r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11696
Expires: Sat, 17 Sep 2022 14:45:13 GMT
Date: Sat, 17 Sep 2022 11:30:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 17 Sep 2022 11:11:20 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cBJolKDA7gGPAf3SaB_BvPLKHw2jj8t4cP9GuEwW_Rx-iTAQnfDEWg==
Age: 1137
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 17 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OtTw3-INjN19w54APQ5jbsG7F0_keitRgpd14lrHDKDqGNI95m_MUg==
age: 28775
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 11:30:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 17 Sep 2022 11:03:22 GMT
Cache-Control: max-age=3600
Expires: Sat, 17 Sep 2022 11:13:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tW_g2xdV8QqhUY07h817dA3FZaCLgTZ-_2g46AIzimVYkrieL6F-6A==
Age: 1616
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9bf3402af9fef57aa11ffe2943728de4
a3a443aab8226d212be9698623717dd06e46c720
54987a5417af4a99d78532e502cf4685dd3372c1e9f717a8907f3d2b7c8926eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3685
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 11:30:18 GMT
Last-Modified: Sat, 17 Sep 2022 10:28:53 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.70.239.215101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.239.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IXZAF21AfaDvJcQhhC55uA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7hlQmogj/5AvEjsae8i+vbAatEU=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3749
Expires: Sat, 17 Sep 2022 12:32:48 GMT
Date: Sat, 17 Sep 2022 11:30:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3748
Expires: Sat, 17 Sep 2022 12:32:48 GMT
Date: Sat, 17 Sep 2022 11:30:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3748
Expires: Sat, 17 Sep 2022 12:32:48 GMT
Date: Sat, 17 Sep 2022 11:30:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3748
Expires: Sat, 17 Sep 2022 12:32:48 GMT
Date: Sat, 17 Sep 2022 11:30:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3748
Expires: Sat, 17 Sep 2022 12:32:48 GMT
Date: Sat, 17 Sep 2022 11:30:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d46a910081eb782408f1a2fa3c6aabba
28ac45ef155c66dd79a306f14d3b38f597b6a32e
d5787a6a12d275555c627e3245b37d4e751148345a09d5671b343cfebe7173b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: e1ca6cef-c033-4887-80cf-2014ab8e620c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ykn5cEnLIAMFrzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ed09-3afc16cf66fef0e62dd6f3cc;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:39:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BaRpWB_XOMxTJPufnSjd4KSfecRwLe9U5W7uEoXy7pgAa4KSC0n7eg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:03:28 GMT
age: 48412
etag: "28ac45ef155c66dd79a306f14d3b38f597b6a32e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f108cfb79dd8405677b7406910d11ba5
5ef30af418df5e44a0927361b679b8117c38c473
b4b973702c6c98eaf28345b019c8cf022e8056e07f508e17d156c9e136f11936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7305
x-amzn-requestid: 15096102-8ffe-47df-bfc7-ff1a1fb9fd1e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUqFJmIAMF5Ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-5c5ca26a24f39af979c17495;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5lUx834-NLHpKCxmdiAdNxCXqqNKGcDJlt9wmGR-XxdlroBfwVTrNg==
via: 1.1 e943d5f0cbb0d255d29da0ddf6639ba8.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:41:22 GMT
age: 49738
etag: "5ef30af418df5e44a0927361b679b8117c38c473"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a22ab7dcdf50f4a297b8e117d336eae
e139a0974317212f094fdbe59e26ca5cf6b9e56d
9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 65YRttsQYzjUMMZXrtAFPdgTPNQuRGnLFliXrcoc24iQgrdBCHolNQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:31:11 GMT
age: 46749
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69ca046c-b383-4d64-aef3-fafc193a3eed.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69ca046c-b383-4d64-aef3-fafc193a3eed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 20b6a1689323aa27849ac54176654806
08017e213e903a82b82317bac58ae50383a87123
d3c8c0bcab34e2c113d560b8d3c60c182a8a795d6b69eee9755fde06fa288f46
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69ca046c-b383-4d64-aef3-fafc193a3eed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8096
x-amzn-requestid: a9b5fa0b-d412-4550-91fd-49381f23f4f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ykz08EV_oAMFi8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6325001f-456439382bf54272363163c5;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 23:00:47 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4qi3-PsEx6EVPq3Bkg6i3ZAeOhW1MSHiJ3sXinuL3mOmp1TOfNjguA==
via: 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 04:50:58 GMT
age: 23962
etag: "08017e213e903a82b82317bac58ae50383a87123"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02298148-3871-462f-a525-37a137c0e965.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02298148-3871-462f-a525-37a137c0e965.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3826878a194427ea7cd596abda9c31bb
de1e4a5e29cfed55e10512b1e8bec01d735a24f5
0bf188a5135c89b9f420ecb3b1b21202b1614f45d8346cf495e69fdb08f0564a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02298148-3871-462f-a525-37a137c0e965.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8915
x-amzn-requestid: 0ea78bae-5dea-4ecf-9a8d-36d28d364c1a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIXYG9LoAMFQ4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322542f-5d8f66547c427eeb5eecb11e;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:22:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2igGg8JQZq99ltI0kElKfdjEUsP7iKkZzOb-r-KLQc-Klhv_ao0PUw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:17:34 GMT
age: 47566
etag: "de1e4a5e29cfed55e10512b1e8bec01d735a24f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F965c1f46-ea3e-498e-b9dd-07a252ce51c2.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F965c1f46-ea3e-498e-b9dd-07a252ce51c2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6656c96d31803728c2fcd707289bcd27
5139023bb709d865d26a9b2fac4b02260966c347
