Report - dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq

Report Overview

Submitted URL
dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
IP
139.162.142.66
ASN
#63949 Linode, LLC
Submitted
2022-11-11 11:49:15
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
94

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	52.43.253.52
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	54 kB	34.120.237.76
dfs.co.mw	unknown			44 kB	3.1 MB	139.162.142.66
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	2.4 kB	4.9 kB	142.250.74.3
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	559 B	746 B	142.250.74.10
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.4 kB	6.2 kB	23.36.77.32
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	682 B	1.6 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	1.9 kB	152 kB	216.58.207.195
demo.yolotheme.com	unknown	2015-11-24T16:13:47Z	2023-01-16T12:32:34Z	433 B	41 kB	172.67.214.229

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-11	medium	dfs.co.mw/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.11.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3	Phishing
2022-11-11	medium	dfs.co.mw/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/contact-form-plugin/css/form_style.css?ver=4.2.4	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/css/yolo-shortcode.css?ver=6.0.3	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/svg/puff.svg	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.css?ver=6.0.3	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.23	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.11.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.16.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/js/megamenu.min.js	Phishing
2022-11-11	medium	dfs.co.mw/wp-includes/js/wp-util.min.js?ver=6.0.3	Phishing
2022-11-11	medium	dfs.co.mw/wp-includes/js/underscore.min.js?ver=1.13.3	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.7.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-add-to-cart-variation.min.js	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-login.min.js	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.js	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/js/jquery.scrollbar.min.js	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/stickyHeader/sticky-custom.js	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/modernizr/modernizr.min.js	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/classie.js	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-main.min.js	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/js/bootstrap.min.js	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/lightGallery/js/lightgallery-all.min.js	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/dialogFx.js	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.ttf?v=2.0.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18	Phishing
2022-11-11	medium	dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.23	Phishing
2022-11-11	medium	dfs.co.mw/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (49)

	URL	Size	First Seen	Last Seen
	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	96 B	2023-03-07	2024-04-18
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-18 07:54:28 Times Seen3542 Hash d8772bfb2ec7dec5262a932766aa1669 8440292e305868d90f6f15a3ea6975a3b9774f43 c19c2ee1fc048012374a6d75c822daf9b7c0d4ebef7ab8df1ab22b229a00d012 Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	177 B	2023-03-11	2023-03-11
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:40:21 Last Seen2023-03-11 10:40:21 Times Seen1 Hash 15de26ca6832a3adb060214db6c1bcd4 9a10e6b0c69915fcdd208300bd3ee00e83e4b719 dda102587fde354cfafe6fdeadb9cccddd19cebb81158c788e8caff8e9927d15 Loading...

	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.js	15 kB	2023-03-07	2023-03-17
Pretty URL dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.js IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-03-17 12:53:42 Times Seen1 Hash 0628927ca01753d822c61996f229d81a 85a6391e640ffddfa99fb568b71ed011e703d577 21ef50f03cc11fc3d659a3908a06f9bbe0d5641033ff9902030b00cddecd7123 Loading...

	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/js/jquery.scrollbar.min.js	12 kB	2023-03-07	2023-03-17
Pretty URL dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/js/jquery.scrollbar.min.js IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-03-17 12:53:42 Times Seen1 Hash 5dbfd67d849efb5d84e15255c33bb284 8ea465dcc1a6661d839996b69cbe338b43a36021 b360a59c0a6ee7f060a226652ed0d0ee5396b48639d175d141bc87142e862cd8 Loading...

	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/stickyHeader/sticky-custom.js	9.0 kB	2023-03-07	2023-11-15
Pretty URL dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/stickyHeader/sticky-custom.js IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-11-15 09:24:23 Times Seen3 Hash 2a5ed3d29bde657703ba04d03976e75c 9849d3ad3a54cb97599da56125b93ca96b61f848 dae206a0a42ee6d0e48f68606b343f6154de7e49488e99845e9db3494856ca86 Loading...

	dfs.co.mw/wp-includes/js/wp-util.min.js?ver=6.0.3	1.3 kB	2023-03-07	2024-04-19
Pretty URL dfs.co.mw/wp-includes/js/wp-util.min.js?ver=6.0.3 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-04-19 10:16:10 Times Seen2725 Hash 8637362089372427b52fa10a43d8109c 6009bed674718329dce6055ab09fa95181162d81 b8e78b48acc08ce31457aff168d6fb2c814d51a8739a97693cdba585d60f5b35 Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	2.2 kB	2023-03-11	2023-03-11
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:40:21 Last Seen2023-03-11 10:42:15 Times Seen1 Hash 72d4389df87b98d54f96901f31586787 e4b42dba9227f5280c387e9469ecc86fed4e22e3 eb613d6bcc3b6f5c1de279629919951c06f7218e8c98d3e1f18183812cfe0bd1 Loading...

	dfs.co.mw/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3	19 kB	2023-03-07	2024-04-18
Pretty URL dfs.co.mw/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-18 13:32:29 Times Seen37992 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0	9.5 kB	2023-03-07	2024-04-18
Pretty URL dfs.co.mw/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-18 05:49:36 Times Seen2816 Hash 87c54edf7dad7dfdfde015f6eee45ff1 96ec1a06ea3093c47e1e2fc4444ada7f4456135d ef22199864042b8ceeee3729f3254c140df7217364045737ca3aadf8434fb3da Loading...

	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.7.0	14 kB	2023-03-07	2024-04-17
Pretty URL dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.7.0 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-17 20:52:43 Times Seen777 Hash a49a60e0186f705f693279985371da20 3419d4683879d6a48e051e38356602a2f5094511 3b55a00b09e9df011435d1f358401cf7153066bbfeafdc3384e5d8cdaf4e3262 Loading...

	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0	1.8 kB	2023-03-07	2024-04-19
Pretty URL dfs.co.mw/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-19 10:30:00 Times Seen21564 Hash d0a6d8547c66b0d7b0172466558d1208 ff93916519c7b9483251f609e4d29f38c30a66e3 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612 Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	96 B	2023-03-07	2024-04-19
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-04-19 10:16:07 Times Seen10591 Hash eb3a538fd2a39c22198e72c3b9f498a7 c966ebdbd2701a0980a85671126664f3892d4f1e ac233233e7bcaf806041b243578fab081dced8a045d9a82756410da9ea2382a1 Loading...

	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/classie.js	1.9 kB	2023-03-07	2024-04-17
Pretty URL dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/classie.js IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:54 Last Seen2024-04-17 07:23:03 Times Seen232 Hash 70fc7d9e10c107d1e20326108f5f5e1f 4b1c60cde2836e6af72e53f1ab730574c23a2a89 c4ea9310d72e37fe799d48ae3fc43dcb53e3db7c4ae13763d4c5b893f6ceb64b Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	83 B	2023-03-07	2023-03-17
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-03-17 12:53:42 Times Seen1 Hash 5214cdb6d36f05fe1da73f1c11593db5 0b610e810d0cb7ba26b840412c82cd671c108d24 2681bd768cb316c76726bcfea56f7eab396e3dbf60ee32cd83ad8436840d1ba4 Loading...

	dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0	15 kB	2023-03-07	2024-04-18
Pretty URL dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-18 07:54:28 Times Seen4411 Hash 157f18464a93eab7fb62a7f3e618ac2c f47727e80d529d6e4941fea32f2e8a8ee5008b8a 9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306 Loading...

	dfs.co.mw/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0	992 B	2023-03-07	2024-04-18
Pretty URL dfs.co.mw/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-04-18 21:17:08 Times Seen6792 Hash 787fe4f547a6cb7f4ce4934641085910 c2dee88d5bdfef214ce9c56f71a1df51cda0f328 654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79 Loading...

