash
a9417b08d84f6bbb29398e2020861d94
7e84b0c1e1f2ab8dbefc1cdcc73a378ceb8526b5
3ee491454e5c72568a37bb1f7837c88cf77ec8b9fefc2f5a77876c27c7f0304e

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=6.1.1 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Tue, 29 Nov 2022 00:18:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 617
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=2.8.0

162.0.229.222

200 OK

5.8 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=2.8.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (827), with CRLF line terminators
Size
5.8 kB (5789 bytes)
Hash
3c36292ccabb06468e7d58184ea5d857
962404fc0867a0af8295a015229234a1ace74abe
7fab92180e5e433e10c5f010ab67694ba486c7a300fe5a17f268255fe71be6e4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/ultimate-social-media-icons/js/custom.js?ver=2.8.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Tue, 29 Nov 2022 00:18:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5789
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2

162.0.229.222

200 OK

2.9 kB

URL HTTP/2
hajjproperties.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (9937)
Size
2.9 kB (2881 bytes)
Hash
7151f5fec10c40b863dfb217d8f2bbfa
84adb4fadf1377461c226571d229d747108cdb8c
84e6e66db5154e09511e78fcaaf926d973eff55b1c4d2dcadf09520fa7906185

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2881
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

162.0.229.222

200 OK

2.4 kB

URL HTTP/2
hajjproperties.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (6475), with no line terminators
Size
2.4 kB (2354 bytes)
Hash
4e773d7cec56bacab6d2db420be6f262
c95573d884c1caec0ec9c6f3e2a8c0fbf28d939a
5c8839d0b02f21e8d83d856bbf85a6b87fbedf9ba0b70711b11a1c378d5443e7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2354
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

162.0.229.222

200 OK

6.3 kB

URL HTTP/2
hajjproperties.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Size
6.3 kB (6335 bytes)
Hash
fecbc00e8af71d8cfb678cd811c7cb2e
44e5dd77f62cb5c67271442b75cdff10d45f2f8d
d6f03fb4728d0c23251451df8d66b5107d3c87458dc624aacfbad437e99d01f1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6335
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca

162.0.229.222

200 OK

281 B

URL HTTP/2
hajjproperties.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (463)
Size
281 B (281 bytes)
Hash
2bd32222de02ec6631cc34c5a5e0d23a
870c0f56cd4535a5546d974ff3eb2e3e66c97cfd
234dabb9c00a28b9055c7409fb1bc88581dfd807959239e281dbd7ef85df6551

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 281
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5

162.0.229.222

200 OK

1.6 kB

URL HTTP/2
hajjproperties.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4875)
Size
1.6 kB (1575 bytes)
Hash
06a8ac0e71976bc143cfa7861a31169d
def6031fe13259bf17752661832d815e37068bf2
e6f42d97e7299522bbb002364128fdf72cd22263ca72c5edc41dcd8f4672cd33

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1575
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae

162.0.229.222

200 OK

3.7 kB

URL HTTP/2
hajjproperties.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
data
Size
3.7 kB (3717 bytes)
Hash
f7acc55c5b34188d3e66c5f2ecf3ba80
802270f7a221e406af63d622d364b119d912c15b
826c4e13764f5bf1bd0a17f2e693d943f8605df1024815f67f43694f4338b713

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3717
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664

162.0.229.222

200 OK

858 B

URL HTTP/2
hajjproperties.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (2472)
Size
858 B (858 bytes)
Hash
be2374eabf981621988021fc2425df91
96272e603964f155600a1e8aa3835fe2fe95756f
2db40c016bc0a8cb0361a98a69c29e9043a42467198035460dc4604035729eff

HTTP Headers

GET /wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 858
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2

162.0.229.222

200 OK

2.7 kB

URL HTTP/2
hajjproperties.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (8281)
Size
2.7 kB (2679 bytes)
Hash
bcfd84d4f06f766dad4215d59d3a9306
bc5406a7f528a2fa36c82c80d55b426282875363
1c1be274389ed99a773acf0ada6ee1198bb319fb68c708383e5f0ea21738f1d6

