www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
179.43.159.134301 Moved Permanently 169 B URL HTTP/1.1 www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 0f952b73d3f5586637ea9a5a789d48f4
b29aff4ffa1d4decd77db5160f920e1c6417e5e9
69d11528ee32902d0c47ed215877f0610399536f755db03ed02a77ecedd74751
Analyzer Verdict Alert fortinet Phishing
GET /shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/ HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:50 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11565
Expires: Sat, 24 Sep 2022 05:46:20 GMT
Date: Sat, 24 Sep 2022 02:33:35 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
18.164.68.15200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.164.68.15:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 02:05:28 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6a4b8b5ea0a3ab45ef51e6681d8320bc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: qa22ZkZ2RZVqlEQBthuOtciA1RaQQrNMVeTxpNL0dR0zwq7U1bhPbg==
Age: 1687
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
108.156.28.51200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 108.156.28.51:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 717666fbcd9eb8ed70d0f46dd99d0448.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: ssMs7pX-wV5v12PCVlT9Oew5Rk5SOAI3p2rMyp9ntsLMO8AG_S_zwA==
age: 80433
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 02:33:35 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.164.68.15200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.164.68.15:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Expires, Alert, Content-Length, ETag, Cache-Control, Content-Type, Backoff, Pragma, Last-Modified
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 24 Sep 2022 02:29:21 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sat, 24 Sep 2022 02:33:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9f698c14e6527accab310c26bfca2030.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: NTFRJhUqIMKzf5sGz4qYsel3EZUcuBlCP49wp6LbtT64RH11c-FnzA==
Age: 769
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a8ab151078a85943c8bbd3658d7d40c
9f951641734c8bcec2cccac9532acac9996fd7fb
7f5551c86a993bb1cc6d06f3109c1048a01e0889c83d2983b67f603e3cd2b628
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F5551C86A993BB1CC6D06F3109C1048A01E0889C83D2983B67F603E3CD2B628"
Last-Modified: Fri, 23 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21586
Expires: Sat, 24 Sep 2022 08:33:21 GMT
Date: Sat, 24 Sep 2022 02:33:35 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2713
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 02:33:35 GMT
Last-Modified: Sat, 24 Sep 2022 01:48:22 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.187.146.10101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.146.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EoSnyzoLemGVvOlJ4DzCpw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ksu7T/sQXLGe4nu2cO1IVfZ4QQQ=
sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
179.43.159.134301 Moved Permanently 0 B URL HTTP/1.1 sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/ HTTP/1.1
Host: sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:51 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=0njq7esgttsi5k45eu43pk9l82; path=/
Upgrade: h2,h2c
Location: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14697
Expires: Sat, 24 Sep 2022 06:38:34 GMT
Date: Sat, 24 Sep 2022 02:33:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14697
Expires: Sat, 24 Sep 2022 06:38:34 GMT
Date: Sat, 24 Sep 2022 02:33:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14697
Expires: Sat, 24 Sep 2022 06:38:34 GMT
Date: Sat, 24 Sep 2022 02:33:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14697
Expires: Sat, 24 Sep 2022 06:38:34 GMT
Date: Sat, 24 Sep 2022 02:33:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0e74a-9715-4779-b8bd-d79486ea0663.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0e74a-9715-4779-b8bd-d79486ea0663.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f71b1368e471f98a48563bd55548cf8
18db64cc911a98afa49bec290658844a54bca927
c1b20952496d33635f8994558227bda8ddd268419f84123a167aade99c0ba56d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0e74a-9715-4779-b8bd-d79486ea0663.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6888
x-amzn-requestid: 3b91e2f8-7085-4598-8e10-ca4a5ee87571
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tAXFbmIAMFVQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2868-3eb36435766137c86cbd1781;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:43:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: JPJJwEIf969i4y7dwKwlFr6a9-9aKNpHZjDyX0PW3rAIDg1uO8BH3w==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:27 GMT
age: 17110
etag: "18db64cc911a98afa49bec290658844a54bca927"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f10a12719b387d176497669ba75f0acc
16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14579
x-amzn-requestid: bce2c126-0883-4255-9246-d8055860f898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCj6FYCoAMF9Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e18-66ba2e5d64b6a5b32b7ab36b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: igIWZ2IhMA_GIovp4HgIHtGeDt5xoX0iThoQFKjnNJUYP_uMdO7FHw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:11:52 GMT
age: 15705
etag: "16e42ba7b20555bf5a8615e5f4bb561204aeeb5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N7TwxCLUL8qnvm3YuZ6CGyJquVerc266VvZ1g8j5RxGpQXoUJwhULg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:51:16 GMT
age: 16941