	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-login.min.js	5.6 kB	2023-03-07	2023-03-17
Pretty URL dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-login.min.js IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-03-17 12:53:42 Times Seen1 Hash 57cbe389b76b8405bf474f87f4e06f5b a3dbe62a835689fdcb2b5bff2ca8f3603b55f8f8 3cdd7e9dc99b9a4fc6a63ce6a2ebc1974ba60844654d0c06dd080bf93711ba94 Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	123 B	2023-03-07	2023-03-17
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-03-17 12:53:42 Times Seen1 Hash 84fe664b561872a75a6a2ac13c9dfd67 7099d910f3d8e1dcefbf424f15abf1e1766761ee 3096bc25e5c30b7a4224acd310921e30e8891e4325027795913550c6ce48c6eb Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	708 B	2023-03-07	2023-03-17
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-03-17 12:53:42 Times Seen1 Hash 8d9086114cb2c1d59581bf0edcc14ec8 f26860d9c5ee7edbcfd344f22a20fee2c3467ceb 1e340dc365bddae8cb54c0f5fecf1b5c1bf1fb218651d450a38721d804a5e8a7 Loading...

	dfs.co.mw/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL dfs.co.mw/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 10:16:10 Times Seen68491 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 11:41:29 Times Seen36957509 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	117 B	2023-03-07	2023-07-02
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-07-02 15:33:23 Times Seen5 Hash 5996ff1d50074c128cdc75ad920587ef 73b6a5feae70d332668a2ee81dbb234eb4f6d637 4512564489908d45e0df5d5dc333b61fc843c0f70f42b581a1e7c7700c9c8dde Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	532 B	2023-03-07	2023-03-17
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-03-17 12:53:42 Times Seen1 Hash 10edceb81011974df7abddb22131151b 538f14fae2b8d0f2361ed6cc5005507402ac5123 d631c161b2f50bd121a8c0055291e2ed8155346c45bf9640054ec0a220fec359 Loading...

	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/js/bootstrap.min.js	36 kB	2023-03-07	2024-04-16
Pretty URL dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/js/bootstrap.min.js IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:08 Last Seen2024-04-16 08:10:03 Times Seen947 Hash 834ca905c3251172e3c538cc0e043d77 313da686ebbe387064f2d1899c64ea562b81eb40 9a61a325508cd509f23cd31043b878957281f0a3603d8e7d40758c4a7c489d5a Loading...

	dfs.co.mw/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0	20 kB	2023-03-07	2024-04-18
Pretty URL dfs.co.mw/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:46 Last Seen2024-04-18 11:19:23 Times Seen2111 Hash 6ce179ee275d3bd58d0407b79d6366cd fb1393daafde2f3e85f31777543c3194a4ab11d0 1bd0097cd9d76a31566f4236a1aaa31cdd43c5857a9502679805fddbc7599a54 Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	1.5 kB	2023-03-11	2023-03-11
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:40:22 Last Seen2023-03-11 10:40:22 Times Seen1 Hash 2019f05851f6259e09f2614f3389859e 3f3f2e1cd1f5a8d59c77c64cdf9ad1fbb6127dfc 3fcdc28111771b88c83061f794b6c081ba6fe9fbbf7644f710ddf71884e6a936 Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	435 B	2023-03-07	2024-04-18
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:50 Last Seen2024-04-18 15:46:15 Times Seen2560 Hash 6d3fb02f90526fa664994848db387966 c81a52e84890c563a53c76fa62f38eb27175dccf 14e5b45ae7259f0ae964f80435cdf3869ec8b673e1b70ce3737d5f62131bb468 Loading...

	dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21	12 kB	2023-03-07	2024-04-14
Pretty URL dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-04-14 17:47:59 Times Seen2011 Hash 06a3b48689b0314af6c5da5b6ff27bfd a98a815d90cba195409d39bd74d31b1e6f9dbf95 4cd7a0d2c9eb03966a0dc60658526c20fa4e8ee4a0660da469f55edaf9a18c9f Loading...

	dfs.co.mw/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-18
Pretty URL dfs.co.mw/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-18 13:42:00 Times Seen30936 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0	3.0 kB	2023-03-07	2024-04-19
Pretty URL dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 10:16:10 Times Seen5915 Hash 8bc2109ef48cabf7a26b73d7c3536c5f 0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b 8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8 Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	2.3 kB	2023-03-07	2024-04-19
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:07 Last Seen2024-04-19 01:58:19 Times Seen7906 Hash f0bef95e258d5b84f82c5d4e29252176 eac5936c555c039bc38816d0916e13c0b364d797 a6c3ffec54ef5f2ca033b1fcdf84e1feac93437a3d8d4439667e9276ca2a9836 Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	135 B	2023-03-07	2024-04-19
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:50 Last Seen2024-04-19 11:30:24 Times Seen26554 Hash 3f82b089cf163a5417b3edb4687151f7 28436f92ab540ff08b12fdefddc7da67ba0f04f7 5ba9af6f12e99663f8f04285ef3d4ffd4cdbca820bccbc2dda9c40f805b5a850 Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	294 B	2023-03-07	2023-03-17
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-03-17 12:53:42 Times Seen1 Hash 131298568ec15c00b8673bd4d7da06d6 2e740c0931c6e08ecb13c03743974849f0bdebe2 ab68aaeb5b92506675e305a6ff29126cbd376568ca3b1e5b6eba6411cc37335f Loading...

	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0	2.9 kB	2023-03-07	2024-04-19
Pretty URL dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-19 10:30:00 Times Seen13949 Hash 0fd625c3991a4015814cffdc88e2fc82 d7c2f53e058210ff3ea773297641008bab71a5f3 2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1 Loading...

	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-add-to-cart-variation.min.js	637 B	2023-03-07	2023-08-24
Pretty URL dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-add-to-cart-variation.min.js IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-08-24 10:19:49 Times Seen3 Hash 54d2c857fe0c922011f8f372085cd50a 7f963ecc8802433ebd8d0c133b63912a1386af37 1276859e9ad5d187ebfd44de0fd1ed7eb48440b6a07596ea73132799947142bb Loading...

	dfs.co.mw/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1	22 kB	2023-03-07	2024-04-16
Pretty URL dfs.co.mw/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:28 Last Seen2024-04-16 08:13:03 Times Seen1041 Hash e7334b0f16895605c1234c69ad86fd4a 6da3372e63cabe2d3c6b0dfecc70770c2f69921b e89d7526092c671c0a01bd02152a595271fb97f87bbd3ba379b5e8b1071f6b2d Loading...

	dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418	244 B	2023-03-07	2023-03-17
Pretty URL dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-03-17 12:53:42 Times Seen1 Hash 95ed178aec728725e7c94ad06d355596 969eb09449f078767c003902c428c60425c245a2 99e8405d9bf657f2f1f5ebb6cfa362281a1df819bc5bb609e4cd565661d81892 Loading...

	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-main.min.js	46 kB	2023-03-07	2023-03-17
Pretty URL dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-main.min.js IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-03-17 12:53:42 Times Seen1 Hash a48cdd71ec01ecc81456b616825e0f31 7afd6e257af76490bba21b1f2d4aa9a033557674 e3e183b78ea1b81d76ff7c8c68f523b473ffe8be8d4d3ed315a055a39acbbbae Loading...

	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/modernizr/modernizr.min.js	10 kB	2023-03-07	2023-11-15
Pretty URL dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/modernizr/modernizr.min.js IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-11-15 09:24:23 Times Seen8 Hash 86abcc42427166cf93e85deac6774ce8 cedf99025081cec266e80e9a0c4ca249f8cb91fd 99836171667de70c269b42471ff6cf6efce2c61c9f8701c7466480a3a4abdd26 Loading...

	dfs.co.mw/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-18
Pretty URL dfs.co.mw/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-18 13:42:00 Times Seen15473 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/lightGallery/js/lightgallery-all.min.js	56 kB	2023-03-07	2024-04-04
Pretty URL dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/lightGallery/js/lightgallery-all.min.js IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:13:01 Last Seen2024-04-04 15:53:52 Times Seen136 Hash 168cf8b6c074ccd0eca0877a0cc1f647 7da9332d6c4d9a27954eeb58c343959d759a02ac 2fe1cd6d35eebeb6095c1cc9b4c61a45dc226898c80ec7e8c14e32e3bde361a3 Loading...

