r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15875
Expires: Wed, 16 Nov 2022 08:57:43 GMT
Date: Wed, 16 Nov 2022 04:33:08 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fe5a11c3ca8a150aad830b739f24b58
898b730b1a66dd49c6f018333ba828410f63f347
2c3a2a8a3dfa29808bd550718025fdf355e4a88235cb50ae978abc00ee5fd23b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5912
Cache-Control: max-age=113791
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 04:33:08 GMT
Etag: "63736a6b-1d7"
Expires: Thu, 17 Nov 2022 12:09:39 GMT
Last-Modified: Tue, 15 Nov 2022 10:31:07 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 16 Nov 2022 03:44:43 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2905
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c88bc06741ab9fb81c2544acfcc34aa2
362cab19cff5aba27f472cc00071d5dfa38192e4
314ba27975f458e13917b2be91c9d5989a3e57c9e94b5a84dd52d0e21d27ae7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F"
Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15291
Expires: Wed, 16 Nov 2022 08:47:59 GMT
Date: Wed, 16 Nov 2022 04:33:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3X+zikLoQ8bENnWq2gAbDnXUxHgZLANc2xGDXZhJChAmWvH5fpF3igYkaewQsbdM+uTxhAFTi9E=
x-amz-request-id: JTYD4MG08PSAB2JP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 16 Nov 2022 04:14:33 GMT
age: 1115
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
alfariq-broker.com/
192.64.117.97301 Moved Permanently 707 B IP 192.64.117.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Wed, 16 Nov 2022 04:33:08 GMT
server: LiteSpeed
location: https://alfariq-broker.com/
x-turbo-charged-by: LiteSpeed
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 04:33:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 16 Nov 2022 04:25:01 GMT
cache-control: public,max-age=3600
age: 487
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash de57a2d376db743a3987c454889f1f21
0defab699bdb1b158026f93c2dd105bcd65f6764
b1c47a81ac45af6f756a8eca8ef14a82f0113ea8f09dae7a285a4491963ae2ff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1753
Cache-Control: max-age=104580
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 04:33:08 GMT
Etag: "637356af-1d7"
Expires: Thu, 17 Nov 2022 09:36:08 GMT
Last-Modified: Tue, 15 Nov 2022 09:06:55 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash de25aabb73f5967dd5cf0d5c125d6154
99743f67a66b06e068d96b495bf8750c544ba342
1b4a3d63b1ba4a9a8ff5146da52c95419ecbe94d00f44f725951062b25e8d868
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 16 Nov 2022 04:33:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 19:03:26 GMT
Expires: Mon, 21 Nov 2022 19:03:25 GMT
Etag: "99743f67a66b06e068d96b495bf8750c544ba342"
Cache-Control: max-age=483616,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76ad81bcebdf0b65-OSL
push.services.mozilla.com/
35.162.52.254101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.52.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2MT+xD3qOiExbWrYyeJZjw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IRbvuf3DbtWgdAqn0kOtWDRQmOI=
alfariq-broker.com/
192.64.117.97200 OK 26 kB IP 192.64.117.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 5a3738eee18818117a4359e564bb929c
9bad1ca79d0737796284c98a4ff8db7f4266f785
48d5e7bd3d225ea88718de73752efbeac6fb95926c6682c9335c5705888559de
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Wed, 16 Nov 2022 04:33:08 GMT
content-type: text/html
last-modified: Tue, 15 Nov 2022 19:18:55 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
content-length: 26470
date: Wed, 16 Nov 2022 04:33:08 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 15b877e3c04a13242f1e8d068e8cb9ed
f1a1a051ce4b6f820bb1e54d6e526a7a07e84117
dacb6aa3a7588b55169efba42082deb1576d69e60ea564826300b404087969e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 04:33:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 15b877e3c04a13242f1e8d068e8cb9ed
f1a1a051ce4b6f820bb1e54d6e526a7a07e84117
dacb6aa3a7588b55169efba42082deb1576d69e60ea564826300b404087969e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 04:33:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 15b877e3c04a13242f1e8d068e8cb9ed
f1a1a051ce4b6f820bb1e54d6e526a7a07e84117
dacb6aa3a7588b55169efba42082deb1576d69e60ea564826300b404087969e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 04:33:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 15b877e3c04a13242f1e8d068e8cb9ed
f1a1a051ce4b6f820bb1e54d6e526a7a07e84117
dacb6aa3a7588b55169efba42082deb1576d69e60ea564826300b404087969e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 04:33:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alfariq-broker.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1
192.64.117.97200 OK 740 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (13766)
Hash 5e7197ba3218d7f1cda3f3837d7b3833
7e53b6364093d5b66596d1ef2a65aab15ea79666
acb4189a4ccf38b2962b7c505dc8c6c1d8a0d0d6ce8b5c7b0e891e897b81527c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 740
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/uploads/elementor/css/post-26.css?ver=1649729663
192.64.117.97200 OK 2.3 kB URL HTTP/2 alfariq-broker.com/wp-content/uploads/elementor/css/post-26.css?ver=1649729663
IP 192.64.117.97:0
File type ASCII text, with very long lines (13627)
Hash dc580c2d23eb0c1c5c7f3f464b858c9f
828f67fcbac42d33e6354988454675f1b232c4c3
c641866cc33b87b8c7c7eab07ac6be4096a2e8035a81f5401da201f68107aa19
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-26.css?ver=1649729663 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:14:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2335
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1
192.64.117.97200 OK 4.0 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (26516)
Hash 32699c444a181cd316ee6cb56688144a
1366537c3db165e86947a2e963407283a1ea5b58
6b6910bbb4dacf40ae040c445dd7dd1871097c97a1520b6d5f528d7d88c072a4
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3987
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/uploads/elementor/css/post-2958.css?ver=1649735157
192.64.117.97200 OK 2.2 kB URL HTTP/2 alfariq-broker.com/wp-content/uploads/elementor/css/post-2958.css?ver=1649735157
IP 192.64.117.97:0
File type ASCII text, with very long lines (24621), with no line terminators
Hash 35092793dd4d172b379c89db640b0c17
f6fbaf840b72120bc77eac534e8e7a27e99d399c
a067e5c0bcd47a0a4982da71ecdb492343d8f1ed3236a7904a13f204b4307746
GET /wp-content/uploads/elementor/css/post-2958.css?ver=1649735157 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 03:45:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2198
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1
192.64.117.97200 OK 12 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (59158)
Hash 178f113615fea1b059cb42a9fcc9bb3d
a309d33fbab460ecc17467c18f99825c03ce039c
9fc6c8540b2078cfcec74cbd21ef6cedf7e2a4ec99d46a4868111eb601572859
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 12380
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
192.64.117.97200 OK 18 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (65497)
Hash 658aaed4541f4ab9e1cf3b910e8ff957
39a27939e4b628ac536113eabf1de908ddb45a95