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2679
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/vendors/vendors.min.js?ver=4.0.0

162.0.229.222

200 OK

9.5 kB

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/vendors/vendors.min.js?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (15549)
Size
9.5 kB (9479 bytes)
Hash
32ae4a2581d0fa076ed0ee025886f8b3
81fc13b66d17cc2ad1d39ae6f07982f5c648c364
8e922b4d223e9b7e54291f47b17349ff06f7ebda12c138e3670f4de5bcb38248

HTTP Headers

GET /wp-content/themes/realhomes/assets/classic/scripts/vendors/vendors.min.js?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 14:34:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9479
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/js/inspiry-search-form.js?ver=4.0.0

162.0.229.222

200 OK

1.4 kB

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/js/inspiry-search-form.js?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
1.4 kB (1359 bytes)
Hash
b4cfd00e3efe5bbec017747c4e216ed5
d22ba96302f55609a7a6af8b14f6865b3e5367dd
a52082f381d762a2d6e3a69b90daffce190c9f38e7001815ff3c8234db5325f8

HTTP Headers

GET /wp-content/themes/realhomes/assets/classic/scripts/js/inspiry-search-form.js?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 14:33:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1359
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/js/custom.js?ver=4.0.0

162.0.229.222

200 OK

7.9 kB

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/assets/classic/scripts/js/custom.js?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
7.9 kB (7939 bytes)
Hash
46d101bffc0a4dd1b763dc1ec093a539
61ed6f9cd73f43af9954c0e93c9bd861a8018b30
b66656329b6fbaea5fb2f520a99cf9f804bdfaa173b387b2a359ffa0feed3814

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/realhomes/assets/classic/scripts/js/custom.js?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 14:33:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7939
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.2

162.0.229.222

200 OK

2.0 kB

URL HTTP/2
hajjproperties.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.2
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (6004)
Size
2.0 kB (1990 bytes)
Hash
f7f420dfa01867debb55574132b259a8
f49655122431d300ca6e1e2d41de925f97c57fdf
5a560e3f034d04b4be3cd1d9b415245b2e7a2a94f5a5919f75eae1be6ae1adc3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.2 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1990
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/common/js/inspiry-login.js?ver=4.0.0

162.0.229.222

200 OK

1.9 kB

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/common/js/inspiry-login.js?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
1.9 kB (1880 bytes)
Hash
9e4029fd2286ed69f0902ef11293d55d
f7389b00bb8ec2a41ae801bf9e173310665a5629
3e826373ff1b91d4f2d4a0a55c532409ce1c35dce0ee020b531704f4c315697b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/realhomes/common/js/inspiry-login.js?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 14:33:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1880
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/common/js/locations.js?ver=4.0.0

162.0.229.222

200 OK

3.6 kB

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/common/js/locations.js?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
3.6 kB (3583 bytes)
Hash
728f9ea5597721dd7beaa8fd1178428d
e1d1aca615f8ef8a5622c8eff211afd5bbff99d3
5179f4ebb3d1f78daac73f09d21965f0e8a059e870f1fe59f1a93ab21810f641

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/realhomes/common/js/locations.js?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 14:33:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3583
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/common/js/common-custom.js?ver=4.0.0

162.0.229.222

200 OK

9.3 kB

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/common/js/common-custom.js?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
9.3 kB (9274 bytes)
Hash
5c411d19fc1810df4167621035b62ff7
677e776904897cdd7015bc635b8a83c492a64159
98017ba35e18e26506f726864425ad9b41971a8c16df98614c7d09c80f1614ba

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/realhomes/common/js/common-custom.js?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 14:33:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9274
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/common/js/cfos.js?ver=4.0.0