	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0	2.1 kB	2023-03-07	2024-04-19
Pretty URL dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-19 10:30:00 Times Seen22361 Hash b72c1cbb1530a011a27bd9800f26765a 27b825c5d8255f33b8427a059d4545ebd65e1746 a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8 Loading...

	dfs.co.mw/wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/js/megamenu.min.js	2.2 kB	2023-03-07	2023-11-15
Pretty URL dfs.co.mw/wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/js/megamenu.min.js IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-11-15 09:24:23 Times Seen6 Hash a59c690f33d38aa8c933ef3896cc4131 c4be0aa0dd09ddf097fb0f010e47c2795e610b84 66fd0d25b50c652218e7bc42dc7cc7276de577005c5d05e125af0c92e2e302fd Loading...

	dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18	129 kB	2023-03-07	2024-04-17
Pretty URL dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-04-17 01:18:02 Times Seen3353 Hash fb0dc63ed31433d3e16526f9e415d57e 3d4029b9f66e3f3c086eba04a02c140660a94acb 559f367b8631134334b4870bed568b019af144c801b574a252e337d4e837a05a Loading...

	dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.23	390 kB	2023-03-07	2024-04-11
Pretty URL dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.23 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:09 Last Seen2024-04-11 23:56:31 Times Seen1334 Hash dbe49ccea4cb977e99af1fc13b5df0c2 7cd5bc888582bf9c3b4c32190963aec3faf76eb4 20260a2b327f69ddfd34a15f57c728f790778989af847470220c5a5f0b929e27 Loading...

	dfs.co.mw/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6	22 kB	2023-03-07	2024-03-26
Pretty URL dfs.co.mw/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-03-26 16:04:57 Times Seen511 Hash d017e13d65b4c79d9a22a4ab9e6bcdf6 f766dedd77e0f910742439a102a23dbeade89299 2ef1fc50a9d78f044028f3ba7378c5bbec0188de74a5217491040f9ba435fca4 Loading...

	dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.11.0	25 kB	2023-03-07	2024-03-26
Pretty URL dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.11.0 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-03-26 16:04:57 Times Seen826 Hash 540be7a8259fbeaf4a732a344b267a7d ac51cc9bb5df51bd9568de8707b9b176f7d60254 a692f16cca3d27ae6772b85e05c46d117ca45678783d5ee010df7d67e8f12485 Loading...

	dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.16.0	4.6 kB	2023-03-07	2024-04-14
Pretty URL dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.16.0 IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:50 Last Seen2024-04-14 17:47:59 Times Seen1237 Hash 25d887c9c8997522cf1184e1171d605c 8f9fc958307ce831e7313d22d996908f578956e2 ccdea9568a2dafdc3b5dfafd7cc65ed784a235fe1a3c2da2e4183a9bb834c136 Loading...

	dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/dialogFx.js	2.7 kB	2023-03-07	2023-11-15
Pretty URL dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/dialogFx.js IP 139.162.142.66 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:56 Last Seen2023-11-15 09:24:23 Times Seen4 Hash 91f34b57db1f1f7d00b0adb825428d75 1cba28df324d544fcfdaf7a9f3e99e230d3a5fd3 62f62c4dbd71039076e9cbe391e191e10c3927256de89cd8a296d7104094929e Loading...

HTTP Transactions (106)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aabe410b4bbe4d8beb0e4561d3aa158e
e1788632902ddea62cdd9e7ad6009a75ffb69788
ad535e27b201e92670770b2b868c58f7c05633ec66490a41ef4592f062834c1f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F"
Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4585
Expires: Fri, 11 Nov 2022 13:05:28 GMT
Date: Fri, 11 Nov 2022 11:49:03 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a19a5555cc9ea92581b0cc504cb64345
01a86ce33d5eb33420ed76266360f32c62a96f31
9ebd48b4053bb4a7a27718670c44075b1f35d037be7fd16750fcbc3ffd68b18c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3853
Cache-Control: max-age=85577
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 11:49:03 GMT
Etag: "636cd2eb-1d7"
Expires: Sat, 12 Nov 2022 11:35:20 GMT
Last-Modified: Thu, 10 Nov 2022 10:31:07 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2b57492bf85f4ae6abbd1641b17dc9ab
008e71ec05d47bf025ca64e17da2ea1bd8e71111
17894427c471f7fa02ca274795dc55df1bfc99d7bd83f9ee36249394035110fd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17894427C471F7FA02CA274795DC55DF1BFC99D7BD83F9EE36249394035110FD"
Last-Modified: Wed, 09 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11341
Expires: Fri, 11 Nov 2022 14:58:04 GMT
Date: Fri, 11 Nov 2022 11:49:03 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 11 Nov 2022 11:43:52 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 311
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: DqOQl+Zmq/0owaUNb6mvUaMHIKRt8Mr0XeYi4jEdNjQ6VC+yAeZzoRu9RSRtRtcBwr4387vyZUk=
x-amz-request-id: 7JHZ9X3WE2K6YQ7D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 11 Nov 2022 10:49:47 GMT
age: 3556
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 11 Nov 2022 11:49:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 11 Nov 2022 11:24:58 GMT
cache-control: public,max-age=3600
age: 1445
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f7ff606fbc8634c858bbc04b69f55cf6
2441de2cba649239efd0dae7a878d7ef2245c0b4
95154e0dbb7e827b8f893cc141f986c29634ead618256470d753429aa65a0548

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5146
Cache-Control: max-age=168214
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 11:49:04 GMT
Etag: "636e10ac-1d7"
Expires: Sun, 13 Nov 2022 10:32:38 GMT
Last-Modified: Fri, 11 Nov 2022 09:06:52 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.43.253.52

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.253.52:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bXGc1bUd8h2pv7DY15gO3w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xhnILOsacgl5KgZ3BvuuCdTJ4m4=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17630
Expires: Fri, 11 Nov 2022 16:42:55 GMT
Date: Fri, 11 Nov 2022 11:49:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17630
Expires: Fri, 11 Nov 2022 16:42:55 GMT
Date: Fri, 11 Nov 2022 11:49:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17630
Expires: Fri, 11 Nov 2022 16:42:55 GMT
Date: Fri, 11 Nov 2022 11:49:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17630
Expires: Fri, 11 Nov 2022 16:42:55 GMT
Date: Fri, 11 Nov 2022 11:49:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17630
Expires: Fri, 11 Nov 2022 16:42:55 GMT
Date: Fri, 11 Nov 2022 11:49:05 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11316 bytes)
Hash
848af62ec10d0c297922f8600b6ad12d
4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d
a3b4eb6768259876819d7e6c7ac9e21c603d54f60bf70ed077cb820711e2ae74

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11316
x-amzn-requestid: 8456b25a-b87f-490d-86b3-fb217afea082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniESaIAMF3Qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-30ed3b0972418bae4700edc8;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y5MD-207EEHTD7hC8z0SzYCHA0JdOpYRrUhYDwo0cQ9ITGRbtQ-McA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 22:08:40 GMT
age: 49225
etag: "4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8403ff83-77b6-40bf-b7e1-ab07f5cd626b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10090 bytes)
Hash
93699f63986977bb5e3926c0d7aad77b
50f1d3a664c1c64ddf933568af39de89dfbc2703
d70ccf11660c242f9681dd84388f0873eb6a3aeba86e18deb5adc96f82c148b0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8403ff83-77b6-40bf-b7e1-ab07f5cd626b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10090
x-amzn-requestid: e5e65abe-b3d0-4be3-81ea-a2c469442917
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bDhWrFnnoAMF7zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63647c2a-5c27821c62adea08190aec27;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 02:42:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6WFclRNK6I8phmSlNSc4qtfkhxeSNDbZ1HciOlxbrcPM3JGawzl9kA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 00:23:54 GMT
age: 41111
etag: "50f1d3a664c1c64ddf933568af39de89dfbc2703"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8294 bytes)
Hash
88c9931a009690991e73c5b37a1aa085
815a4a1eb8c8e2a138fb3d65ba777b0c18fa15d0
74e70391889e4b46742033b1d5daccfec415ba2ee999e429d1013fd4a1ebc61a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8294
x-amzn-requestid: 5dab4522-fca9-4ada-ad6f-3305c9686315
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ4u3H7PoAMF02g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6e5e-756c150c40fe6fff3ae7a609;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FXIS1Gr_-3RUm6WPZCVcjaefD3hehHV-IwO-ieFeUqeoPAE7vajlsg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:46:51 GMT
etag: "815a4a1eb8c8e2a138fb3d65ba777b0c18fa15d0"
content-type: image/jpeg
age: 50534
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07c2ec1c-2741-4944-99ff-d0497739f903.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8026 bytes)
Hash
b2295ac0b0ab33d217e6b8d613d91d3b
8595da2878b9e046e39957c0c978d52ae0aa20f0
50ea4de9bdf7c922b9fe3d347efc7d4dc6f7ca92c5ed4ab2b057c8e27d67fff4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07c2ec1c-2741-4944-99ff-d0497739f903.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8026
x-amzn-requestid: 3ec11091-9520-4b60-880d-9172c4164acc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bUpvbHW0IAMFzZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636b5662-7bfcd0342ebb1f770d02402d;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 07:27:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: Y0Hbqvm5xBK1qVODG9BybN7Ju1o1X3QaHLJGhQhsecMP9fui9dQ_zQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 23:05:03 GMT
age: 45842
etag: "8595da2878b9e046e39957c0c978d52ae0aa20f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5583 bytes)
Hash
85c6f450b38f41a2fb924d6d9a9cbff8
691f59b65ca9fde4f59bbf96b37071e07351f190
c8f877488a2cf65f0d9829384fd4113847722a1b4df94b6b1d5788699689722c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5583
x-amzn-requestid: e844f42a-e87e-4e61-8c97-137c07c5ae28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeQ9Ho7IAMF5_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-62c44d2f7d23632e74895bd8;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uHlIN1IVGCFUVl5lx5pFSux0YncseT2HQjiwFDL9eaEaBa9CdnCl8g==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 04:18:29 GMT
age: 27036
etag: "691f59b65ca9fde4f59bbf96b37071e07351f190"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F667624bc-2936-43a3-a61d-c78d93882c08.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.2 kB (4201 bytes)
Hash
7b5823a9c71634acb47fa788ecab8ae6
89ab77412f6bc271a086af04570efe2c47fb5456
da82ec223e069b1899cb96dee5669734b8371aa65cf300e727471cd452df3463

