r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5897
Expires: Sat, 03 Dec 2022 05:48:37 GMT
Date: Sat, 03 Dec 2022 04:10:20 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1115
Cache-Control: max-age=110370
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:10:20 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 10:49:50 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 03:18:13 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3127
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4763
Expires: Sat, 03 Dec 2022 05:29:43 GMT
Date: Sat, 03 Dec 2022 04:10:20 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YEhVgwVi86mLj/2Aj147VXKqLQmDAH0yqvkEKsxA/NBjR13Nx7TA2igZZSZiZz535bky/sasTtqpseEClI0mHQ==
x-amz-request-id: RHY7WWE3TB2E9AG7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 03:46:25 GMT
age: 1435
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:10:20 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
shop.safico5.com/wp-content/plugins/auth/en/login.php
185.198.56.177301 Moved Permanently 0 B URL HTTP/1.1 shop.safico5.com/wp-content/plugins/auth/en/login.php
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/auth/en/login.php HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 04:10:15 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
X-Redirect-By: WordPress
Location: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 04:08:58 GMT
cache-control: public,max-age=3600
age: 83
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1096
Cache-Control: max-age=105289
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:10:21 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 09:25:10 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
shop.safico5.com/wp-content/plugins/auth/en/login.php
185.198.56.177404 Not Found 66 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/auth/en/login.php
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4571), with CRLF, LF line terminators
Hash c69258a141945e68f04bee4180504607
5f6c303634b25927040e36f012ae37ca5614f10d
8698cfd9ef6381f139018fd91619b460c3b1063dcb44bf090e7c6ddf0a17f527
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/auth/en/login.php HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
Link: <https://shop.safico5.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
54.189.35.180101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.35.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oMr1WiZrzeh51c94J4QZUA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: s5pME9vmohpWZAjbiAyvTZvH1/M=
shop.safico5.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.10
185.198.56.177200 OK 54 kB URL HTTP/1.1 shop.safico5.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.10
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (28088)
Hash 7d2051e6c59f3598b17877bf41637ec4
e3fbc1265f4cd1eacf83c045e4f21d5f9b92bf8d
bca7af0b45b6fc6a2064e8e7a34f2041f3e77261e63f0257209bcde6bc40545d
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.4.10 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Fri, 24 Apr 2020 15:32:14 GMT
Accept-Ranges: bytes
Content-Length: 53593
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/css/frontend.css?ver=1.0.6
185.198.56.177200 OK 7.7 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/css/frontend.css?ver=1.0.6
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
Hash 24323e1626d799cf4c020e30326ef8df
2c790fbd9e1840e7e5767ec476a0af8503b2ecf4
b16ae8dcd9fbf3ecab00fffc946fe6b9cbd0f869dd60b4462e5347d28c3f6c66
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/get-a-quote-button-for-woocommerce/assets/css/frontend.css?ver=1.0.6 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:03:49 GMT
Accept-Ranges: bytes
Content-Length: 7693
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/hide-price-add-to-cart-button/assets/css/afwhp_front.css?ver=1.0
185.198.56.177200 OK 521 B URL HTTP/1.1 shop.safico5.com/wp-content/plugins/hide-price-add-to-cart-button/assets/css/afwhp_front.css?ver=1.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with CRLF line terminators
Hash 6213b16801298b8f47aec7ad454673e0
e8cb65313df06324cfad76815816b05fbc106f31
ad68f78a27281fbc4200dbec9f4c18b1dd59e1b2502a9c0435d2c32b07344d08
GET /wp-content/plugins/hide-price-add-to-cart-button/assets/css/afwhp_front.css?ver=1.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:20:48 GMT
Accept-Ranges: bytes
Content-Length: 521
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/mailchimp-for-wp/assets/css/form-basic.min.css?ver=4.7.8
185.198.56.177200 OK 2.7 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/mailchimp-for-wp/assets/css/form-basic.min.css?ver=4.7.8
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (2659), with no line terminators
Hash 1632267525c58b35310d3dd7bfea8b7f
b3a48029862a5af3bbf027383e3f87bc181792b2
2a8c2e0fd09605162cb7823dfa4ef28779072b2c3f5b6fbc23be0d47f518d9d2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mailchimp-for-wp/assets/css/form-basic.min.css?ver=4.7.8 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:50 GMT
Accept-Ranges: bytes
Content-Length: 2659
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/css/sweetalert2.min.css?ver=1.0.6
185.198.56.177200 OK 25 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/css/sweetalert2.min.css?ver=1.0.6
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Unicode text, UTF-8 text, with very long lines (24568), with no line terminators
Hash 43b745ce803f748a1c8a15f158157100
3a1679cc0c7d7b19c60af5d4be783009dbf6ead4
1f69c8d0be5e5ed8eae9d174385cd672039bddc81df8b0ebd5b7c667574e94ea
GET /wp-content/plugins/get-a-quote-button-for-woocommerce/assets/css/sweetalert2.min.css?ver=1.0.6 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:03:49 GMT
Accept-Ranges: bytes
Content-Length: 24569
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.16
185.198.56.177200 OK 66 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.16