41c958a36909953f47208de41fb76081ce2c5bb80afec7c15b7c544b464880b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F965c1f46-ea3e-498e-b9dd-07a252ce51c2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6991
x-amzn-requestid: 799f17de-b856-4be7-abbf-0d444f605a94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXe-WE9toAMF41A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fab8e-6f2639d75967c1d2213d2d8b;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:58:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: EvWc_HiIQ23ll8soCl8tWfARIqe_B5HKpchZaGKSoZy576KLyjcfCw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:56:33 GMT
age: 48827
etag: "5139023bb709d865d26a9b2fac4b02260966c347"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email={{email}}
139.162.142.66301 Moved Permanently 0 B URL HTTP/1.1 dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email={{email}}
IP 139.162.142.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email={{email}} HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 17 Sep 2022 11:30:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Set-Cookie: cntctfrm_send_mail=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
Upgrade: h2,h2c
Connection: Upgrade, close
Location: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
dfs.co.mw/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
139.162.142.66200 OK 89 kB URL HTTP/2 dfs.co.mw/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 139.162.142.66:0
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:21:46 GMT
etag: "222231-15b64-5e4bcb9dc2d7b"
accept-ranges: bytes
content-length: 88932
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3
139.162.142.66200 OK 4.9 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3
IP 139.162.142.66:0
File type ASCII text, with very long lines (4933), with no line terminators
Hash e372df47bd19e1563b557d7bdb817188
4efdf4050a78bdbd88aa255955b7423105895dd0
4b7693154069c53a16468d09d89c9eba5da6c0dfc69cf4d7eb675e32ba663361
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a333-1345-5e4bca662757a"
accept-ranges: bytes
content-length: 4933
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
139.162.142.66200 OK 2.6 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (2630), with no line terminators
Hash eade318fbed91c096467dffa56406638
69d306a2097e792f99c80a5e0bb8863260399cad
d589803f3ab380582ab137b22493c2bacaa92424fa88cee212e80288cac11fbb
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:29 GMT
etag: "2283bc-a46-5e4bca6f9033b"
accept-ranges: bytes
content-length: 2630
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3
139.162.142.66200 OK 210 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3
IP 139.162.142.66:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size 210 kB (209885 bytes)
Hash 375cb90c5332267d20d6043a63444e6d
c9e3491ce137aa644109765ff590e0d30da35e72
9e4f92eb422eb08e7fdb89083b71ade65040e339149d2c901f957dc7f202055f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:19 GMT
etag: "22a2f8-333dd-5e4bca6624e6a"
accept-ranges: bytes
content-length: 209885
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1
139.162.142.66200 OK 2.7 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1
IP 139.162.142.66:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:42 GMT
etag: "22c8a8-aab-5e4bca7c06503"
accept-ranges: bytes
content-length: 2731
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
139.162.142.66200 OK 3.8 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
IP 139.162.142.66:0
Hash 9c6b63558e5de592c160563dbe08dd0d
e4969ab55cc566759623f6b4e1c7d6b3bcdc21cd
14a77bc82e039ce4be0d9ba9b0237495b0a9578d34eb92d444093d440f6190ba
GET /wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:36 GMT
etag: "228598-ee4-5e4bca763fa1a"
accept-ranges: bytes
content-length: 3812
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/contact-form-plugin/css/form_style.css?ver=4.2.4
139.162.142.66200 OK 5.1 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/contact-form-plugin/css/form_style.css?ver=4.2.4
IP 139.162.142.66:0
Hash 5d1d4891893cf9c12c42cf0646691556
f7e3bdc50bb5c3c5a98e19b44a6899b8070e3b23
de17d63770f4a75bdc5079ab9176c912df0f63b45c7bba4e4980aa004186ba3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-plugin/css/form_style.css?ver=4.2.4 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:35:51 GMT
etag: "2244e1-13ba-5e4bcec3a2312"
accept-ranges: bytes
content-length: 5050
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/css/widget.css?ver=6.0.2
139.162.142.66200 OK 3.9 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/css/widget.css?ver=6.0.2
IP 139.162.142.66:0
Hash 7e19090a49b4ac8dc29152d7fcaea6fa
631799c7449c8eea15d49c2ff1736706081c2d6f
52f9b8cad6e3388b02e1cc2cb6a488209b61a6a1e5da163c249bd09b827456fb
GET /wp-content/plugins/yolo-finanzen-framework/assets/css/widget.css?ver=6.0.2 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:15:55 GMT
etag: "224575-f46-5e4bca4f0bcd4"
accept-ranges: bytes
content-length: 3910
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
139.162.142.66200 OK 9.3 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
IP 139.162.142.66:0
File type ASCII text, with very long lines (9281), with no line terminators
Hash 57a347480fbe0b3d235993f4f1ec3b2c
ec01673e887c236765156496c7d00111238554d8
9097a2c579616889e829be95554ebf90ec5900045f4d2282cce31d5a999acc03
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a5b6-2441-5e4bca6643d35"
accept-ranges: bytes
content-length: 9281
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/pe-icon-7-stroke/css/styles.min.css
139.162.142.66200 OK 8.2 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/pe-icon-7-stroke/css/styles.min.css
IP 139.162.142.66:0
File type ASCII text, with very long lines (8223), with no line terminators
Hash 18b787e0afb8f09c2531c2b70553e9a6
ef627e37204db0294c59d57100c950bc9c90d485
310d761d20ded835e5928443aee679226cb327db23a76024b680d88a41d29d31
GET /wp-content/themes/yolo-finanzen/assets/plugins/pe-icon-7-stroke/css/styles.min.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "23035f-201f-562c7eacef940"
accept-ranges: bytes
content-length: 8223
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/simple-line-icon/css/simple-line-icons.css
139.162.142.66200 OK 13 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/simple-line-icon/css/simple-line-icons.css
IP 139.162.142.66:0