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175a85c3-10d3-4e8f-bb64-d8da75a938c4.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175a85c3-10d3-4e8f-bb64-d8da75a938c4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 007aba90cc24589b974c6039372121d3
c308f846b81275e50122f99a229ae3fec0b5fe4c
dac4561f24f52c33e79e86b0794eab704866a879d6967ec120fdf7bc5a4e2d8c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175a85c3-10d3-4e8f-bb64-d8da75a938c4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6294
x-amzn-requestid: 4007bdf7-f31a-414b-8711-f319aa09692b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7ruHG-loAMF-QA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e265a-18dc206b23fe3e383c1eb9cc;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:34:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Qvt0ZGsgQJ6WpKx36eDB6Q22qDIkhcFOxLYyZJgiZCM7vTsLb7L8lQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:25 GMT
age: 17112
etag: "c308f846b81275e50122f99a229ae3fec0b5fe4c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8d9af95acfc8b9b431eb1e020157f6d
f6f926be6e265a597aaede424f05fcd7c76fcc20
0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:27 GMT
age: 17110
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261e052d-5e10-4c3b-815c-1ed62855e73c.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261e052d-5e10-4c3b-815c-1ed62855e73c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51954c51a08c2b93c064cb33d062295a
6786581817793da801f0034d9eaee454c11a103b
c753863b9d3a6ac9a52db03ffee8862eb26ae92250d3bffa52e57fc138456eea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261e052d-5e10-4c3b-815c-1ed62855e73c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11865
x-amzn-requestid: ae62bd6d-590b-4644-8dea-dcf38adc07e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y13FEHSxoAMFs_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632bd220-1a9fdbc01506bbf15be0fa67;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 03:10:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Tw49_6ZXQUKAWP_sEMw_yPFXzN-UksLw7AYkkPqZZ9iGdkYW650INQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 03:48:30 GMT
age: 81907
etag: "6786581817793da801f0034d9eaee454c11a103b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
179.43.159.134200 OK 89 kB URL HTTP/1.1 www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11568), with CRLF, LF line terminators
Hash 28e62128995556b4e4a48910093d3d8d
70984148a19cc54929e4eb4ff748ad82cd2c3af0
2f5e50bf7e42ccba198b17dabf69be6c0a0bb083e56fb1cebe77ec4dc51b3d00
Analyzer Verdict Alert fortinet Phishing
GET /shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/ HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Link: <https://www.sfreegames.com/wp-json/>; rel="https://api.w.org/", <https://www.sfreegames.com/?p=405505>; rel=shortlink
Set-Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1; path=/
Upgrade: h2,h2c
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 02:33:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.sfreegames.com/wp-content/plugins/fma-product-custom-options/front/css/fmepco_front_style.css?ver=4.7.24
179.43.159.134200 OK 1.2 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/fma-product-custom-options/front/css/fmepco_front_style.css?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 819be97c3bb3de9978da74b3f2a14cfd
a901fcccb749f3797d4700afdb6bbec19b0b2199
12ad57a8f41b41e94cab57ccc2c0e711f7b910ecd14b242e5394e4190ddbd190
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fma-product-custom-options/front/css/fmepco_front_style.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:53 GMT
Content-Type: text/css
Content-Length: 1215
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "4bf-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.6.1
179.43.159.134200 OK 1.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.6.1
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 9590730da0226be2ac52f7327452fa0d
5e23594192de8bb9f960a42be744ca6079c7d4c0
9ecdf64c96e3c913936ab8edf8af595d6316488bbb8851745c2d2d005fecc037
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.6.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:53 GMT
Content-Type: text/css
Content-Length: 1584
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 19 Jul 2022 18:25:44 GMT
ETag: "630-5e42c9cdb5bcb"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 02:33:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.sfreegames.com/wp-content/plugins/contact-form-7/includes/css/customer.css?ver=4.7.24
179.43.159.134200 OK 2.0 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/contact-form-7/includes/css/customer.css?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with CRLF line terminators
Hash ccfd24f34821aef516b2384b17454b0c
d5c7b051eadb94954553d4b47e94b7223eb59931
d6fa0cd228e09bd9fafa31fcd463255f805fb56b67a8639f4fe4a53f5596aba7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/customer.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:53 GMT
Content-Type: text/css
Content-Length: 1978
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 19 Jul 2022 18:25:44 GMT
ETag: "7ba-5e42c9cdb5bcb"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.css?ver=3.1.2
179.43.159.134200 OK 4.1 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.css?ver=3.1.2
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 21069a15e0be0ff9e3df58236d997f49
70a6d33cd9151fe0e7a41edd040e68e96de6beea
13bede07c601a50cb60113d07aaf2c95e8312d5afec726d01d60b04df7bf2b40
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.css?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:53 GMT
Content-Type: text/css
Content-Length: 4067
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "fe3-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.css?ver=3.1.2