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (65536), with no line terminators
Hash e7e6a0406a3fc00f71bec2706c3d7c75
7d978c127f614128616a6d6d0f628728bd7bbc88
a68103cf6f0359010607eac8ecca00cc18f75f820928fbc280d20e4b3e860702
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.16 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:03 GMT
Accept-Ranges: bytes
Content-Length: 66058
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.12
185.198.56.177200 OK 60 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.12
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 7f1d3cdee6e67c584ec3df2772391f2b
a5a8f3a0942914d0db18e574742f5b5ad85bd77d
8215fb8f99029767d8081516dd5c245f65f3a5c3bd78fdec0d9889b0f549703f
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.12 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:44:19 GMT
Accept-Ranges: bytes
Content-Length: 59946
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/themes/basel/css/bootstrap.min.css?ver=5.2.0
185.198.56.177200 OK 36 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/css/bootstrap.min.css?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (35650)
Hash fb54c433ca015360c6103d7d289bb9c4
036ad4ba2bc075b4dde27ca79f70b3c08541f54e
eba7c434f77de7d88eeb337588c36f88f5d1794a32322e285ec5d524a3362cdb
GET /wp-content/themes/basel/css/bootstrap.min.css?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Mon, 08 Oct 2018 15:51:20 GMT
Accept-Ranges: bytes
Content-Length: 36010
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.2.0
185.198.56.177200 OK 56 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (56243)
Hash f7409f91a34ea35236d98702f4e69f4c
3a3c16cbb1114f8e210b87cf3102a99968bf6a26
04950e48cd4097fb4a540c3abcf445cd92d59bdf9ba40f49cfb180cc94387a2f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 19:46:04 GMT
Accept-Ranges: bytes
Content-Length: 56425
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0
185.198.56.177200 OK 485 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (65358)
Size 485 kB (485416 bytes)
Hash 2fcf15b9242ca9cbf091c45419959fdb
52e744ee97e3612e790305643ab5046201831618
f1dbbc4be8d88ae17466b1d7a8fd7bf4f9d9b5ab492719cdea721d82cecb738d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 19:46:04 GMT
Accept-Ranges: bytes
Content-Length: 485416
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.2.0
185.198.56.177200 OK 34 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (34217)
Hash ffb96099720dde6483d7cab290c543ee
1a6ece8eee36923d795cdf78674b47e7f1b8e94f
cdfdf586f38cfb19c6264343cc6a64adce7ff0961834e96a2f912f01dc29e3f0
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 19:46:04 GMT
Accept-Ranges: bytes
Content-Length: 34399
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-content/uploads/2021/12/basel-dynamic-1640111120.css?ver=5.2.0
185.198.56.177200 OK 38 kB URL HTTP/1.1 shop.safico5.com/wp-content/uploads/2021/12/basel-dynamic-1640111120.css?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (27569), with CRLF, LF line terminators
Hash 7f66f09c06fbfdcec402f228429107a1
0ca98e44280d6630c3052d896618e30f635cc550
7fa10cd005cd0627e32d047e8675c34103e1bc4c1ab87c8c87be441f03cbaf06
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/12/basel-dynamic-1640111120.css?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Tue, 21 Dec 2021 18:25:20 GMT
Accept-Ranges: bytes
Content-Length: 37725
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
185.198.56.177200 OK 10 kB URL HTTP/1.1 shop.safico5.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
Accept-Ranges: bytes
Content-Length: 10056
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/hide-price-add-to-cart-button/assets/js/afwhp_front.js?ver=1.0
185.198.56.177200 OK 67 B URL HTTP/1.1 shop.safico5.com/wp-content/plugins/hide-price-add-to-cart-button/assets/js/afwhp_front.js?ver=1.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with CRLF line terminators
Hash 0590954ca5a05e30f288d6d384a3f6d7
1e42d504f8397c5245ffe55b7913849c92262a7b
43bdaa621e6b440562c39a664c55e7f80ca75575c840c9c14aacc023ec1763d8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/hide-price-add-to-cart-button/assets/js/afwhp_front.js?ver=1.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:20:48 GMT
Accept-Ranges: bytes
Content-Length: 67
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:10:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
shop.safico5.com/wp-content/plugins/hide-price-add-to-cart-button/assets/js/jquery.popupoverlay.js?ver=1.0
185.198.56.177200 OK 24 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/hide-price-add-to-cart-button/assets/js/jquery.popupoverlay.js?ver=1.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 3b7d057a71a914a1ad71f05692c54b1e
4cb2dfe4f2aab9b92dad8d53a182bded3df97cbf
ff24fcd4b42c74b95fe3670cc08854933511a16a9128e01f418fa44e3d2cc1b1
GET /wp-content/plugins/hide-price-add-to-cart-button/assets/js/jquery.popupoverlay.js?ver=1.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:20:48 GMT
Accept-Ranges: bytes
Content-Length: 23763
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
185.198.56.177200 OK 97 kB URL HTTP/1.1 shop.safico5.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (31997)
Hash 49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Fri, 17 May 2019 04:25:54 GMT
Accept-Ranges: bytes
Content-Length: 96873
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
185.198.56.177200 OK 9.6 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (9172)
Hash 81b2be18696c4dfe620f7b6d0d75a566
0c3cd7bdf58a65b07e17be39cfe4e386571bb4bd
120aaf6681ca6d34a40c559779f0a0038582a79fce1b868ff901c94d27c89c72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:02 GMT
Accept-Ranges: bytes
Content-Length: 9566
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0.7
185.198.56.177200 OK 119 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0.7
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (41022), with CRLF line terminators
Size 119 kB (119386 bytes)