162.0.229.222

200 OK

523 B

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/common/js/cfos.js?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
523 B (523 bytes)
Hash
d927337aacb4fa2640af1bace4a5072a
63b11c7cdce5172f84db9aa68454732d053c5c9f
1bb9f5f4f8e80e1ec9d4c0045274a748b1a58d0901fbc58378b0b6ed8f104897

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/realhomes/common/js/cfos.js?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 14:33:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 523
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.16

162.0.229.222

200 OK

2.6 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.16
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (8183), with no line terminators
Size
2.6 kB (2574 bytes)
Hash
dd9f80be12465f5947a4092e7281a4f6
33eb8ea448e4907593f7c298a170a27ffb8b4f41
0c7145959da577724a50b2d350cc2ce3c53465901ed3ce3c47e4978577df3984

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.16 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Mon, 23 Jan 2023 10:25:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2574
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/google-analytics-for-wordpress/assets/images/monsterinsights-badge-light.svg

162.0.229.222

200 OK

3.8 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/google-analytics-for-wordpress/assets/images/monsterinsights-badge-light.svg
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Size
3.8 kB (3841 bytes)
Hash
dc0fa6baed544c618f7674ea384b8cfe
5b915c8f7f09d848011b6c334ce5b049c4d03be7
2af524f999e9d0445e5a27e5240e5401c831838192e73b412773cb015144e989

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/google-analytics-for-wordpress/assets/images/monsterinsights-badge-light.svg HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: image/svg+xml
last-modified: Sun, 15 Jan 2023 22:40:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3841
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

162.0.229.222

200 OK

4.6 kB

URL HTTP/2
hajjproperties.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (15660)
Size
4.6 kB (4619 bytes)
Hash
0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4619
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/cf7-conditional-fields/js/scripts.js?ver=2.3.3

162.0.229.222

200 OK

31 kB

URL HTTP/2
hajjproperties.com/wp-content/plugins/cf7-conditional-fields/js/scripts.js?ver=2.3.3
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (595)
Size
31 kB (31323 bytes)
Hash
7af5367271a56e4aa67cf8d227fe8fb3
5750eb1d210ac1aa333d4cea61be68ecfc1a2cf4
65660d938ddd008735781984f4fad78be401540f0dade3b20fcf78bf0f74b92b

HTTP Headers

GET /wp-content/plugins/cf7-conditional-fields/js/scripts.js?ver=2.3.3 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 23:39:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 31323
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/uploads/2013/08/news-03-2.jpg

162.0.229.222

200 OK

36 kB

URL HTTP/2
hajjproperties.com/wp-content/uploads/2013/08/news-03-2.jpg
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 830x323, components 3\012- data
Size
36 kB (35633 bytes)
Hash
dbf3b943afc7bc0290a0c7fd3c72e31e
f60636949d758a6fd35c5b3b542afd5de2b43acf
526382f36a30783f3de2547fce11b92a3a6d7726639459345acf18c5aa53273a

HTTP Headers

GET /wp-content/uploads/2013/08/news-03-2.jpg HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Cookie: _ga_0L63DX5JQT=GS1.1.1675592175.1.0.1675592175.0.0.0; _ga=GA1.1.858269306.1675592176
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:36 GMT
content-type: image/jpeg
last-modified: Wed, 18 Aug 2021 13:13:34 GMT
accept-ranges: bytes
content-length: 35633
date: Sun, 05 Feb 2023 10:15:36 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-0L63DX5JQT&gtm=45je3210&_p=702687422&gdid=dZGIzZG&cid=858269306.1675592176&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675592175&sct=1&seg=0&dl=https%3A%2F%2Fhajjproperties.com%2Fadvert%2Fdragon-naturallyspeaking-premium-13-keygen-142-exclusive&dt=Page%20not%20found%20-%20Hajj%20Properties&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true&ep.page_path=%2F404.html%3Fpage%3D%2Fadvert%2Fdragon-naturallyspeaking-premium-13-keygen-142-exclusive%26from%3D