179.43.159.134200 OK 12 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.css?ver=3.1.2
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 224041dc24512028718c3efea2b18e29
3efe71eeb68ed48a7ef960d2d422cc5efc53ce4e
735fb4e074e0473513fdfe9d2a077a1250246e89cd15cb44f36e46d303c45fab
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.css?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:53 GMT
Content-Type: text/css
Content-Length: 11621
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "2d65-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.1
179.43.159.134200 OK 37 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.1
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (36280)
Hash efc782921fbf98d5b9171986b75b8e17
8ad5288b036760ee15497b7da944b87dc2f13c3d
e138899229875456f4ac96ef16c7a58dadd9f81d65a6e5c0f34b636c6e2f5c26
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:53 GMT
Content-Type: text/css
Content-Length: 36641
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "8f21-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.2
179.43.159.134200 OK 9.2 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.2
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (9152), with no line terminators
Hash 2151f6abfde142cc09ec939cfcabbf1c
db949218a3c168ea57d4fe9b4196db26140181a8
5fcc39111ad0815edcaaa3b1e2364e362c1c43f8fc588a0a6548ee947713e312
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:54 GMT
Content-Type: text/css
Content-Length: 9152
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "23c0-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
179.43.159.134200 OK 3.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash d057d17357d72e1a642ef5e2d114449e
eff1b037a96fe2efb4247939938ac8fb09c8b3db
875614250bc202cfce4176b3abc9bbc5ae9932c76e83145e1247928d295cd694
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:54 GMT
Content-Type: text/css
Content-Length: 3572
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "df4-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.1.2
179.43.159.134200 OK 16 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.1.2
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (15972), with no line terminators
Hash 5a7c579e7838d4039ca4b36bdefa19f3
77a92705b477428b5eadda914e5aa23ac20e4bcf
82bb17819368e12db3c5fc1d9b8152ae99df078cd1a9a3db048680105119a2b1
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:53 GMT
Content-Type: text/css
Content-Length: 15972
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "3e64-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=2.2.1
179.43.159.134200 OK 14 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=2.2.1
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 8fc21b09439da08182d9a8d6dcf89192
a2fcea51f5239e6f2ba776f393057f08b6567f01
690746866a4d8845f80c3ad9162dfbc787e56834f12018d47b14b95e318e3838
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=2.2.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:54 GMT
Content-Type: text/css
Content-Length: 14151
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "3747-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-includes/css/dashicons.min.css?ver=4.7.24
179.43.159.134200 OK 46 kB URL HTTP/1.1 www.sfreegames.com/wp-includes/css/dashicons.min.css?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (46364), with no line terminators
Hash cf3c0e8f26fe2025a0f22138ffe30d53
48303b67f6e472663b304f9aeef59f977199f492
5c68cf1f0dca577bf260a647a1e73410fae9b838e3da448412df4b142e4fc123
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:54 GMT
Content-Type: text/css
Content-Length: 46364
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "b51c-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.1.2
179.43.159.134200 OK 59 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.1.2
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type Unicode text, UTF-8 text, with very long lines (59112), with no line terminators
Hash ca89d73bc9d775f867c6ab412d9c27ac
2aa8d7a9566ab9bb58a27c971626050891b9abd6
8fde49c131a9b1086d07bea676e3c9f7428c17bc23b635c3f706bb8a6d1e4dd5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:54 GMT
Content-Type: text/css
Content-Length: 59122
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "e6f2-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/slick/css/slick.min.css?ver=4.7.24
179.43.159.134200 OK 1.3 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/slick/css/slick.min.css?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (1297), with no line terminators
Hash 95693ccf6689c9751f16b3cce296f766
f49316134b8dd1cd53c924524b2a0d9eb1842c88
21b589bbc25d38fbf4c8168b0801ce4cf9d0aa1d372ae1ac773574aaeb10c08d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/minimal-blog/assets/lib/slick/css/slick.min.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:54 GMT
Content-Type: text/css
Content-Length: 1297
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "511-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.min.css?ver=4.7.0
179.43.159.134200 OK 31 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.min.css?ver=4.7.0
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:54 GMT
Content-Type: text/css
Content-Length: 31000
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "7918-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/magnific-popup/magnific-popup.css?ver=4.7.24
179.43.159.134200 OK 7.0 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/magnific-popup/magnific-popup.css?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 30b593b71d7672658f89bfea0ab360c9
d6963db6faa9294387bb3175813a61bc3f859437