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F667624bc-2936-43a3-a61d-c78d93882c08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4201
x-amzn-requestid: 789865bc-5471-4ac4-b4e5-985302564f29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bXPXfEtAoAMFnPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c5f62-37305952485d36d13d55be85;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 02:18:10 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JBZlmXGnfcJcLefOJmEfyGZsdZeR5NdxZ-wWwzruBHilq-Tac57DwQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 19:08:58 GMT
age: 60007
etag: "89ab77412f6bc271a086af04570efe2c47fb5456"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418

139.162.142.66

301 Moved Permanently

0 B

URL HTTP/1.1
dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 11:49:03 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Set-Cookie: cntctfrm_send_mail=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
Upgrade: h2,h2c
Connection: Upgrade, close
Location: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

dfs.co.mw/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3

139.162.142.66

200 OK

89 kB

URL HTTP/2
dfs.co.mw/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (43771)
Size
89 kB (88932 bytes)
Hash
b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 04 Jul 2022 12:10:37 GMT
etag: "156220-15b64-5e2f99fa9e940"
accept-ranges: bytes
content-length: 88932
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3

139.162.142.66

200 OK

4.9 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (4933), with no line terminators
Size
4.9 kB (4933 bytes)
Hash
e372df47bd19e1563b557d7bdb817188
4efdf4050a78bdbd88aa255955b7423105895dd0
4b7693154069c53a16468d09d89c9eba5da6c0dfc69cf4d7eb675e32ba663361

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a333-1345-5e4bca662757a"
accept-ranges: bytes
content-length: 4933
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0

139.162.142.66

200 OK

2.6 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (2630), with no line terminators
Size
2.6 kB (2630 bytes)
Hash
eade318fbed91c096467dffa56406638
69d306a2097e792f99c80a5e0bb8863260399cad
d589803f3ab380582ab137b22493c2bacaa92424fa88cee212e80288cac11fbb

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:29 GMT
etag: "2283bc-a46-5e4bca6f9033b"
accept-ranges: bytes
content-length: 2630
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6

139.162.142.66

200 OK

9.3 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (9281), with no line terminators
Size
9.3 kB (9281 bytes)
Hash
57a347480fbe0b3d235993f4f1ec3b2c
ec01673e887c236765156496c7d00111238554d8
9097a2c579616889e829be95554ebf90ec5900045f4d2282cce31d5a999acc03

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a5b6-2441-5e4bca6643d35"
accept-ranges: bytes
content-length: 9281
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.11.0

139.162.142.66

200 OK

29 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.11.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (29337), with no line terminators
Size
29 kB (29337 bytes)
Hash
4de6dfc6ff180e33262861a679d40546
8de11c7f99e413282baa349d11657ccd2c468d4f
3e61990964ebd31443be4e6598163ebd71b73b139c42d52547b8a290f7d059ca

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.11.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:29 GMT
etag: "2283c6-7299-5e4bca6f91040"
accept-ranges: bytes
content-length: 29337
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0

139.162.142.66

200 OK

31 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (30441)
Size
31 kB (30603 bytes)
Hash
d3ec229e04c8634c88cc4cb3f2934c11
785cb4beecaad98329fff0a54f9a5536cda200ab
73835f9dd494931cd0562ab2d4db8aaf3d54dca375abade1794ad1a12ae0d97c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:29 GMT
etag: "2283bb-778b-5e4bca6f9033b"
accept-ranges: bytes
content-length: 30603
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3

139.162.142.66

200 OK

210 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size
210 kB (209885 bytes)
Hash
375cb90c5332267d20d6043a63444e6d
c9e3491ce137aa644109765ff590e0d30da35e72
9e4f92eb422eb08e7fdb89083b71ade65040e339149d2c901f957dc7f202055f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:19 GMT
etag: "22a2f8-333dd-5e4bca6624e6a"
accept-ranges: bytes
content-length: 209885
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3

139.162.142.66

200 OK

19 kB

URL HTTP/2
dfs.co.mw/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (15660)
Size
19 kB (18617 bytes)
Hash
32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
etag: "1345d8-48b9-5dc6eb878efc0"
accept-ranges: bytes
content-length: 18617
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1

139.162.142.66

200 OK

2.7 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text
Size
2.7 kB (2731 bytes)
Hash
e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:42 GMT
etag: "22c8a8-aab-5e4bca7c06503"
accept-ranges: bytes
content-length: 2731
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/contact-form-plugin/css/form_style.css?ver=4.2.4

139.162.142.66

200 OK

5.1 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/contact-form-plugin/css/form_style.css?ver=4.2.4
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text
Size
5.1 kB (5050 bytes)
Hash
5d1d4891893cf9c12c42cf0646691556
f7e3bdc50bb5c3c5a98e19b44a6899b8070e3b23
de17d63770f4a75bdc5079ab9176c912df0f63b45c7bba4e4980aa004186ba3f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-plugin/css/form_style.css?ver=4.2.4 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:35:51 GMT
etag: "2244e1-13ba-5e4bcec3a2312"
accept-ranges: bytes
content-length: 5050
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0

139.162.142.66

200 OK

18 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (17809), with no line terminators
Size
18 kB (17809 bytes)
Hash
1ddf23fcfd1b2941c456ce01da8180a6
156ef5cc77061010e3f4123a47fa415c6391e5ff
dd18a408a35aa5d393458657eb24fb56ab754ece3f88bd78a038e5793d3f6991

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a5e0-4591-5e4bca6645740"
accept-ranges: bytes
content-length: 17809
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0

139.162.142.66

200 OK

63 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Size
63 kB (62755 bytes)
Hash
979b8b56e801469d95453055366ef54c
cb8a0bb5f00fee130a289ea4dfafc00fa53e1c04
d3322ccb3912f7a9485eb1d75971fd5e1eb49c6575ff5ad985fb5496333e8c8b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a5bb-f523-5e4bca6644a3a"
accept-ranges: bytes
content-length: 62755
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/css/widget.css?ver=6.0.3

139.162.142.66

200 OK

3.9 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/css/widget.css?ver=6.0.3
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text
Size
3.9 kB (3910 bytes)
Hash
7e19090a49b4ac8dc29152d7fcaea6fa
631799c7449c8eea15d49c2ff1736706081c2d6f
52f9b8cad6e3388b02e1cc2cb6a488209b61a6a1e5da163c249bd09b827456fb

HTTP Headers

GET /wp-content/plugins/yolo-finanzen-framework/assets/css/widget.css?ver=6.0.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:15:55 GMT
etag: "224575-f46-5e4bca4f0bcd4"
accept-ranges: bytes
content-length: 3910
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/css/yolo-shortcode.css?ver=6.0.3

139.162.142.66

200 OK

186 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/css/yolo-shortcode.css?ver=6.0.3
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text
Size
186 kB (185605 bytes)
Hash
ed614154168628daaf3175413f14ed56
613c396bc333ed9dc40106fb9706b48b22187c3e
b6fe82d6d8492c773814fe6c229a51a82adae4a6498828b70c0f8b666cffd311

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/yolo-finanzen-framework/assets/css/yolo-shortcode.css?ver=6.0.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:15:55 GMT
etag: "224576-2d505-5e4bca4f0c9d9"
accept-ranges: bytes
content-length: 185605
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21