Hash 1eca6ed028850aa07d5f4a003fd7079e
1f02b8c5485108373bdd14a96bb1fe22d72e157b
9556bca5ad5eb24439887d7339fcb687088776bbaa995553aa489c9607cf9e19
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0.7 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:44:19 GMT
Accept-Ranges: bytes
Content-Length: 119386
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.12
185.198.56.177200 OK 320 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.12
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (56690)
Size 320 kB (319833 bytes)
Hash 44babb36ae0b113240c5fb64de3d7452
1e21890a87d92fb2796f3123719f9d37b8374454
8c41f7fdc32cb2fcf0d5c980a8a70724e37948a702ae9664d5879eeada814ab2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.12 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:44:19 GMT
Accept-Ranges: bytes
Content-Length: 319833
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0
185.198.56.177200 OK 992 B URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
Hash 787fe4f547a6cb7f4ce4934641085910
c2dee88d5bdfef214ce9c56f71a1df51cda0f328
654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 19:44:44 GMT
Accept-Ranges: bytes
Content-Length: 992
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.9
185.198.56.177200 OK 15 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.9
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
Hash eea94f6013d8a939c0b4ace7753afe6e
df8fa5affa60932e9aa1cfbda370c0c1bb3b380f
72ebfeb1ce24b152349b7a231f6fc29ff2a2b7a5ede91dcdb80d6b9de1779046
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.9 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:17 GMT
Accept-Ranges: bytes
Content-Length: 14627
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
185.198.56.177200 OK 1.8 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (1680)
Hash 943f6eb962c25bd965e0f0e5a284fcd0
b050a98ebaef01d7597bf8c1acb995c0ef3bcbd9
50de09b0bb8d0ac656aa9b3a1e4ef58a3f2d1abd734cad68b0e12191e9d215ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:02 GMT
Accept-Ranges: bytes
Content-Length: 1846
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.2.0
185.198.56.177200 OK 2.0 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (1988), with no line terminators
Hash 33f6a8db1dd1d638ac9c85f7f002d2ae
aed255e89b7f96c9d2f680161b342fe2cd4d9750
216b1975886a79831af509bca3ead228947f50251c3a4f53c0a2a9095c292308
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:02 GMT
Accept-Ranges: bytes
Content-Length: 1988
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.2.0
185.198.56.177200 OK 2.9 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (2940), with no line terminators
Hash 3518c9cf4786d55c48e6b318cdf3c8de
ee13e5307a87355b9c35aa2e2907f642839a80cf
bed0bd033705c33f1742d8fab2bfed8e945567319fd00e529838392eca49eac0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:02 GMT
Accept-Ranges: bytes
Content-Length: 2940
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/style.min.css?ver=5.2.0
185.198.56.177200 OK 842 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/style.min.css?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 842 kB (842043 bytes)
Hash 3be6068e12fa719cce8ad588d8da1b11
ca3e96ac4e2df4e2e37c4be57c772a85e42461c0
e2a8128a9955861c2413a4fa736d8348e3f7a856defa768968054d152663ca88
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/style.min.css?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:16 GMT
Server: Apache
Last-Modified: Sun, 12 Jul 2020 14:13:47 GMT
Accept-Ranges: bytes
Content-Length: 842043
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
shop.safico5.com/wp-includes/js/underscore.min.js?ver=1.8.3
185.198.56.177200 OK 16 kB URL HTTP/1.1 shop.safico5.com/wp-includes/js/underscore.min.js?ver=1.8.3
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (16010)
Hash 203eeb8dd53e84fb53b7aeffb562d825
b4b4361a61ee78717bdcffe5c46ea79cdc3e04ae
6cd0d6897b3d4779f7d88ce72531f22fbf75851b195fb14e6f3f23d051b3d1e9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 06:25:58 GMT
Accept-Ranges: bytes
Content-Length: 16045
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/js/sweetalert2.all.min.js?ver=1.0.6
185.198.56.177200 OK 64 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/js/sweetalert2.all.min.js?ver=1.0.6
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Unicode text, UTF-8 text, with very long lines (39074)
Hash 5697967536c81cf139d6e2f36ca8e1c5
f37fdd90a32aa84ef4aee82e56fb798f2b238be0
1fb5bdf552db295a96ea4b5c90679159db62417fb69fe0b57792e57daf79cfd9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/get-a-quote-button-for-woocommerce/assets/js/sweetalert2.all.min.js?ver=1.0.6 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:03:49 GMT
Accept-Ranges: bytes
Content-Length: 63907
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-includes/js/wp-util.min.js?ver=5.4.10
185.198.56.177200 OK 1.1 kB URL HTTP/1.1 shop.safico5.com/wp-includes/js/wp-util.min.js?ver=5.4.10
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (1042)
Hash 8852ab48e7d14f035a27f3c15d31c054
eed53bd391b539796dfe3b5bc5849170ab77c987
6d7c73e67cbb5215d633ce9ad65f0c0377004621fce62982568024178ac4b589
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=5.4.10 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 06:25:58 GMT
Accept-Ranges: bytes
Content-Length: 1077
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:10:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/js/frontend.js?ver=1.0.6
185.198.56.177200 OK 2.7 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/get-a-quote-button-for-woocommerce/assets/js/frontend.js?ver=1.0.6
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
Hash e17cea952dc0485ec3d441276d1598dd
161363e72436fd69f532db5a60ac86639405a460
bca947113e7a705d7ffc4ff5cdeb4c60e2fd9f5a595af9272d07d29a4861d043
GET /wp-content/plugins/get-a-quote-button-for-woocommerce/assets/js/frontend.js?ver=1.0.6 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Fri, 30 Jul 2021 22:03:49 GMT