File type ASCII text, with very long lines (360)
Hash 093ca662394ed698fdb5835e425d28dd
d7038901a810b8d13fee0b70be2e89640de9e353
ab9f855e542893de23c7b7e4897eb91066c9dbbfeaa1b1fa73a826867833b4b1
GET /wp-content/themes/yolo-finanzen/assets/plugins/simple-line-icon/css/simple-line-icons.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320b9-329e-562c7eacef940"
accept-ranges: bytes
content-length: 12958
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0
139.162.142.66200 OK 18 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 1ddf23fcfd1b2941c456ce01da8180a6
156ef5cc77061010e3f4123a47fa415c6391e5ff
dd18a408a35aa5d393458657eb24fb56ab754ece3f88bd78a038e5793d3f6991
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a5e0-4591-5e4bca6645740"
accept-ranges: bytes
content-length: 17809
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/css/animate.css
139.162.142.66200 OK 16 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/css/animate.css
IP 139.162.142.66:0
File type ASCII text, with CRLF line terminators
Hash 2c4aede5c16ba9e21d1fc3433a93bfdf
5080342caefd4766fd1d7d2928be81c21f9ca267
2e641e92c46c0aa852f6dcac88c6343c79f84a3fc675a59deac3df3c896d4d1a
GET /wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/css/animate.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "232133-3e03-562c7eacef940"
accept-ranges: bytes
content-length: 15875
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/elegant-font/css/style.css
139.162.142.66200 OK 25 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/elegant-font/css/style.css
IP 139.162.142.66:0
File type ASCII text, with very long lines (6610)
Hash bbb79964f1980eaab2822f83c2c75d9d
ccbe8e1941d3b01bcc706861100b48cab6248a18
ef20e6454d107e698e67fc13a44c9ecb7d76d4ea84900371682502f75c99c8b2
GET /wp-content/themes/yolo-finanzen/assets/plugins/elegant-font/css/style.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302fe-6295-562c7eacef940"
accept-ranges: bytes
content-length: 25237
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.11.0
139.162.142.66200 OK 29 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.11.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (29337), with no line terminators
Hash 4de6dfc6ff180e33262861a679d40546
8de11c7f99e413282baa349d11657ccd2c468d4f
3e61990964ebd31443be4e6598163ebd71b73b139c42d52547b8a290f7d059ca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.11.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:29 GMT
etag: "2283c6-7299-5e4bca6f91040"
accept-ranges: bytes
content-length: 29337
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
139.162.142.66200 OK 31 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (30441)
Hash d3ec229e04c8634c88cc4cb3f2934c11
785cb4beecaad98329fff0a54f9a5536cda200ab
73835f9dd494931cd0562ab2d4db8aaf3d54dca375abade1794ad1a12ae0d97c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:29 GMT
etag: "2283bb-778b-5e4bca6f9033b"
accept-ranges: bytes
content-length: 30603
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/css/font-awesome.min.css
139.162.142.66200 OK 31 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/css/font-awesome.min.css
IP 139.162.142.66:0
File type ASCII text, with very long lines (30837), with CRLF line terminators
Hash 4258bd5c7a06955b6dae720a835fb7b2
84dceb26861254989c3af1b57179432ad0513f9a
b139f243c33a32098b98fe104d2070f65662d47c93cbdee9b80ac9ea4e060830
GET /wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/css/font-awesome.min.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "230302-791a-562c7eacef940"
accept-ranges: bytes
content-length: 31002
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0
139.162.142.66200 OK 3.0 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0
IP 139.162.142.66:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 8bc2109ef48cabf7a26b73d7c3536c5f
0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b
8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a77e-bdd-5e4bca66575b5"
accept-ranges: bytes
content-length: 3037
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
139.162.142.66200 OK 11 kB URL HTTP/2 dfs.co.mw/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 139.162.142.66:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 24 Jul 2022 19:20:55 GMT
etag: "224160-2bd8-5e491f763c3df"
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0
139.162.142.66200 OK 992 B URL HTTP/2 dfs.co.mw/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0
IP 139.162.142.66:0
Hash 787fe4f547a6cb7f4ce4934641085910
c2dee88d5bdfef214ce9c56f71a1df51cda0f328
654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:51 GMT
etag: "22ca61-3e0-5e4bca8460fd6"
accept-ranges: bytes
content-length: 992
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0
139.162.142.66200 OK 9.5 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (9139)
Hash 87c54edf7dad7dfdfde015f6eee45ff1
96ec1a06ea3093c47e1e2fc4444ada7f4456135d
ef22199864042b8ceeee3729f3254c140df7217364045737ca3aadf8434fb3da
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a71a-253d-5e4bca66541a0"
accept-ranges: bytes
content-length: 9533
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.css
139.162.142.66200 OK 57 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.css
IP 139.162.142.66:0
File type Unicode text, UTF-8 text, with very long lines (20244)
Hash f27354b28af3cf48d28260c03305d0ce
8333c0168b2d2d50a2c3192032c4969937be03f7
0f7fa0c3a244e21109f699c2b3e0609527d9db21b9805f8919d3c9fefd7cddfa
GET /wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "230310-df69-562c7eacef940"
accept-ranges: bytes
content-length: 57193
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 11:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/vc-extend/css/vc-customize.min.css
139.162.142.66200 OK 31 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/vc-extend/css/vc-customize.min.css
IP 139.162.142.66:0
File type ASCII text, with very long lines (30724), with no line terminators
Hash 4b9fb84acb21e68c0bba37fea70b62e1
180b60fb14a1a5500b5b33ea5e76bcd2e66c01a8
97c13d375ac7dd0d5f0db46ca3c78b96675b78028a2657479f92bdd8fe0beb30
GET /wp-content/themes/yolo-finanzen/assets/vc-extend/css/vc-customize.min.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320d8-7804-562c7eacef940"
accept-ranges: bytes