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-0L63DX5JQT&gtm=45je3210&_p=702687422&gdid=dZGIzZG&cid=858269306.1675592176&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675592175&sct=1&seg=0&dl=https%3A%2F%2Fhajjproperties.com%2Fadvert%2Fdragon-naturallyspeaking-premium-13-keygen-142-exclusive&dt=Page%20not%20found%20-%20Hajj%20Properties&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true&ep.page_path=%2F404.html%3Fpage%3D%2Fadvert%2Fdragon-naturallyspeaking-premium-13-keygen-142-exclusive%26from%3D
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-0L63DX5JQT&gtm=45je3210&_p=702687422&gdid=dZGIzZG&cid=858269306.1675592176&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675592175&sct=1&seg=0&dl=https%3A%2F%2Fhajjproperties.com%2Fadvert%2Fdragon-naturallyspeaking-premium-13-keygen-142-exclusive&dt=Page%20not%20found%20-%20Hajj%20Properties&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true&ep.page_path=%2F404.html%3Fpage%3D%2Fadvert%2Fdragon-naturallyspeaking-premium-13-keygen-142-exclusive%26from%3D HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hajjproperties.com
Connection: keep-alive
Referer: https://hajjproperties.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://hajjproperties.com
date: Sun, 05 Feb 2023 10:15:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/common/font-awesome/webfonts/fa-brands-400.woff2

162.0.229.222

200 OK

77 kB

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/common/font-awesome/webfonts/fa-brands-400.woff2
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 77444, version 331.589\012- data
Size
77 kB (77444 bytes)
Hash
91a23e8bf2b4b84c39311cb5eb23aaa0
992e28bfb17bebc55d628d1b743d4c7d20082c19
e98ae3ff936b4723cd8a2377d2c549a667ce87e81201ec4995cc01bd374c1288

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/realhomes/common/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hajjproperties.com/wp-content/themes/realhomes/common/font-awesome/css/all.min.css?ver=5.13.1
Cookie: _ga_0L63DX5JQT=GS1.1.1675592175.1.0.1675592175.0.0.0; _ga=GA1.1.858269306.1675592176
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:36 GMT
content-type: font/woff2
last-modified: Mon, 16 Jan 2023 14:33:53 GMT
accept-ranges: bytes
content-length: 77444
date: Sun, 05 Feb 2023 10:15:36 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 10:15:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 10:15:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/acme/v21/RrQfboBx-C5_XxrBbg.woff2

142.250.74.35

200 OK

8.2 kB

URL HTTP/2
fonts.gstatic.com/s/acme/v21/RrQfboBx-C5_XxrBbg.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8236, version 1.0\012- data
Size
8.2 kB (8236 bytes)
Hash
06efd00b7f74385c105f230dffa6cca0
1ddd4e5f12e2efb9dc91fd179c39809e1567ca9b
bb814ac86e7f409154ced702b9f3543761d09410e837ec728242e6b980a26aa0

HTTP Headers

GET /s/acme/v21/RrQfboBx-C5_XxrBbg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hajjproperties.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 00:24:35 GMT
expires: Tue, 30 Jan 2024 00:24:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 17:50:27 GMT
content-type: font/woff2
age: 553861
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/fresca/v18/6ae94K--SKgCzbMGHbcX.woff2

142.250.74.35

200 OK

8.9 kB

URL HTTP/2
fonts.gstatic.com/s/fresca/v18/6ae94K--SKgCzbMGHbcX.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8860, version 1.0\012- data
Size
8.9 kB (8860 bytes)
Hash
e3d122c4ed0e01e7cdd87df3e70574dd
623ee634d1a84f20232acd0ac2b564598b0b67c1
c4c1a89d8348f83efca1b66fb7f6df5ab0af9c95913c2c48bea67010e09025e0