Accept-Ranges: bytes
Content-Length: 2699
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.2.0
185.198.56.177200 OK 36 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (32004)
Hash 3a9c9706a7b52f750c71096411cc18bc
30fcae004682838e945414717bb854cba0e27483
322bf3797b194ae22aafa05a366471210116b26feeef7ea074752efff0b7f061
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 19:46:06 GMT
Accept-Ranges: bytes
Content-Length: 35722
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0
185.198.56.177200 OK 21 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (20378)
Hash 463cf6ebc00dd2045999aadbcb73a74a
52185ae4be6f23dc20aaa58b86c1f98db3f840d9
9be6923457d76debf4c512fac0a2173aaa94748868d26566515ce2a4156d083d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 19:46:06 GMT
Accept-Ranges: bytes
Content-Length: 20597
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.magnific-popup.min.js?ver=5.2.0
185.198.56.177200 OK 21 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.magnific-popup.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (21014)
Hash be3333626c57af03599abcb59b325e09
3824067348f6485d6b07d3a43660804e3731b21a
ecbef0f33e8ccedd2c605816e052cfff778abcc0e30a80b874c097a5fddd24fc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/jquery.magnific-popup.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 21143
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/owl.carousel.min.js?ver=5.2.0
185.198.56.177200 OK 43 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/owl.carousel.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (32012)
Hash 6473747d818f47587036ccde48050d82
75560ff8e721a6344a927f369debcf80004c9d24
63c97e11ea143afafc4aa123fe04f28c16fc0aa86dac0e8653d3f8c81fb8d5c1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/owl.carousel.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 42854
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/photoswipe.min.js?ver=5.2.0
185.198.56.177200 OK 32 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/photoswipe.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (31568)
Hash bcdf33eac62d9b05818b4b0bcebd3c0d
0eff83b8a6b3de9c026feb4343340ad32dd9eb46
8d1839f75f49b5265a259c92a9910c995c6e6802de978c3b9f57c4cf76fde538
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/photoswipe.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 31669
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/photoswipe-ui-default.min.js?ver=5.2.0
185.198.56.177200 OK 9.8 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/photoswipe-ui-default.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type HTML document, ASCII text, with very long lines (9663)
Hash 65fe6ffafd6b9bead87a69ec185b1851
7cc4588e4d4f19610f1d7839e02db5417efbfd53
0f3985bd180518d18af54572f8d4550ae3b3a57a342cdd593da65fb9052da7b0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/photoswipe-ui-default.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 9774
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/slick.min.js?ver=5.2.0
185.198.56.177200 OK 33 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/slick.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (32254)
Hash ebcbc22f8c948f222c19e6bde99a776d
c625977ba906660be3757d831d6466c9e24113df
8ac889108f5a29918a940026d4f198e2bc28bf8434b2127493bd78472f076e92
GET /wp-content/themes/basel/js/slick.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 33293
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.justifiedGallery.min.js?ver=5.2.0
185.198.56.177200 OK 10 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.justifiedGallery.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (10292)
Hash b845553890a6c0afd5c842fd9c8ff563
af6b3bd743cfc35848f7cf483b3503fdf95298f8
0e2946c95e45d540c2a8e56a80ca942b40d73da93eecac12a9df2997d7e4b627
GET /wp-content/themes/basel/js/jquery.justifiedGallery.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 10451
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/imagesloaded.pkgd.min.js?ver=5.2.0
185.198.56.177200 OK 6.9 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/imagesloaded.pkgd.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (6832)
Hash 511ef2f6ee750edc32bb5c8d5d324e7e
4bccbca87d32236ed7a6f37129cc1accf20d2a8f
37dbf4b6012d4e23cbc1cba50baa3572c93a5c371b9873fb5440cb84dfbf9902
GET /wp-content/themes/basel/js/imagesloaded.pkgd.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 6949
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.pjax.min.js?ver=5.2.0
185.198.56.177200 OK 8.2 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.pjax.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (8226)
Hash ca28300ba0cc1071dea2d4a9a51a0e91
49e0f0b44d78b2364439abb4bb4dfbb44ae650da
e0a05948b77f5f0143c4ff0a7b232fe92e1ad75a0c5ad9d1ea7051471ccd175c
GET /wp-content/themes/basel/js/jquery.pjax.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 8227
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/packery-mode.pkgd.min.js?ver=5.2.0
185.198.56.177200 OK 39 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/packery-mode.pkgd.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (30452)
Hash 1e765cacd65af337bc5e83922d198fb0
50b326aa650dab386b1711ac0ff75eaa89899f13
a42178e7633b94dd933b09013c2ee97ec1df686b40499b30ad864cece6d2bbd9
GET /wp-content/themes/basel/js/packery-mode.pkgd.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Thu, 21 Jun 2018 12:50:20 GMT
Accept-Ranges: bytes
Content-Length: 39335
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.autocomplete.min.js?ver=5.2.0
185.198.56.177200 OK 13 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.autocomplete.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (12783)
Hash 29a37cf65b136b355675c1b5ad8e1904
63e56dcf4f4827d3fef0f956950bf3b0faf12fbb
9048a345c3c7a31ab850a70a8cdf7c9e6dfba60ded8e5a27f1e4b50f679222a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/jquery.autocomplete.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 13 Mar 2018 13:57:32 GMT