content-length: 30724
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/js/yolo-shortcode.js?ver=6.0.2
139.162.142.66200 OK 27 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/js/yolo-shortcode.js?ver=6.0.2
IP 139.162.142.66:0
File type ASCII text, with very long lines (397), with CRLF line terminators
Hash ebacfd9cb8a4dbceaed156a7fe3f5d24
5097e74c4edb87d7c9ac7725348c521e523ea29c
25e4087b6ad958029e6a0cca04c1d2fdeeb43867cb838836c9ad37497b6d8ac7
GET /wp-content/plugins/yolo-finanzen-framework/assets/js/yolo-shortcode.js?ver=6.0.2 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:15:55 GMT
etag: "2245f0-6b32-5e4bca4f124ff"
accept-ranges: bytes
content-length: 27442
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
139.162.142.66200 OK 90 kB URL HTTP/2 dfs.co.mw/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:21:46 GMT
etag: "224167-15db1-5e4bcb9dfe401"
accept-ranges: bytes
content-length: 89521
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/uploads/yolo-custom-css/custom-style.css
139.162.142.66200 OK 99 kB URL HTTP/2 dfs.co.mw/wp-content/uploads/yolo-custom-css/custom-style.css
IP 139.162.142.66:0
File type ASCII text, with very long lines (314)
Hash 113cf026da40ca1018904a3663270280
c8ec17c931d163b1deed5363aa73b25c5f6aaf22
8764989905478ecabc5221e052f7cd166c872a2c0f735ddbaa93df8f92b5de66
GET /wp-content/uploads/yolo-custom-css/custom-style.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 24 Jul 2022 19:20:56 GMT
etag: "22c1d4-182ae-5e491f76c7670"
accept-ranges: bytes
content-length: 98990
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/css/yolo-shortcode.css?ver=6.0.2
139.162.142.66200 OK 186 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/css/yolo-shortcode.css?ver=6.0.2
IP 139.162.142.66:0
Size 186 kB (185605 bytes)
Hash ed614154168628daaf3175413f14ed56
613c396bc333ed9dc40106fb9706b48b22187c3e
b6fe82d6d8492c773814fe6c229a51a82adae4a6498828b70c0f8b666cffd311
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yolo-finanzen-framework/assets/css/yolo-shortcode.css?ver=6.0.2 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:15:55 GMT
etag: "224576-2d505-5e4bca4f0c9d9"
accept-ranges: bytes
content-length: 185605
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/svg/puff.svg
139.162.142.66200 OK 1.6 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/svg/puff.svg
IP 139.162.142.66:0
File type ASCII text, with CRLF line terminators
Hash 2a7da108bd797e100400096e6e85b844
6e10f5f1c4d51520645ff0595340128fd4aa031f
6fafe55dcccb320d6abef04bb12a437c10bf60ef4e24afe3518c58a36419d2b1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/svg/puff.svg HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320d4-66b-562c7eacef940"
accept-ranges: bytes
content-length: 1643
content-type: image/svg+xml
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/css/yolo.css
139.162.142.66200 OK 493 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/css/yolo.css
IP 139.162.142.66:0
Size 493 kB (492608 bytes)
Hash 851cf7daea4d45eea440f138ad72462b
dba94c8509df116d5f1b053130a87733b6895887
7cfe1a62995fa8adf5e106f88de5c450681a88eb4aa3d07995686cda63feb1ac
GET /wp-content/themes/yolo-finanzen/assets/css/yolo.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Jun 2021 03:57:41 GMT
etag: "23024a-78440-5c46164871740"
accept-ranges: bytes
content-length: 492608
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/uploads/2018/12/cd482c5717b1cd60015d900d23e91d2c.png
139.162.142.66200 OK 88 kB URL HTTP/2 dfs.co.mw/wp-content/uploads/2018/12/cd482c5717b1cd60015d900d23e91d2c.png
IP 139.162.142.66:0
File type PNG image data, 868 x 442, 8-bit/color RGB, non-interlaced\012- data
Hash a3cd09ce5176dfb65ce92f186f0d6472
0ca33fcf7214acf701e64d08160d8338af774497
c86a8ac544e556a4e929f7c5e5e364eb0c31e014205e877ea55974e0c3978621
GET /wp-content/uploads/2018/12/cd482c5717b1cd60015d900d23e91d2c.png HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 24 Jul 2022 19:20:56 GMT
etag: "22e20a-156ba-5e491f7716576"
accept-ranges: bytes
content-length: 87738
content-type: image/png
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
139.162.142.66200 OK 19 kB URL HTTP/2 dfs.co.mw/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 139.162.142.66:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:21:47 GMT
etag: "224273-48b9-5e4bcb9e0db66"
accept-ranges: bytes
content-length: 18617
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.css?ver=6.0.2
139.162.142.66200 OK 24 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.css?ver=6.0.2
IP 139.162.142.66:0
File type ASCII text, with very long lines (24116), with CRLF line terminators
Hash 4dc80fec4ac4e12644852ba505acc28a
cc27bc2521309d213e38ce570665bb70702fa7a4
2515264fdf4baf37d2541ed609d5d640becc83caf7e2d583715de301470bec0e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.css?ver=6.0.2 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302eb-5f24-562c7eacef940"
accept-ranges: bytes
content-length: 24356
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/css/jquery.scrollbar.css
139.162.142.66200 OK 23 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/css/jquery.scrollbar.css
IP 139.162.142.66:0
File type ASCII text, with very long lines (682), with CRLF line terminators
Hash 2494749363eaf23023afcd707e9b5c07
82478ccbbd3cb25d9fd8d14859955be97e55b6f8
53673e389d4aad4e8b6786cacd4bb1bf3580d804ac85750372085a51909ae6f4
GET /wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/css/jquery.scrollbar.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320b4-5b71-562c7eacef940"
accept-ranges: bytes
content-length: 23409
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/uploads/2019/05/logo-1.png-1-e1529915811623.png
139.162.142.66200 OK 8.8 kB URL HTTP/2 dfs.co.mw/wp-content/uploads/2019/05/logo-1.png-1-e1529915811623.png
IP 139.162.142.66:0
File type PNG image data, 130 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 1052e343afd9f94fe6085ee251727bb1
8367361621608e6fe0af2348d32ba9e3c8fb67d0
e0a28e7d89af546ade558bc2801d0863564086a638a33f8a83cfe7286301b045
GET /wp-content/uploads/2019/05/logo-1.png-1-e1529915811623.png HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 24 Jul 2022 19:20:56 GMT
etag: "22c1de-2254-5e491f76c8375"
accept-ranges: bytes
content-length: 8788
content-type: image/png