HTTP Headers

GET /s/fresca/v18/6ae94K--SKgCzbMGHbcX.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hajjproperties.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 02:40:21 GMT
expires: Sat, 03 Feb 2024 02:40:21 GMT
cache-control: public, max-age=31536000
age: 200115
last-modified: Thu, 21 Apr 2022 16:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/themes/realhomes/common/font-awesome/webfonts/fa-solid-900.woff2

162.0.229.222

200 OK

80 kB

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/common/font-awesome/webfonts/fa-solid-900.woff2
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 80328, version 331.589\012- data
Size
80 kB (80328 bytes)
Hash
412a43d6840addd683665ec12c30f810
f3be6605dbff23cf22ec3abddd1141a81a99e3aa
0bf1b8d8ac1b4ef0caea0db8cbe1b6a35f8a84a2f5fffa2421936cc11a1a91fc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/realhomes/common/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hajjproperties.com/wp-content/themes/realhomes/common/font-awesome/css/all.min.css?ver=5.13.1
Cookie: _ga_0L63DX5JQT=GS1.1.1675592175.1.0.1675592175.0.0.0; _ga=GA1.1.858269306.1675592176
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:36 GMT
content-type: font/woff2
last-modified: Mon, 16 Jan 2023 14:33:53 GMT
accept-ranges: bytes
content-length: 80328
date: Sun, 05 Feb 2023 10:15:36 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 10:15:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hajjproperties.com/wp-content/themes/realhomes/common/optimize/vendors.js?ver=4.0.0

162.0.229.222

200 OK

5.6 kB

URL HTTP/2
hajjproperties.com/wp-content/themes/realhomes/common/optimize/vendors.js?ver=4.0.0
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
data
Size
5.6 kB (5635 bytes)
Hash
eb753c0211c472c1abb7c46e9b052639
d919e4500ce7529094890b00a06107de4cdf79dc
5bd62c4421568e5a4639533de726bfd4fd9a1e2d7fcfcd8bc50a69b18697043e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/realhomes/common/optimize/vendors.js?ver=4.0.0 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 14:33:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 97805
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

216.58.207.206

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.58.207.206:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 05 Feb 2023 09:44:08 GMT
expires: Sun, 05 Feb 2023 11:44:08 GMT
cache-control: public, max-age=7200
age: 1889
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ac85d3e0a8ec2827b2e3f0eca3336919
4b630e134dcb05e77c44e313f22f2214b51841a2
d1747dfa46c4ca2dcc3239bd1376ae7401b4b3e7b8d260dc4162b9b8208cd6f7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5470
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 10:15:37 GMT
Last-Modified: Sun, 05 Feb 2023 08:44:27 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/sdk.js

157.240.221.16

200 OK

1.7 kB

URL HTTP/2
connect.facebook.net/en_US/sdk.js
IP
157.240.221.16:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1957)
Size
1.7 kB (1686 bytes)
Hash
17f6172d70f0742738d68954b8a7e164
9f27414c13ee6f7e306cadc505948b2bca321877
1d19a01baf94a3b6b679181135f4d63d03e1ff7a3d2d3e6a6932df3eac150845

HTTP Headers

GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 94e26aea7245c4b93b275f4675c50239
etag: "ac05501651cb979451a5dd24155283b4"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 05 Feb 2023 10:32:57 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: F/YXLXDwdCc41olUuKfhZA==
x-fb-debug: FR4UTT3YVvN0zC+4tMuFBLzkzK5ffL48j3bxXif1hVeHMTHKfoYgAEBboTwHDnAeWvSD17fFXMT0zRXcXQXbAA==
content-length: 1686
x-fb-trip-id: 1679558926
date: Sun, 05 Feb 2023 10:15:37 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ac85d3e0a8ec2827b2e3f0eca3336919
4b630e134dcb05e77c44e313f22f2214b51841a2
d1747dfa46c4ca2dcc3239bd1376ae7401b4b3e7b8d260dc4162b9b8208cd6f7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5470
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 10:15:37 GMT
Last-Modified: Sun, 05 Feb 2023 08:44:27 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

hajjproperties.com/wp-content/uploads/2021/05/cropped-Hajj-Propties-Favicon-32x32.png