Accept-Ranges: bytes
Content-Length: 13044
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.countdown.min.js?ver=5.2.0
185.198.56.177200 OK 3.8 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.countdown.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (3811)
Hash 91d933a246c4f0bb8ffacbed78809090
bd128d52a16cb5145e1fe3c3f74a866ce0c385fa
6de01bd50dbe13165a75ffed762f5b9d6908d07bdfeb1e0dfe0e00a569899b9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/jquery.countdown.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 3812
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/threesixty.min.js?ver=5.2.0
185.198.56.177200 OK 7.6 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/threesixty.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (7483)
Hash 69133807158adb645fe96d787eef4597
b3b2163d05d3fa84d3050d48458b34cbccac55b9
5c93f8dff4b0150637b082b470b67ca6147485186eb4edcf8486f0fae25d4ea1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/threesixty.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:58 GMT
Accept-Ranges: bytes
Content-Length: 7590
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/TweenMax.min.js?ver=5.2.0
185.198.56.177200 OK 109 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/TweenMax.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (65536), with no line terminators
Size 109 kB (108812 bytes)
Hash 3eb2644710619c4775d1579dff5554d0
56a654d0b6f3f8e28dbb7a09d5837de544db7b12
c11955839bf069ad99210f7748832c10690f107f7a3d3680bc9fad9ba0dc04f1
GET /wp-content/themes/basel/js/TweenMax.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 108812
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.nanoscroller.min.js?ver=5.2.0
185.198.56.177200 OK 10 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.nanoscroller.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (10166)
Hash 1dbbad4b0a18467ba6665aecf33b94f9
abf77460f75199e331c2abdcc2d216750d7de977
03915227c708496ef318b35837b79b4c4ebc270afa0402e20e9aff63e2ca8f26
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/jquery.nanoscroller.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 10167
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.panr.min.js?ver=5.2.0
185.198.56.177200 OK 1.3 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.panr.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (1331)
Hash 42c88f066e605f5c783f34b67d54c397
b047b64506c839e1d9778fe0c374d31ed325daa5
1750e4d5dc5242b0374e990878270389318f736cafd50975414bbb83000ff58d
GET /wp-content/themes/basel/js/jquery.panr.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 1332
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:10:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
shop.safico5.com/wp-content/themes/basel/js/moment.min.js?ver=5.2.0
185.198.56.177200 OK 52 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/moment.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (32013)
Hash aeb7908241d9f6d5a45e504cc4f2ec15
32fdf6730be34538e09378ec6cc55229d9a70151
d618d4869738e0dc22360f0ec0cbb6433257843f24723fac240dda0906685238
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/moment.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2017 12:50:32 GMT
Accept-Ranges: bytes
Content-Length: 51465
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.parallax.min.js?ver=5.2.0
185.198.56.177200 OK 559 B URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.parallax.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (558)
Hash 1b1821804c55f95e993652998b4ab390
27275c70dfd8ee198a9491e234a4a099efe45b0c
03b1625f677108a5cfcd566aa415c6fd4fcd5725bf8acda096c17c353ff30751
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/jquery.parallax.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 559
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/vivus.min.js?ver=5.2.0
185.198.56.177200 OK 11 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/vivus.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (10993)
Hash 4ed9320807addb0a2a66496aa1a14744
d5bf6bf3e6c162d9755d9fd1310a815d05ccc243
c8ba883081228dba298f542e12035565d7c6f01ec66b31ffc1d309a9dfe7495e
GET /wp-content/themes/basel/js/vivus.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2016 13:43:04 GMT
Accept-Ranges: bytes
Content-Length: 11144
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:10:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/karla/v23/qkB9XvYC6trAT55ZBi1ueQVIjQTD-JrIH2G7nytkHRyQ8p4wUje6bg.woff2
216.58.207.227200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/karla/v23/qkB9XvYC6trAT55ZBi1ueQVIjQTD-JrIH2G7nytkHRyQ8p4wUje6bg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 21248, version 1.0\012- data
Hash 481105857aba99f91faa3cd9a360e8e1
a2d8dcb59555878d359c2bebbc8be6985d26d7d2
f8c2240958cb1fff47d921ca0f3097f9e7403ada01af2382477ef42c404c38d4
GET /s/karla/v23/qkB9XvYC6trAT55ZBi1ueQVIjQTD-JrIH2G7nytkHRyQ8p4wUje6bg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shop.safico5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:32:13 GMT
expires: Fri, 01 Dec 2023 08:32:13 GMT
cache-control: public, max-age=31536000
age: 157089
last-modified: Mon, 11 Jul 2022 20:38:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2
216.58.207.227200 OK 39 kB URL HTTP/2 fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 39056, version 1.0\012- data
Hash ab20a3cbee44939ad33cb2d162484f23
f4df3e71cc8aebd85b6207d4ac35c76c602c2779
0a1dc89a4a29593bd35cc4811bfedd9765eeca4a9ef57323eec2cff14c9f9c5b
GET /s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shop.safico5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 19:30:51 GMT
expires: Tue, 28 Nov 2023 19:30:51 GMT
cache-control: public, max-age=31536000
age: 376771
last-modified: Mon, 15 Aug 2022 18:05:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:10:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/karla/v23/qkB_XvYC6trAT7RQNNK2EG7SIwPWMNlCVytER0IPh7KX59Z0CnSKbGkv.woff2