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
139.162.142.66200 OK 15 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP 139.162.142.66:0
File type Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Hash 157f18464a93eab7fb62a7f3e618ac2c
f47727e80d529d6e4941fea32f2e8a8ee5008b8a
9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:29 GMT
etag: "2283d4-3a4f-5e4bca6f91d45"
accept-ranges: bytes
content-length: 14927
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.23
139.162.142.66200 OK 58 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.23
IP 139.162.142.66:0
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash 7d4cdc18b95171f8dadb5d4fa0de7cf2
a960abb1c3844715ec9565e3b2b73a9b1faa32b0
8527577417ba8bd5dbaaad96e47d57c5e94b9e17094ffd9c0a2b5ad56a324347
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.23 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:03 GMT
etag: "2264c2-e245-5e4bca56a59b6"
accept-ranges: bytes
content-length: 57925
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
139.162.142.66200 OK 22 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP 139.162.142.66:0
File type HTML document, ASCII text, with very long lines (21538), with no line terminators
Hash d017e13d65b4c79d9a22a4ab9e6bcdf6
f766dedd77e0f910742439a102a23dbeade89299
2ef1fc50a9d78f044028f3ba7378c5bbec0188de74a5217491040f9ba435fca4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a70a-5422-5e4bca665349a"
accept-ranges: bytes
content-length: 21538
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0
139.162.142.66200 OK 486 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (65358)
Size 486 kB (485521 bytes)
Hash 04f75b46513691d1d7aaa1a1684eb148
67c753bc6a1981621aed44b40a34388f3e36e95f
779ae1e963b5e8a5263625a174e34dfcd073775f2893211fc7e304fb70f0e3a7
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:51 GMT
etag: "22ca08-76891-5e4bca845b4b1"
accept-ranges: bytes
content-length: 485521
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.11.0
139.162.142.66200 OK 25 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.11.0
IP 139.162.142.66:0
File type HTML document, ASCII text, with very long lines (24951), with no line terminators
Hash 540be7a8259fbeaf4a732a344b267a7d
ac51cc9bb5df51bd9568de8707b9b176f7d60254
a692f16cca3d27ae6772b85e05c46d117ca45678783d5ee010df7d67e8f12485
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.11.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:29 GMT
etag: "2283d5-6177-5e4bca6f91d45"
accept-ranges: bytes
content-length: 24951
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
139.162.142.66200 OK 6.5 kB URL HTTP/2 dfs.co.mw/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 139.162.142.66:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 61449413a42d2daaa79dbe7298b40e21
d86c474164c603084397bdc50fb0e469d28b5772
f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:21:47 GMT
etag: "2251ef-194b-5e4bcb9e05931"
accept-ranges: bytes
content-length: 6475
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
139.162.142.66200 OK 19 kB URL HTTP/2 dfs.co.mw/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 139.162.142.66:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 57459b58fd7665a5e20b2345463df9c9
71c3b177ad1412d5e0b56d99f18bc345148df88b
6fecb89a29ee2bd397bb1bf58ecaa530a76f0654db71fadefd3cc70b0bc302bf
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:21:47 GMT
etag: "2241aa-4ac6-5e4bcb9e05931"
accept-ranges: bytes
content-length: 19142
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
139.162.142.66200 OK 22 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
IP 139.162.142.66:0
File type ASCII text, with very long lines (21904), with no line terminators
Hash e7334b0f16895605c1234c69ad86fd4a
6da3372e63cabe2d3c6b0dfecc70770c2f69921b
e89d7526092c671c0a01bd02152a595271fb97f87bbd3ba379b5e8b1071f6b2d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:42 GMT
etag: "22c8e3-5590-5e4bca7c07f0d"
accept-ranges: bytes
content-length: 21904
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 11:30:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.23
139.162.142.66200 OK 390 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.23
IP 139.162.142.66:0
File type ASCII text, with very long lines (64288)
Size 390 kB (390034 bytes)
Hash dbe49ccea4cb977e99af1fc13b5df0c2
7cd5bc888582bf9c3b4c32190963aec3faf76eb4
20260a2b327f69ddfd34a15f57c728f790778989af847470220c5a5f0b929e27
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.23 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:03 GMT
etag: "226a2c-5f392-5e4bca56dcf21"
accept-ranges: bytes
content-length: 390034
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0
139.162.142.66200 OK 1.8 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a6f2-72a-5e4bca6652795"
accept-ranges: bytes
content-length: 1834
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0
139.162.142.66200 OK 2.1 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a76d-85b-5e4bca66575b5"
accept-ranges: bytes
content-length: 2139
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0
139.162.142.66200 OK 2.9 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a77a-b7a-5e4bca66575b5"
accept-ranges: bytes
content-length: 2938
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.16.0
139.162.142.66200 OK 4.6 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.16.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (4602), with no line terminators
Hash 25d887c9c8997522cf1184e1171d605c
8f9fc958307ce831e7313d22d996908f578956e2
ccdea9568a2dafdc3b5dfafd7cc65ed784a235fe1a3c2da2e4183a9bb834c136
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.16.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:36 GMT
etag: "22859f-11fa-5e4bca763fa1a"
accept-ranges: bytes
content-length: 4602
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
139.162.142.66200 OK 12 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
IP 139.162.142.66:0
File type ASCII text, with very long lines (11827)
Hash 06a3b48689b0314af6c5da5b6ff27bfd
a98a815d90cba195409d39bd74d31b1e6f9dbf95
4cd7a0d2c9eb03966a0dc60658526c20fa4e8ee4a0660da469f55edaf9a18c9f
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:36 GMT
etag: "22859a-2e7c-5e4bca763fa1a"
accept-ranges: bytes
content-length: 11900