33d83c4806116d2a94ac1e178f4cbc9c0651a9342ff2fe88dcedfdf9e8dabf0e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 18162
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
192.64.117.97200 OK 848 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 192.64.117.97:0
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 11:42:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 848
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
192.64.117.97200 OK 10 kB URL HTTP/2 alfariq-broker.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 192.64.117.97:0
File type ASCII text, with very long lines (39791)
Hash 3cc7696f4c8caa2b1c7acab0c2ae1515
2df12fe5d820c9c8129c9276e2bb94f9df860331
5ec052aed0f32fed1fc31c9be24e1cd03a7bcdede8ae098af3d1997fdfb51a6a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:15:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 10549
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/wp-call-button/assets/block/build/index.css?ver=a1dbfd3fcfcfb0740ca8c4771bbdc4c3
192.64.117.97200 OK 259 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/wp-call-button/assets/block/build/index.css?ver=a1dbfd3fcfcfb0740ca8c4771bbdc4c3
IP 192.64.117.97:0
File type ASCII text, with very long lines (769)
Hash bf9317792e4c00c762bd2cdb6a6f882a
c51e1787253180c83bcaf2cdfb232f61aa065bdc
729b7ff90b5bdce4c1866350bc8f23291d802b460eb97aa0d6018f4cff5b83e7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-call-button/assets/block/build/index.css?ver=a1dbfd3fcfcfb0740ca8c4771bbdc4c3 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 02 Aug 2022 11:49:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 259
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=5.9.5
192.64.117.97200 OK 5.0 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=5.9.5
IP 192.64.117.97:0
File type ASCII text, with very long lines (42449), with no line terminators
Hash 8ebc80362af5f10d781576a2c26b197a
a4b6c6da92a100cd823c3063f63d9830fd292773
031ab2b8edaa064a0d55a7ec2ef28b60734d4283af3425d4484763f0329b796c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=5.9.5 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 11:43:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 4985
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1
192.64.117.97200 OK 4.0 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (14869)
Hash 564f097cf1c91789ede5935f27f4f879
7d08e220324006fe221bbc176df2051be8fc1f31
2de1ed7e80ab790199f4b3785fd3ac2494e039a96e55c67e76ea88244dfc93e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 4035
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
192.64.117.97200 OK 30 kB URL HTTP/2 alfariq-broker.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 192.64.117.97:0
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:15:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 30273
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.64.117.97200 OK 4.0 kB URL HTTP/2 alfariq-broker.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.64.117.97:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 19:36:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3995
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9087
Expires: Wed, 16 Nov 2022 07:04:37 GMT
Date: Wed, 16 Nov 2022 04:33:10 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Roboto:400%7COpen+Sans:700%2C800%2C400%2C600
142.250.74.10200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400%7COpen+Sans:700%2C800%2C400%2C600
IP 142.250.74.10:0
Hash cf42ed738ff405d241bd337e16ed12dd
392accbf5736faa4c2f17c4964eb4a0f356023ff
f88bfc68efe27c28553b2575011ded236967de61530fb47ba4d69368b0d0f2ec
GET /css?family=Roboto:400%7COpen+Sans:700%2C800%2C400%2C600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 16 Nov 2022 04:33:09 GMT
date: Wed, 16 Nov 2022 04:33:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9087
Expires: Wed, 16 Nov 2022 07:04:37 GMT
Date: Wed, 16 Nov 2022 04:33:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9087
Expires: Wed, 16 Nov 2022 07:04:37 GMT
Date: Wed, 16 Nov 2022 04:33:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fb99a77-d99a-486f-b11a-d0f855262383.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fb99a77-d99a-486f-b11a-d0f855262383.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed2eb8cd1cffa83445bfc822fff3cd95
5d6f0e9bec236755d70ac6779e86684795e5c798
6b3e294fc0977cd09c1565d5a6396a63b2ad5f7005b9f1e136c33cedae49f436
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fb99a77-d99a-486f-b11a-d0f855262383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8236
x-amzn-requestid: 74104064-6d6f-44ef-ad9f-6550971f17f4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYEBET6oAMF_cQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406e6-269579cf1723940b16588c76;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: vy-8T_ncnJ9GcoWYpY3JStTpjIw0BWjuagrkuoThABdT9FSq3lfVlA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:54:51 GMT
etag: "5d6f0e9bec236755d70ac6779e86684795e5c798"
content-type: image/jpeg
age: 23899
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc50c38bf-fe3d-4eec-be11-1e782b0f0bbc.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc50c38bf-fe3d-4eec-be11-1e782b0f0bbc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edd6a84f848a83f4d1990f92b4807def
bc2bb7815b062941d51fde65574851db55be37dc
4d015538adfa6c61a5dfca3cbb224ae91ccbe1d82212e997e22f895a77387bed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc50c38bf-fe3d-4eec-be11-1e782b0f0bbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6629
x-amzn-requestid: ff03ae40-8d00-41ec-875f-b49b1b86151c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqY6CG9IoAMF8rA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63740840-7fdaa40f3ca9246045270665;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:44:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Wn2txfVMcQZgjTT0ny5o_j87O-eidXenBmzitM6zJec0i40Bs1zgGQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1949caaabae48a894fcd770a3e1384f6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 22:05:26 GMT
age: 23264
etag: "bc2bb7815b062941d51fde65574851db55be37dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F520b9f3d-222d-4840-bd88-673cedf9b5fc.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F520b9f3d-222d-4840-bd88-673cedf9b5fc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a698bf97cc6c0c464ed1a2b2adb1c1d3
a3977e8cde4b6ad7ef2e75a477e71b7bbbec21f0
64d52d8983b2bf30b9b1f260b8d6534664024b8dfda0da273307ee510ed33aad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F520b9f3d-222d-4840-bd88-673cedf9b5fc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4919
x-amzn-requestid: aae0d2da-e891-40a6-bd83-8942fc3ef0c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYFFEnxoAMFdCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406ed-6ff1cc593aa1c934659030db;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: EoSIjUgouoxAtnpWMBPNTjLfmm_Anv7R5mYNdb5Ik9RrgxJg_nZ1rQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:48:37 GMT
age: 24273
etag: "a3977e8cde4b6ad7ef2e75a477e71b7bbbec21f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98802857df59f8eacd9211811cc59ae6
87e277a627c1085cad5c6e38bdd5100aa0a9ecee