216.58.207.227200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/karla/v23/qkB_XvYC6trAT7RQNNK2EG7SIwPWMNlCVytER0IPh7KX59Z0CnSKbGkv.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 21712, version 1.0\012- data
Hash 76e3377255ab63429783bbcaebbce708
c626af02b36481299a90249ead5f484f107991f3
2b5074b9993e266faff0c7be6f5c65cc79b6f5d55b62d130788861ab3a88c86c
GET /s/karla/v23/qkB_XvYC6trAT7RQNNK2EG7SIwPWMNlCVytER0IPh7KX59Z0CnSKbGkv.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shop.safico5.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 05:39:33 GMT
expires: Tue, 28 Nov 2023 05:39:33 GMT
cache-control: public, max-age=31536000
age: 426649
last-modified: Mon, 11 Jul 2022 20:34:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
shop.safico5.com/wp-content/themes/basel/js/moment-timezone-with-data.min.js?ver=5.2.0
185.198.56.177200 OK 33 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/moment-timezone-with-data.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (32503)
Hash 50a20a49b17bf3aa8e26d3813e882a5a
09284ca9cfe2b8ebb789f891e1cd3cd6a53d70eb
d5b03db3568cf210879ef3ea048136335460caadc9536bd64c1ee4348a36fe24
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/moment-timezone-with-data.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2017 12:50:32 GMT
Accept-Ranges: bytes
Content-Length: 32666
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/fastclick.min.js?ver=5.2.0
185.198.56.177200 OK 7.8 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/fastclick.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (7767)
Hash 6c754ebb16498dafcd60b23c2aee511e
94f93c68b74511b2729be83b3f3df9b3f4f76ad5
93c54cc6849599fb6f2243abe8334f86b8e84688f98005ac16842bf8ac0360eb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/fastclick.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Wed, 27 Feb 2019 12:35:08 GMT
Accept-Ranges: bytes
Content-Length: 7768
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/jquery.parallax-scroll.min.js?ver=5.2.0
185.198.56.177200 OK 3.1 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/jquery.parallax-scroll.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (3137), with no line terminators
Hash 00b2095a33ebf5f0fd248a89d6a814be
b4a7ab71a0547735a0239aa66e1e08316cda34c9
d95e6092e0a499d87dfc59b6daa43fc73be7a31549404ab2da9454a0ce5ab025
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/jquery.parallax-scroll.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Thu, 24 May 2018 12:50:56 GMT
Accept-Ranges: bytes
Content-Length: 3137
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/device.min.js?ver=5.2.0
185.198.56.177200 OK 3.1 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/device.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (3061), with no line terminators
Hash 42d2a84f8934933796892821e3b90391
06aaac64bfbf121dc2bf9e28b6c404e3c52fd27f
4f164ac673a1beee85461fe53f89f12d69c2ed5a6adff3d4d69f762c6f766411
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/device.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 08 Oct 2018 15:51:20 GMT
Accept-Ranges: bytes
Content-Length: 3061
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:10:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
shop.safico5.com/wp-content/themes/basel/js/waypoints.min.js?ver=5.2.0
185.198.56.177200 OK 8.0 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/waypoints.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (7808)
Hash b72a7b8d3d65ebc954b5b3103fdff409
c0c0d473a9bc5a9739f8f44158027d34e31bd642
d271120b283f037391dcecfb7e65de5ac6d4feaf3a990ba2a4a2d5289a40333e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/waypoints.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 10 Jun 2019 15:59:34 GMT
Accept-Ranges: bytes
Content-Length: 8044
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/themes/basel/js/functions.min.js?ver=5.2.0
185.198.56.177200 OK 88 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/js/functions.min.js?ver=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (32014)
Hash 8534bb20faf52afaafa827c374961e61
f6adf963f832222f0a68565939c5649efdc81f18
a6a2963c70cd51cfe867509a32d709596d726be69ce88fd00e4dfc33bb0f6a4b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/js/functions.min.js?ver=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 24 Feb 2020 14:01:54 GMT
Accept-Ranges: bytes
Content-Length: 87514
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=4.2.0
185.198.56.177200 OK 14 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=4.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (13493), with no line terminators
Hash cad9fc743d3e4a8c5b49e1037563bcb3
9394d1f0fd4f7672813e3c98248037e2c8eda53f
0daae4531834043fe599e1d9d4f9dd9d145f5ebf70ec87f6b1689a970215fff7
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=4.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 01:42:02 GMT
Accept-Ranges: bytes
Content-Length: 13493
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-includes/js/wp-embed.min.js?ver=5.4.10
185.198.56.177200 OK 1.4 kB URL HTTP/1.1 shop.safico5.com/wp-includes/js/wp-embed.min.js?ver=5.4.10
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type ASCII text, with very long lines (1391)
Hash 905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991
GET /wp-includes/js/wp-embed.min.js?ver=5.4.10 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 06:25:58 GMT
Accept-Ranges: bytes
Content-Length: 1426
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2
185.198.56.177200 OK 76 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Web Open Font Format (Version 2), TrueType, length 75760, version 330.32636\012- data
Hash 832f6e62aaf3909d6b94c8a9c1e4dd51
4a06418cb56a66af5a1c0f59791469dea1dc87fa
8556fd48cf33ca3028e3fff4042979f224987ee317cc9032dd5bba996b363009
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.2.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 24 Sep 2019 01:57:22 GMT
Accept-Ranges: bytes