139.162.142.66

200 OK

3.8 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text
Size
3.8 kB (3812 bytes)
Hash
9c6b63558e5de592c160563dbe08dd0d
e4969ab55cc566759623f6b4e1c7d6b3bcdc21cd
14a77bc82e039ce4be0d9ba9b0237495b0a9578d34eb92d444093d440f6190ba

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:36 GMT
etag: "228598-ee4-5e4bca763fa1a"
accept-ranges: bytes
content-length: 3812
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/css/animate.css

139.162.142.66

200 OK

16 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/css/animate.css
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with CRLF line terminators
Size
16 kB (15875 bytes)
Hash
2c4aede5c16ba9e21d1fc3433a93bfdf
5080342caefd4766fd1d7d2928be81c21f9ca267
2e641e92c46c0aa852f6dcac88c6343c79f84a3fc675a59deac3df3c896d4d1a

HTTP Headers

GET /wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/css/animate.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "232133-3e03-562c7eacef940"
accept-ranges: bytes
content-length: 15875
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/pe-icon-7-stroke/css/styles.min.css

139.162.142.66

200 OK

8.2 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/pe-icon-7-stroke/css/styles.min.css
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (8223), with no line terminators
Size
8.2 kB (8223 bytes)
Hash
18b787e0afb8f09c2531c2b70553e9a6
ef627e37204db0294c59d57100c950bc9c90d485
310d761d20ded835e5928443aee679226cb327db23a76024b680d88a41d29d31

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/pe-icon-7-stroke/css/styles.min.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "23035f-201f-562c7eacef940"
accept-ranges: bytes
content-length: 8223
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/css/font-awesome.min.css

139.162.142.66

200 OK

31 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/css/font-awesome.min.css
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (30837), with CRLF line terminators
Size
31 kB (31002 bytes)
Hash
4258bd5c7a06955b6dae720a835fb7b2
84dceb26861254989c3af1b57179432ad0513f9a
b139f243c33a32098b98fe104d2070f65662d47c93cbdee9b80ac9ea4e060830

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/css/font-awesome.min.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "230302-791a-562c7eacef940"
accept-ranges: bytes
content-length: 31002
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/css/bootstrap.min.css

139.162.142.66

200 OK

117 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/css/bootstrap.min.css
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (65367), with CRLF line terminators
Size
117 kB (117157 bytes)
Hash
ee37f031efa1260ecd064c098a2a0794
4cc3ce5ec5b7c157333f3fdfe5b34d679edccff9
ad0c16243ec062b29f4a2187f124eaa5acf570c84dcdd53e71d7087034cb9eab

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302e3-1c9a5-562c7eacef940"
accept-ranges: bytes
content-length: 117157
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/simple-line-icon/css/simple-line-icons.css

139.162.142.66

200 OK

13 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/simple-line-icon/css/simple-line-icons.css
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (360)
Size
13 kB (12958 bytes)
Hash
093ca662394ed698fdb5835e425d28dd
d7038901a810b8d13fee0b70be2e89640de9e353
ab9f855e542893de23c7b7e4897eb91066c9dbbfeaa1b1fa73a826867833b4b1

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/simple-line-icon/css/simple-line-icons.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320b9-329e-562c7eacef940"
accept-ranges: bytes
content-length: 12958
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/elegant-font/css/style.css

139.162.142.66

200 OK

25 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/elegant-font/css/style.css
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (6610)
Size
25 kB (25237 bytes)
Hash
bbb79964f1980eaab2822f83c2c75d9d
ccbe8e1941d3b01bcc706861100b48cab6248a18
ef20e6454d107e698e67fc13a44c9ecb7d76d4ea84900371682502f75c99c8b2

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/elegant-font/css/style.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302fe-6295-562c7eacef940"
accept-ranges: bytes
content-length: 25237
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.css

139.162.142.66

200 OK

57 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.css
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
Unicode text, UTF-8 text, with very long lines (20244)
Size
57 kB (57193 bytes)
Hash
f27354b28af3cf48d28260c03305d0ce
8333c0168b2d2d50a2c3192032c4969937be03f7
0f7fa0c3a244e21109f699c2b3e0609527d9db21b9805f8919d3c9fefd7cddfa

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "230310-df69-562c7eacef940"
accept-ranges: bytes
content-length: 57193
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

139.162.142.66

200 OK

11 kB

URL HTTP/2
dfs.co.mw/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (11126)
Size
11 kB (11224 bytes)
Hash
79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: "13a438-2bd8-5b45debe27b80"
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0

139.162.142.66

200 OK

9.5 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (9139)
Size
9.5 kB (9533 bytes)
Hash
87c54edf7dad7dfdfde015f6eee45ff1
96ec1a06ea3093c47e1e2fc4444ada7f4456135d
ef22199864042b8ceeee3729f3254c140df7217364045737ca3aadf8434fb3da

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a71a-253d-5e4bca66541a0"
accept-ranges: bytes
content-length: 9533
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/vc-extend/css/vc-customize.min.css

139.162.142.66

200 OK

31 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/vc-extend/css/vc-customize.min.css
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (30724), with no line terminators
Size
31 kB (30724 bytes)
Hash
4b9fb84acb21e68c0bba37fea70b62e1
180b60fb14a1a5500b5b33ea5e76bcd2e66c01a8
97c13d375ac7dd0d5f0db46ca3c78b96675b78028a2657479f92bdd8fe0beb30

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/vc-extend/css/vc-customize.min.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320d8-7804-562c7eacef940"
accept-ranges: bytes
content-length: 30724
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0

139.162.142.66

200 OK

3.0 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
HTML document, ASCII text, with very long lines (3037), with no line terminators
Size
3.0 kB (3037 bytes)
Hash
8bc2109ef48cabf7a26b73d7c3536c5f
0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b
8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a77e-bdd-5e4bca66575b5"
accept-ranges: bytes
content-length: 3037
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0

139.162.142.66

200 OK

992 B

URL HTTP/2
dfs.co.mw/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text
Size
992 B (992 bytes)
Hash
787fe4f547a6cb7f4ce4934641085910
c2dee88d5bdfef214ce9c56f71a1df51cda0f328
654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:51 GMT
etag: "22ca61-3e0-5e4bca8460fd6"
accept-ranges: bytes
content-length: 992
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/svg/puff.svg

139.162.142.66

200 OK

1.6 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/svg/puff.svg
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with CRLF line terminators
Size
1.6 kB (1643 bytes)
Hash
2a7da108bd797e100400096e6e85b844
6e10f5f1c4d51520645ff0595340128fd4aa031f
6fafe55dcccb320d6abef04bb12a437c10bf60ef4e24afe3518c58a36419d2b1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/svg/puff.svg HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320d4-66b-562c7eacef940"
accept-ranges: bytes
content-length: 1643
content-type: image/svg+xml
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/js/yolo-shortcode.js?ver=6.0.3

139.162.142.66

200 OK

27 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/yolo-finanzen-framework/assets/js/yolo-shortcode.js?ver=6.0.3
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (397), with CRLF line terminators
Size
27 kB (27442 bytes)
Hash
ebacfd9cb8a4dbceaed156a7fe3f5d24
5097e74c4edb87d7c9ac7725348c521e523ea29c
25e4087b6ad958029e6a0cca04c1d2fdeeb43867cb838836c9ad37497b6d8ac7

HTTP Headers

GET /wp-content/plugins/yolo-finanzen-framework/assets/js/yolo-shortcode.js?ver=6.0.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:15:55 GMT
etag: "2245f0-6b32-5e4bca4f124ff"
accept-ranges: bytes
content-length: 27442
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0

139.162.142.66

200 OK

15 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Size
15 kB (14927 bytes)
Hash
157f18464a93eab7fb62a7f3e618ac2c
f47727e80d529d6e4941fea32f2e8a8ee5008b8a
9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:29 GMT
etag: "2283d4-3a4f-5e4bca6f91d45"
accept-ranges: bytes
content-length: 14927
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

139.162.142.66

200 OK

6.5 kB

URL HTTP/2
dfs.co.mw/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (6475), with no line terminators
Size
6.5 kB (6475 bytes)
Hash
61449413a42d2daaa79dbe7298b40e21
d86c474164c603084397bdc50fb0e469d28b5772
f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: "15e2b9-194b-5dc5fbf1e6f80"
accept-ranges: bytes
content-length: 6475
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.css?ver=6.0.3