45d1f5f6cf913746c45dd697b1a8f3b719c02d8b3f678dc7fc2766d54e1aaf6e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/minimal-blog/assets/lib/magnific-popup/magnific-popup.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:54 GMT
Content-Type: text/css
Content-Length: 6951
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "1b27-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/line-awesome/css/line-awesome.min.css?ver=4.7.24
179.43.159.134200 OK 28 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/line-awesome/css/line-awesome.min.css?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (27557)
Hash 4334c8c70998d81bde3e6765828811a6
de27d3920885be830eba8b77ff1c3b320afc5b98
1e8638f605575bd335d49efa95e165adf7ef06dda8e367661ac2517a0a3a96b4
GET /wp-content/themes/minimal-blog/assets/lib/line-awesome/css/line-awesome.min.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:54 GMT
Content-Type: text/css
Content-Length: 28101
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "6dc5-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/newsletter/subscription/style.css?ver=4.8.0
179.43.159.134200 OK 5.1 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/newsletter/subscription/style.css?ver=4.8.0
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash ac0fe8eb25f685da6bda20741d7371c7
e3da306718444c47ef7e41074c28c4dea31849b9
1ff78109bc845740a48c5d586f90f652707914ed5ac44d9a20f0bc3694e12747
GET /wp-content/plugins/newsletter/subscription/style.css?ver=4.8.0 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:54 GMT
Content-Type: text/css
Content-Length: 5054
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "13be-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/fma-product-custom-options/front/js/accounting.min.js?ver=4.7.24
179.43.159.134200 OK 3.2 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/fma-product-custom-options/front/js/accounting.min.js?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (3019)
Hash b34ee54abcdda3f94566ea5e7312fdbc
4230cb168bd0bc6f831da5ac89517c865e0bda96
de4945bf8c32247c3570f1945b4af05f3efb440b46c93c18d2f428ae9162c8ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fma-product-custom-options/front/js/accounting.min.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:55 GMT
Content-Type: application/javascript
Content-Length: 3151
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "c4f-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/style.css?ver=4.7.24
179.43.159.134200 OK 47 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/style.css?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 68e540f37576b76be18a90b89e223f36
3bae4438dd0aaf56a1f82a91e8e8ebe22b4156ac
cd10561a36bcf72179efee535a974cf2eef0184c9342b031372a74b260817bac
GET /wp-content/themes/minimal-blog/style.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:54 GMT
Content-Type: text/css
Content-Length: 46983
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "b787-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
179.43.159.134200 OK 10 kB URL HTTP/1.1 www.sfreegames.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:55 GMT
Content-Type: application/javascript
Content-Length: 10056
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "2748-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/utils.js?ver=4.7.24
179.43.159.134200 OK 9.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/utils.js?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with CRLF line terminators
Hash 451f87941e1e7dde1bf245423cace1cf
6a4c165db38910e2b7ec96e204390d52a7cdac74
5efb21ad47be382c6407f4ff07ecc12d06cb6bea9435c8eef9ba8dfe825e4254
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/utils.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:55 GMT
Content-Type: application/javascript
Content-Length: 9574
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 19 Jul 2022 18:25:44 GMT
ETag: "2566-5e42c9cdb6f53"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/customer.js?ver=4.7.24
179.43.159.134200 OK 5.8 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/customer.js?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with CRLF line terminators
Hash 465fb7f40ac264a0af017f88bacf94de
9467dbbfcbf026a3b667a677e78fa1cdefb6729e
6cd7400679c792d7385c4f8a04405f0a9551c7a6beeaf362ad83eac8654c2b72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/customer.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:55 GMT
Content-Type: application/javascript
Content-Length: 5814
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 19 Jul 2022 18:25:44 GMT
ETag: "16b6-5e42c9cdb5fb3"
Accept-Ranges: bytes
www.sfreegames.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
179.43.159.134200 OK 97 kB URL HTTP/1.1 www.sfreegames.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (31997)
Hash dc5ba5044fccc0297be7b262ce669a7c
f137ff98ae379e35b0702967d3b6866a0a40e3be
cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:55 GMT
Content-Type: application/javascript
Content-Length: 96874
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "17a6a-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woo-exchange-rate/assets/js/woo-exchange-rate.js?ver=4.7.24
179.43.159.134200 OK 851 B URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woo-exchange-rate/assets/js/woo-exchange-rate.js?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with CRLF line terminators
Hash 26ef7a3777dfd4211b347e31d89fa330
975fa224e15a7ee65e24c8ac4ccf39752e826cf6
2a36c9d7f0f4acdc2f0f147bf7fde346c8a3c5780a5e46c1e8a1e16b1d3b818b
GET /wp-content/plugins/woo-exchange-rate/assets/js/woo-exchange-rate.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:55 GMT
Content-Type: application/javascript
Content-Length: 851