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/js/megamenu.min.js
139.162.142.66200 OK 2.2 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/js/megamenu.min.js
IP 139.162.142.66:0
File type ASCII text, with very long lines (2198), with no line terminators
Hash a59c690f33d38aa8c933ef3896cc4131
c4be0aa0dd09ddf097fb0f010e47c2795e610b84
66fd0d25b50c652218e7bc42dc7cc7276de577005c5d05e125af0c92e2e302fd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/js/megamenu.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "232139-896-562c7eacef940"
accept-ranges: bytes
content-length: 2198
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-includes/js/underscore.min.js?ver=1.13.3
139.162.142.66200 OK 19 kB URL HTTP/2 dfs.co.mw/wp-includes/js/underscore.min.js?ver=1.13.3
IP 139.162.142.66:0
File type ASCII text, with very long lines (18876)
Hash 42aa17e1f850a414638ee4a32a3aa807
2e42d03a5e042701191650c041eae1cfb2d6c7b9
0da4791b446818516f710c51707081aec7b23a7c5212fc0b2629c973210136a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:21:47 GMT
etag: "2242d0-49df-5e4bcb9e10276"
accept-ranges: bytes
content-length: 18911
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-includes/js/wp-util.min.js?ver=6.0.2
139.162.142.66200 OK 1.3 kB URL HTTP/2 dfs.co.mw/wp-includes/js/wp-util.min.js?ver=6.0.2
IP 139.162.142.66:0
File type ASCII text, with very long lines (1305)
Hash 8637362089372427b52fa10a43d8109c
6009bed674718329dce6055ab09fa95181162d81
b8e78b48acc08ce31457aff168d6fb2c814d51a8739a97693cdba585d60f5b35
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=6.0.2 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:21:47 GMT
etag: "2242eb-53c-5e4bcb9e10276"
accept-ranges: bytes
content-length: 1340
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.7.0
139.162.142.66200 OK 14 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.7.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (13590), with no line terminators
Hash a49a60e0186f705f693279985371da20
3419d4683879d6a48e051e38356602a2f5094511
3b55a00b09e9df011435d1f358401cf7153066bbfeafdc3384e5d8cdaf4e3262
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a77f-3516-5e4bca66575b5"
accept-ranges: bytes
content-length: 13590
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-add-to-cart-variation.min.js
139.162.142.66200 OK 637 B URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-add-to-cart-variation.min.js
IP 139.162.142.66:0
File type ASCII text, with very long lines (637), with no line terminators
Hash 54d2c857fe0c922011f8f372085cd50a
7f963ecc8802433ebd8d0c133b63912a1386af37
1276859e9ad5d187ebfd44de0fd1ed7eb48440b6a07596ea73132799947142bb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/js/min/yolo-add-to-cart-variation.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 15:32:15 GMT
etag: "23029b-27d-5ad289776ddc0"
accept-ranges: bytes
content-length: 637
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-main.min.js
139.162.142.66200 OK 46 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-main.min.js
IP 139.162.142.66:0
File type ASCII text, with very long lines (45875), with no line terminators
Hash a48cdd71ec01ecc81456b616825e0f31
7afd6e257af76490bba21b1f2d4aa9a033557674
e3e183b78ea1b81d76ff7c8c68f523b473ffe8be8d4d3ed315a055a39acbbbae
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/js/min/yolo-main.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Jun 2021 03:17:25 GMT
etag: "23029d-b333-5c460d485db40"
accept-ranges: bytes
content-length: 45875
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/lightGallery/js/lightgallery-all.min.js
139.162.142.66200 OK 56 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/lightGallery/js/lightgallery-all.min.js
IP 139.162.142.66:0
File type ASCII text, with very long lines (31964)
Hash 168cf8b6c074ccd0eca0877a0cc1f647
7da9332d6c4d9a27954eeb58c343959d759a02ac
2fe1cd6d35eebeb6095c1cc9b4c61a45dc226898c80ec7e8c14e32e3bde361a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/plugins/lightGallery/js/lightgallery-all.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 13 Oct 2020 15:03:20 GMT
etag: "230332-dc36-5b18eb729de00"
accept-ranges: bytes
content-length: 56374
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-login.min.js
139.162.142.66200 OK 5.6 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-login.min.js
IP 139.162.142.66:0
File type ASCII text, with very long lines (5588), with no line terminators
Hash 57cbe389b76b8405bf474f87f4e06f5b
a3dbe62a835689fdcb2b5bff2ca8f3603b55f8f8
3cdd7e9dc99b9a4fc6a63ce6a2ebc1974ba60844654d0c06dd080bf93711ba94
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/js/min/yolo-login.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 15:32:10 GMT
etag: "23029c-15d4-5ad28972a9280"
accept-ranges: bytes
content-length: 5588
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-includes/js/imagesloaded.min.js?ver=4.1.4
139.162.142.66200 OK 5.6 kB URL HTTP/2 dfs.co.mw/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 139.162.142.66:0
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 24 Jul 2022 19:20:55 GMT
etag: "22416b-15fd-5e491f763d0e4"
accept-ranges: bytes
content-length: 5629
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.js
139.162.142.66200 OK 15 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.js
IP 139.162.142.66:0
File type ASCII text, with very long lines (14662), with CRLF line terminators
Hash 0628927ca01753d822c61996f229d81a
85a6391e640ffddfa99fb568b71ed011e703d577
21ef50f03cc11fc3d659a3908a06f9bbe0d5641033ff9902030b00cddecd7123
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302ec-3a36-562c7eacef940"
accept-ranges: bytes
content-length: 14902
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/js/jquery.scrollbar.min.js
139.162.142.66200 OK 12 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/js/jquery.scrollbar.min.js
IP 139.162.142.66:0
File type ASCII text, with very long lines (11954), with CRLF line terminators
Hash 5dbfd67d849efb5d84e15255c33bb284
8ea465dcc1a6661d839996b69cbe338b43a36021
b360a59c0a6ee7f060a226652ed0d0ee5396b48639d175d141bc87142e862cd8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/js/jquery.scrollbar.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320b6-3038-562c7eacef940"
accept-ranges: bytes
content-length: 12344
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/js/bootstrap.min.js
139.162.142.66200 OK 36 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/js/bootstrap.min.js
IP 139.162.142.66:0
File type ASCII text, with very long lines (32405), with CRLF line terminators
Hash 834ca905c3251172e3c538cc0e043d77
313da686ebbe387064f2d1899c64ea562b81eb40
9a61a325508cd509f23cd31043b878957281f0a3603d8e7d40758c4a7c489d5a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302e5-8a82-562c7eacef940"
accept-ranges: bytes
content-length: 35458
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/stickyHeader/sticky-custom.js
139.162.142.66200 OK 9.0 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/stickyHeader/sticky-custom.js
IP 139.162.142.66:0
File type ASCII text, with CRLF line terminators
Hash 2a5ed3d29bde657703ba04d03976e75c
9849d3ad3a54cb97599da56125b93ca96b61f848
dae206a0a42ee6d0e48f68606b343f6154de7e49488e99845e9db3494856ca86
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/plugins/stickyHeader/sticky-custom.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320ca-2358-562c7eacef940"
accept-ranges: bytes
content-length: 9048
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/classie.js
139.162.142.66200 OK 1.9 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/classie.js
IP 139.162.142.66:0
File type ASCII text, with CRLF line terminators
Hash 70fc7d9e10c107d1e20326108f5f5e1f
4b1c60cde2836e6af72e53f1ab730574c23a2a89
c4ea9310d72e37fe799d48ae3fc43dcb53e3db7c4ae13763d4c5b893f6ceb64b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/classie.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302f2-77b-562c7eacef940"
accept-ranges: bytes
content-length: 1915
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/modernizr/modernizr.min.js
139.162.142.66200 OK 10 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/modernizr/modernizr.min.js
IP 139.162.142.66:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (9557), with CRLF line terminators
Hash 86abcc42427166cf93e85deac6774ce8
cedf99025081cec266e80e9a0c4ca249f8cb91fd
99836171667de70c269b42471ff6cf6efce2c61c9f8701c7466480a3a4abdd26
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/plugins/modernizr/modernizr.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "230345-2709-562c7eacef940"
accept-ranges: bytes
content-length: 9993
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0
139.162.142.66200 OK 20 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (20096)
Hash 6ce179ee275d3bd58d0407b79d6366cd
fb1393daafde2f3e85f31777543c3194a4ab11d0
1bd0097cd9d76a31566f4236a1aaa31cdd43c5857a9502679805fddbc7599a54
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:51 GMT
etag: "22ca59-4f5b-5e4bca84602d1"
accept-ranges: bytes
content-length: 20315
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/dialogFx.js
139.162.142.66200 OK 2.7 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/dialogFx.js
IP 139.162.142.66:0
File type ASCII text, with CRLF line terminators
Hash 91f34b57db1f1f7d00b0adb825428d75
1cba28df324d544fcfdaf7a9f3e99e230d3a5fd3
62f62c4dbd71039076e9cbe391e191e10c3927256de89cd8a296d7104094929e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/dialogFx.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302f3-a78-562c7eacef940"
accept-ranges: bytes
content-length: 2680
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0
139.162.142.66200 OK 7.0 kB URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0
IP 139.162.142.66:0
File type ASCII text, with very long lines (7043), with no line terminators
Hash 456663a286a204386735fd775542a59e
0a61620b88f4ae0fa7d71e2c7a014ea2c3ab5749
a7a83e60e7e3b8cadeed69327ba498b4cd68605db6e408729fa1b946758e7501
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a5f3-1b83-5e4bca6646445"
accept-ranges: bytes
content-length: 7043
content-type: text/css
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
139.162.142.66200 OK 77 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 139.162.142.66:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "230308-12d68-562c7eacef940"
accept-ranges: bytes
content-length: 77160
content-type: font/woff2
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/simple-line-icon/fonts/Simple-Line-Icons.woff2?v=2.4.0
139.162.142.66200 OK 30 kB URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/simple-line-icon/fonts/Simple-Line-Icons.woff2?v=2.4.0
IP 139.162.142.66:0
File type Web Open Font Format (Version 2), TrueType, length 30064, version 1.0\012- data
Hash 0cb0b9c589c0624c9c78dd3d83e946f6
5da603104d4d6e362824ec9e7db32eb2d617949a
104673f4859604362a18fc6294197d8fffb8cb24ad3211e92eb04f655e18cf4a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/plugins/simple-line-icon/fonts/Simple-Line-Icons.woff2?v=2.4.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/simple-line-icon/css/simple-line-icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320bf-7570-562c7eacef940"
accept-ranges: bytes
content-length: 30064
content-type: font/woff2
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 11:30:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 11:30:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 11:30:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 11:30:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dfs.co.mw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:26:57 GMT
expires: Thu, 14 Sep 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 230608
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
142.250.74.163200 OK 47 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data
Hash 87a1556b696ae2cb1a726bd8c4584a2f
1be0f6f39e0cf316f9827f945eeeaef8294cc37b
141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1
GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dfs.co.mw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:27:54 GMT
expires: Thu, 14 Sep 2023 19:27:54 GMT
cache-control: public, max-age=31536000
age: 230551
last-modified: Wed, 27 Apr 2022 16:55:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
139.162.142.66404 Not Found 125 kB URL HTTP/2 dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
IP 139.162.142.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size 125 kB (125091 bytes)
Hash 033b5618db1a957b9f5cfcdd75fe2121
6d9c3e7b9b1a5ace2b4700c30f722962cc454c44
bd84cddee7598ff3c14d4425a420aea477c924900147c0e0cafd46544cdb4f74
GET /wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://dfs.co.mw/wp-json/>; rel="https://api.w.org/"
set-cookie: cntctfrm_send_mail=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
content-type: text/html; charset=UTF-8
date: Sat, 17 Sep 2022 11:30:21 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Hash 5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dfs.co.mw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:27:53 GMT
expires: Thu, 14 Sep 2023 19:27:53 GMT
cache-control: public, max-age=31536000
age: 230552
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 11:30:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.ttf?v=2.0.0
139.162.142.66200 OK 280 B URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.ttf?v=2.0.0
IP 139.162.142.66:0
Hash cafd8a4297917eb5f5fcf03fa0b889ca
f6200ee924bc5a44876208f693e80b578063038f
1818c406fa66a4913dd011c7fada08b867140ee90e94367483a100520d52867e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.ttf?v=2.0.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "230313-2e05c-562c7eacef940"
accept-ranges: bytes
content-length: 188508
content-type: font/ttf
date: Sat, 17 Sep 2022 11:30:25 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash cafd8a4297917eb5f5fcf03fa0b889ca
f6200ee924bc5a44876208f693e80b578063038f
1818c406fa66a4913dd011c7fada08b867140ee90e94367483a100520d52867e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 11:30:25 GMT
Server: ECS (amb/6B8B)
Content-Length: 280
demo.yolotheme.com/dummy/finanzen/wp-content/themes/yolo-finanzen/assets/images/404-bg.jpg
104.21.16.175200 OK 168 kB URL HTTP/2 demo.yolotheme.com/dummy/finanzen/wp-content/themes/yolo-finanzen/assets/images/404-bg.jpg
IP 104.21.16.175:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x900, components 3\012- data
Size 168 kB (168352 bytes)
Hash c1ee4b2dd64b39f61706c66740c6bacb
220d1935e68fc99e0726ce360639997c63274b7a
c47da1e1be7fe913735bc047cb0dfa93932042faadc9e406a2735c369305070a
GET /dummy/finanzen/wp-content/themes/yolo-finanzen/assets/images/404-bg.jpg HTTP/1.1
Host: demo.yolotheme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 11:30:25 GMT
content-type: image/jpeg
content-length: 168352
last-modified: Wed, 04 Dec 2019 08:03:18 GMT
etag: "5de76846-291a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000, must-revalidate, proxy-revalidate
cf-cache-status: HIT
age: 48452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ed2VT4zY5OZb6l50Tu2bbiVL7QJLIroLokZexw5ZPJ1DbHHxRLJGd8O1rsCP003p0JM%2FVU3Tzo%2F8erMfZB2zViz5ZF%2Fe%2FV1cMSfONh43pG3DfAIFGY7PEEzzNJpF3nR5FRlTmWc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74c1827ee93a0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
demo.yolotheme.com/dummy/finanzen/wp-content/uploads/2017/05/bg-footer-1.jpg?id=148
104.21.16.175200 OK 40 kB URL HTTP/2 demo.yolotheme.com/dummy/finanzen/wp-content/uploads/2017/05/bg-footer-1.jpg?id=148
IP 104.21.16.175:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x700, components 3\012- data
Hash 9cca7eee4cfcf49cde9e6cb803c4f710
9b4795dfdbce2d02bccfe78b96baa0457cd1921d
b913a486e9159abefffcab664151baf547b2984c25b2a0dee814f43392a01cf6
GET /dummy/finanzen/wp-content/uploads/2017/05/bg-footer-1.jpg?id=148 HTTP/1.1
Host: demo.yolotheme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 11:30:25 GMT
content-type: image/jpeg
content-length: 40216
last-modified: Wed, 24 May 2017 01:56:39 GMT
etag: "5924e857-9d18"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000, must-revalidate, proxy-revalidate
cf-cache-status: HIT
age: 48452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nIiR%2Fl65mLBWHbVccnqiUXp%2BABgvT7J8cOBfY5dFW8NHsFG07dxkZ%2FpHNXwDatHQwRonZTrJmerGNihzd3T7JaEST26XPanSSMzGvR6OWU4hGFfjfdwz9lE4NEhN9Mgujxt5iJ8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74c1827f195d0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash cafd8a4297917eb5f5fcf03fa0b889ca
f6200ee924bc5a44876208f693e80b578063038f
1818c406fa66a4913dd011c7fada08b867140ee90e94367483a100520d52867e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 11:30:25 GMT
Last-Modified: Sat, 17 Sep 2022 11:30:25 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 280
fonts.googleapis.com/css?family=PT+Sans%3A400%2C700%2C400italic%2C700italic%7CSource+Sans+Pro%3A200%2C300%2C400%2C600%2C700%2C900%2C200italic%2C300italic%2C400italic%2C600italic%2C700italic%2C900italic&ver=1658914805
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=PT+Sans%3A400%2C700%2C400italic%2C700italic%7CSource+Sans+Pro%3A200%2C300%2C400%2C600%2C700%2C900%2C200italic%2C300italic%2C400italic%2C600italic%2C700italic%2C900italic&ver=1658914805
IP 142.250.74.10:0
GET /css?family=PT+Sans%3A400%2C700%2C400italic%2C700italic%7CSource+Sans+Pro%3A200%2C300%2C400%2C600%2C700%2C900%2C200italic%2C300italic%2C400italic%2C600italic%2C700italic%2C900italic&ver=1658914805 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 17 Sep 2022 11:30:25 GMT
date: Sat, 17 Sep 2022 11:30:25 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
139.162.142.66200 OK 0 B URL HTTP/2 dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
IP 139.162.142.66:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:03 GMT
etag: "226a2a-1f69c-5e4bca56dcf21"
accept-ranges: bytes
content-length: 128668
content-type: application/javascript
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0
139.162.142.66200 OK 0 B URL HTTP/2 dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0
IP 139.162.142.66:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a5bb-f523-5e4bca6644a3a"
accept-ranges: bytes
content-length: 62755
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/css/bootstrap.min.css
139.162.142.66200 OK 0 B URL HTTP/2 dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/css/bootstrap.min.css
IP 139.162.142.66:0
GET /wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?l=_JeHFUq_VJOXK0QWHtoGYDw1774256418&fid_13InboxLight_aspxn_1774256418&fid_125289964252813InboxLight99642_Product-email&email=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302e3-1c9a5-562c7eacef940"
accept-ranges: bytes
content-length: 117157
content-type: text/css
date: Sat, 17 Sep 2022 11:30:24 GMT
server: Apache
X-Firefox-Spdy: h2