139.162.142.66

200 OK

24 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.css?ver=6.0.3
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (24116), with CRLF line terminators
Size
24 kB (24356 bytes)
Hash
4dc80fec4ac4e12644852ba505acc28a
cc27bc2521309d213e38ce570665bb70702fa7a4
2515264fdf4baf37d2541ed609d5d640becc83caf7e2d583715de301470bec0e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.css?ver=6.0.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302eb-5f24-562c7eacef940"
accept-ranges: bytes
content-length: 24356
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/css/jquery.scrollbar.css

139.162.142.66

200 OK

23 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/css/jquery.scrollbar.css
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (682), with CRLF line terminators
Size
23 kB (23409 bytes)
Hash
2494749363eaf23023afcd707e9b5c07
82478ccbbd3cb25d9fd8d14859955be97e55b6f8
53673e389d4aad4e8b6786cacd4bb1bf3580d804ac85750372085a51909ae6f4

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/css/jquery.scrollbar.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320b4-5b71-562c7eacef940"
accept-ranges: bytes
content-length: 23409
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.23

139.162.142.66

200 OK

58 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.23
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
Unicode text, UTF-8 text, with very long lines (12602)
Size
58 kB (57925 bytes)
Hash
7d4cdc18b95171f8dadb5d4fa0de7cf2
a960abb1c3844715ec9565e3b2b73a9b1faa32b0
8527577417ba8bd5dbaaad96e47d57c5e94b9e17094ffd9c0a2b5ad56a324347

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.23 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:03 GMT
etag: "2264c2-e245-5e4bca56a59b6"
accept-ranges: bytes
content-length: 57925
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6

139.162.142.66

200 OK

22 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
HTML document, ASCII text, with very long lines (21538), with no line terminators
Size
22 kB (21538 bytes)
Hash
d017e13d65b4c79d9a22a4ab9e6bcdf6
f766dedd77e0f910742439a102a23dbeade89299
2ef1fc50a9d78f044028f3ba7378c5bbec0188de74a5217491040f9ba435fca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a70a-5422-5e4bca665349a"
accept-ranges: bytes
content-length: 21538
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.11.0

139.162.142.66

200 OK

25 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.11.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
HTML document, ASCII text, with very long lines (24951), with no line terminators
Size
25 kB (24951 bytes)
Hash
540be7a8259fbeaf4a732a344b267a7d
ac51cc9bb5df51bd9568de8707b9b176f7d60254
a692f16cca3d27ae6772b85e05c46d117ca45678783d5ee010df7d67e8f12485

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.11.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:29 GMT
etag: "2283d5-6177-5e4bca6f91d45"
accept-ranges: bytes
content-length: 24951
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

139.162.142.66

200 OK

19 kB

URL HTTP/2
dfs.co.mw/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Size
19 kB (19142 bytes)
Hash
57459b58fd7665a5e20b2345463df9c9
71c3b177ad1412d5e0b56d99f18bc345148df88b
6fecb89a29ee2bd397bb1bf58ecaa530a76f0654db71fadefd3cc70b0bc302bf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: "15e2d1-4ac6-5dc5fbf1e6f80"
accept-ranges: bytes
content-length: 19142
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1

139.162.142.66

200 OK

22 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (21904), with no line terminators
Size
22 kB (21904 bytes)
Hash
e7334b0f16895605c1234c69ad86fd4a
6da3372e63cabe2d3c6b0dfecc70770c2f69921b
e89d7526092c671c0a01bd02152a595271fb97f87bbd3ba379b5e8b1071f6b2d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:42 GMT
etag: "22c8e3-5590-5e4bca7c07f0d"
accept-ranges: bytes
content-length: 21904
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
06d7d61a20669050493c3fd5d2b9798e
5d2d51f23582ef785072cdd0ca9ccf859b563b2d
653662665ea3298734fa313f693216a3932a64ac2903986d7415f60f97bcf27f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 11:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

dfs.co.mw/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0

139.162.142.66

200 OK

1.8 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (1668)
Size
1.8 kB (1834 bytes)
Hash
d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a6f2-72a-5e4bca6652795"
accept-ranges: bytes
content-length: 1834
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0

139.162.142.66

200 OK

2.1 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (2139), with no line terminators
Size
2.1 kB (2139 bytes)
Hash
b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a76d-85b-5e4bca66575b5"
accept-ranges: bytes
content-length: 2139
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0

139.162.142.66

200 OK

2.9 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (2938), with no line terminators
Size
2.9 kB (2938 bytes)
Hash
0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a77a-b7a-5e4bca66575b5"
accept-ranges: bytes
content-length: 2938
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.16.0

139.162.142.66

200 OK

4.6 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.16.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (4602), with no line terminators
Size
4.6 kB (4602 bytes)
Hash
25d887c9c8997522cf1184e1171d605c
8f9fc958307ce831e7313d22d996908f578956e2
ccdea9568a2dafdc3b5dfafd7cc65ed784a235fe1a3c2da2e4183a9bb834c136

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.16.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:36 GMT
etag: "22859f-11fa-5e4bca763fa1a"
accept-ranges: bytes
content-length: 4602
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/js/megamenu.min.js

139.162.142.66

200 OK

2.2 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/js/megamenu.min.js
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (2198), with no line terminators
Size
2.2 kB (2198 bytes)
Hash
a59c690f33d38aa8c933ef3896cc4131
c4be0aa0dd09ddf097fb0f010e47c2795e610b84
66fd0d25b50c652218e7bc42dc7cc7276de577005c5d05e125af0c92e2e302fd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/framework/core/megamenu/assets/js/megamenu.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "232139-896-562c7eacef940"
accept-ranges: bytes
content-length: 2198
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-includes/js/wp-util.min.js?ver=6.0.3

139.162.142.66

200 OK

1.3 kB

URL HTTP/2
dfs.co.mw/wp-includes/js/wp-util.min.js?ver=6.0.3
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (1305)
Size
1.3 kB (1340 bytes)
Hash
8637362089372427b52fa10a43d8109c
6009bed674718329dce6055ab09fa95181162d81
b8e78b48acc08ce31457aff168d6fb2c814d51a8739a97693cdba585d60f5b35

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 25 Jun 2021 14:50:58 GMT
etag: "13458e-53c-5c59844787880"
accept-ranges: bytes
content-length: 1340
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-includes/js/underscore.min.js?ver=1.13.3

139.162.142.66

200 OK

19 kB

URL HTTP/2
dfs.co.mw/wp-includes/js/underscore.min.js?ver=1.13.3
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (18876)
Size
19 kB (18911 bytes)
Hash
42aa17e1f850a414638ee4a32a3aa807
2e42d03a5e042701191650c041eae1cfb2d6c7b9
0da4791b446818516f710c51707081aec7b23a7c5212fc0b2629c973210136a4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 27 Apr 2022 14:39:21 GMT
etag: "13457d-49df-5dda3c65dd840"
accept-ranges: bytes
content-length: 18911
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.7.0

139.162.142.66

200 OK

14 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.7.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (13590), with no line terminators
Size
14 kB (13590 bytes)
Hash
a49a60e0186f705f693279985371da20
3419d4683879d6a48e051e38356602a2f5094511
3b55a00b09e9df011435d1f358401cf7153066bbfeafdc3384e5d8cdaf4e3262

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a77f-3516-5e4bca66575b5"
accept-ranges: bytes
content-length: 13590
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-add-to-cart-variation.min.js

139.162.142.66

200 OK

637 B

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-add-to-cart-variation.min.js
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (637), with no line terminators
Size
637 B (637 bytes)
Hash
54d2c857fe0c922011f8f372085cd50a
7f963ecc8802433ebd8d0c133b63912a1386af37
1276859e9ad5d187ebfd44de0fd1ed7eb48440b6a07596ea73132799947142bb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/js/min/yolo-add-to-cart-variation.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 15:32:15 GMT
etag: "23029b-27d-5ad289776ddc0"
accept-ranges: bytes
content-length: 637
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/uploads/2019/05/logo-1.png-1-e1529915811623.png

139.162.142.66

200 OK

8.8 kB

URL HTTP/2
dfs.co.mw/wp-content/uploads/2019/05/logo-1.png-1-e1529915811623.png
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
PNG image data, 130 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size
8.8 kB (8788 bytes)
Hash
1052e343afd9f94fe6085ee251727bb1
8367361621608e6fe0af2348d32ba9e3c8fb67d0
e0a28e7d89af546ade558bc2801d0863564086a638a33f8a83cfe7286301b045

HTTP Headers

GET /wp-content/uploads/2019/05/logo-1.png-1-e1529915811623.png HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Jul 2022 19:20:56 GMT
etag: "22c1de-2254-5e491f76c8375"
accept-ranges: bytes
content-length: 8788
content-type: image/png
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/css/yolo.css