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "353-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.1.2
179.43.159.134200 OK 2.1 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.1.2
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type HTML document, ASCII text, with very long lines (2084), with no line terminators
Hash 4eb91ab2e0700e25ede6519f0123dc8a
cdedf5f767b46fad27df60237c157b9827ccff66
46fb5d05de7e8413a56fa7c0127cb314e3a34e5628a84d20ab75babd78995148
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:55 GMT
Content-Type: application/javascript
Content-Length: 2084
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "824-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=4.12
179.43.159.134200 OK 895 B URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=4.12
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 902b7ca09549975e55e136fb0026df9a
ae9b808c87bbbf57b9f3132c41effaaa12af03ff
2685c1caf9a3e6616da70c63212ff6d6a6747e4929edf55832ebd18ef7a43ccf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=4.12 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:55 GMT
Content-Type: application/javascript
Content-Length: 895
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "37f-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.3.1
179.43.159.134200 OK 107 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.3.1
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (27184)
Size 107 kB (107382 bytes)
Hash 1158097b9314f162e65b1025acd0bd64
a2073c06936eecd650766de92557ff097a3de75b
8fc173f0fbed3772b148991357c3359b9e1a1e67e807d1edfa9ef8ed0050f701
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.3.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:55 GMT
Content-Type: application/javascript
Content-Length: 107382
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "1a376-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.3.1
179.43.159.134200 OK 62 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.3.1
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (32020)
Hash 6779837652f083fd475527efe6ee65eb
443c12d17d25cf0b30838fb5af7418e45e2225b7
8504ca677f8718d753fe1c169f50d2be94444a70b6ec5d7ec014baa9c0ec78f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.3.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:55 GMT
Content-Type: application/javascript
Content-Length: 62384
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "f3b0-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
179.43.159.134200 OK 15 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (14900)
Hash f448c593c242d134e9733a84c7a4d26c
374aa1f8db17575b0e35eabc46ad82062e09106c
c90f0e501d2948fbc2b61bffd654fa4ab64741fd48923782419eeb14d3816fb8
GET /wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:56 GMT
Content-Type: application/javascript
Content-Length: 15248
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 19 Jul 2022 18:25:44 GMT
ETag: "3b90-5e42c9cdb6b6b"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 02:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 02:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 02:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.163200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sfreegames.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 18:59:14 GMT
expires: Tue, 19 Sep 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 372867
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sfreegames.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 08:31:01 GMT
expires: Wed, 20 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 324160
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.6.1
179.43.159.134200 OK 12 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.6.1
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 4d8fba06685817936abd67e760880dbe
ab16960316e6cfa45f903f9de67851c267bdcff8
4b5c67e6e2d47eda439a810c756e06378b686c31efafcf26ef9589fa238b735d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.6.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:56 GMT
Content-Type: application/javascript
Content-Length: 12193
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 19 Jul 2022 18:25:44 GMT
ETag: "2fa1-5e42c9cdb6f53"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 02:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.15
179.43.159.134200 OK 2.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.15
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (2502)
Hash 7c4b11fd9dea3b04b09548f4cc40c826
c2dbdd487d2263e2e74a82806338e19eaf892601
b74869c8bf51bb878fa9bce4f459fd53feb8b5c230cb5795f9b835fcd0ae29d8
GET /wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.15 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:56 GMT
Content-Type: application/javascript
Content-Length: 2568
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "a08-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=4.12
179.43.159.134200 OK 22 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=4.12
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (21539)
Hash 9ec3c315b67f434aabc4da58eabc6c3a
51b3a7d882f438d53dc69ca5289e92254160c09a
0c853c2cc205bafe5d893017b6a03a2acf0f04a11b85f80605514cf0ae540fe6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=4.12 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:56 GMT
Content-Type: application/javascript
Content-Length: 21638
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "5486-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1
179.43.159.134200 OK 9.9 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type HTML document, ASCII text, with very long lines (9742)
Hash 43f17965d7a09624752f715c495d87b6
5b8dd8650ad58dd4cad0147f9dc6a91acd11afab