102e73f690a972da6d3ab609ffab5f29884185d85c4230a19ec74d74c7320cf1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8235
x-amzn-requestid: e8a91ec0-fa93-45b6-8dc8-a405c00242fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqY4_HANoAMFSvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63740839-3ebbd38b0e3e774923ad019e;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:44:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QoxGYkibw1jcAuQl98jD4TlKooUlL6ojdOVzQ7khiF0pMwY4_0IO9Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:48:37 GMT
age: 24273
etag: "87e277a627c1085cad5c6e38bdd5100aa0a9ecee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bcd9120-f81d-4ec1-9b84-ae23f33b9b8d.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bcd9120-f81d-4ec1-9b84-ae23f33b9b8d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c774a9a33f0c86087fe36fe18cf02db8
d81bf6504b30d50cf9cb14f8efca8e961f422a57
80f2913428758b1250218865a3e6697881ed3ed626f702c94fd0a5c7f354a2b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bcd9120-f81d-4ec1-9b84-ae23f33b9b8d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8981
x-amzn-requestid: 4945a047-3048-4dfb-aba5-6cde2b52b240
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYEAG7roAMF30Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406e6-6928cd8c1439aac80444cd7b;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ls987SlzVbSWiZwE4ahKBdQ_vJknoy88LkGHnEYfie4M1l584VbB_w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:54:49 GMT
etag: "d81bf6504b30d50cf9cb14f8efca8e961f422a57"
content-type: image/jpeg
age: 23901
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5
142.250.74.10200 OK 13 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5
IP 142.250.74.10:0
Hash 197829437443da6712660c47e831190f
bfce7ec6c63a73d205c7f5e6fb611188ffa6aacc
9adb64700530ddf727c6c4da459ef710ab561d28c02846977c2ea0a965cf3689
GET /css?family=Open+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 16 Nov 2022 04:33:09 GMT
date: Wed, 16 Nov 2022 04:33:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
192.64.117.97200 OK 3.6 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 192.64.117.97:0
File type ASCII text, with very long lines (19233)
Hash af3bdf44d09914e8adb51fec560d8816
84bb225e096bab405868dd504e62133ba75cf1c1
4325dab21d3eb9efb8e285a0926be743f27e46446ccf5f9be65bb4b60c024152
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3629
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/uploads/elementor/css/post-4327.css?ver=1649729663
192.64.117.97200 OK 351 B URL HTTP/2 alfariq-broker.com/wp-content/uploads/elementor/css/post-4327.css?ver=1649729663
IP 192.64.117.97:0
File type ASCII text, with very long lines (1098), with no line terminators
Hash cd16240843dfb976c9da5c89776cfe13
3ac3efa0ee35e99545aaf048b855eb8d2834c5b1
1eb70f9b23c564dcb2d46a8f9c17885a8c3079e4db4ad2f103af34b327f95e0b
GET /wp-content/uploads/elementor/css/post-4327.css?ver=1649729663 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:14:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 351
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.4
192.64.117.97200 OK 12 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.4
IP 192.64.117.97:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b56454016892c865bde2727eeca1d036
3c2623d4e5ceec9b89a46c46bc1bb651f45ac9d2
f6d10f3d1ca2bc8e9b2c3d2bab875085c46abf18ccac1a5642f410f10c00207d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.4 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Mon, 07 Nov 2022 14:09:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 11547
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.8
192.64.117.97200 OK 12 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.8
IP 192.64.117.97:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash df70f7a32d21960b7b2094e37a7dcc32
8b5447ce61629db51c749e1ac79e4c2a624eaee2
9b37ee7506827ca20e16f5b9a7b0fcca1309deb83f23b65c036d15d29043d202
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.8 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Sat, 20 Mar 2021 23:47:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 12161
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/uploads/elementor/css/global.css?ver=1649730479
192.64.117.97200 OK 6.0 kB URL HTTP/2 alfariq-broker.com/wp-content/uploads/elementor/css/global.css?ver=1649730479
IP 192.64.117.97:0
File type ASCII text, with very long lines (60547)
Hash 3c8c5eb09a62bf292791222b86e29a8c
696ad534a70dc0d61436323e5e84b31fc7902ef1
c6e9a3eb736c32b5c50be80ea91ae51d426eb98c210d54c4b8037eea043dc573
GET /wp-content/uploads/elementor/css/global.css?ver=1649730479 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:27:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 5964
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/css/bootstrap.min.css?ver=1.1.9
192.64.117.97200 OK 19 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/css/bootstrap.min.css?ver=1.1.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (65325)
Hash 470bcd9fa4c668677c793a8a5bef2833
201452d2217df2133b31b5124b50f4ad5458e7d4
382730f80001a105bca8c05571f0fd299a3c236e711603740613d03279c905ac
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/css/bootstrap.min.css?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 18586
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/style.min.css?ver=1
192.64.117.97200 OK 415 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/style.min.css?ver=1
IP 192.64.117.97:0
File type ASCII text, with very long lines (1716), with no line terminators
Hash e5c1dc94e12771f2d61a1dcff2fab336
a5bda886cbec67f9370c51b7a656c345ea6543e1
34c5339c3dec7a7579cb7d97de70a038b60c4d5a5f7a3e3108ea278967981f4b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/style.min.css?ver=1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Mon, 11 Apr 2022 21:43:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 415
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/uploads/elementor/css/post-7.css?ver=1649730480
192.64.117.97200 OK 5.2 kB URL HTTP/2 alfariq-broker.com/wp-content/uploads/elementor/css/post-7.css?ver=1649730480
IP 192.64.117.97:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 00877671d8e18ac2a330d0fcd5f504f8
608b2539269b2e2b991e6ebbed085cf4407bdb49
2403221bac8879c4ed5c8e10a56004678e1f05392ddb9262de9794b4abe5b577
GET /wp-content/uploads/elementor/css/post-7.css?ver=1649730480 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:28:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 5231
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/css/icon-font.css?ver=1.1.9
192.64.117.97200 OK 3.1 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/css/icon-font.css?ver=1.1.9
IP 192.64.117.97:0
Hash 58e92beca480bf890de443c171a5fed8
bf16846fd344c8622528a9d82968979305ab075e
29300778096394aa217806852734c732795c6c618b3febc80f81309596f31074
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/css/icon-font.css?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3102
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/css/owl.carousel.min.css?ver=1.1.9
192.64.117.97200 OK 915 B URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/css/owl.carousel.min.css?ver=1.1.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (3184)