Content-Length: 75760
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: font/woff2
shop.safico5.com/wp-content/themes/basel/fonts/Simple-Line-Icons.woff?v=5.2.0
185.198.56.177200 OK 53 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/fonts/Simple-Line-Icons.woff?v=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Web Open Font Format, TrueType, length 53444, version 2.0\012- data
Hash 0bbfc705e37a927ce2ae72b749b3154d
c7f8307972e263ccb2de346cfd4890ae3ad15c7e
72bbd904eec22882287e50b2f64987560c8646abc0b8e942366a272a4fe7cd39
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/basel/fonts/Simple-Line-Icons.woff?v=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/uploads/2021/12/basel-dynamic-1640111120.css?ver=5.2.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 29 Nov 2016 23:08:28 GMT
Accept-Ranges: bytes
Content-Length: 53444
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff
shop.safico5.com/wp-content/themes/basel/fonts/basel-font.woff?v=5.2.0
185.198.56.177200 OK 8.1 kB URL HTTP/1.1 shop.safico5.com/wp-content/themes/basel/fonts/basel-font.woff?v=5.2.0
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Web Open Font Format, TrueType, length 8096, version 1.0\012- data
Hash 86b8298a7cbf60b3f3794c0420ba8ff1
7700471e85f1319e14e1024b62ad6778ba4a33bb
43ac0e033311820c6d1208caffb7672ee831e82fad2d4d333cf5b2ac43412478
GET /wp-content/themes/basel/fonts/basel-font.woff?v=5.2.0 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/uploads/2021/12/basel-dynamic-1640111120.css?ver=5.2.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Fri, 21 Feb 2020 20:55:44 GMT
Accept-Ranges: bytes
Content-Length: 8096
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: font/woff
shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2
185.198.56.177200 OK 14 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Web Open Font Format (Version 2), TrueType, length 13564, version 330.32636\012- data
Hash e7d4bfa72a1f7d352fa6605501a3e2f2
afd94b571eff9da7d85490bdb4c9874419cd260d
d144631af733437b73fba8e784ab694a97fab80476e82325f7a58f6408b28850
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.2.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 24 Sep 2019 01:57:22 GMT
Accept-Ranges: bytes
Content-Length: 13564
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: font/woff2
shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2
185.198.56.177200 OK 75 kB URL HTTP/1.1 shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type Web Open Font Format (Version 2), TrueType, length 75368, version 330.32636\012- data
Hash 859c4002d9954718cac1ddea5555698f
2392ce297c92bcf2c7d5a4c461a582dadc8039c8
5054ab369966fea3657ac6af00c3bc47bdc9e7b5114e61d1764be06213ca9781
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.2.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Tue, 24 Sep 2019 01:57:22 GMT
Accept-Ranges: bytes
Content-Length: 75368
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: font/woff2
shop.safico5.com/wp-content/uploads/2020/06/safilogo.png
185.198.56.177200 OK 17 kB URL HTTP/1.1 shop.safico5.com/wp-content/uploads/2020/06/safilogo.png
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type PNG image data, 487 x 174, 8-bit/color RGBA, non-interlaced\012- data
Hash bba985cc20682068e7ec6cda8535ab83
94cb3cd9892c4715b41ea0380ae745676df8958f
2d3972eaef6b7e31c8421059a3f242739d6f97addb9ba9674fb8e25617c755be
GET /wp-content/uploads/2020/06/safilogo.png HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Fri, 26 Jun 2020 21:35:04 GMT
Accept-Ranges: bytes
Content-Length: 17191
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
shop.safico5.com/wp-content/uploads/2020/06/logofooter.png
185.198.56.177200 OK 17 kB URL HTTP/1.1 shop.safico5.com/wp-content/uploads/2020/06/logofooter.png
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type PNG image data, 487 x 174, 8-bit/color RGBA, non-interlaced\012- data
Hash b1e60cd786c2774b74a8dc5819c60961
a16a9027cc5b7d5274ec660eb6a2e126394da70a
72a5d5ebb3271c5a040cbe75041e602485045ef9e3f933d2af41b476f482b827
GET /wp-content/uploads/2020/06/logofooter.png HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Fri, 26 Jun 2020 23:40:27 GMT
Accept-Ranges: bytes
Content-Length: 17428
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18549
Expires: Sat, 03 Dec 2022 09:19:31 GMT
Date: Sat, 03 Dec 2022 04:10:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18549
Expires: Sat, 03 Dec 2022 09:19:31 GMT
Date: Sat, 03 Dec 2022 04:10:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18549
Expires: Sat, 03 Dec 2022 09:19:31 GMT
Date: Sat, 03 Dec 2022 04:10:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18549
Expires: Sat, 03 Dec 2022 09:19:31 GMT
Date: Sat, 03 Dec 2022 04:10:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3abdcce275bb9723b4ac1d0c38cc8891
91f0d888c38db0899f106b652e3dcac062648099
ff411fc0d5abaf519d6600961ec51ad71ad9a02e23cc02ad818e27f0324b3d1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7657
x-amzn-requestid: c0dbd862-41cf-4fa8-ab6b-256763c63fbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1Fo6IAMF9EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-554ffbc83fd70c557437120f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ElvfdUly4Rb3YOQyMO2C_VelFUe6xcFbMh6x5fNrRzGjKCITdGSwLQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:47 GMT
age: 23555
etag: "91f0d888c38db0899f106b652e3dcac062648099"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18549
Expires: Sat, 03 Dec 2022 09:19:31 GMT
Date: Sat, 03 Dec 2022 04:10:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49fea74a471d9b45d94402298988d827
11dbe272c75ad8dda9fe66062f761ad0a978c350
ddcf2de56e0fa45e50b45bb021a7b212ddf1ba5a108a849df04ad109809913bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4996