ad83333d5ac5200fae8aad7b56d3e7d77553a12aa5bacb916e098f539457b57b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:56 GMT
Content-Type: application/javascript
Content-Length: 9853
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "267d-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=3.1.2
179.43.159.134200 OK 5.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=3.1.2
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type Unicode text, UTF-8 text, with very long lines (5629), with no line terminators
Hash ac9ab830526a7caec85bff774ed595c6
6f433a47e2f0f67df27c2cfd94f0c2e715f03297
fe63a619ea4f8d7d9a6b0aa92e58ca45d53ffb8b615aaf59b147b29669cac8f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:56 GMT
Content-Type: application/javascript
Content-Length: 5632
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "1600-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
179.43.159.134200 OK 9.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (9172)
Hash 81b2be18696c4dfe620f7b6d0d75a566
0c3cd7bdf58a65b07e17be39cfe4e386571bb4bd
120aaf6681ca6d34a40c559779f0a0038582a79fce1b868ff901c94d27c89c72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:56 GMT
Content-Type: application/javascript
Content-Length: 9566
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "255e-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1
179.43.159.134200 OK 32 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (31466)
Hash 32dd3ac8dedae8ed78783aab7c4e4b28
4ffa72d4bf9fa7975a27afe7c2ced38c9e9aece3
f364177179e1e87538b04335cfdc42bbd96e1408658c9752ba08e01651279c9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:56 GMT
Content-Type: application/javascript
Content-Length: 31567
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "7b4f-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
179.43.159.134200 OK 1.8 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (1680)
Hash 943f6eb962c25bd965e0f0e5a284fcd0
b050a98ebaef01d7597bf8c1acb995c0ef3bcbd9
50de09b0bb8d0ac656aa9b3a1e4ef58a3f2d1abd734cad68b0e12191e9d215ea
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:56 GMT
Content-Type: application/javascript
Content-Length: 1846
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "736-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.1.2
179.43.159.134200 OK 2.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.1.2
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (2569), with no line terminators
Hash 644c3d9618f705d98beccfe07802b0ea
10dfb4b21e028e4f2f861d65e6e25c7612af982a
ab57cd5b3fb673848d2225db8defde2f543b98bf173dec41b995dc61a9b6cf0f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 2569
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "a09-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.1.2
179.43.159.134200 OK 562 B URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.1.2
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (562), with no line terminators
Hash 765234021a972dcbdd5ef011a4870b28
49c7cef1785f857aaca8d1757ac7aa26041c635d
c6361a648d15fdf9cad312750da2568bd07a34a58e2ee1e1cf6b50d878e11a08
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 562
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "232-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.js?ver=2.2.1
179.43.159.134200 OK 10 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.js?ver=2.2.1
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (570)
Hash 4753cc4b12116f9a03f46b891fc0a192
07b3af150f5aa0b09d4be856e3f3392cc9be4ec7
7292075e2213b37f6757c047a3c6a8be7e2ed25bed7d8c038aa292665180a473
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.js?ver=2.2.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 10066
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "2752-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/js/navigation.js?ver=20151215
179.43.159.134200 OK 2.9 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/js/navigation.js?ver=20151215
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 52d54b46e3bfd72a39bdac78295646bf
5a60a7621e25a2f4ec8813bb1cc3c40cdbf30384
6a7eefae915f04444bc5763bb2cfa18832ce09eaf003bd31dcbf36da4e4f6923
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/minimal-blog/assets/js/navigation.js?ver=20151215 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 2907
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "b5b-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
179.43.159.134200 OK 22 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (21592), with no line terminators
Hash e2335332e53dd86db3fb0c9fc25457af
9c2a6a68bbc2276abab96358fe2a54b014982cb9
d80483c2fe131fd9d01d51b0378e0c3e2a7571e91f4f0fbd37de6276a1b464d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 21592
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "5458-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
179.43.159.134200 OK 16 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (15658)
Hash abcac4975c248d31ee7f58af56e357a4
f9e3c45b908a633aa76d27804e183030fe311ae7
fdfbb661e5d5f32edf12ea356c0e6d457c96cc209d6601b310cc277bb950e8b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 15736
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "3d78-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/js/skip-link-focus-fix.js?ver=20151215
179.43.159.134200 OK 880 B URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/js/skip-link-focus-fix.js?ver=20151215
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 381a9581291af74e622863b9ae1436bd
f35f2272e27f51dcfaa0a78f7595bce348b62b9c
c9104efada1e3f4b091183121a645b8298608c10a5b16bc3b1cbcb409b4f2777
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/minimal-blog/assets/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 880