Hash 6a92a9ec6c4f2b4d1e1528d0a6a33d88
5af68f48530fdb2bac19b2cd0eb3ebe183f90f47
d0673931f5a3f471ea23b2ed4816304b70ed9008c5382ae2954bae941a34d252
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/css/owl.carousel.min.css?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 915
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
192.64.117.97200 OK 6.7 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 192.64.117.97:0
File type ASCII text, with very long lines (30837)
Hash 5dbbe85d6a3308dceb97d91b740b0f11
3f70abf9963371962665167f98ba52365481496d
751d4fdd16bd33cc9c93bcaadcd316922ca9bbd74cb6a9e1705c8bef4330dabf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 6657
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/css/owl.theme.default.min.css?ver=1.1.9
192.64.117.97200 OK 375 B URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/css/owl.theme.default.min.css?ver=1.1.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (846)
Hash efa70e65806085ba368ee8b5c605f14e
dce9bd99bef13484807ad1f738fe4dabcb5f5538
9532724b2017ae923698c648666c256804e7756c046fb887380c8fbdda7933be
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/css/owl.theme.default.min.css?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 375
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/css/OverlayScrollbars.min.css?ver=1.1.9
192.64.117.97200 OK 4.2 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/css/OverlayScrollbars.min.css?ver=1.1.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (19129)
Hash f7e43c3e7ad1390225d55b72e6197c36
fea277daea179f98066e076f1b1197c558615dfc
68110e3c2d253b02f3aa4b8b6ba5d65c51d8f976bf126752221afe58fe43c779
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/css/OverlayScrollbars.min.css?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 4198
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/css/master.css?ver=1.1.9
192.64.117.97200 OK 12 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/css/master.css?ver=1.1.9
IP 192.64.117.97:0
Hash 154f1cd2cb71647a64e2cebfa7e55e85
b9229923a32e81bf797870501311877974cde38c
f2bfa5b02705166dc8e3f1c1d2e8c6437fac57c331cebdb535cfbb8552485ef5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/css/master.css?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 12463
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/css/gutenberg-custom.css?ver=1.1.9
192.64.117.97200 OK 4.6 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/css/gutenberg-custom.css?ver=1.1.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (432)
Hash 89310fdd356ee143ec6e4602a0c58eea
488a5049007fcdb3a19819146211adf6f207072b
1d082bd75055ae9c71233f3b014f390a18ca39e926709abc3bfd7442194d37ff
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/css/gutenberg-custom.css?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 4648
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/css/blog.css?ver=1.1.9
192.64.117.97200 OK 4.6 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/css/blog.css?ver=1.1.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (306)
Hash 428881df1d2254ab8def7b5ef6affd33
6960f89ca4487cdc6d6eeabea87cd7e7f66b86ea
4c7cf31520b62ed812e04d6a336500bf56d16add90ad8a62e7532773d5c6f6c5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/css/blog.css?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 4643
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/css/magnific-popup.css?ver=1.1.9
192.64.117.97200 OK 1.9 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/css/magnific-popup.css?ver=1.1.9
IP 192.64.117.97:0
Hash 44e40ec1595463249e1789d6de2af88c
fd67776859d7cf31de33858fbc8ab8c97a0e11cb
3a26d4b1e7253fcc1dbdb1af4b9d3d9a91513c29230f95e1bbcf1577d2dd0491
GET /wp-content/themes/instive/assets/css/magnific-popup.css?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1906
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/css/woocommerce.css?ver=1.1.9
192.64.117.97200 OK 3.0 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/css/woocommerce.css?ver=1.1.9
IP 192.64.117.97:0
Hash 85f9d95b59786150b83476b7a56e47ca
6ad4f5837bafd3ee3a696b92f34bd3064fe0e5a4
6b597aa4beb4a9ce31300973e44fef666f8e272cdcec00078fe6dc5d068590ab
GET /wp-content/themes/instive/assets/css/woocommerce.css?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2997
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.4
192.64.117.97200 OK 2.9 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.4
IP 192.64.117.97:0
File type ASCII text, with very long lines (30283), with no line terminators
Hash 1119301a85ab323270d853e94a9b2f2f
3bd61b9dd43e2e0166c4036273b4b02d50d3fec7
8cbeb42d6bac404c391197cf1f219086c8501143db7e4cfde22919d6124b3fc3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.4 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Mon, 07 Nov 2022 14:09:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2851
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
192.64.117.97200 OK 286 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 192.64.117.97:0
File type ASCII text, with very long lines (483)
Hash 8828fa3c5bdcfa66615714a2b8c9d807
4f556d0b005ac7754af607418df445f8cf98e8b1
16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 286
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
192.64.117.97200 OK 12 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 192.64.117.97:0
File type ASCII text, with very long lines (57726)
Hash f463afd8661ddc733305df1f0cbdaff2
77262f0209e75e340eb7014aba9cd8d69966032f
c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 12133
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
192.64.117.97200 OK 283 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 192.64.117.97:0
File type ASCII text, with very long lines (491)
Hash 453a93dc816be89f942ebb253ff199fb
01563d6019803e3ff2a94c5397e7e771ee6f440d
36beebcd3778e04c8973faa581d07c7e7dc0bac2a77f637379e7d110383ab5d7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 283
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/sitepress-multilingual-cms/res/flags/en.png
192.64.117.97200 OK 600 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/sitepress-multilingual-cms/res/flags/en.png
IP 192.64.117.97:0
File type PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 2878f64a0217a154e531853f6a822c65
ac7a53e9f53b9de8a344c38222e217d50d559b83
3f47c75fa68e49b1cdca50c61e9cd6603b57c521e5e6809df59a4a15e291a4ef
GET /wp-content/plugins/sitepress-multilingual-cms/res/flags/en.png HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000,public
expires: Thu, 16 Mar 2023 04:33:09 GMT
content-type: image/png
last-modified: Mon, 11 Apr 2022 21:43:21 GMT
accept-ranges: bytes
content-length: 600
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/uploads/2020/05/logo33.png
192.64.117.97200 OK 3.8 kB URL HTTP/2 alfariq-broker.com/wp-content/uploads/2020/05/logo33.png
IP 192.64.117.97:0
File type PNG image data, 204 x 92, 8-bit colormap, non-interlaced\012- data
Hash ab3690089ceab4024cc7366c55ebcd61
93e4ad02b33b00232560319085344fbee3752ea6
e602aa71dd8b1721859c39ea67db5ad07b47e020e6777ee447490def9d66d5ea
GET /wp-content/uploads/2020/05/logo33.png HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000,public
expires: Thu, 16 Mar 2023 04:33:09 GMT