162.0.229.222

200 OK

1.3 kB

URL HTTP/2
hajjproperties.com/wp-content/uploads/2021/05/cropped-Hajj-Propties-Favicon-32x32.png
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1315 bytes)
Hash
8ace9dcd15b59f13d13c1c6bb0d3dfd6
211dd262763f30f6135850d9e5ea46be3a7278ae
d602c7396ea02e0d5c4426dfca9ebd2ab0f78e94b4fd7993c8917d9f0cabc841

HTTP Headers

GET /wp-content/uploads/2021/05/cropped-Hajj-Propties-Favicon-32x32.png HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Cookie: _ga_0L63DX5JQT=GS1.1.1675592175.1.0.1675592175.0.0.0; _ga=GA1.1.858269306.1675592176
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:37 GMT
content-type: image/png
last-modified: Wed, 18 Aug 2021 13:13:43 GMT
accept-ranges: bytes
content-length: 1315
date: Sun, 05 Feb 2023 10:15:37 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/uploads/2021/05/cropped-Hajj-Propties-Favicon-192x192.png

162.0.229.222

200 OK

5.3 kB

URL HTTP/2
hajjproperties.com/wp-content/uploads/2021/05/cropped-Hajj-Propties-Favicon-192x192.png
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Size
5.3 kB (5325 bytes)
Hash
fdddc09752b1b4a77d51148339e58f7a
a8f65b4f054e573d7b45b3c6d913327f46646fa3
e774881001d68f287ca50ac6651ffd8c9e8b7c9f3e68b4505e6a86b264559652

HTTP Headers

GET /wp-content/uploads/2021/05/cropped-Hajj-Propties-Favicon-192x192.png HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Cookie: _ga_0L63DX5JQT=GS1.1.1675592175.1.0.1675592175.0.0.0; _ga=GA1.1.858269306.1675592176
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:37 GMT
content-type: image/png
last-modified: Wed, 18 Aug 2021 13:13:42 GMT
accept-ranges: bytes
content-length: 5325
date: Sun, 05 Feb 2023 10:15:37 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

connect.facebook.net/en_US/sdk.js?hash=bdf3908301b8df6fe953509ae4bc5fe7

157.240.221.16

200 OK

88 kB

URL HTTP/2
connect.facebook.net/en_US/sdk.js?hash=bdf3908301b8df6fe953509ae4bc5fe7
IP
157.240.221.16:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (18530)
Size
88 kB (88450 bytes)
Hash
09efc90df11d81e462a318b3625fcd2d
c213d9df006cd2f38e0956f07e442a0b232cce99
08a04878237f916b64d297a3ec9fb36dd6e816a26fb8d3625e54e1d3008ac70c

HTTP Headers

GET /en_US/sdk.js?hash=bdf3908301b8df6fe953509ae4bc5fe7 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hajjproperties.com
Connection: keep-alive
Referer: https://hajjproperties.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 44925c0f5a503d1f9e46f436d000af6b
etag: "ddc706513b89e2fca2bd0746b91339f6"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 05 Feb 2024 09:28:32 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: Ce/JDfEdgeRioxizYl/NLQ==
x-fb-debug: ugdgP6NOa0Y/qCNol/V5jIetbEL8sz/bcQ4UhU0XBmBUwvETlyRP20pPlbwZqZS4bICr/9MIQtGSxB2ArXYfJg==
content-length: 88450
x-fb-trip-id: 1679558926
date: Sun, 05 Feb 2023 10:15:37 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.facebook.com/v2.5/plugins/like.php?action=like&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3aad020f5f9c96%26domain%3Dhajjproperties.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fhajjproperties.com%252Ff2c1d8ca5ea6662%26relation%3Dparent.parent&container_width=64&href=https%3A%2F%2Fhajjproperties.com%2Fadvert%2Fdragon-naturallyspeaking-premium-13-keygen-142-exclusive&layout=button&locale=en_US&sdk=joey&share=true&show_faces=false