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "370-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/js/main.js?ver=4.7.24
179.43.159.134200 OK 2.7 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/js/main.js?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 06843a36615750c46679d58cdbafde21
528ec553d50de8ae6b8a8c36356a7432c299e994
7859b8f61b9a1e270dbba8382b8bfe5e4adcded8e2a2df16c71db5aa3c674bf6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/minimal-blog/assets/js/main.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 2706
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "a92-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/slick/js/slick.min.js?ver=4.7.24
179.43.159.134200 OK 42 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/slick/js/slick.min.js?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (32076)
Hash b53bdfc29e18f4d493d775a8023fbdc8
e9fcbcc4fa70cba093b81d982a1b78509414cef7
e02af7df9a190d88380e2dcec2050ecaa493ae2d23526dbeec67f6907df3a752
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/minimal-blog/assets/lib/slick/js/slick.min.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 41953
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "a3e1-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-includes/js/comment-reply.min.js?ver=4.7.24
179.43.159.134200 OK 1.1 kB URL HTTP/1.1 www.sfreegames.com/wp-includes/js/comment-reply.min.js?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (1076), with no line terminators
Hash 9ef21a469fc37e845d6303fcfea70897
a86ec94ec7bee9227bcdf8d6374cabe82ae43e49
6b2e2d56e7b0e80d919bc65dd94f8cd95e57ad9298fc4fecc005301ea8339c9f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/comment-reply.min.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 1076
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "434-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/newsletter/subscription/validate.js?ver=4.8.0
179.43.159.134200 OK 1.1 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/newsletter/subscription/validate.js?ver=4.8.0
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash b562667fe2faa8b03924bed00a98d7ec
7f74851b9c5930f284e0f25fcf760d9a066e73c9
717c288dc6b91d3c1774be2fcf06f0eccd923966e3df65bef32b78e26cc18b75
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/newsletter/subscription/validate.js?ver=4.8.0 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 1089
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "441-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/magnific-popup/jquery.magnific-popup.min.js?ver=4.7.24
179.43.159.134200 OK 20 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/magnific-popup/jquery.magnific-popup.min.js?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (20087)
Hash ba6cf724c8bb1cf5b084e79ff230626e
f455c5f153f872e52265f87a644ff89fe14a6fb6
3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4
GET /wp-content/themes/minimal-blog/assets/lib/magnific-popup/jquery.magnific-popup.min.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 20216
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "4ef8-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1
179.43.159.134200 OK 1.1 kB URL HTTP/1.1 www.sfreegames.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (1087), with no line terminators
Hash 3dc5811cb7bb6e67b9054c8c39f9f4c9
ced11144eb84a14db2b3b0ab92998128c5e88204
124f0860b7201dc2fa46889b30ac0e4269e84ac2e71c33dc025ed14ed15bd8f0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/hoverIntent.min.js?ver=1.8.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:57 GMT
Content-Type: application/javascript
Content-Length: 1087
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "43f-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-includes/js/wp-embed.min.js?ver=4.7.24
179.43.159.134200 OK 1.4 kB URL HTTP/1.1 www.sfreegames.com/wp-includes/js/wp-embed.min.js?ver=4.7.24
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (1386), with no line terminators
Hash 92c80d35c5362a549518e2b474d23ea1
2807bfdd0dac15e0784cc9eb74a90ac132c38f6d
57dd85466749e869c5958a2652e548673557a2390ec68490a353916353ecc74e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:58 GMT
Content-Type: application/javascript
Content-Length: 1386
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "56a-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.3.5
179.43.159.134200 OK 15 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.3.5
IP 179.43.159.134:0
ASN #51852 Private Layer INC
Hash 859b133ea38d778ff1c2eed1cc5e8706
53c8051d9968476ccc0ff39239791bc0a353d3f5
e57a6d664ca33f58d9f9cb921085cd1ac1f26dd5a21d26177c9b3a1b3e5b0782
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.3.5 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:58 GMT
Content-Type: application/javascript
Content-Length: 15098
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "3afa-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/uploads/2022/03/logo.png
179.43.159.134200 OK 8.0 kB URL HTTP/1.1 www.sfreegames.com/wp-content/uploads/2022/03/logo.png
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type PNG image data, 180 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 57d7037c70316463b6b194a04404a33e
ec35e736b7ee404356fc05628aa9139e87fb3c8a
042a91990c71ae1ec873c067837dc483deab135371b4ae4bbdca35978b328075
GET /wp-content/uploads/2022/03/logo.png HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:58 GMT
Content-Type: image/png
Content-Length: 7977
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Wed, 09 Mar 2022 00:55:53 GMT
ETag: "1f29-5d9be8f4020d2"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/line-awesome/fonts/line-awesome.woff2?v=1.1.