content-type: image/png
last-modified: Sat, 10 Apr 2021 05:33:39 GMT
accept-ranges: bytes
content-length: 3752
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/uploads/flags/ae.png
192.64.117.97200 OK 197 B URL HTTP/2 alfariq-broker.com/wp-content/uploads/flags/ae.png
IP 192.64.117.97:0
File type PNG image data, 18 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash fbfa4141341c8e7eb2c37c12f7c18e81
fc34eb033768979d5d0d1001a6740e6cd3e4ccfd
d6c4033223d6a3663ce8ee808f4842fb60ff688d27bcd3b1fbf36ba34a9df465
GET /wp-content/uploads/flags/ae.png HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000,public
expires: Thu, 16 Mar 2023 04:33:09 GMT
content-type: image/png
last-modified: Sun, 28 Mar 2021 08:15:20 GMT
accept-ranges: bytes
content-length: 197
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/uploads/elementor/css/post-4578.css?ver=1649730480
192.64.117.97200 OK 2.3 kB URL HTTP/2 alfariq-broker.com/wp-content/uploads/elementor/css/post-4578.css?ver=1649730480
IP 192.64.117.97:0
File type ASCII text, with very long lines (16367), with CRLF line terminators
Hash 787f9620f7b11b09dcc3f028afee9bbf
acb8e2188fadd63a70cb9446b2c4e3ee96df387d
401f4698436cd4442dad9dbb1fadbdb2dd5f268f1c6feb5934f613a736486e8d
GET /wp-content/uploads/elementor/css/post-4578.css?ver=1649730480 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:28:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2282
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/metform/public/assets/css/metform-ui.css?ver=3.0.1
192.64.117.97200 OK 14 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/metform/public/assets/css/metform-ui.css?ver=3.0.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 41f751fe04335a05179f76f5bfc46866
0ba8e8faa706866d3b88115376b10fb4804d7beb
829ff20438af537a3c78e5604394132496ed07bb03965c08810ef23011b3dd40
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/metform/public/assets/css/metform-ui.css?ver=3.0.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Thu, 27 Oct 2022 23:51:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 14449
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.min.js?ver=1
192.64.117.97200 OK 217 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.min.js?ver=1
IP 192.64.117.97:0
File type ASCII text, with very long lines (409), with no line terminators
Hash e451d4cc99706f454c07f58e4285f792
4a96a4f1009a51bdbb5fbd89c9776875049d2dcf
f5867aabcd9b82db2c5ca61e9fc1b3082647df0747fe288c59bace29031dce8b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.min.js?ver=1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Mon, 11 Apr 2022 21:43:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 217
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
192.64.117.97200 OK 2.4 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (10019)
Hash d2db71c82a8f672aea59a3e050cd8cd7
af626566f94b3164e4310288cfb142431e8349a6
bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2442
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/metform/public/assets/css/style.css?ver=3.0.1
192.64.117.97200 OK 4.3 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/metform/public/assets/css/style.css?ver=3.0.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (24340), with no line terminators
Hash 824fa4dc897833b169815b660214d592
147ae793a833e3c494fd5fab96d59788bb6d5c86
ba6e5b81837cdfdf15fe953f6d121c0b8937413b0cb973f2b3fb118dcc6c2c6f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/metform/public/assets/css/style.css?ver=3.0.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Thu, 27 Oct 2022 23:51:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 4309
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/css/icon-font.css?ver=5.9.0
192.64.117.97200 OK 3.1 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/css/icon-font.css?ver=5.9.0
IP 192.64.117.97:0
Hash 58e92beca480bf890de443c171a5fed8
bf16846fd344c8622528a9d82968979305ab075e
29300778096394aa217806852734c732795c6c618b3febc80f81309596f31074
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/css/icon-font.css?ver=5.9.0 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3102
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
192.64.117.97200 OK 2.8 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 192.64.117.97:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash 4317b1c024df372435f6482deadddeb3
5c8824a17e40a44ea8fc51568b98bdb1e2e7fab5
3798fb16289ba55459fb6d3b2efa915e3c019c5942759abb7bd19a0ef622b85d
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 11:42:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2817
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
192.64.117.97200 OK 3.7 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 192.64.117.97:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash dc6411bfa6891b75944f0074c945752d
03c1a8b686c287068c61ab90f58d905496d65085
96abeabc9cc7b4c2b7d46579f2827c67ccd02fbaef0343ae052f71accd381b0d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 11:42:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3706
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/wp-whatsapp/assets/dist/js/njt-whatsapp.js?ver=3.2.1
192.64.117.97200 OK 11 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/wp-whatsapp/assets/dist/js/njt-whatsapp.js?ver=3.2.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (32692), with no line terminators
Hash 42dff1fea0bebba0891bf3574e1d28f7
b4334f8bb7f7ca252ec28fc0fa4b032034b29ab4
0cf0e5349caa8b7d7d374a399058dac955637f4b985ba8d6387148f17e1c70ea
GET /wp-content/plugins/wp-whatsapp/assets/dist/js/njt-whatsapp.js?ver=3.2.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 11:43:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 11037
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.4
192.64.117.97200 OK 40 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.4
IP 192.64.117.97:0
File type ASCII text, with no line terminators
Hash 94d041d462db321cdb888066586f2068
717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5
GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.4 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Nov 2022 14:09:44 GMT
accept-ranges: bytes
content-length: 40
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/js/Popper.js?ver=1.1.9
192.64.117.97200 OK 7.7 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/js/Popper.js?ver=1.1.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (19063)
Hash 4a3e6822a428b7400792806008b9c64c
8fcd50b687301b1b3dcec3e1d69fbfa6ee34a202
d983f8a6c3e37ff2d952e168b792673bcfd6b5ca1f4bd787a76a2e75e28c6160
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/js/Popper.js?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
content-length: 7740
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.2.1
192.64.117.97200 OK 389 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.2.1
IP 192.64.117.97:0
Hash 86a4a593c78b02630354590bddc0b3a8
2b1e58d7ae623cd28ec0505eea87cb5b8430daa0
2e872e7573b1a2633ab694b804a68aa323dcd4382248d5cbf174b0834363e6e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.2.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 11:43:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 389