x-amzn-requestid: ac93701b-5591-447b-abcd-6dd7c8236d63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1EmIoAMFUyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-62984f247ab5233275eefc7f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8_misG2sRVJlrCdLEQhPoQdkNAxTYwdSqNwAoqDzwEZuC787t9US0A==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:47 GMT
age: 23555
etag: "11dbe272c75ad8dda9fe66062f761ad0a978c350"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7216286-96f7-46a8-9738-52007e2fafb6.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7216286-96f7-46a8-9738-52007e2fafb6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac15b0561874b0e98a14d037e06dc444
38197764b12e149806126e8a187b0571630d5b26
b4e8ca67dc3e119e2a41d1a362641a1354d5ef68ad18eaa4383e82d38d3c0399
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7216286-96f7-46a8-9738-52007e2fafb6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8169
x-amzn-requestid: a3054dff-b0dd-43cb-ade7-7ec1df6e672f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZPWH4DoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2e-788f6fdd1a5e024259e58d80;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:34 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 56bQRYbHZJbthXKRpMuKIKkPOxTwDxReBCStAwfkSmc3afFvCcdGdg==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:43:32 GMT
age: 23210
etag: "38197764b12e149806126e8a187b0571630d5b26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F690354e1-4f19-43a3-a840-dac23e2cbe16.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F690354e1-4f19-43a3-a840-dac23e2cbe16.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94556ef834fbd97092ea3e546fece90d
3f75442d8577c6272b9a3fdf2c5d1305c5e02703
0e49c3b246f4f999404e408e5326c636584f18ddaeec4ff50ffdd74ad48b9dd3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F690354e1-4f19-43a3-a840-dac23e2cbe16.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10454
x-amzn-requestid: 3c95e941-d127-43a5-a338-7fff4e751367
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTPfcG82IAMF2JA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63845f95-4dde51fa769890d057216cfa;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 07:13:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GaPRHeLJCWSLgGsYaCxii5UNLcRbVsBJV-XvSnDid4KzIqGqLWCc7Q==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 08:18:23 GMT
age: 71519
etag: "3f75442d8577c6272b9a3fdf2c5d1305c5e02703"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73a2ea57-9c46-4205-a91a-a39e992ffe29.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73a2ea57-9c46-4205-a91a-a39e992ffe29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a483cb4f5948987ff2fa6be8d8f3c4ab
3b36c020f5fc38693ac159e5747518a3234ba8cc
a1c33278142371a168ca50aff0c5dc887461a9c83251e397d45c957c7cf788e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73a2ea57-9c46-4205-a91a-a39e992ffe29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6042
x-amzn-requestid: 51d7c6d8-e3ab-42ec-8771-22244bc65da0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZmkNGe0oAMFXNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386eae7-04a064426ee5d39b3c2afdfb;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 05:32:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9fzO8Wc_eneNxExk9EPddOAUZPfKsbobykdAyEkBIzw1_wxawY9lOg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 07:25:11 GMT
age: 74711
etag: "3b36c020f5fc38693ac159e5747518a3234ba8cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PIC-TIeTFK_Y2AiqowYT4_8tMuzIKO23lAwx18fYepTf4PIWkmLqkQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 05:20:15 GMT
age: 82207
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
shop.safico5.com/wp-content/uploads/2020/06/favicon.png
185.198.56.177200 OK 2.6 kB URL HTTP/1.1 shop.safico5.com/wp-content/uploads/2020/06/favicon.png
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash c5349443307a790a0fe15d84dfcd1f2c
0ca1c4e8d47ecea9c97bc089298fa962d766198e
89db75097d82abb79852870a05f812d69e36e8afcd302215c3121361442cbed3
GET /wp-content/uploads/2020/06/favicon.png HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Last-Modified: Fri, 26 Jun 2020 18:11:04 GMT
Accept-Ranges: bytes
Content-Length: 2592
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png
shop.safico5.com/?wc-ajax=get_refreshed_fragments
185.198.56.177200 OK 516 B URL HTTP/1.1 shop.safico5.com/?wc-ajax=get_refreshed_fragments
IP 185.198.56.177:0
ASN #60117 Host Sailor Ltd
File type JSON data\012- , ASCII text, with very long lines (516), with no line terminators
Hash 9e5abe849f9ea504bd12d33b607b90ea
dd6779221f63ceb07a8b976135ae2c1ed47fffa9
abc63189bea868a24ab62b4f547f544b0b83a337d5c40a28482174472577dd0d
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: shop.safico5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://shop.safico5.com
Connection: keep-alive
Referer: https://shop.safico5.com/wp-content/plugins/auth/en/login.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:10:17 GMT
Server: Apache
Access-Control-Allow-Origin: https://shop.safico5.com
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
X-Robots-Tag: noindex
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
fonts.googleapis.com/css?family=Karla%3A400%2C700%2C400italic%2C700italic%7CLora%3A400%2C700%2C400italic%2C700italic%7CLato%3A100%2C300%2C400%2C700%2C900%2C100italic%2C300italic%2C400italic%2C700italic%2C900italic&ver=5.2.0
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Karla%3A400%2C700%2C400italic%2C700italic%7CLora%3A400%2C700%2C400italic%2C700italic%7CLato%3A100%2C300%2C400%2C700%2C900%2C100italic%2C300italic%2C400italic%2C700italic%2C900italic&ver=5.2.0
IP 142.250.74.106:0
GET /css?family=Karla%3A400%2C700%2C400italic%2C700italic%7CLora%3A400%2C700%2C400italic%2C700italic%7CLato%3A100%2C300%2C400%2C700%2C900%2C100italic%2C300italic%2C400italic%2C700italic%2C900italic&ver=5.2.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop.safico5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 04:10:22 GMT
date: Sat, 03 Dec 2022 04:10:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2