157.240.221.35

200 OK

0 B

URL HTTP/2
www.facebook.com/v2.5/plugins/like.php?action=like&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3aad020f5f9c96%26domain%3Dhajjproperties.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fhajjproperties.com%252Ff2c1d8ca5ea6662%26relation%3Dparent.parent&container_width=64&href=https%3A%2F%2Fhajjproperties.com%2Fadvert%2Fdragon-naturallyspeaking-premium-13-keygen-142-exclusive&layout=button&locale=en_US&sdk=joey&share=true&show_faces=false
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v2.5/plugins/like.php?action=like&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3aad020f5f9c96%26domain%3Dhajjproperties.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fhajjproperties.com%252Ff2c1d8ca5ea6662%26relation%3Dparent.parent&container_width=64&href=https%3A%2F%2Fhajjproperties.com%2Fadvert%2Fdragon-naturallyspeaking-premium-13-keygen-142-exclusive&layout=button&locale=en_US&sdk=joey&share=true&show_faces=false HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: U8XeWEXgFqJhXe7LFBsDSkxuITsqjJXIqNhKpJhj9HWfka7X37Q4gRJkeN5bVzKaOGlEtyKDw9li90OoVx/OQQ==
content-length: 0
date: Sun, 05 Feb 2023 10:15:37 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
5a6a3d54a1791afd5a5bd81e322fc75e
e88472d37d537f56497323b57a0a44fa9c280265
4735bf4fc73eb2d124304613e1d20be407f2869654e3d1f5b0996f0fbac53b23

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 10:15:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 09:39:34 GMT
Expires: Sat, 11 Feb 2023 09:39:33 GMT
Etag: "e88472d37d537f56497323b57a0a44fa9c280265"
Cache-Control: max-age=515634,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794ae2ce19edb527-OSL

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
5a6a3d54a1791afd5a5bd81e322fc75e
e88472d37d537f56497323b57a0a44fa9c280265
4735bf4fc73eb2d124304613e1d20be407f2869654e3d1f5b0996f0fbac53b23

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 10:15:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 09:39:34 GMT
Expires: Sat, 11 Feb 2023 09:39:33 GMT
Etag: "e88472d37d537f56497323b57a0a44fa9c280265"
Cache-Control: max-age=515634,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794ae2ccbf6eb4f3-OSL

aws-wwcloud.net/async/?id=4b87dkn8df17e3z8ez7911ahzna28nbd

5.34.176.223

200 OK

177 B

URL HTTP/1.1
aws-wwcloud.net/async/?id=4b87dkn8df17e3z8ez7911ahzna28nbd
IP
5.34.176.223:0
ASN
#204957 Green Floid LLC

File type
PNG image data, 1 x 1, 4-bit colormap, non-interlaced\012- data
Size
177 B (177 bytes)
Hash
a9428714a3fc96dda46bf3dcb266266a
ccdf71be456f9f753967364b9b0ef38c1159d5ed
4f078541628ddaeeb2c66ef06b22c95df4ff9deb16a68554d4ad2f78380c42c2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /async/?id=4b87dkn8df17e3z8ez7911ahzna28nbd HTTP/1.1
Host: aws-wwcloud.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hajjproperties.com
Connection: keep-alive
Referer: https://hajjproperties.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.1
Date: Sun, 05 Feb 2023 10:15:39 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.29
Access-Control-Allow-Origin: *
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=e372098ff49a3f898b0d9a3636f32d0b; path=/
_subid=3fk8c9q1pdlbe; expires=Mon, 06-Feb-2023 10:15:39 GMT; Max-Age=86400; path=/; domain=.aws-wwcloud.net
54cc2=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE2NVwiOjE2NzU1OTIxMzl9LFwiY2FtcGFpZ25zXCI6e1wiMVwiOjE2NzU1OTIxMzl9LFwidGltZVwiOjE2NzU1OTIxMzl9In0.-rsFc7jGo9iyFxyPLOhs4Pe_cG8eQisVLAiFKgglQmE; expires=Mon, 06-Feb-2023 10:15:39 GMT; Max-Age=86400; path=/; domain=.aws-wwcloud.net
Strict-Transport-Security: max-age=31536000;

hajjproperties.com/wp-admin/admin-ajax.php?action=inspiry_get_location_options&query=

162.0.229.222

200 OK

224 B

URL HTTP/2
hajjproperties.com/wp-admin/admin-ajax.php?action=inspiry_get_location_options&query=
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type
JSON data\012- , ASCII text, with very long lines (454), with no line terminators
Size
224 B (224 bytes)
Hash
498e83ba9424ac897669165e5f9c1355
d34f13433e18820bc3ba3d12eba54a23b17b6289
7a2f0bb561a2dcfb2ee830b23066595f85a5774239f1a58280077437bd5e545c

HTTP Headers

GET /wp-admin/admin-ajax.php?action=inspiry_get_location_options&query= HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Cookie: _ga_0L63DX5JQT=GS1.1.1675592175.1.0.1675592175.0.0.0; _ga=GA1.1.858269306.1675592176
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-length: 224
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Sun, 05 Feb 2023 10:15:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

hajjproperties.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

162.0.229.222

200 OK

0 B

URL HTTP/2
hajjproperties.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 22:39:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3995
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

unpkg.com/leaflet@1.3.4/dist/leaflet.css?ver=1.3.4

104.16.123.175

302 Found

0 B

URL HTTP/2
unpkg.com/leaflet@1.3.4/dist/leaflet.css?ver=1.3.4
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /leaflet@1.3.4/dist/leaflet.css?ver=1.3.4 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 05 Feb 2023 10:15:35 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
location: /leaflet@1.3.4/dist/leaflet.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GRGGAGTMNWJQV2SEFDZSS75N-fra
cf-cache-status: HIT
age: 897
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794ae2bfb990b4eb-OSL
X-Firefox-Spdy: h2

hajjproperties.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3

162.0.229.222

200 OK

0 B

URL HTTP/2
hajjproperties.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3
IP
162.0.229.222:0
ASN
#22612 NAMECHEAP-NET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3 HTTP/1.1
Host: hajjproperties.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/advert/dragon-naturallyspeaking-premium-13-keygen-142-exclusive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 12 Feb 2023 10:15:35 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 10:30:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3876
date: Sun, 05 Feb 2023 10:15:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

unpkg.com/leaflet@1.3.4/dist/leaflet.css

104.16.123.175

200 OK

0 B

URL HTTP/2
unpkg.com/leaflet@1.3.4/dist/leaflet.css
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /leaflet@1.3.4/dist/leaflet.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hajjproperties.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 05 Feb 2023 10:15:35 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Tue, 21 Aug 2018 17:03:25 GMT
etag: W/"371a-BHwra6tEHm/m0+qAT9uCUksxKCk"
via: 1.1 fly.io
fly-request-id: 01GHHKBH5VWAEW08NEFH2ZJVG2-ams
cf-cache-status: HIT
age: 7480356
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794ae2bff9f9b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Acme%3A400%7CFresca%3A400&subset=latin%2Clatin-ext&display=fallback&ver=4.0.0

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Acme%3A400%7CFresca%3A400&subset=latin%2Clatin-ext&display=fallback&ver=4.0.0
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Acme%3A400%7CFresca%3A400&subset=latin%2Clatin-ext&display=fallback&ver=4.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hajjproperties.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 10:15:35 GMT
date: Sun, 05 Feb 2023 10:15:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (55)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML