r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7095
Expires: Sun, 05 Feb 2023 14:01:41 GMT
Date: Sun, 05 Feb 2023 12:03:26 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10552
Expires: Sun, 05 Feb 2023 14:59:18 GMT
Date: Sun, 05 Feb 2023 12:03:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 11:36:17 GMT
content-type: application/json
age: 1629
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18242
Expires: Sun, 05 Feb 2023 17:07:28 GMT
Date: Sun, 05 Feb 2023 12:03:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CqHMF9f5nioDYv6SYWIyHG4AK7WEyLFU6908FmHMNNVDPKy8p9syJSqJvQ6K38NJ3EWcbvX2EHs=
x-amz-request-id: FNK5NKZ0WK48CCDM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 11:53:15 GMT
age: 611
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
shop.safico5.com/wp-content/plugins/auth/en/login.php
185.198.56.177301 Moved Permanently 0 B URL HTTP/1.1 shop.safico5.com/wp-content/plugins/auth/en/login.php
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/auth/en/login.php HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Feb 2023 12:03:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
X-Redirect-By: WordPress
Location: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 12:03:26 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 11:07:20 GMT
age: 3367
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7594
Expires: Sun, 05 Feb 2023 14:10:01 GMT
Date: Sun, 05 Feb 2023 12:03:27 GMT
Connection: keep-alive
shop.safico5.com/wp-content/plugins/auth/en/login.php
185.198.56.177404 Not Found 66 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/auth/en/login.php
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4571), with CRLF, LF line terminators
Hash 0b32636802f40a3f45ef9f230d2868c3
2334d9799647e2994a991cfbc3d9c4c018a63c4a
e720ecc0ce035e2925bfb85aa65d042be431d8ef17d34840a855c61f4313ff6d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/auth/en/login.php HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Sun, 05 Feb 2023 12:03:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
Link: <https://shop.safico5.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
44.227.105.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.227.105.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VUcgvCTuYf/zgBQsm5Ptkg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Tom+EN0d9oGn3KJFfwxryu5ZB6E=
shop.safico5.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.10
185.198.56.177200 OK 54 kB URL HTTP/1.1 shop.safico5.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.10
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (28088)
Hash 7d2051e6c59f3598b17877bf41637ec4
e3fbc1265f4cd1eacf83c045e4f21d5f9b92bf8d
bca7af0b45b6fc6a2064e8e7a34f2041f3e77261e63f0257209bcde6bc40545d
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.4.10 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Fri, 24 Apr 2020 15:32:14 GMT
Accept-Ranges: bytes
Content-Length: 53593
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/mailchimp-for-wp/assets/css/form-basic.min.css?ver=4.7.8
185.198.56.177200 OK 2.7 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/mailchimp-for-wp/assets/css/form-basic.min.css?ver=4.7.8
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (2659), with no line terminators
Hash 1632267525c58b35310d3dd7bfea8b7f
b3a48029862a5af3bbf027383e3f87bc181792b2
2a8c2e0fd09605162cb7823dfa4ef28779072b2c3f5b6fbc23be0d47f518d9d2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mailchimp-for-wp/assets/css/form-basic.min.css?ver=4.7.8 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:50 GMT
Accept-Ranges: bytes
Content-Length: 2659
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/css/frontend.css?ver=1.0.6
185.198.56.177200 OK 7.7 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/css/frontend.css?ver=1.0.6
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
Hash 24323e1626d799cf4c020e30326ef8df
2c790fbd9e1840e7e5767ec476a0af8503b2ecf4
b16ae8dcd9fbf3ecab00fffc946fe6b9cbd0f869dd60b4462e5347d28c3f6c66
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/get-a-quote-button-for-woocommerce/assets/css/frontend.css?ver=1.0.6 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:03:49 GMT
Accept-Ranges: bytes
Content-Length: 7693
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/hide-price-add-to-cart-button/assets/css/afwhp_front.css?ver=1.0
185.198.56.177200 OK 521 B URL HTTP/1.1 shop.safico5.com/wp-content/plugins/hide-price-add-to-cart-button/assets/css/afwhp_front.css?ver=1.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with CRLF line terminators
Hash 6213b16801298b8f47aec7ad454673e0
e8cb65313df06324cfad76815816b05fbc106f31
ad68f78a27281fbc4200dbec9f4c18b1dd59e1b2502a9c0435d2c32b07344d08
GET /wp-content/plugins/hide-price-add-to-cart-button/assets/css/afwhp_front.css?ver=1.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:20:48 GMT
Accept-Ranges: bytes
Content-Length: 521
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/css/sweetalert2.min.css?ver=1.0.6
185.198.56.177200 OK 25 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/css/sweetalert2.min.css?ver=1.0.6
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Unicode text, UTF-8 text, with very long lines (24568), with no line terminators
Hash 43b745ce803f748a1c8a15f158157100
3a1679cc0c7d7b19c60af5d4be783009dbf6ead4
1f69c8d0be5e5ed8eae9d174385cd672039bddc81df8b0ebd5b7c667574e94ea
GET /wp-content/plugins/get-a-quote-button-for-woocommerce/assets/css/sweetalert2.min.css?ver=1.0.6 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:03:49 GMT
Accept-Ranges: bytes
Content-Length: 24569
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 12:03:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
shop.safico5.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.12
185.198.56.177200 OK 60 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.12
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 7f1d3cdee6e67c584ec3df2772391f2b
a5a8f3a0942914d0db18e574742f5b5ad85bd77d
8215fb8f99029767d8081516dd5c245f65f3a5c3bd78fdec0d9889b0f549703f
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.12 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:44:19 GMT
Accept-Ranges: bytes
Content-Length: 59946
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.16
185.198.56.177200 OK 66 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.16
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (65536), with no line terminators
Hash e7e6a0406a3fc00f71bec2706c3d7c75
7d978c127f614128616a6d6d0f628728bd7bbc88
a68103cf6f0359010607eac8ecca00cc18f75f820928fbc280d20e4b3e860702
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.16 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:03 GMT
Accept-Ranges: bytes
Content-Length: 66058
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/themes/basel/css/bootstrap.min.css?ver=5.2.0
185.198.56.177200 OK 36 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/css/bootstrap.min.css?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (35650)
Hash fb54c433ca015360c6103d7d289bb9c4
036ad4ba2bc075b4dde27ca79f70b3c08541f54e
eba7c434f77de7d88eeb337588c36f88f5d1794a32322e285ec5d524a3362cdb
GET /wp-content/themes/basel/css/bootstrap.min.css?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Mon, 08 Oct 2018 15:51:20 GMT
Accept-Ranges: bytes
Content-Length: 36010
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.2.0
185.198.56.177200 OK 56 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (56243)
Hash f7409f91a34ea35236d98702f4e69f4c
3a3c16cbb1114f8e210b87cf3102a99968bf6a26
04950e48cd4097fb4a540c3abcf445cd92d59bdf9ba40f49cfb180cc94387a2f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 19:46:04 GMT
Accept-Ranges: bytes
Content-Length: 56425
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.2.0
185.198.56.177200 OK 34 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (34217)
Hash ffb96099720dde6483d7cab290c543ee
1a6ece8eee36923d795cdf78674b47e7f1b8e94f
cdfdf586f38cfb19c6264343cc6a64adce7ff0961834e96a2f912f01dc29e3f0
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 19:46:04 GMT
Accept-Ranges: bytes
Content-Length: 34399
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/uploads/2021/12/basel-dynamic-1640111120.css?ver=5.2.0
185.198.56.177200 OK 38 kB URL HTTP/1.1 shop.safico5.com/wp-content/uploads/2021/12/basel-dynamic-1640111120.css?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (27569), with CRLF, LF line terminators
Hash 7f66f09c06fbfdcec402f228429107a1
0ca98e44280d6630c3052d896618e30f635cc550
7fa10cd005cd0627e32d047e8675c34103e1bc4c1ab87c8c87be441f03cbaf06
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/12/basel-dynamic-1640111120.css?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Tue, 21 Dec 2021 18:25:20 GMT
Accept-Ranges: bytes
Content-Length: 37725
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
185.198.56.177200 OK 10 kB URL HTTP/1.1 shop.safico5.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
Accept-Ranges: bytes
Content-Length: 10056
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
185.198.56.177200 OK 97 kB URL HTTP/1.1 shop.safico5.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (31997)
Hash 49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Fri, 17 May 2019 04:25:54 GMT
Accept-Ranges: bytes
Content-Length: 96873
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Karla%3A400%2C700%2C400italic%2C700italic%7CLora%3A400%2C700%2C400italic%2C700italic%7CLato%3A100%2C300%2C400%2C700%2C900%2C100italic%2C300italic%2C400italic%2C700italic%2C900italic&ver=5.2.0
142.250.74.106200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Karla%3A400%2C700%2C400italic%2C700italic%7CLora%3A400%2C700%2C400italic%2C700italic%7CLato%3A100%2C300%2C400%2C700%2C900%2C100italic%2C300italic%2C400italic%2C700italic%2C900italic&ver=5.2.0
IP 142.250.74.106:0
Hash de06c2830571da461f13273fbeee79aa
ff48d962529aabfaef72988058d7a9c05bf5bc4a
a5eaff4f53f022d4e44519e13867f620f82668a76696cb945587c4715ee2d383
GET /css?family=Karla%3A400%2C700%2C400italic%2C700italic%7CLora%3A400%2C700%2C400italic%2C700italic%7CLato%3A100%2C300%2C400%2C700%2C900%2C100italic%2C300italic%2C400italic%2C700italic%2C900italic&ver=5.2.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 12:03:28 GMT
date: Sun, 05 Feb 2023 12:03:28 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
shop.safico5.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0
185.198.56.177200 OK 485 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (65358)
Size 485 kB (485416 bytes)
Hash 2fcf15b9242ca9cbf091c45419959fdb
52e744ee97e3612e790305643ab5046201831618
f1dbbc4be8d88ae17466b1d7a8fd7bf4f9d9b5ab492719cdea721d82cecb738d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 19:46:04 GMT
Accept-Ranges: bytes
Content-Length: 485416
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/themes/basel/style.min.css?ver=5.2.0
185.198.56.177200 OK 842 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/style.min.css?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 842 kB (842043 bytes)
Hash 3be6068e12fa719cce8ad588d8da1b11
ca3e96ac4e2df4e2e37c4be57c772a85e42461c0
e2a8128a9955861c2413a4fa736d8348e3f7a856defa768968054d152663ca88
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/style.min.css?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Sun, 12 Jul 2020 14:13:47 GMT
Accept-Ranges: bytes
Content-Length: 842043
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/hide-price-add-to-cart-button/assets/js/afwhp_front.js?ver=1.0
185.198.56.177200 OK 67 B URL HTTP/1.1 shop.safico5.com/wp-content/plugins/hide-price-add-to-cart-button/assets/js/afwhp_front.js?ver=1.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with CRLF line terminators
Hash 0590954ca5a05e30f288d6d384a3f6d7
1e42d504f8397c5245ffe55b7913849c92262a7b
43bdaa621e6b440562c39a664c55e7f80ca75575c840c9c14aacc023ec1763d8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/hide-price-add-to-cart-button/assets/js/afwhp_front.js?ver=1.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:20:48 GMT
Accept-Ranges: bytes
Content-Length: 67
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/hide-price-add-to-cart-button/assets/js/jquery.popupoverlay.js?ver=1.0
185.198.56.177200 OK 24 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/hide-price-add-to-cart-button/assets/js/jquery.popupoverlay.js?ver=1.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 3b7d057a71a914a1ad71f05692c54b1e
4cb2dfe4f2aab9b92dad8d53a182bded3df97cbf
ff24fcd4b42c74b95fe3670cc08854933511a16a9128e01f418fa44e3d2cc1b1
GET /wp-content/plugins/hide-price-add-to-cart-button/assets/js/jquery.popupoverlay.js?ver=1.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:20:48 GMT
Accept-Ranges: bytes
Content-Length: 23763
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0.7
185.198.56.177200 OK 119 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0.7
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (41022), with CRLF line terminators
Size 119 kB (119386 bytes)
Hash 1eca6ed028850aa07d5f4a003fd7079e
1f02b8c5485108373bdd14a96bb1fe22d72e157b
9556bca5ad5eb24439887d7339fcb687088776bbaa995553aa489c9607cf9e19
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0.7 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:44:19 GMT
Accept-Ranges: bytes
Content-Length: 119386
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.12
185.198.56.177200 OK 320 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.12
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (56690)
Size 320 kB (319833 bytes)
Hash 44babb36ae0b113240c5fb64de3d7452
1e21890a87d92fb2796f3123719f9d37b8374454
8c41f7fdc32cb2fcf0d5c980a8a70724e37948a702ae9664d5879eeada814ab2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.12 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:44:19 GMT
Accept-Ranges: bytes
Content-Length: 319833
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0
185.198.56.177200 OK 992 B URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
Hash 787fe4f547a6cb7f4ce4934641085910
c2dee88d5bdfef214ce9c56f71a1df51cda0f328
654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 19:44:44 GMT
Accept-Ranges: bytes
Content-Length: 992
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
185.198.56.177200 OK 9.6 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (9172)
Hash 81b2be18696c4dfe620f7b6d0d75a566
0c3cd7bdf58a65b07e17be39cfe4e386571bb4bd
120aaf6681ca6d34a40c559779f0a0038582a79fce1b868ff901c94d27c89c72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:02 GMT
Accept-Ranges: bytes
Content-Length: 9566
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
185.198.56.177200 OK 1.8 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (1680)
Hash 943f6eb962c25bd965e0f0e5a284fcd0
b050a98ebaef01d7597bf8c1acb995c0ef3bcbd9
50de09b0bb8d0ac656aa9b3a1e4ef58a3f2d1abd734cad68b0e12191e9d215ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:02 GMT
Accept-Ranges: bytes
Content-Length: 1846
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=4.2.0
185.198.56.177200 OK 3.0 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=4.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type HTML document, ASCII text, with very long lines (3033), with no line terminators
Hash f7f611878c5f7bc5eca9157971bcfa2b
4dd321f97feb7a28fc19d0411815b6afa6429176
dbff2c300087e21f2525c240fe26143e3ed436e330899747ef746c73b9071318
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=4.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:02 GMT
Accept-Ranges: bytes
Content-Length: 3033
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.2.0
185.198.56.177200 OK 2.0 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (1988), with no line terminators
Hash 33f6a8db1dd1d638ac9c85f7f002d2ae
aed255e89b7f96c9d2f680161b342fe2cd4d9750
216b1975886a79831af509bca3ead228947f50251c3a4f53c0a2a9095c292308
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:02 GMT
Accept-Ranges: bytes
Content-Length: 1988
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.2.0
185.198.56.177200 OK 2.9 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (2940), with no line terminators
Hash 3518c9cf4786d55c48e6b318cdf3c8de
ee13e5307a87355b9c35aa2e2907f642839a80cf
bed0bd033705c33f1742d8fab2bfed8e945567319fd00e529838392eca49eac0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:02 GMT
Accept-Ranges: bytes
Content-Length: 2940
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 12:03:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/karla/v23/qkB9XvYC6trAT55ZBi1ueQVIjQTD-JrIH2G7nytkHRyQ8p4wUje6bg.woff2
216.58.207.227200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/karla/v23/qkB9XvYC6trAT55ZBi1ueQVIjQTD-JrIH2G7nytkHRyQ8p4wUje6bg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 21248, version 1.0\012- data
Hash 481105857aba99f91faa3cd9a360e8e1
a2d8dcb59555878d359c2bebbc8be6985d26d7d2
f8c2240958cb1fff47d921ca0f3097f9e7403ada01af2382477ef42c404c38d4
GET /s/karla/v23/qkB9XvYC6trAT55ZBi1ueQVIjQTD-JrIH2G7nytkHRyQ8p4wUje6bg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shop.safico5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 10:14:49 GMT
expires: Sat, 03 Feb 2024 10:14:49 GMT
cache-control: public, max-age=31536000
age: 179319
last-modified: Mon, 11 Jul 2022 20:38:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 12:03:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2
216.58.207.227200 OK 39 kB URL HTTP/2 fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 39056, version 1.0\012- data
Hash ab20a3cbee44939ad33cb2d162484f23
f4df3e71cc8aebd85b6207d4ac35c76c602c2779
0a1dc89a4a29593bd35cc4811bfedd9765eeca4a9ef57323eec2cff14c9f9c5b
GET /s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shop.safico5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 02:06:26 GMT
expires: Sat, 03 Feb 2024 02:06:26 GMT
cache-control: public, max-age=31536000
age: 208622
last-modified: Mon, 15 Aug 2022 18:05:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
shop.safico5.com/wp-includes/js/wp-util.min.js?ver=5.4.10
185.198.56.177200 OK 1.1 kB URL HTTP/1.1 shop.safico5.com/wp-includes/js/wp-util.min.js?ver=5.4.10
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (1042)
Hash 8852ab48e7d14f035a27f3c15d31c054
eed53bd391b539796dfe3b5bc5849170ab77c987
6d7c73e67cbb5215d633ce9ad65f0c0377004621fce62982568024178ac4b589
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=5.4.10 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 06:25:58 GMT
Accept-Ranges: bytes
Content-Length: 1077
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.9
185.198.56.177200 OK 15 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.9
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
Hash eea94f6013d8a939c0b4ace7753afe6e
df8fa5affa60932e9aa1cfbda370c0c1bb3b380f
72ebfeb1ce24b152349b7a231f6fc29ff2a2b7a5ede91dcdb80d6b9de1779046
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.9 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:17 GMT
Accept-Ranges: bytes
Content-Length: 14627
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/karla/v23/qkB_XvYC6trAT7RQNNK2EG7SIwPWMNlCVytER0IPh7KX59Z0CnSKbGkv.woff2
216.58.207.227200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/karla/v23/qkB_XvYC6trAT7RQNNK2EG7SIwPWMNlCVytER0IPh7KX59Z0CnSKbGkv.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 21712, version 1.0\012- data
Hash 76e3377255ab63429783bbcaebbce708
c626af02b36481299a90249ead5f484f107991f3
2b5074b9993e266faff0c7be6f5c65cc79b6f5d55b62d130788861ab3a88c86c
GET /s/karla/v23/qkB_XvYC6trAT7RQNNK2EG7SIwPWMNlCVytER0IPh7KX59Z0CnSKbGkv.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shop.safico5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 00:41:50 GMT
expires: Wed, 31 Jan 2024 00:41:50 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:34:17 GMT
content-type: font/woff2
age: 472898
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/js/frontend.js?ver=1.0.6
185.198.56.177200 OK 2.7 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/js/frontend.js?ver=1.0.6
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
Hash e17cea952dc0485ec3d441276d1598dd
161363e72436fd69f532db5a60ac86639405a460
bca947113e7a705d7ffc4ff5cdeb4c60e2fd9f5a595af9272d07d29a4861d043
GET /wp-content/plugins/get-a-quote-button-for-woocommerce/assets/js/frontend.js?ver=1.0.6 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:03:49 GMT
Accept-Ranges: bytes
Content-Length: 2699
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/js/sweetalert2.all.min.js?ver=1.0.6
185.198.56.177200 OK 64 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/js/sweetalert2.all.min.js?ver=1.0.6
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Unicode text, UTF-8 text, with very long lines (39074)
Hash 5697967536c81cf139d6e2f36ca8e1c5
f37fdd90a32aa84ef4aee82e56fb798f2b238be0
1fb5bdf552db295a96ea4b5c90679159db62417fb69fe0b57792e57daf79cfd9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/get-a-quote-button-for-woocommerce/assets/js/sweetalert2.all.min.js?ver=1.0.6 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:03:49 GMT
Accept-Ranges: bytes
Content-Length: 63907
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-includes/js/underscore.min.js?ver=1.8.3
185.198.56.177200 OK 16 kB URL HTTP/1.1 shop.safico5.com/wp-includes/js/underscore.min.js?ver=1.8.3
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (16010)
Hash 203eeb8dd53e84fb53b7aeffb562d825
b4b4361a61ee78717bdcffe5c46ea79cdc3e04ae
6cd0d6897b3d4779f7d88ce72531f22fbf75851b195fb14e6f3f23d051b3d1e9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 06:25:58 GMT
Accept-Ranges: bytes
Content-Length: 16045
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 12:03:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.2.0
185.198.56.177200 OK 36 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (32004)
Hash 3a9c9706a7b52f750c71096411cc18bc
30fcae004682838e945414717bb854cba0e27483
322bf3797b194ae22aafa05a366471210116b26feeef7ea074752efff0b7f061
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 19:46:06 GMT
Accept-Ranges: bytes
Content-Length: 35722
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0
185.198.56.177200 OK 21 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (20378)
Hash 463cf6ebc00dd2045999aadbcb73a74a
52185ae4be6f23dc20aaa58b86c1f98db3f840d9
9be6923457d76debf4c512fac0a2173aaa94748868d26566515ce2a4156d083d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 19:46:06 GMT
Accept-Ranges: bytes
Content-Length: 20597
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/owl.carousel.min.js?ver=5.2.0
185.198.56.177200 OK 43 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/owl.carousel.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (32012)
Hash 6473747d818f47587036ccde48050d82
75560ff8e721a6344a927f369debcf80004c9d24
63c97e11ea143afafc4aa123fe04f28c16fc0aa86dac0e8653d3f8c81fb8d5c1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/owl.carousel.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 42854
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/photoswipe-ui-default.min.js?ver=5.2.0
185.198.56.177200 OK 9.8 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/photoswipe-ui-default.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type HTML document, ASCII text, with very long lines (9663)
Hash 65fe6ffafd6b9bead87a69ec185b1851
7cc4588e4d4f19610f1d7839e02db5417efbfd53
0f3985bd180518d18af54572f8d4550ae3b3a57a342cdd593da65fb9052da7b0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/photoswipe-ui-default.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 9774
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/photoswipe.min.js?ver=5.2.0
185.198.56.177200 OK 32 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/photoswipe.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (31568)
Hash bcdf33eac62d9b05818b4b0bcebd3c0d
0eff83b8a6b3de9c026feb4343340ad32dd9eb46
8d1839f75f49b5265a259c92a9910c995c6e6802de978c3b9f57c4cf76fde538
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/photoswipe.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 31669
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.magnific-popup.min.js?ver=5.2.0
185.198.56.177200 OK 21 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.magnific-popup.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (21014)
Hash be3333626c57af03599abcb59b325e09
3824067348f6485d6b07d3a43660804e3731b21a
ecbef0f33e8ccedd2c605816e052cfff778abcc0e30a80b874c097a5fddd24fc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/jquery.magnific-popup.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 21143
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/slick.min.js?ver=5.2.0
185.198.56.177200 OK 33 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/slick.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (32254)
Hash ebcbc22f8c948f222c19e6bde99a776d
c625977ba906660be3757d831d6466c9e24113df
8ac889108f5a29918a940026d4f198e2bc28bf8434b2127493bd78472f076e92
GET /wp-content/themes/basel/js/slick.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 33293
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.justifiedGallery.min.js?ver=5.2.0
185.198.56.177200 OK 10 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.justifiedGallery.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (10292)
Hash b845553890a6c0afd5c842fd9c8ff563
af6b3bd743cfc35848f7cf483b3503fdf95298f8
0e2946c95e45d540c2a8e56a80ca942b40d73da93eecac12a9df2997d7e4b627
GET /wp-content/themes/basel/js/jquery.justifiedGallery.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 10451
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.countdown.min.js?ver=5.2.0
185.198.56.177200 OK 3.8 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.countdown.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (3811)
Hash 91d933a246c4f0bb8ffacbed78809090
bd128d52a16cb5145e1fe3c3f74a866ce0c385fa
6de01bd50dbe13165a75ffed762f5b9d6908d07bdfeb1e0dfe0e00a569899b9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/jquery.countdown.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 3812
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/imagesloaded.pkgd.min.js?ver=5.2.0
185.198.56.177200 OK 6.9 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/imagesloaded.pkgd.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (6832)
Hash 511ef2f6ee750edc32bb5c8d5d324e7e
4bccbca87d32236ed7a6f37129cc1accf20d2a8f
37dbf4b6012d4e23cbc1cba50baa3572c93a5c371b9873fb5440cb84dfbf9902
GET /wp-content/themes/basel/js/imagesloaded.pkgd.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 6949
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.pjax.min.js?ver=5.2.0
185.198.56.177200 OK 8.2 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.pjax.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (8226)
Hash ca28300ba0cc1071dea2d4a9a51a0e91
49e0f0b44d78b2364439abb4bb4dfbb44ae650da
e0a05948b77f5f0143c4ff0a7b232fe92e1ad75a0c5ad9d1ea7051471ccd175c
GET /wp-content/themes/basel/js/jquery.pjax.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 8227
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/packery-mode.pkgd.min.js?ver=5.2.0
185.198.56.177200 OK 39 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/packery-mode.pkgd.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (30452)
Hash 1e765cacd65af337bc5e83922d198fb0
50b326aa650dab386b1711ac0ff75eaa89899f13
a42178e7633b94dd933b09013c2ee97ec1df686b40499b30ad864cece6d2bbd9
GET /wp-content/themes/basel/js/packery-mode.pkgd.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Thu, 21 Jun 2018 12:50:20 GMT
Accept-Ranges: bytes
Content-Length: 39335
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.autocomplete.min.js?ver=5.2.0
185.198.56.177200 OK 13 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.autocomplete.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (12783)
Hash 29a37cf65b136b355675c1b5ad8e1904
63e56dcf4f4827d3fef0f956950bf3b0faf12fbb
9048a345c3c7a31ab850a70a8cdf7c9e6dfba60ded8e5a27f1e4b50f679222a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/jquery.autocomplete.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 13 Mar 2018 13:57:32 GMT
Accept-Ranges: bytes
Content-Length: 13044
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/threesixty.min.js?ver=5.2.0
185.198.56.177200 OK 7.6 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/threesixty.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (7483)
Hash 69133807158adb645fe96d787eef4597
b3b2163d05d3fa84d3050d48458b34cbccac55b9
5c93f8dff4b0150637b082b470b67ca6147485186eb4edcf8486f0fae25d4ea1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/threesixty.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 7590
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/TweenMax.min.js?ver=5.2.0
185.198.56.177200 OK 109 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/TweenMax.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (65536), with no line terminators
Size 109 kB (108812 bytes)
Hash 3eb2644710619c4775d1579dff5554d0
56a654d0b6f3f8e28dbb7a09d5837de544db7b12
c11955839bf069ad99210f7748832c10690f107f7a3d3680bc9fad9ba0dc04f1
GET /wp-content/themes/basel/js/TweenMax.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 108812
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.nanoscroller.min.js?ver=5.2.0
185.198.56.177200 OK 10 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.nanoscroller.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (10166)
Hash 1dbbad4b0a18467ba6665aecf33b94f9
abf77460f75199e331c2abdcc2d216750d7de977
03915227c708496ef318b35837b79b4c4ebc270afa0402e20e9aff63e2ca8f26
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/jquery.nanoscroller.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 10167
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.parallax.min.js?ver=5.2.0
185.198.56.177200 OK 559 B URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.parallax.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (558)
Hash 1b1821804c55f95e993652998b4ab390
27275c70dfd8ee198a9491e234a4a099efe45b0c
03b1625f677108a5cfcd566aa415c6fd4fcd5725bf8acda096c17c353ff30751
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/jquery.parallax.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 559
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.panr.min.js?ver=5.2.0
185.198.56.177200 OK 1.3 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.panr.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (1331)
Hash 42c88f066e605f5c783f34b67d54c397
b047b64506c839e1d9778fe0c374d31ed325daa5
1750e4d5dc5242b0374e990878270389318f736cafd50975414bbb83000ff58d
GET /wp-content/themes/basel/js/jquery.panr.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 1332
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/vivus.min.js?ver=5.2.0
185.198.56.177200 OK 11 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/vivus.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (10993)
Hash 4ed9320807addb0a2a66496aa1a14744
d5bf6bf3e6c162d9755d9fd1310a815d05ccc243
c8ba883081228dba298f542e12035565d7c6f01ec66b31ffc1d309a9dfe7495e
GET /wp-content/themes/basel/js/vivus.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2016 13:43:04 GMT
Accept-Ranges: bytes
Content-Length: 11144
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/moment.min.js?ver=5.2.0
185.198.56.177200 OK 52 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/moment.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (32013)
Hash aeb7908241d9f6d5a45e504cc4f2ec15
32fdf6730be34538e09378ec6cc55229d9a70151
d618d4869738e0dc22360f0ec0cbb6433257843f24723fac240dda0906685238
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/moment.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2017 12:50:32 GMT
Accept-Ranges: bytes
Content-Length: 51465
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5307
Expires: Sun, 05 Feb 2023 13:31:56 GMT
Date: Sun, 05 Feb 2023 12:03:29 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5307
Expires: Sun, 05 Feb 2023 13:31:56 GMT
Date: Sun, 05 Feb 2023 12:03:29 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5307
Expires: Sun, 05 Feb 2023 13:31:56 GMT
Date: Sun, 05 Feb 2023 12:03:29 GMT
Connection: keep-alive
shop.safico5.com/wp-content/themes/basel/js/moment-timezone-with-data.min.js?ver=5.2.0
185.198.56.177200 OK 33 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/moment-timezone-with-data.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (32503)
Hash 50a20a49b17bf3aa8e26d3813e882a5a
09284ca9cfe2b8ebb789f891e1cd3cd6a53d70eb
d5b03db3568cf210879ef3ea048136335460caadc9536bd64c1ee4348a36fe24
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/moment-timezone-with-data.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2017 12:50:32 GMT
Accept-Ranges: bytes
Content-Length: 32666
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5307
Expires: Sun, 05 Feb 2023 13:31:56 GMT
Date: Sun, 05 Feb 2023 12:03:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WVfpilnwhnRXBhJkHBWjxxoP09f7SqlRk8CdWRWOubIIwe0CX89bUA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:09:58 GMT
age: 50011
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F685cff1e-52eb-4db3-b937-986385529f6d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F685cff1e-52eb-4db3-b937-986385529f6d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a118e823631b0566a87aaa72123af893
286a0ef82fe504a7721b98a726bd6ef28198393d
57cd7640cfaa81f2dd7deddefccfbf024064d92ce5cadafae27bfa9e9136dbcf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F685cff1e-52eb-4db3-b937-986385529f6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10109
x-amzn-requestid: 5fc8bfc5-459e-476a-b74e-51de6fe31cea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fjbUrHEiIAMFxSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d7a5b7-739df0b602e9d9001495a8a7;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 11:10:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -FXyVXIcXGusNAfcF7uEimmu2d1cLzlwMp37ooaVv0lpkN7X2Fi86A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:59:43 GMT
age: 29026
etag: "286a0ef82fe504a7721b98a726bd6ef28198393d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 251f1a5d671fb797fb98e9a71754c341
335425603d9eec146a3c03422dbca91134272e53
74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6202
x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bUFEJoAMFapg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:30:31 GMT
age: 1978
etag: "335425603d9eec146a3c03422dbca91134272e53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a032104cf4ccc6ea31f163ca16386487
a0573916c3d72f0554928963c0a74413fdcb3558
8ba7b6e9b3fa28f6fd27f5f006cedac10f50d7da6c109155a2476cf04f4df932
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8909
x-amzn-requestid: 29f57721-99ae-4927-b324-b0a40668e2f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqEPuIAMFqpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-156c25027894630b61e5770c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6-RtedWR4ubEBwe85bNcobzqb2Cy9aEUzyT3tlhJ95zD5SgiuS7coA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:18:03 GMT
age: 49526
etag: "a0573916c3d72f0554928963c0a74413fdcb3558"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:42:59 GMT
age: 30030
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
shop.safico5.com/wp-content/themes/basel/js/jquery.parallax-scroll.min.js?ver=5.2.0
185.198.56.177200 OK 3.1 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.parallax-scroll.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (3137), with no line terminators
Hash 00b2095a33ebf5f0fd248a89d6a814be
b4a7ab71a0547735a0239aa66e1e08316cda34c9
d95e6092e0a499d87dfc59b6daa43fc73be7a31549404ab2da9454a0ce5ab025
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/jquery.parallax-scroll.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Thu, 24 May 2018 12:50:56 GMT
Accept-Ranges: bytes
Content-Length: 3137
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/fastclick.min.js?ver=5.2.0
185.198.56.177200 OK 7.8 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/fastclick.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (7767)
Hash 6c754ebb16498dafcd60b23c2aee511e
94f93c68b74511b2729be83b3f3df9b3f4f76ad5
93c54cc6849599fb6f2243abe8334f86b8e84688f98005ac16842bf8ac0360eb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/fastclick.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 7768
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/device.min.js?ver=5.2.0
185.198.56.177200 OK 3.1 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/device.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (3061), with no line terminators
Hash 42d2a84f8934933796892821e3b90391
06aaac64bfbf121dc2bf9e28b6c404e3c52fd27f
4f164ac673a1beee85461fe53f89f12d69c2ed5a6adff3d4d69f762c6f766411
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/device.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 08 Oct 2018 15:51:20 GMT
Accept-Ranges: bytes
Content-Length: 3061
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:24:01 GMT
age: 2368
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
shop.safico5.com/wp-content/themes/basel/js/waypoints.min.js?ver=5.2.0
185.198.56.177200 OK 8.0 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/waypoints.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (7808)
Hash b72a7b8d3d65ebc954b5b3103fdff409
c0c0d473a9bc5a9739f8f44158027d34e31bd642
d271120b283f037391dcecfb7e65de5ac6d4feaf3a990ba2a4a2d5289a40333e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/waypoints.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 10 Jun 2019 15:59:34 GMT
Accept-Ranges: bytes
Content-Length: 8044
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/functions.min.js?ver=5.2.0
185.198.56.177200 OK 88 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/functions.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (32014)
Hash 8534bb20faf52afaafa827c374961e61
f6adf963f832222f0a68565939c5649efdc81f18
a6a2963c70cd51cfe867509a32d709596d726be69ce88fd00e4dfc33bb0f6a4b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/functions.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 24 Feb 2020 14:01:54 GMT
Accept-Ranges: bytes
Content-Length: 87514
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=4.2.0
185.198.56.177200 OK 14 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=4.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (13493), with no line terminators
Hash cad9fc743d3e4a8c5b49e1037563bcb3
9394d1f0fd4f7672813e3c98248037e2c8eda53f
0daae4531834043fe599e1d9d4f9dd9d145f5ebf70ec87f6b1689a970215fff7
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=4.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:02 GMT
Accept-Ranges: bytes
Content-Length: 13493
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-includes/js/wp-embed.min.js?ver=5.4.10
185.198.56.177200 OK 1.4 kB URL HTTP/1.1 shop.safico5.com/wp-includes/js/wp-embed.min.js?ver=5.4.10
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (1391)
Hash 905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991
GET /wp-includes/js/wp-embed.min.js?ver=5.4.10 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 06:25:58 GMT
Accept-Ranges: bytes
Content-Length: 1426
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2
185.198.56.177200 OK 76 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Web Open Font Format (Version 2), TrueType, length 75760, version 330.32636\012- data
Hash 832f6e62aaf3909d6b94c8a9c1e4dd51
4a06418cb56a66af5a1c0f59791469dea1dc87fa
8556fd48cf33ca3028e3fff4042979f224987ee317cc9032dd5bba996b363009
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.2.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 24 Sep 2019 01:57:22 GMT
Accept-Ranges: bytes
Content-Length: 75760
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: font/woff2
shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2
185.198.56.177200 OK 14 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Web Open Font Format (Version 2), TrueType, length 13564, version 330.32636\012- data
Hash e7d4bfa72a1f7d352fa6605501a3e2f2
afd94b571eff9da7d85490bdb4c9874419cd260d
d144631af733437b73fba8e784ab694a97fab80476e82325f7a58f6408b28850
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.2.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 24 Sep 2019 01:57:22 GMT
Accept-Ranges: bytes
Content-Length: 13564
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: font/woff2
shop.safico5.com/wp-content/themes/basel/fonts/Simple-Line-Icons.woff?v=5.2.0
185.198.56.177200 OK 53 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/fonts/Simple-Line-Icons.woff?v=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Web Open Font Format, TrueType, length 53444, version 2.0\012- data
Hash 0bbfc705e37a927ce2ae72b749b3154d
c7f8307972e263ccb2de346cfd4890ae3ad15c7e
72bbd904eec22882287e50b2f64987560c8646abc0b8e942366a272a4fe7cd39
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/fonts/Simple-Line-Icons.woff?v=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/uploads/2021/12/basel-dynamic-1640111120.css?ver=5.2.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:28 GMT
Accept-Ranges: bytes
Content-Length: 53444
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: font/woff
shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2
185.198.56.177200 OK 75 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Web Open Font Format (Version 2), TrueType, length 75368, version 330.32636\012- data
Hash 859c4002d9954718cac1ddea5555698f
2392ce297c92bcf2c7d5a4c461a582dadc8039c8
5054ab369966fea3657ac6af00c3bc47bdc9e7b5114e61d1764be06213ca9781
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.2.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Tue, 24 Sep 2019 01:57:22 GMT
Accept-Ranges: bytes
Content-Length: 75368
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: font/woff2
shop.safico5.com/wp-content/themes/basel/fonts/basel-font.woff?v=5.2.0
185.198.56.177200 OK 8.1 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/fonts/basel-font.woff?v=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Web Open Font Format, TrueType, length 8096, version 1.0\012- data
Hash 86b8298a7cbf60b3f3794c0420ba8ff1
7700471e85f1319e14e1024b62ad6778ba4a33bb
43ac0e033311820c6d1208caffb7672ee831e82fad2d4d333cf5b2ac43412478
GET /wp-content/themes/basel/fonts/basel-font.woff?v=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/uploads/2021/12/basel-dynamic-1640111120.css?ver=5.2.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Fri, 21 Feb 2020 20:55:44 GMT
Accept-Ranges: bytes
Content-Length: 8096
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: font/woff
shop.safico5.com/wp-content/uploads/2020/06/safilogo.png
185.198.56.177200 OK 17 kB URL HTTP/1.1 shop.safico5.com/wp-content/uploads/2020/06/safilogo.png
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type PNG image data, 487 x 174, 8-bit/color RGBA, non-interlaced\012- data
Hash bba985cc20682068e7ec6cda8535ab83
94cb3cd9892c4715b41ea0380ae745676df8958f
2d3972eaef6b7e31c8421059a3f242739d6f97addb9ba9674fb8e25617c755be
GET /wp-content/uploads/2020/06/safilogo.png HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Fri, 26 Jun 2020 21:35:04 GMT
Accept-Ranges: bytes
Content-Length: 17191
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
shop.safico5.com/wp-content/uploads/2020/06/logofooter.png
185.198.56.177200 OK 17 kB URL HTTP/1.1 shop.safico5.com/wp-content/uploads/2020/06/logofooter.png
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type PNG image data, 487 x 174, 8-bit/color RGBA, non-interlaced\012- data
Hash b1e60cd786c2774b74a8dc5819c60961
a16a9027cc5b7d5274ec660eb6a2e126394da70a
72a5d5ebb3271c5a040cbe75041e602485045ef9e3f933d2af41b476f482b827
GET /wp-content/uploads/2020/06/logofooter.png HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Last-Modified: Fri, 26 Jun 2020 23:40:27 GMT
Accept-Ranges: bytes
Content-Length: 17428
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
shop.safico5.com/wp-content/uploads/2020/06/favicon.png
185.198.56.177200 OK 2.6 kB URL HTTP/1.1 shop.safico5.com/wp-content/uploads/2020/06/favicon.png
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash c5349443307a790a0fe15d84dfcd1f2c
0ca1c4e8d47ecea9c97bc089298fa962d766198e
89db75097d82abb79852870a05f812d69e36e8afcd302215c3121361442cbed3
GET /wp-content/uploads/2020/06/favicon.png HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:19 GMT
Server: Apache
Last-Modified: Fri, 26 Jun 2020 18:11:04 GMT
Accept-Ranges: bytes
Content-Length: 2592
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
shop.safico5.com/?wc-ajax=get_refreshed_fragments
185.198.56.177200 OK 516 B URL HTTP/1.1 shop.safico5.com/?wc-ajax=get_refreshed_fragments
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type JSON data\012- , ASCII text, with very long lines (516), with no line terminators
Hash 9e5abe849f9ea504bd12d33b607b90ea
dd6779221f63ceb07a8b976135ae2c1ed47fffa9
abc63189bea868a24ab62b4f547f544b0b83a337d5c40a28482174472577dd0d
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://shop.safico5.com
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 12:03:18 GMT
Server: Apache
Access-Control-Allow-Origin: https://shop.safico5.com
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
X-Robots-Tag: noindex
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8