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/js/slick.min.js?ver=1.1.9
192.64.117.97200 OK 10 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/js/slick.min.js?ver=1.1.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (42862)
Hash 09ed72c756aef05979d1c10d176eeb7a
1f3c35043f1aae481a38b40327fefb959ff63885
8638bee02f96fc15e4a3dae0ae220e31f020ee0b10c8eb5f829d9986b3fc53c4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/js/slick.min.js?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 10097
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/js/jquery.magnific-popup.min.js?ver=1.1.9
192.64.117.97200 OK 7.0 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/js/jquery.magnific-popup.min.js?ver=1.1.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (20087)
Hash f5e275bd34668dca4972a4cceccd7907
cba188e35681cd77cfcbd026aac16315747fab12
7874f3927ffd30d189723404d3fb9699e728955b083abeccc9a988890b4b2ede
GET /wp-content/themes/instive/assets/js/jquery.magnific-popup.min.js?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 7043
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/js/jquery.overlayScrollbars.min.js?ver=1.1.9
192.64.117.97200 OK 18 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/js/jquery.overlayScrollbars.min.js?ver=1.1.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (41718)
Hash 71b0efcb4efcbba37b2a58717757f3e8
eab0aee7d527a972d26ffbded372cce4ab900002
4640f10d644b3d1f1a27dbe2bb232b20d0ed3258249060ebfebcb5c3f49481d5
GET /wp-content/themes/instive/assets/js/jquery.overlayScrollbars.min.js?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 18089
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/js/owl.carousel.min.js?ver=1.1.9
192.64.117.97200 OK 11 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/js/owl.carousel.min.js?ver=1.1.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (31997)
Hash 3cb10c6c01ef15e7d2c5ef33c6f06ee5
561a0008fd649a946ff6cdba379547c998cb4582
2107b826f18f7f10f78a38641124da03dad389704816a86136488123a0f01f3d
GET /wp-content/themes/instive/assets/js/owl.carousel.min.js?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 11139
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/js/bootstrap.min.js?ver=1.1.9
192.64.117.97200 OK 12 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/js/bootstrap.min.js?ver=1.1.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (48664)
Hash 1920dcf98bdc1749f31cca2c8292382b
9ef9e32cd84342d91b482381406cc661a216fa10
f019376e66bddab543d57ee52002ff65d02dd74cdb32f437f3f4f1fa36fca994
GET /wp-content/themes/instive/assets/js/bootstrap.min.js?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 12542
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/metform/public/assets/js/htm.js?ver=3.0.1
192.64.117.97200 OK 640 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/metform/public/assets/js/htm.js?ver=3.0.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (1264), with no line terminators
Hash 7df9e8e50510ac287de2f0dc9b3ad1d8
6676939c3ff02243fddbf7bca8979fd22d5c81f4
ab7e3ed4caa9b4a308d5416498afd5356fabacf224dc6c1527d915e1d6d65e10
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/metform/public/assets/js/htm.js?ver=3.0.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 23:51:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 640
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
192.64.117.97200 OK 2.3 kB URL HTTP/2 alfariq-broker.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 192.64.117.97:0
File type ASCII text, with very long lines (6494), with no line terminators
Hash d36aa71a696fa330e746e020f51706c1
d562000b49ba8a70ae9a0f7cfff1b879fcf978b0
fb18eb2f616d3ccb9f8d8ce3d01f4ada3f0a269eab413b7bd7ad38ebfe8d781a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:15:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2330
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
192.64.117.97200 OK 7.9 kB URL HTTP/2 alfariq-broker.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 192.64.117.97:0
File type Unicode text, UTF-8 text, with very long lines (19111)
Hash cd82f9cc02e8a89d94adfbcee15db2d1
dc2b6633d6f7c667b79f7001068c2d10d0c1fcdb
4d7f7840535d1cb664102d975ed1f4cb4bfef081a6bbbf45a030567144910791
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:15:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
content-length: 7900
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1
192.64.117.97200 OK 4.4 kB URL HTTP/2 alfariq-broker.com/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (544)
Hash aa9744d9fe32fd18161207d01bb71f40
dee3c962e672a913c55918e5908f487625c9f74f
7d47906a6e0d92669a87c51a78468db9b6037c7238f5371ed50a4f1b784c2abe
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/react.min.js?ver=17.0.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:15:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 4393
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/js/script.js?ver=1.1.9
192.64.117.97200 OK 1.8 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/js/script.js?ver=1.1.9
IP 192.64.117.97:0
Hash 1138b2fbb2f5c00e50c142e7126b2e42
7daed250d574a2cab9bc9009dba12b14e8dc808f
ef36ed0d7d529a80d6ec1c4aef1148215a384352550f223f2aaf41361bc53c2f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/js/script.js?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1774
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
192.64.117.97200 OK 10 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 192.64.117.97:0
File type Unicode text, UTF-8 text, with very long lines (32907)
Hash 72fd7d7a61961996172a081cb3eed6cb
7f6d4dc14ef08153606c57d374fd50b685ba383d
757fe1355fa4c3eed3c286520c6af9d344ab9d15a78d8d54a17e7573f866b9be
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 10425
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
192.64.117.97200 OK 2.9 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 192.64.117.97:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash 869caa171b68cbec9fee5abbfb944ee8
f237e485e41f88b77384cfdb880f9d5a8f46eac8
25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2867
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
192.64.117.97200 OK 6.6 kB URL HTTP/2 alfariq-broker.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 192.64.117.97:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 4186472f300b89625cba0a93ba482c2c
19053e54644720b5dcfd71e24381347da7bc7cc9
a411ccc7d565d73b533d894b9972460cc5ea81743da6c2c7ee0877050ed8005d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:15:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 6599
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/instive-essential/modules/elements/chart/assets/js/chart.js?ver=5.9.5
192.64.117.97200 OK 46 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/instive-essential/modules/elements/chart/assets/js/chart.js?ver=5.9.5
IP 192.64.117.97:0
File type ASCII text, with very long lines (65336)
Hash 5bc8b06d57f85e6c59c8292d03fb6332
0033ea419e63d6afe8e4315e009c3cd6d51d1026
05058505e964e052afcdf4435ac59f4244b8a4a0053cb064b453b649595f0828
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/instive-essential/modules/elements/chart/assets/js/chart.js?ver=5.9.5 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:27:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 46033