179.43.159.134200 OK 45 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/line-awesome/fonts/line-awesome.woff2?v=1.1.
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type Web Open Font Format (Version 2), TrueType, length 45108, version 1.0\012- data
Hash 452a5b42cb4819f09d35bcf6cbdb24c1
4344bf7fdb2b5e538fb4859df945fc1a21d2a83c
063a952901506e6cbcc2abdd1995ea387e4ae9138993f5517834a75faee165d0
GET /wp-content/themes/minimal-blog/assets/lib/line-awesome/fonts/line-awesome.woff2?v=1.1. HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/line-awesome/css/line-awesome.min.css?ver=4.7.24
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:58 GMT
Content-Length: 45108
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "b034-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
179.43.159.134200 OK 77 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.min.css?ver=4.7.0
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:58 GMT
Content-Length: 77160
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "12d68-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/uploads/2022/03/dresses-maxi-dress-salwy-black-ana-alcazar-womens.jpg
179.43.159.134200 OK 99 kB URL HTTP/1.1 www.sfreegames.com/wp-content/uploads/2022/03/dresses-maxi-dress-salwy-black-ana-alcazar-womens.jpg
IP 179.43.159.134:0
ASN #51852 Private Layer INC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 1200x1732, components 3\012- data
Hash e2ecebcd0a6540fbc2e5bf6eb8340d17
e78a2f39b943dd761a067022ecd63624d9a14375
5b4b4705ce7e5868ef28e1a01467bf69a79b5cb762fc9b6759d6e72f21a675e3
GET /wp-content/uploads/2022/03/dresses-maxi-dress-salwy-black-ana-alcazar-womens.jpg HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:58 GMT
Content-Type: image/jpeg
Content-Length: 98721
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 08 Mar 2022 12:56:34 GMT
ETag: "181a1-5d9b482c097f9"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/uploads/2022/03/dresses-maxi-dress-salwy-black-ana-alcazar-womens_1.jpg
179.43.159.134200 OK 0 B URL HTTP/1.1 www.sfreegames.com/wp-content/uploads/2022/03/dresses-maxi-dress-salwy-black-ana-alcazar-womens_1.jpg
IP 179.43.159.134:0
ASN #51852 Private Layer INC
GET /wp-content/uploads/2022/03/dresses-maxi-dress-salwy-black-ana-alcazar-womens_1.jpg HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:58 GMT
Content-Type: image/jpeg
Content-Length: 106456
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 08 Mar 2022 12:56:35 GMT
ETag: "19fd8-5d9b482cae0c5"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/uploads/2022/03/dresses-maxi-dress-salwy-black-ana-alcazar-womens_2.jpg
179.43.159.134200 OK 0 B URL HTTP/1.1 www.sfreegames.com/wp-content/uploads/2022/03/dresses-maxi-dress-salwy-black-ana-alcazar-womens_2.jpg
IP 179.43.159.134:0
ASN #51852 Private Layer INC
GET /wp-content/uploads/2022/03/dresses-maxi-dress-salwy-black-ana-alcazar-womens_2.jpg HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=44d4unkid2l2cre4gcu2it5dr1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 02:33:58 GMT
Content-Type: image/jpeg
Content-Length: 91393
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 08 Mar 2022 12:56:35 GMT
ETag: "16501-5d9b482d3fcc8"
Accept-Ranges: bytes
fonts.googleapis.com/css?family=Open%20Sans:300,300i,400,400i&subset=latin,latin-ext
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open%20Sans:300,300i,400,400i&subset=latin,latin-ext
IP 216.58.211.10:0
GET /css?family=Open%20Sans:300,300i,400,400i&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Sep 2022 02:33:38 GMT
date: Sat, 24 Sep 2022 02:33:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2