139.162.142.66

200 OK

493 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/css/yolo.css
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text
Size
493 kB (492608 bytes)
Hash
851cf7daea4d45eea440f138ad72462b
dba94c8509df116d5f1b053130a87733b6895887
7cfe1a62995fa8adf5e106f88de5c450681a88eb4aa3d07995686cda63feb1ac

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/css/yolo.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Jun 2021 03:57:41 GMT
etag: "23024a-78440-5c46164871740"
accept-ranges: bytes
content-length: 492608
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0

139.162.142.66

200 OK

486 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (65358)
Size
486 kB (485521 bytes)
Hash
04f75b46513691d1d7aaa1a1684eb148
67c753bc6a1981621aed44b40a34388f3e36e95f
779ae1e963b5e8a5263625a174e34dfcd073775f2893211fc7e304fb70f0e3a7

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:51 GMT
etag: "22ca08-76891-5e4bca845b4b1"
accept-ranges: bytes
content-length: 485521
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-includes/js/imagesloaded.min.js?ver=4.1.4

139.162.142.66

200 OK

5.6 kB

URL HTTP/2
dfs.co.mw/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (5477)
Size
5.6 kB (5629 bytes)
Hash
3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
etag: "1345c2-15fd-5a7fbb57c37c0"
accept-ranges: bytes
content-length: 5629
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/uploads/2018/12/cd482c5717b1cd60015d900d23e91d2c.png

139.162.142.66

200 OK

88 kB

URL HTTP/2
dfs.co.mw/wp-content/uploads/2018/12/cd482c5717b1cd60015d900d23e91d2c.png
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
PNG image data, 868 x 442, 8-bit/color RGB, non-interlaced\012- data
Size
88 kB (87738 bytes)
Hash
a3cd09ce5176dfb65ce92f186f0d6472
0ca33fcf7214acf701e64d08160d8338af774497
c86a8ac544e556a4e929f7c5e5e364eb0c31e014205e877ea55974e0c3978621

HTTP Headers

GET /wp-content/uploads/2018/12/cd482c5717b1cd60015d900d23e91d2c.png HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Jul 2022 19:20:56 GMT
etag: "22e20a-156ba-5e491f7716576"
accept-ranges: bytes
content-length: 87738
content-type: image/png
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-login.min.js

139.162.142.66

200 OK

5.6 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-login.min.js
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (5588), with no line terminators
Size
5.6 kB (5588 bytes)
Hash
57cbe389b76b8405bf474f87f4e06f5b
a3dbe62a835689fdcb2b5bff2ca8f3603b55f8f8
3cdd7e9dc99b9a4fc6a63ce6a2ebc1974ba60844654d0c06dd080bf93711ba94

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/js/min/yolo-login.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 15:32:10 GMT
etag: "23029c-15d4-5ad28972a9280"
accept-ranges: bytes
content-length: 5588
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.js

139.162.142.66

200 OK

15 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.js
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (14662), with CRLF line terminators
Size
15 kB (14902 bytes)
Hash
0628927ca01753d822c61996f229d81a
85a6391e640ffddfa99fb568b71ed011e703d577
21ef50f03cc11fc3d659a3908a06f9bbe0d5641033ff9902030b00cddecd7123

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/custombox/custombox.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302ec-3a36-562c7eacef940"
accept-ranges: bytes
content-length: 14902
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/js/jquery.scrollbar.min.js

139.162.142.66

200 OK

12 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/js/jquery.scrollbar.min.js
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (11954), with CRLF line terminators
Size
12 kB (12344 bytes)
Hash
5dbfd67d849efb5d84e15255c33bb284
8ea465dcc1a6661d839996b69cbe338b43a36021
b360a59c0a6ee7f060a226652ed0d0ee5396b48639d175d141bc87142e862cd8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/scrollbar/js/jquery.scrollbar.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320b6-3038-562c7eacef940"
accept-ranges: bytes
content-length: 12344
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/stickyHeader/sticky-custom.js

139.162.142.66

200 OK

9.0 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/stickyHeader/sticky-custom.js
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with CRLF line terminators
Size
9.0 kB (9048 bytes)
Hash
2a5ed3d29bde657703ba04d03976e75c
9849d3ad3a54cb97599da56125b93ca96b61f848
dae206a0a42ee6d0e48f68606b343f6154de7e49488e99845e9db3494856ca86

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/stickyHeader/sticky-custom.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2320ca-2358-562c7eacef940"
accept-ranges: bytes
content-length: 9048
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/modernizr/modernizr.min.js

139.162.142.66

200 OK

10 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/modernizr/modernizr.min.js
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
HTML document text\012- HTML document, ASCII text, with very long lines (9557), with CRLF line terminators
Size
10 kB (9993 bytes)
Hash
86abcc42427166cf93e85deac6774ce8
cedf99025081cec266e80e9a0c4ca249f8cb91fd
99836171667de70c269b42471ff6cf6efce2c61c9f8701c7466480a3a4abdd26

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/modernizr/modernizr.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "230345-2709-562c7eacef940"
accept-ranges: bytes
content-length: 9993
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:10 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/classie.js

139.162.142.66

200 OK

1.9 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/classie.js
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with CRLF line terminators
Size
1.9 kB (1915 bytes)
Hash
70fc7d9e10c107d1e20326108f5f5e1f
4b1c60cde2836e6af72e53f1ab730574c23a2a89
c4ea9310d72e37fe799d48ae3fc43dcb53e3db7c4ae13763d4c5b893f6ceb64b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/classie.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302f2-77b-562c7eacef940"
accept-ranges: bytes
content-length: 1915
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:10 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-main.min.js

139.162.142.66

200 OK

46 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/js/min/yolo-main.min.js
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (45875), with no line terminators
Size
46 kB (45875 bytes)
Hash
a48cdd71ec01ecc81456b616825e0f31
7afd6e257af76490bba21b1f2d4aa9a033557674
e3e183b78ea1b81d76ff7c8c68f523b473ffe8be8d4d3ed315a055a39acbbbae

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/js/min/yolo-main.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Jun 2021 03:17:25 GMT
etag: "23029d-b333-5c460d485db40"
accept-ranges: bytes
content-length: 45875
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/js/bootstrap.min.js

139.162.142.66

200 OK

36 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/js/bootstrap.min.js
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (32405), with CRLF line terminators
Size
36 kB (35458 bytes)
Hash
834ca905c3251172e3c538cc0e043d77
313da686ebbe387064f2d1899c64ea562b81eb40
9a61a325508cd509f23cd31043b878957281f0a3603d8e7d40758c4a7c489d5a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302e5-8a82-562c7eacef940"
accept-ranges: bytes
content-length: 35458
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/lightGallery/js/lightgallery-all.min.js

139.162.142.66

200 OK

56 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/lightGallery/js/lightgallery-all.min.js
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (31964)
Size
56 kB (56374 bytes)
Hash
168cf8b6c074ccd0eca0877a0cc1f647
7da9332d6c4d9a27954eeb58c343959d759a02ac
2fe1cd6d35eebeb6095c1cc9b4c61a45dc226898c80ec7e8c14e32e3bde361a3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/lightGallery/js/lightgallery-all.min.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 13 Oct 2020 15:03:20 GMT
etag: "230332-dc36-5b18eb729de00"
accept-ranges: bytes
content-length: 56374
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/dialogFx.js

139.162.142.66

200 OK

2.7 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/dialogFx.js
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with CRLF line terminators
Size
2.7 kB (2680 bytes)
Hash
91f34b57db1f1f7d00b0adb825428d75
1cba28df324d544fcfdaf7a9f3e99e230d3a5fd3
62f62c4dbd71039076e9cbe391e191e10c3927256de89cd8a296d7104094929e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/dialog-effects/js/dialogFx.js HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "2302f3-a78-562c7eacef940"
accept-ranges: bytes
content-length: 2680
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:10 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0

139.162.142.66

200 OK

20 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (20096)
Size
20 kB (20315 bytes)
Hash
6ce179ee275d3bd58d0407b79d6366cd
fb1393daafde2f3e85f31777543c3194a4ab11d0
1bd0097cd9d76a31566f4236a1aaa31cdd43c5857a9502679805fddbc7599a54

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:51 GMT
etag: "22ca59-4f5b-5e4bca84602d1"
accept-ranges: bytes
content-length: 20315
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:10 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
06d7d61a20669050493c3fd5d2b9798e
5d2d51f23582ef785072cdd0ca9ccf859b563b2d
653662665ea3298734fa313f693216a3932a64ac2903986d7415f60f97bcf27f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 11:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0