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19
192.64.117.97200 OK 25 kB URL HTTP/2 alfariq-broker.com/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19
IP 192.64.117.97:0
File type ASCII text, with very long lines (4143)
Hash 2fe60afcfa49aea98040ed9feb0f1024
b2a5fe75f671857ce9318e4022fc809b62d6525e
2d0ce50728e63d74342cba3768376acf59eac4ef240dc6c706cdaacc5bd2afca
GET /wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:15:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 25209
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.4
192.64.117.97200 OK 47 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.4
IP 192.64.117.97:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash a68d2bc818f68303ed491f66c44c0a33
fb0b3d31f484a7ab3a62f80bdc90a1ff2ecde219
177b4bf4e00494f57893628d5a0814394fb2da58560ed2a5a8c98bba2eca60a7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.4 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: text/css
last-modified: Mon, 07 Nov 2022 14:09:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 47378
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.4
192.64.117.97200 OK 40 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.4
IP 192.64.117.97:0
File type ASCII text, with very long lines (45047)
Hash 4b29f739d2f0c324f8fe0292072a0215
e5ed795866581ac6ad512a55e4ece20a235920b5
351aa10967750cc94c97b8ee2c44cd129b24d80497a8a8e5065b417f18834ff2
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.4 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Nov 2022 14:09:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 40424
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-includes/js/dist/element.min.js?ver=fb9def72b4f6427aa79ce1c534a205cc
192.64.117.97200 OK 3.5 kB URL HTTP/2 alfariq-broker.com/wp-includes/js/dist/element.min.js?ver=fb9def72b4f6427aa79ce1c534a205cc
IP 192.64.117.97:0
File type ASCII text, with very long lines (9616)
Hash 6354116d2a8cab6ef96ddd7c64800a71
1b608c28ad178b7776d8ead6f41af065de97d1f8
3fc8aa15c119e2f585dcd677b89b37d22e9f47b42ffa40f43ac268827a2d02ac
GET /wp-includes/js/dist/element.min.js?ver=fb9def72b4f6427aa79ce1c534a205cc HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:15:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3513
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-includes/js/dist/escape-html.min.js?ver=ce66e0f9acf6802317399656243ffbc4
192.64.117.97200 OK 715 B URL HTTP/2 alfariq-broker.com/wp-includes/js/dist/escape-html.min.js?ver=ce66e0f9acf6802317399656243ffbc4
IP 192.64.117.97:0
File type ASCII text, with very long lines (1748)
Hash a799390dc6ecc17fb70b80d6ba1245b2
392467088173b5c6ea1bbd93910f5113829b8af1
c5e2aad65accb22345492944e9d3640d6494df7d2d01acb794e1ff9e294ba948
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/escape-html.min.js?ver=ce66e0f9acf6802317399656243ffbc4 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:15:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 715
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
192.64.117.97200 OK 2.0 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (4918)
Hash 918938b0ee6977d6506f2e0fa248bd66
292ba27818bec580f76945b53fee4ff6cddcb2c2
a1da723cfdb1f8ea57aa7278637d07a83f39ff410dfbba24d8205882a110444e
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2044
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.4
192.64.117.97200 OK 389 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.4
IP 192.64.117.97:0
File type ASCII text, with very long lines (810), with no line terminators
Hash bc80f83337ad9e96f9c5d9b3d0305b5d
464e35c91ecfa7e96e58cb7c9f523352758385ac
0b12bc106b406b2ecd33244ea0c1d17da81bbdb75874835d6ce5ef3a16fa8ad0
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.4 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Nov 2022 14:09:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 389
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.4
192.64.117.97200 OK 4.8 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.4
IP 192.64.117.97:0
File type ASCII text, with very long lines (17948), with no line terminators
Hash 915c8f059bb971c121814657dc9d78fa
464ee8c8c5f25d6e51558dba621150a17b58ff13
dd3c7c000e7acda27c95dc6f3980474e74ccd7fa384589474858ba435eb0d0e8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.4 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Nov 2022 14:09:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 4776
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
192.64.117.97200 OK 3.3 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 192.64.117.97:0
File type ASCII text, with very long lines (10544)
Hash 3821415a39954c48c7927e661467c6b8
dfe1116a0efc9898cb6caf094213880da83d6990
5f7f5b28f47c366a0bb70435dc3b2253278222c92429f013084f71fd7d29a32e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3268
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
192.64.117.97200 OK 12 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (40474)
Hash cf45d3e8044770ba8eabf3833e30fdbe
90f787b69fa2f83b87c28f3caa67985b04b333bd
c83321c916d9ca392150cf727108c0927ce9394be70e9b08920cff666f823fb4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 11702
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
192.64.117.97200 OK 1.0 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (2620), with no line terminators
Hash 906c4decdcd32482c1cf583b07925d30
30e726b9febb4b651544266df656a21251f0e8e3
53f86e9641d0e35772d6b54294cc6dd685fb9a376a1baad151da120fef609423
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1047
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/instive-essential/modules/sticky-content/assets/js/main.js?ver=1.0.2
192.64.117.97200 OK 1.1 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/instive-essential/modules/sticky-content/assets/js/main.js?ver=1.0.2
IP 192.64.117.97:0
Hash 5f674a8dfd0bbc05f67f57d5d2d4aedd
e45405169781c06d4861f1a24a296c2a82350ffd
0ea1050b0db07550c43a34271369466c341690aec1c5c7704ccfb60059e786f0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/instive-essential/modules/sticky-content/assets/js/main.js?ver=1.0.2 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:27:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1083
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/themes/instive/assets/js/elementor.js?ver=1.1.9
192.64.117.97200 OK 2.0 kB URL HTTP/2 alfariq-broker.com/wp-content/themes/instive/assets/js/elementor.js?ver=1.1.9
IP 192.64.117.97:0
Hash cde50fecee0f56f45d09b7a97ef97f4f
9ae163110302619afe6e8c4d6a106acfb0600544
8c5364b1c154668aabdc0df327422537964e588f879be4192ba78b03bfcefc30
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/instive/assets/js/elementor.js?ver=1.1.9 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:13:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2045
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1
192.64.117.97200 OK 12 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (43101)
Hash 94116a9b26a86d28b8c1c2ccae922606
5339882612be15ec3cd20523ae2da51d0ff4e40d
84773c6e6ac9ad090d2db5ba6251c17e2cfa635ead35b2ab4042ca7cbe378185
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 12548
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/instive-essential/modules/sticky-content/assets/js/jquery.sticky.js?ver=1.0.2
192.64.117.97200 OK 2.0 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/instive-essential/modules/sticky-content/assets/js/jquery.sticky.js?ver=1.0.2
IP 192.64.117.97:0
Hash c9fd4046939c9da2a8313c1a8ccf2af4
1b63322088e5f982ca6bfb2f98d263eb1e5b1114
c2e630da62adbfdf0339164e3c1f94d5471282a70282a57fd0ed6ea5fa92fc80
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/instive-essential/modules/sticky-content/assets/js/jquery.sticky.js?ver=1.0.2 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:27:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2004
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
192.64.117.97200 OK 4.5 kB URL HTTP/2 alfariq-broker.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP 192.64.117.97:0
File type ASCII text, with very long lines (15224)
Hash 3c05cdbb96f694e86b05c7a3e5c6703f
615a7094f3210830bd5e6f08f845c101be2eefeb
371bb131cc739b177f4c90f67535f020d0bbee092e2ff1bad6ac38e978da3092
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:15:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 4539
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.8
192.64.117.97200 OK 82 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.8
IP 192.64.117.97:0
File type ASCII text, with very long lines (64270)
Hash 35f6e759f762655168a00ef1d5d16941
9a84c6bdcf3d0b5dabba8e009a04e590048b9fa8
7b9e52cf4917f5ccad5b0581f69157d951d58203040e35e49e1cc02ec965bbaa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.8 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Sat, 20 Mar 2021 23:47:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 82518
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 04:33:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 04:33:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 04:33:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 04:33:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
216.58.207.195200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Hash 848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alfariq-broker.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 21:38:57 GMT
expires: Fri, 10 Nov 2023 21:38:57 GMT
cache-control: public, max-age=31536000
age: 456858
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
192.64.117.97200 OK 43 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 192.64.117.97:0
File type ASCII text, with very long lines (65280)
Hash 3980b212c9d3bed946e4b1acaefabe82
5bf2775aaec13ec1c1f08428c852bbda7241bc9e
1e332c3c1258d8a1ac281f0b3e5fd5dbe04b8955d38521b7b4b3e0b44a7fe794
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
content-length: 43135
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alfariq-broker.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 05:42:51 GMT
expires: Fri, 10 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 514224
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alfariq-broker.com/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1
192.64.117.97200 OK 38 kB URL HTTP/2 alfariq-broker.com/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1
IP 192.64.117.97:0
File type ASCII text, with very long lines (605)
Hash 549d75a09109163df711561377cbe6f0
9140825594734052bd460b8c8aa1a68eec83895d
78480c27443d4671773d9bfdf96076949f7f6556e4341cc2b593e5109ee44317
GET /wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 02:15:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 38095
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 04:33:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alfariq-broker.com/wp-content/uploads/2021/03/slider1.jpg
192.64.117.97200 OK 68 kB URL HTTP/2 alfariq-broker.com/wp-content/uploads/2021/03/slider1.jpg
IP 192.64.117.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1600x730, components 3\012- data
Hash 5f66e3d68dbf483d5805dbfbffa86a1d
fc962be4c7c5ce255a007d0ddaaa07b907842e9b
17703a542b3fafa440c31870a787f7541e497ea6191e2c47ba1168d05099de5a
GET /wp-content/uploads/2021/03/slider1.jpg HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000,public
expires: Thu, 16 Mar 2023 04:33:09 GMT
content-type: image/jpeg
last-modified: Wed, 07 Apr 2021 22:09:09 GMT
accept-ranges: bytes
content-length: 68107
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/metform/public/assets/js/app.js?ver=3.0.1
192.64.117.97200 OK 116 kB URL HTTP/2 alfariq-broker.com/wp-content/plugins/metform/public/assets/js/app.js?ver=3.0.1
IP 192.64.117.97:0
File type Unicode text, UTF-8 text, with very long lines (50844)
Size 116 kB (115951 bytes)
Hash 4ba585224b659fb53fa7bf1d1364993e
1e6fcca9f71a4bf11b0c73d40cb9d19b6afe12da
7e87c6bcedcd62dc111573bfa29643599d71cf2fe4f8016949428cb59aa0bc87
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/metform/public/assets/js/app.js?ver=3.0.1 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 23:51:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 115951
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik%3A500%2C400%2C700%2C900%7COpen+Sans%3A800%2C%2C400%2C700%2C900
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik%3A500%2C400%2C700%2C900%7COpen+Sans%3A800%2C%2C400%2C700%2C900
IP 142.250.74.10:0
GET /css?family=Rubik%3A500%2C400%2C700%2C900%7COpen+Sans%3A800%2C%2C400%2C700%2C900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 16 Nov 2022 04:33:09 GMT
date: Wed, 16 Nov 2022 04:33:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e
192.64.117.97200 OK 0 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e
IP 192.64.117.97:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://alfariq-broker.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Thu, 16 Mar 2023 04:33:15 GMT
content-type: font/woff
last-modified: Mon, 07 Nov 2022 14:09:44 GMT
accept-ranges: bytes
content-length: 454356
date: Wed, 16 Nov 2022 04:33:15 GMT
server: LiteSpeed
vary: Accept-Encoding
access-control-allow-origin: *
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
192.64.117.97200 OK 0 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 192.64.117.97:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://alfariq-broker.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Thu, 16 Mar 2023 04:33:15 GMT
content-type: font/woff2
last-modified: Sun, 13 Nov 2022 23:44:43 GMT
accept-ranges: bytes
content-length: 78196
date: Wed, 16 Nov 2022 04:33:15 GMT
server: LiteSpeed
vary: Accept-Encoding
access-control-allow-origin: *
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
alfariq-broker.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.8
192.64.117.97200 OK 0 B URL HTTP/2 alfariq-broker.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.8
IP 192.64.117.97:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.8 HTTP/1.1
Host: alfariq-broker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alfariq-broker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Thu, 16 Nov 2023 04:33:09 GMT
content-type: application/javascript
last-modified: Sat, 20 Mar 2021 23:47:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 45560
date: Wed, 16 Nov 2022 04:33:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2