139.162.142.66

200 OK

7.0 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (7043), with no line terminators
Size
7.0 kB (7043 bytes)
Hash
456663a286a204386735fd775542a59e
0a61620b88f4ae0fa7d71e2c7a014ea2c3ab5749
a7a83e60e7e3b8cadeed69327ba498b4cd68605db6e408729fa1b946758e7501

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:20 GMT
etag: "22a5f3-1b83-5e4bca6646445"
accept-ranges: bytes
content-length: 7043
content-type: text/css
date: Fri, 11 Nov 2022 11:49:10 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.ttf?v=2.0.0

139.162.142.66

200 OK

188 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.ttf?v=2.0.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size
188 kB (188508 bytes)
Hash
24712f6c47821394fba7942fbb52c3b2
1b0a0de084905946a20300ca8c354865dec46764
2ba7f20b1d8990e17a47fe3d88e4c766628aaa2baf1dd30fca0a0db59836f5f9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.ttf?v=2.0.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/ionicons/fonts/ionicons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "230313-2e05c-562c7eacef940"
accept-ranges: bytes
content-length: 188508
content-type: font/ttf
date: Fri, 11 Nov 2022 11:49:10 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0

139.162.142.66

200 OK

77 kB

URL HTTP/2
dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/themes/yolo-finanzen/assets/plugins/fonts-awesome/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Jan 2018 03:07:41 GMT
etag: "230308-12d68-562c7eacef940"
accept-ranges: bytes
content-length: 77160
content-type: font/woff2
date: Fri, 11 Nov 2022 11:49:10 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18

139.162.142.66

200 OK

30 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
Web Open Font Format (Version 2), TrueType, length 30064, version 1.0\012- data
Size
30 kB (30064 bytes)
Hash
0cb0b9c589c0624c9c78dd3d83e946f6
5da603104d4d6e362824ec9e7db32eb2d617949a
104673f4859604362a18fc6294197d8fffb8cb24ad3211e92eb04f655e18cf4a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:03 GMT
etag: "226a2a-1f69c-5e4bca56dcf21"
accept-ranges: bytes
content-length: 128668
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 11:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 11:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2

216.58.207.195

200 OK

47 kB

URL HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data
Size
47 kB (47048 bytes)
Hash
87a1556b696ae2cb1a726bd8c4584a2f
1be0f6f39e0cf316f9827f945eeeaef8294cc37b
141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1

HTTP Headers

GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dfs.co.mw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 04 Nov 2022 22:54:22 GMT
expires: Sat, 04 Nov 2023 22:54:22 GMT
cache-control: public, max-age=31536000
age: 564888
last-modified: Wed, 27 Apr 2022 16:55:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 11:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 11:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2

216.58.207.195

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Size
45 kB (45300 bytes)
Hash
5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d

HTTP Headers

GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dfs.co.mw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 18:51:03 GMT
expires: Thu, 09 Nov 2023 18:51:03 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
age: 147487
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2

216.58.207.195

200 OK

42 kB

URL HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 42500, version 1.0\012- data
Size
42 kB (42500 bytes)
Hash
8c5246074400a5141ea18bf48dff17ee
b0650d9d042dfdc6e5fbc3b9f79f87822f9ee689
595c14bd7589b069e4570ba658cfab8850611639e8a077ca84ef263bfa4671f9

HTTP Headers

GET /s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dfs.co.mw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 01:13:40 GMT
expires: Wed, 08 Nov 2023 01:13:40 GMT
cache-control: public, max-age=31536000
age: 297330
last-modified: Wed, 27 Apr 2022 16:01:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2

216.58.207.195

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Size
13 kB (13036 bytes)
Hash
0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0

HTTP Headers

GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dfs.co.mw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 19:26:57 GMT
expires: Thu, 09 Nov 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 145333
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 11:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

demo.yolotheme.com/dummy/finanzen/wp-content/uploads/2017/05/bg-footer-1.jpg?id=148

172.67.214.229

200 OK

40 kB

URL HTTP/2
demo.yolotheme.com/dummy/finanzen/wp-content/uploads/2017/05/bg-footer-1.jpg?id=148
IP
172.67.214.229:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x700, components 3\012- data
Size
40 kB (40216 bytes)
Hash
9cca7eee4cfcf49cde9e6cb803c4f710
9b4795dfdbce2d02bccfe78b96baa0457cd1921d
b913a486e9159abefffcab664151baf547b2984c25b2a0dee814f43392a01cf6

HTTP Headers

GET /dummy/finanzen/wp-content/uploads/2017/05/bg-footer-1.jpg?id=148 HTTP/1.1
Host: demo.yolotheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 11 Nov 2022 11:49:10 GMT
content-type: image/jpeg
content-length: 40216
last-modified: Wed, 24 May 2017 01:56:39 GMT
etag: "5924e857-9d18"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000, must-revalidate, proxy-revalidate
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VzY6a4iQV%2B%2BifVSpyG%2Fl1c2jE8BQEAKkage5TiZ4NxFg%2Fg4pSmVgrEvRWr3adX0bubxgPYlhwKrlLLarHqjZXKAVAopECK26VOwKZTBBiWb3Ylhz7Ivhw%2BeountDiGGKvP%2BcgXw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7686cd948c96b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21

139.162.142.66

200 OK

168 kB

URL HTTP/2
dfs.co.mw/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x900, components 3\012- data
Size
168 kB (168352 bytes)
Hash
c1ee4b2dd64b39f61706c66740c6bacb
220d1935e68fc99e0726ce360639997c63274b7a
c47da1e1be7fe913735bc047cb0dfa93932042faadc9e406a2735c369305070a

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:36 GMT
etag: "22859a-2e7c-5e4bca763fa1a"
accept-ranges: bytes
content-length: 11900
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/uploads/yolo-custom-css/custom-style.css

139.162.142.66

200 OK

0 B

URL HTTP/2
dfs.co.mw/wp-content/uploads/yolo-custom-css/custom-style.css
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/yolo-custom-css/custom-style.css HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Jul 2022 19:20:56 GMT
etag: "22c1d4-182ae-5e491f76c7670"
accept-ranges: bytes
content-length: 98990
content-type: text/css
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=PT+Sans%3A400%2C700%2C400italic%2C700italic%7CSource+Sans+Pro%3A200%2C300%2C400%2C600%2C700%2C900%2C200italic%2C300italic%2C400italic%2C600italic%2C700italic%2C900italic&ver=1658914805

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=PT+Sans%3A400%2C700%2C400italic%2C700italic%7CSource+Sans+Pro%3A200%2C300%2C400%2C600%2C700%2C900%2C200italic%2C300italic%2C400italic%2C600italic%2C700italic%2C900italic&ver=1658914805
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=PT+Sans%3A400%2C700%2C400italic%2C700italic%7CSource+Sans+Pro%3A200%2C300%2C400%2C600%2C700%2C900%2C200italic%2C300italic%2C400italic%2C600italic%2C700italic%2C900italic&ver=1658914805 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 11 Nov 2022 11:49:10 GMT
date: Fri, 11 Nov 2022 11:49:10 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.23

139.162.142.66

200 OK

0 B

URL HTTP/2
dfs.co.mw/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.23
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.23 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Jul 2022 22:16:03 GMT
etag: "226a2c-5f392-5e4bca56dcf21"
accept-ranges: bytes
content-length: 390034
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418

139.162.142.66

404 Not Found

0 B

URL HTTP/2
dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://dfs.co.mw/wp-json/>; rel="https://api.w.org/"
set-cookie: cntctfrm_send_mail=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
content-type: text/html; charset=UTF-8
date: Fri, 11 Nov 2022 11:49:06 GMT
server: Apache
X-Firefox-Spdy: h2

dfs.co.mw/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

139.162.142.66

200 OK

0 B

URL HTTP/2
dfs.co.mw/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
139.162.142.66:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: dfs.co.mw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dfs.co.mw/wp-content/service/godaddyfix/login.php?email=&fid_125289964252813inboxlight99642_product-email=&fid_13inboxlight_aspxn_1774256418=&l=_jehfuq_vjoxk0qwhtogydw1774256418
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
etag: "13a433-15db1-5bd3006388300"
accept-ranges: bytes
content-length: 89521
content-type: application/javascript
date: Fri, 11 Nov 2022 11:49:09 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (49)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations