Report - nawazfreelancing.xyz/

Report Overview

Submitted URL
nawazfreelancing.xyz/
IP
199.188.200.165
ASN
#22612 NAMECHEAP-NET
Submitted
2022-11-24 13:56:06
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
418

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	963 B	172.64.155.188
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.215.56.181
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.5 kB	142.250.74.3
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	494 B	32 kB	216.58.207.195
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	928 B	746 B	142.250.74.10
nawazfreelancing.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	37 kB	656 kB	199.188.200.165
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.2 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	52 kB	34.120.237.76
simple.oceanwp.org	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	418 B	4.7 kB	172.66.40.144

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-24	medium	nawazfreelancing.xyz/	Malware
2022-11-24	medium	nawazfreelancing.xyz/	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/jazzcash-woocommerce-gateway/css/jc-buttons.css?ver=6.1.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/8bae1332c95293c81ecdb766a783efa6.css?ver=6.1.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/jazzcash-woocommerce-gateway/js/buttons.js?ver=6.1.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-includes/js/imagesloaded.min.js?ver=4.1.4	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.4	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/woo/woocommerce.min.css?ver=6.1.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/woo/woo-quick-view.min.css?ver=6.1.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.7.1.0	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-mini-cart.min.js?ver=3.3.6	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/ocean-product-sharing/assets/js/social.js?ver=2.0.4	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.4	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/third/perfect-scrollbar.css?ver=1.5.0	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/ocean-social-sharing/assets/css/style.min.css?ver=6.1.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/4edeb4f370ee6a8dec27712e4b9aa1de.css?ver=6.1.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-custom-features.min.js?ver=3.3.6	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.4	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/uploads/elementor/css/post-309.css?ver=1654870778	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/a14aa5fa76202380dcf0d3aad6f35cfb.css?ver=6.1.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/uploads/elementor/css/post-256.css?ver=1654874040	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.4	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.4	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/ocean-modal-window/assets/js/modal-window.min.js?ver=2.0.8	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.4	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.7.4	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrQ.ttf	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2	Malware
2022-11-24	medium	nawazfreelancing.xyz/wp-content/uploads/2022/02/How-to-Start-a-Freelancing-Business-on-the-Side-and-Make-Money-as-a-Freelancer-768x432-1.webp	Malware
2022-11-24	medium	nawazfreelancing.xyz/?wc-ajax=get_refreshed_fragments	Malware

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed
2022-11-24	medium	nawazfreelancing.xyz	Sinkholed

JavaScript (55)

	URL	Size	First Seen	Last Seen
	nawazfreelancing.xyz/wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.4	6.2 kB	2023-03-07	2024-03-04
Pretty URL nawazfreelancing.xyz/wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.4 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:02 Last Seen2024-03-04 16:06:35 Times Seen71 Hash 758eb67134900a453e13e023982adffc b44633fdc67d2e85da2e590645599d1367b049f3 7fd5540afb9a2a1db27dd3f78d71334ec2487847b087d68142a7e07aae96d49e Loading...

	nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0	2.1 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-23 19:01:05 Times Seen22376 Hash b72c1cbb1530a011a27bd9800f26765a 27b825c5d8255f33b8427a059d4545ebd65e1746 a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8 Loading...

	nawazfreelancing.xyz/	2.1 kB	2023-03-11	2023-03-11
Pretty URL nawazfreelancing.xyz/ IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:08:20 Last Seen2023-03-11 19:08:20 Times Seen1 Hash 321b296e86074dc6417f1136b232b48a 9474a51028a8305789177486733c0b15f56795f7 22660d0f341f08a5b4cf2caadf293728f58aa7052d7a6b8d997de0c38d0d6da5 Loading...

	nawazfreelancing.xyz/	84 B	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/ IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-23 18:39:49 Times Seen3201 Hash 7f215c9370788561e1b9e30dd40697ef aca5a8d9d6bae876f32a5b9fb7d1d948afe855b0 eed9d591cae9c609fb97d73f7fe3d192432da0246d97bbbad6d0de0a1bc0cc2d Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-custom-features.min.js?ver=3.3.6	27 kB	2023-03-07	2024-01-02
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-custom-features.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:38:24 Last Seen2024-01-02 14:53:48 Times Seen74 Hash 52ca436676720888d3bf710ad0a2eabe 7242ba92ed847a98240667aee4926153f5b582cc ae7653925acd2561dd4af55993a5a68381e8a2c64bfb3843ffb6b03137febeba Loading...

	nawazfreelancing.xyz/wp-includes/js/underscore.min.js?ver=1.13.4	19 kB	2023-03-08	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-includes/js/underscore.min.js?ver=1.13.4 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-04-23 19:01:09 Times Seen41340 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	nawazfreelancing.xyz/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-23 19:01:07 Times Seen38028 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.7.4	139 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.7.4 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-23 15:32:39 Times Seen23133 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	nawazfreelancing.xyz/wp-content/plugins/ocean-product-sharing/assets/js/social.js?ver=2.0.4	474 B	2023-03-07	2023-12-28
Pretty URL nawazfreelancing.xyz/wp-content/plugins/ocean-product-sharing/assets/js/social.js?ver=2.0.4 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:02 Last Seen2023-12-28 16:52:21 Times Seen120 Hash d1a19b2f3af461fb3eb06d6597fc18e2 080a37f211308020f77620af14e2d5080fc6effb 93f65d91e28f0f7a2a5f26def1790d1c563b3495ce31cc46288edabeb28c44b0 Loading...

	nawazfreelancing.xyz/	2.2 kB	2023-03-11	2023-03-11
Pretty URL nawazfreelancing.xyz/ IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:08:20 Last Seen2023-03-11 19:08:20 Times Seen1 Hash c3aad7fb16f6905e349e5f5972215dac 49e8766e72531d2f58d16c3f35d7abf17b74f202 31c0bfff226893d5088d32e6ef436946da239f27f20f8d65ed52136827dc0d24 Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.6	12 kB	2023-03-07	2024-03-20
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:41 Last Seen2024-03-20 13:54:35 Times Seen341 Hash aaf6819aaa02ebc19a1824bcdef2ac15 40331d143d50bbe91ed2b6de0f27f02ea22323a4 6ece33be05682148470133b0321834dad4007cf718bcf4242115472bf5c0a73d Loading...

	nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.4	138 kB	2023-03-07	2024-04-21
Pretty URL nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.4 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:00 Last Seen2024-04-21 09:39:37 Times Seen3554 Hash 27405af5f1692473fafa26151a67c55d e6d515a2fce4ac444d5ac9d6b8a80b9ad667ee28 cdaa4c91b5bc3dd4ce8e1345b453844dd414602022a182ce2853d87bd4b9a9d3 Loading...

	nawazfreelancing.xyz/wp-content/plugins/jazzcash-woocommerce-gateway/js/buttons.js?ver=6.1.1	624 B	2023-03-07	2023-12-07
Pretty URL nawazfreelancing.xyz/wp-content/plugins/jazzcash-woocommerce-gateway/js/buttons.js?ver=6.1.1 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:57:08 Last Seen2023-12-07 11:47:58 Times Seen11 Hash ecfefea0d6ca3e6948b9aa00003ed301 7b1da846456b801dd86ede25fdbf5ed6449c5d46 949532a8223f8ec3e518033e6318f6b3d7e2fb997bff15c66a2a077c02609a89 Loading...

	nawazfreelancing.xyz/wp-content/plugins/ocean-social-sharing/assets/js/social.js?ver=2.0.2	474 B	2023-03-07	2024-04-05
Pretty URL nawazfreelancing.xyz/wp-content/plugins/ocean-social-sharing/assets/js/social.js?ver=2.0.2 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:43 Last Seen2024-04-05 20:17:57 Times Seen244 Hash 47ecceeb0f9f11f5462201efbdec0303 85ab09b12cd13bd619dcd2a2a60a77f19b792cd4 ee8aa4be238c20b1343cd8198c419c66fb60a6be9f162bef2ba699ac2428ac75 Loading...

	nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0	3.0 kB	2023-03-08	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:31 Last Seen2024-04-23 17:19:03 Times Seen11351 Hash f449e3e4a7c058f7c48f57e05c788fb0 e7b0c58a1a14c14a92e452cc544b312ed91fa52e bfd861dc2936299f52adca1da826c273dced7c77ad4c33d31916ad55ab354e89 Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6	4.1 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-23 15:32:38 Times Seen1864 Hash 71c31400a12073b7c576c903dcd8cea5 2f048a9ca8727b169e761033b80209f53ffbf9f4 6678f5308a4fd9620f440c3e6433920f9a09a9d6465a13888d9638aa23d70191 Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6	2.0 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-23 15:32:38 Times Seen1915 Hash 3f249575b37232d51921e82536004592 5799b78581ed5968346cade85389b82b2d6a304d b817c9b9bb557b34222c4598548f3569a7c8f2bb30b796a6c92d47dd740e4271 Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-mini-cart.min.js?ver=3.3.6	12 kB	2023-03-07	2024-04-16
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-mini-cart.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:38:24 Last Seen2024-04-16 04:38:14 Times Seen374 Hash 484660ecb3e5121e3bf1d0efa496f89d eb77ec58191cc8ab5fc44dd36cf2930691e6261e f7110646817c23ad841973838ce6adf0e546c749ddbefe1ac8b9a5130fccfa4c Loading...

	nawazfreelancing.xyz/wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.4	3.3 kB	2023-03-07	2024-04-10
Pretty URL nawazfreelancing.xyz/wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.4 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:52 Last Seen2024-04-10 08:42:10 Times Seen200 Hash 71d0a960da3ff3ae0cc838566306cb86 3a0c4bfe90031b981592155e02fe5a5e5e335a2f 828975d22b3e8af285d3885248884273e11c09d6406874ed4793164eef285f9c Loading...

	nawazfreelancing.xyz/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8	754 B	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-23 15:32:39 Times Seen2666 Hash afb55c29bdbcfc262d9fa56743572cad d4b6cb9df2b1b5477cd968fb05cf5faa1d13d6bf c30dab20b677f2b13f42a4a04385a3c6d380fa023a4a1c32f45f2996e152bfba Loading...

	nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.4	18 kB	2023-03-08	2024-04-21
Pretty URL nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.4 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:36:31 Last Seen2024-04-21 09:39:37 Times Seen363 Hash 609bcb15011738b0aa4d5c5ea007db1b 486e809f5f25eb855c6a4f9fcd94d340e012547f a496ca0aa2b9981aef70474b2219472dcf25db655779c48e3ab018e268857558 Loading...

	nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.4	810 B	2023-03-07	2024-04-21
Pretty URL nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.4 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:00 Last Seen2024-04-21 09:39:37 Times Seen3574 Hash 5ab577656d48e7fb2da4071c3477d4f4 34a292f50ec979d7967a08c2ff4d707c39a11f3c 8667a50fdab17dd946e43e37c6fd1623583b9440bdca887e44cc726e48feedaf Loading...

	nawazfreelancing.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-23 18:26:49 Times Seen68566 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0	9.5 kB	2023-03-08	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:31 Last Seen2024-04-23 17:19:03 Times Seen14365 Hash 4ffc462852340d9e6b5b7b29276fcb71 5e04050e09e3f7d8107ef3b9aa9313be618c460e 18336635cd5e9edf2aff3ae18b67250684311c2a459457091b063dafba57d526 Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6	58 kB	2023-03-07	2024-04-19
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:41 Last Seen2024-04-19 09:34:03 Times Seen1488 Hash d12d58d35825299b77044854d01a1d57 39ee67166de06d9c6ca382f4a4fa3b94b8db815f 66dd4e5c21b276f0f6302f05a0acfaec62edc461993593a028dd7113923f704f Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.6	9.0 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-23 15:32:39 Times Seen1748 Hash 679293c5f2184c6a335f0ee58d691af5 2c93237d0e23d4ac94be43320b581a50365bd959 b27375090fa7a6b1b7953505ccce5ff008db3c23196579db5749f71f0f485304 Loading...

	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1	40 kB	2023-03-08	2024-04-15
Pretty URL nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen724 Hash 2331d602370faa61829c8aa628996c7d e097dda010d924637e9c9f906be7653ae2d29343 5ceb0c2088d29cecbe3ee571dc3cf6fec764bbb7c73f0e22c73007149a2ce68d Loading...

	nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0	2.9 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-23 19:01:03 Times Seen13958 Hash 0fd625c3991a4015814cffdc88e2fc82 d7c2f53e058210ff3ea773297641008bab71a5f3 2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1 Loading...

	nawazfreelancing.xyz/	70 B	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/ IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-23 18:39:49 Times Seen6516 Hash 4ff152a840e29705f2933718a2571bc3 6c7ed239bcd74ab7a0ea03b3dd4ab74ffceaff49 e426295764322c0b4d881b5da28c2591e9ff651fc07636da1e2979a62a2f349c Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/perfect-scrollbar.min.js?ver=3.3.6	20 kB	2023-03-07	2024-04-07
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/perfect-scrollbar.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:32 Last Seen2024-04-07 12:06:38 Times Seen151 Hash ee96902397a1f54b441a3da84c5c3425 54afc4a149ad655198e9acc4558ba5c2423ed524 1f153efcc3323007002c327b5b94574c631439ae055f1a44b3b21aaaa855366b Loading...

	nawazfreelancing.xyz/wp-content/plugins/ocean-modal-window/assets/js/modal-window.min.js?ver=2.0.8	10 kB	2023-03-11	2023-11-12
Pretty URL nawazfreelancing.xyz/wp-content/plugins/ocean-modal-window/assets/js/modal-window.min.js?ver=2.0.8 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:08:20 Last Seen2023-11-12 23:27:24 Times Seen36 Hash de7fd48d6adf0408dc585d5888ced5d8 452c14402b83383fb184a4f9f8a8ff61f05f71ae 3fab30d72a0ef2cf5b5ef0e6354bd708b3e537016bd964bc2fbb32f23ba59025 Loading...

	nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0	1.8 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-23 19:01:03 Times Seen21578 Hash d0a6d8547c66b0d7b0172466558d1208 ff93916519c7b9483251f609e4d29f38c30a66e3 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612 Loading...

	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1	5.0 kB	2023-03-08	2024-04-15
Pretty URL nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen647 Hash 562ad59077018eb139d1f46afd69a050 d33c188f7d0f306b8a0ede1e3b67a0edb7be8966 f6eb858ead7f15dcd18541c5433714e0c0966d81b8d009a2d49e5a181e548fbb Loading...

	nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.7.1.0	23 kB	2023-03-07	2024-04-18
Pretty URL nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.7.1.0 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:54:00 Last Seen2024-04-18 12:23:25 Times Seen502 Hash d9bd0341b7618e3532f267c339734996 e0db8b64ba9ea41f51d814d4b21227d4ffc491fd 14626e6a31e0abd24d5c6c12e5d2643263a6a4943a6d2e80f8cfaa1a122e3428 Loading...

	nawazfreelancing.xyz/	804 B	2023-03-11	2023-03-11
Pretty URL nawazfreelancing.xyz/ IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:08:20 Last Seen2023-03-11 19:08:20 Times Seen1 Hash 8c90e850bc5fa1f85646d4a990f5df78 5104980ebb106ddfe23865016b129b83ecc4b9ea 68df2cfe3694267f88baea9f4142e13ac43eea626683f288d47ee17b4e8972ce Loading...

	nawazfreelancing.xyz/	112 B	2023-03-11	2023-03-11
Pretty URL nawazfreelancing.xyz/ IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:08:20 Last Seen2023-03-11 19:08:20 Times Seen1 Hash 8470da9beefadd8a31f3575cfff91a53 3c562d33ae73a09423053ed966b0e1c3fffa0dec 8f6ac207316b28afdbbb7163d773630680e9d5cb981e393cebc7d7562407227a Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6	14 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-23 15:32:39 Times Seen1892 Hash 45390a4ace8f255999ffd0bc7c063c7d 1b990a7d47f4c16379f55e5c8e9b8d4fab244f14 7c345ef59fb2b287237939e1cc8cc92028711602334db6d338990a01676f8e45 Loading...

	nawazfreelancing.xyz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-23 19:01:07 Times Seen9800 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	nawazfreelancing.xyz/	239 B	2023-03-11	2023-03-11
Pretty URL nawazfreelancing.xyz/ IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:08:20 Last Seen2023-03-11 19:08:20 Times Seen1 Hash 7db9f6fac47c5a82aa2db960be957d09 0c1785d79eb899546030bbe17b7bfc8358fb9bfb e7b0a6ccd331ec001311ab6d66aaadfecebe1432abe2fd5fc71830f94081b447 Loading...

	nawazfreelancing.xyz/wp-includes/js/wp-util.min.js?ver=6.1.1	1.4 kB	2023-03-08	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-includes/js/wp-util.min.js?ver=6.1.1 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-04-23 19:01:06 Times Seen24371 Hash 19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95 Loading...

	nawazfreelancing.xyz/	152 B	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/ IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-23 19:01:04 Times Seen19878 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	nawazfreelancing.xyz/	409 B	2023-03-07	2024-04-22
Pretty URL nawazfreelancing.xyz/ IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:40 Last Seen2024-04-22 00:14:42 Times Seen744 Hash 3afc6f257424bbd85bb404c06b8a66af 6023a390cc04f7e817ce7bb9fcbf9a24d3072c43 ebd85e6eb692a65fc7fa4005c9835b35a2a0d0d9f7750fc01fce5de0086eaeb0 Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6	20 kB	2023-03-07	2024-04-19
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-19 09:34:03 Times Seen1896 Hash 130b3e97d98a5adefebd3807a0682dfd ba1edeec0f48045cfb083f030951d196ebb3716d be5a9e7bcbc5af3b986767a8193c1d9dbb9c7bd2368ba33c25eff7bd7a76987a Loading...

	nawazfreelancing.xyz/	99 B	2023-03-11	2023-03-11
Pretty URL nawazfreelancing.xyz/ IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:08:20 Last Seen2023-03-11 19:08:20 Times Seen1 Hash 20f7c735f0b54649bf8ae25e0fb9ee17 cde07ecb2df472bd007806077f43499a81c67f52 dbd8b13f68445ff8766ec3594a8add25bacfb8624e9a883bc09713ed08d47b95 Loading...

	nawazfreelancing.xyz/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-23 12:49:20 Times Seen31791 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	nawazfreelancing.xyz/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-23 19:01:04 Times Seen30956 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0	14 kB	2023-03-08	2024-04-15
Pretty URL nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-04-15 22:34:30 Times Seen629 Hash f749280669d445dfe7a49aadccff5d53 c32ad75d2cfdaf073842e1bf4f4375e0f56d8a58 bf8c713d2545b889e4ce9390e47c47a4a146649320f91ca11006bc948944ec4e Loading...

	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-23 18:39:51 Times Seen52625 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6	5.2 kB	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-23 15:32:38 Times Seen1900 Hash cab72260c840201b4b6e0125b3f66af7 cf137934bc4ef8c0b0c42c325f53f6c639985f18 d05f3a54518cd3ac3a4e9b4cf8c5f0deab037e659299f66a534d00fe10618b64 Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-quick-view.min.js?ver=3.3.6	38 kB	2023-03-07	2023-11-08
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-quick-view.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:38:23 Last Seen2023-11-08 14:18:45 Times Seen63 Hash 8412cb221e713a33f0174f675352cdb2 401920736d289970e0ca98a44c31cdbba474a4b0 fa83d88daa21aed351bbb2337059e617218514443dbc4a8997af406a98bf3460 Loading...

	nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1	33 kB	2023-03-08	2024-04-15
Pretty URL nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen658 Hash 48b7a16ab38005edf9c9964313ce1cd7 8b8569d937aac61fd792b6c68fca974e3cdd94ab 5d80f13fd7524318f81eb1301170d4d0fbee242c12403c01f3a06c9f681192c7 Loading...

	nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.6	20 kB	2023-03-07	2024-04-22
Pretty URL nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.6 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:21 Last Seen2024-04-22 15:34:13 Times Seen5892 Hash b37d7edf99565d3858eaa1ad80df3cff 786a4343711e9af5e5dfcc493e7d2331b48875bb b0a45cd5aed66e27bd8ee861d0e3b782c8e79849bde32f90f078b9f2451a36f2 Loading...

	nawazfreelancing.xyz/	109 B	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/ IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-23 18:01:28 Times Seen4196 Hash c3041f910d72f3447c03a53d6b8df977 d2959e0ca4bfa2ec8613d1fba8ae2399aebdd123 9b5e9931c5ad5f273f4c6eb5988506ef60471957923124b28aab2f8563e8b7fd Loading...

	nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.4	40 B	2023-03-07	2024-04-23
Pretty URL nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.4 IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2024-04-23 19:01:08 Times Seen8307 Hash 94d041d462db321cdb888066586f2068 717d2f9da7fb9f9e2bf2058a8177a0344f8a8647 b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5 Loading...

	nawazfreelancing.xyz/	268 B	2023-03-11	2023-03-11
Pretty URL nawazfreelancing.xyz/ IP 199.188.200.165 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:08:20 Last Seen2023-03-11 19:08:20 Times Seen1 Hash f5aef2375e972105095ce1541a634d87 d9629bdc67944393bf46dc490dd913e5cf591662 331caa8c18d8e0fb738c63d19a96040da2f5771332f02cb43cd180501f3e5f8c Loading...

HTTP Transactions (112)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3138
Expires: Thu, 24 Nov 2022 14:48:10 GMT
Date: Thu, 24 Nov 2022 13:55:52 GMT
Connection: keep-alive

nawazfreelancing.xyz/

199.188.200.165

301 Moved Permanently

707 B

URL HTTP/1.1
nawazfreelancing.xyz/
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Thu, 24 Nov 2022 13:55:53 GMT
server: LiteSpeed
location: https://nawazfreelancing.xyz/
x-turbo-charged-by: LiteSpeed

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4230
Cache-Control: max-age=164748
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:55:53 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:41:41 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2507
Expires: Thu, 24 Nov 2022 14:37:40 GMT
Date: Thu, 24 Nov 2022 13:55:53 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 13:17:17 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2316
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: gf91++sfGqZgd92JaRraFdcgRkh4G8WQWQcGGQ2bOOHDV960DxSRq9YPa/F4+Jp5LfrOf4OiDwM=
x-amz-request-id: F0F7GM8MV8GH0XPE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 13:40:25 GMT
age: 928
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 13:55:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 13:08:53 GMT
cache-control: public,max-age=3600
age: 2820
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
2d7e1a09fff951041b54f146654a0949
db96dd1398d16ab058b7a1edf392c3daf534e1bb
88c2b18e9e38f88d90f28f513d449803e48448f7d332092f6c6bcb7bab915a19

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:55:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 09:58:35 GMT
Expires: Tue, 29 Nov 2022 09:58:34 GMT
Etag: "db96dd1398d16ab058b7a1edf392c3daf534e1bb"
Cache-Control: max-age=417160,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f2a513992db4eb-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6446
Cache-Control: max-age=161902
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:55:53 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:54:15 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

nawazfreelancing.xyz/

199.188.200.165

200 OK

13 kB

URL HTTP/2
nawazfreelancing.xyz/
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18666), with CRLF, LF line terminators
Size
13 kB (13270 bytes)
Hash
ce2ef27a354fdf3b069b1dc77d4593e4
187e02f12d9c9569847819e41202cec5ba757c63
364f83a7e6650247c21888a53652d706b177badc613d620e9a6eaea1061ea42e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
x-ua-compatible: IE=edge
link: <https://nawazfreelancing.xyz/wp-json/>; rel="https://api.w.org/", <https://nawazfreelancing.xyz/wp-json/wp/v2/pages/256>; rel="alternate"; type="application/json", <https://nawazfreelancing.xyz/>; rel=shortlink
etag: "16-1668830028;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 13270
date: Thu, 24 Nov 2022 13:55:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.215.56.181

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.215.56.181:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hLh3i1dLGkYypfEin7QFwg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LBrBdraCxRyKFb4F2gBG5GqJHwM=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

nawazfreelancing.xyz/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5

199.188.200.165

200 OK

1.8 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (10435), with no line terminators
Size
1.8 kB (1754 bytes)
Hash
f7237084ac82ea6a4f5bf1448c3a2148
60457635a5e809ee1199c61090d8e33b91e8e1f2
18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 00:12:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1754
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/jazzcash-woocommerce-gateway/css/jc-buttons.css?ver=6.1.1

199.188.200.165

200 OK

628 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/jazzcash-woocommerce-gateway/css/jc-buttons.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
assembler source, ASCII text, with CRLF line terminators
Size
628 B (628 bytes)
Hash
11ae8164e924ed8be6acdf961ae69511
9d131a8f5b30080dae23edf2e47555ee01c62a68
f6df30de43a8c812bcc26bf02de8c344ee7186d084189cc1d3c67034d1dae9d8

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/jazzcash-woocommerce-gateway/css/jc-buttons.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Fri, 18 Feb 2022 10:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 628
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/woo/woo-mini-cart.min.css?ver=6.1.1

199.188.200.165

200 OK

1.2 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/woo/woo-mini-cart.min.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (5855), with no line terminators
Size
1.2 kB (1157 bytes)
Hash
718133fffa38143f6bdca12685c09a7e
c9f2ef986bb32369275de66d9df74d2e95d9daf9
046685898f3802e012397d662368fff70a4ecdb86c18bba752f1bcc8e0052b8d

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/css/woo/woo-mini-cart.min.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1157
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1

199.188.200.165

200 OK

12 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (59158), with CRLF line terminators
Size
12 kB (12385 bytes)
Hash
03edd6b23c3e400f4057f974b3e6dc36
11075ea4490b65601db5997900666da63b312272
a657eacc3194fa6b028376dcb7eb91b2a1b72ae5b82afc421f8914c8f8b49665

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12385
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

nawazfreelancing.xyz/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5

199.188.200.165

200 OK

23 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size
23 kB (22871 bytes)
Hash
0c6730c96c60030ddaf42fcf5daf3b17
feb4c0071f27718582e58d365022a1b559de5765
d996bec53b493bc579754f29f7d6d0b5332f3354c860a3787e2365a79c44f995

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Thu, 03 Nov 2022 20:38:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22871
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0

199.188.200.165

200 OK

2.3 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (10927), with no line terminators
Size
2.3 kB (2313 bytes)
Hash
64f6237567e3cf8796295343039a352e
e4af3e6ae53c4c41828057b729b443dd158111ec
c558229bb9505d28966ba3ad6daa109310112c4fa01997291aea288abf2e5573

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Thu, 17 Dec 2020 12:47:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2313
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/8bae1332c95293c81ecdb766a783efa6.css?ver=6.1.1

199.188.200.165

200 OK

308 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/8bae1332c95293c81ecdb766a783efa6.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4221), with no line terminators
Size
308 B (308 bytes)
Hash
ffe7cc1f45fb340e9277f13e4dd27250
7ea58f2a7dad8746aecc4a955d5f15c8f556f1a8
7379c2c83fa2574019b6ed669e92d62a33c61ecdfd085eb950a98fa32f3d78e4

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/oceanwp-webfonts-css/8bae1332c95293c81ecdb766a783efa6.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 13:45:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 308
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

199.188.200.165

200 OK

12 kB

URL HTTP/2
nawazfreelancing.xyz/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (47826)
Size
12 kB (11616 bytes)
Hash
c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 03:20:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-includes/css/classic-themes.min.css?ver=1

199.188.200.165

200 OK

217 B

URL HTTP/2
nawazfreelancing.xyz/wp-includes/css/classic-themes.min.css?ver=1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
217 B (217 bytes)
Hash
95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 13:15:51 GMT
accept-ranges: bytes
content-length: 217
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.6

199.188.200.165

200 OK

25 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65525), with no line terminators
Size
25 kB (25278 bytes)
Hash
c7e24d2596898bc369a61d492884e3ea
af79e97451f45c6673551c934ec5d728a70e76d7
a64120bedaa97ab8bef0d075697422b35fa72608fcca11a4bc34c8a2a5c11567

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25278
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

199.188.200.165

200 OK

4.0 kB

URL HTTP/2
nawazfreelancing.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (11126)
Size
4.0 kB (3995 bytes)
Hash
7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 19:36:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0

199.188.200.165

200 OK

3.2 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (9111)
Size
3.2 kB (3247 bytes)
Hash
078e27719ab2b91e57a3d06d05bf24d8
ee2c8af72d9dbb148d4101a374f6026d0c9c3044
1c8b599f3f7bfa8d7950d95a171f2c873d051960a91c91e22304293596e5b890

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 00:34:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3247
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0

199.188.200.165

200 OK

677 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (2139), with no line terminators
Size
677 B (677 bytes)
Hash
a43fc0dde8fdd69656ad0957e62849c7
4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Tue, 18 May 2021 21:00:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.6

199.188.200.165

200 OK

3.0 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (12402), with no line terminators
Size
3.0 kB (3024 bytes)
Hash
5b4cc772d1f76006e50ce5c966fc0d03
420b6f7972cbf75dbae2c0f5444ac5823e704aba
5cc92f11e2d1fbb48e4212a704be27c4a3ceaa02650a840b1d40ba50ab656914

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Tue, 14 Jun 2022 11:42:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3024
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css?ver=6.1.1

199.188.200.165

200 OK

566 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (2034), with no line terminators
Size
566 B (566 bytes)
Hash
4988c65367365742f019d6dcef7b46f3
a8f4e5a970001249fd245576687b6ec82bc29840
720a1a14ae4ba4e72e2d1a3eaccda2432c8fc0fd50961aca67eddc00e705c8ea

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Tue, 20 Jul 2021 12:13:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 566
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

199.188.200.165

200 OK

30 kB

URL HTTP/2
nawazfreelancing.xyz/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65447)
Size
30 kB (30324 bytes)
Hash
3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 13:15:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/jazzcash-woocommerce-gateway/js/buttons.js?ver=6.1.1

199.188.200.165

200 OK

116 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/jazzcash-woocommerce-gateway/js/buttons.js?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with CRLF line terminators
Size
116 B (116 bytes)
Hash
e70f755fa780eeae285d8b0fea7a7ccc
913ccb53e39d713354a5035d253d07a913ef35f2
239e0fedd7a000f2e0b95d32d83de2e677e733aeda252594a165e11117f95ded

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/jazzcash-woocommerce-gateway/js/buttons.js?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Fri, 18 Feb 2022 10:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 116
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0

199.188.200.165

200 OK

899 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1668)
Size
899 B (899 bytes)
Hash
22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 04:55:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-includes/js/imagesloaded.min.js?ver=4.1.4

199.188.200.165

200 OK

1.7 kB

URL HTTP/2
nawazfreelancing.xyz/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (5477)
Size
1.7 kB (1733 bytes)
Hash
fa921f07ecc438baf227765de450e215
1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95
b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Sun, 14 Jun 2020 04:23:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1733
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6

199.188.200.165

200 OK

4.0 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (19789), with no line terminators
Size
4.0 kB (4015 bytes)
Hash
fbacc63ed65058dc22ba28d20d42d87d
af4505033ad4fb82fb157d7f630b8a6edb2ee0f8
986aed424cc140b10b1342beb59e7fe01b1fa885e4b0f5e09427829cbf381911

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Mon, 02 May 2022 11:58:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4015
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6

199.188.200.165

200 OK

3.4 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (14087), with no line terminators
Size
3.4 kB (3389 bytes)
Hash
6aa67788ab055cf5d63f3270d0f1465a
bf8925d13a7eda79e861a81d3be26c3a55269ade
3b1fb09012628314619090be1e6b3b63ca3012ca4c46d5b646d97d337e95029b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Mon, 02 May 2022 11:58:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3389
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6

199.188.200.165

200 OK

1.3 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4111), with no line terminators
Size
1.3 kB (1327 bytes)
Hash
6785a1bb095623b52d8b6f5c77ab1c4d
d375933429eba23eb86eb5c9795800c7e717f480
9084fd970309f300cceae024e2a0a6ab1bc3a1e133fb0faaebae407029c22023

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 14:31:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1327
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6

199.188.200.165

200 OK

14 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (21914), with CRLF line terminators
Size
14 kB (13619 bytes)
Hash
3e338d8c5330808ddfaa6b246a5798a3
c9d44543da80d050e353a51267bfe90a415c5795
0a4a040b702be0be8b9b9112598213949eec71734b4ef1c8387dca0359ff2397

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13619
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6

199.188.200.165

200 OK

815 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (2002), with no line terminators
Size
815 B (815 bytes)
Hash
171844f21c8e85a19bf6d9400931e40c
183cd302d49cf285c7da829ce756af531e7f7755
4a0576e94d974ddf90c433f6cc2f03a03c4a2117faaa96515c7e5004b7886a5f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 14:31:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 815
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.4

199.188.200.165

200 OK

40 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
94d041d462db321cdb888066586f2068
717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 14 Apr 2021 14:48:22 GMT
accept-ranges: bytes
content-length: 40
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/woo/woocommerce.min.css?ver=6.1.1

199.188.200.165

200 OK

14 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/woo/woocommerce.min.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65397)
Size
14 kB (13521 bytes)
Hash
a79d1db5fa157b677dc0e4f179c33a0b
cbba30f6625bbe89f5e0b88108c4de849f519491
f1f672f21190c23efc2ae84ad2b81d72b26524175a3ab5685d5f1cb737ea822c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/css/woo/woocommerce.min.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13521
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/woo/woo-quick-view.min.css?ver=6.1.1

199.188.200.165

200 OK

1.2 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/woo/woo-quick-view.min.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (5183), with no line terminators
Size
1.2 kB (1224 bytes)
Hash
2e1fa7807313b7aa8f7855be02959ae4
e79ffa516214319f1d0ecca7e992fd8f96b6edd3
a05144b8670e787b2f8679f948f66b2251c88f54103e2b4ec44fda81ee5d9fc5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/css/woo/woo-quick-view.min.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1224
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0

199.188.200.165

200 OK

3.4 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (13880), with no line terminators
Size
3.4 kB (3431 bytes)
Hash
459fba86094e948f2046f4607bc0c02f
5b41f2b77e93fdcd7e8f0f5d1c50dd51b8a45f7c
71feb5b709466deb028daa294a0f3eb5f8f6658cdb912a463162f6d1404d5412

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 00:34:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3431
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.7.1.0

199.188.200.165

200 OK

6.3 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.7.1.0
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (22741), with no line terminators
Size
6.3 kB (6252 bytes)
Hash
63d9da90362f282049882ebb69307768
9fa77a366a4581a0a01d7245b54bc37e25245159
8a7c40b356546c47f3387e35363d67e6ed28d7d02aaa56b4da66461add016ff4

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.7.1.0 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 02:07:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6252
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-mini-cart.min.js?ver=3.3.6

199.188.200.165

200 OK

2.9 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-mini-cart.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (11594), with no line terminators
Size
2.9 kB (2851 bytes)
Hash
8ba18ca7e97cc3dac4879a9d5ab3b7ea
04daa44950a48f969b9e0c95394f98d86e35504c
6a300cac3b5059a51e5792e96badc5046a949f112028fdc6c8ab990e91466bdc

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-mini-cart.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Mon, 02 May 2022 11:58:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2851
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/ocean-product-sharing/assets/js/social.js?ver=2.0.4

199.188.200.165

200 OK

190 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/ocean-product-sharing/assets/js/social.js?ver=2.0.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
190 B (190 bytes)
Hash
8c7692cce875253bfd51b96a17c1e420
d521f7455d53d840fc7a7047a04c6c0c95216131
0c022893cc923ae4811e3329bcb9437d5ecfcd7cd00b0f86d145113b59b1ab7c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ocean-product-sharing/assets/js/social.js?ver=2.0.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Tue, 20 Jul 2021 12:33:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 190
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.4

199.188.200.165

200 OK

2.0 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (6205), with no line terminators
Size
2.0 kB (1965 bytes)
Hash
f66ce0d8f0a9020caf198a0233aad24e
7cbcbce689f33ffd77b6ac2d7f0bf951dccef910
e9bd986022e365f72f40df672cb739870c13c8dbbb7ff3ec1e4c15a41e72cf21

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Tue, 20 Jul 2021 12:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1965
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1

199.188.200.165

200 OK

12 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (40474)
Size
12 kB (11702 bytes)
Hash
cf45d3e8044770ba8eabf3833e30fdbe
90f787b69fa2f83b87c28f3caa67985b04b333bd
c83321c916d9ca392150cf727108c0927ce9394be70e9b08920cff666f823fb4

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11702
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/third/perfect-scrollbar.css?ver=1.5.0

199.188.200.165

200 OK

559 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/third/perfect-scrollbar.css?ver=1.5.0
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
troff or preprocessor input, ASCII text
Size
559 B (559 bytes)
Hash
7e707b68c8429646b7fe75264dabb6fd
627e8e10f437e7ba03eac9036ec9a6e6c44eee44
af44f7935f5d2778dfbd5d3bcb19d1a6d4a1a6ab3d0bff1029b834e2e1f3699c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/css/third/perfect-scrollbar.css?ver=1.5.0 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Tue, 20 Jul 2021 12:13:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 559
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/ocean-modal-window/assets/css/style.min.css?ver=6.1.1

199.188.200.165

200 OK

429 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/ocean-modal-window/assets/css/style.min.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1276), with no line terminators
Size
429 B (429 bytes)
Hash
873225a76eedd7a12ea0f7dfa8cc8333
f2fc980fa2979a9f3cb3f89fcd557f935a415d32
a0c9631c0b739fce6296ab313cdf42ae312761857be3fdfbaad13972ca937da9

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ocean-modal-window/assets/css/style.min.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Wed, 09 Nov 2022 13:03:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 429
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/ocean-social-sharing/assets/css/style.min.css?ver=6.1.1

199.188.200.165

200 OK

1.1 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/ocean-social-sharing/assets/css/style.min.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (6086)
Size
1.1 kB (1118 bytes)
Hash
52924d98045c3095471517557d01e5e4
c5253fae24568a2a1143b266582f129f946d2774
ebfe2ca784845dcecb6b67e169268ae4402272f23fc473dfb61b1e010e0f2581

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ocean-social-sharing/assets/css/style.min.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Wed, 01 Apr 2020 17:49:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1118
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

199.188.200.165

200 OK

286 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (483)
Size
286 B (286 bytes)
Hash
8828fa3c5bdcfa66615714a2b8c9d807
4f556d0b005ac7754af607418df445f8cf98e8b1
16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

199.188.200.165

200 OK

12 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (57726)
Size
12 kB (12133 bytes)
Hash
f463afd8661ddc733305df1f0cbdaff2
77262f0209e75e340eb7014aba9cd8d69966032f
c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/4edeb4f370ee6a8dec27712e4b9aa1de.css?ver=6.1.1

199.188.200.165

200 OK

214 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/4edeb4f370ee6a8dec27712e4b9aa1de.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (709), with no line terminators
Size
214 B (214 bytes)
Hash
a737cffa2d0f198e63832946c17e12e4
c069dca32c16c0e026af94d91a7fd160edb2e6c0
c6bb2a07f4785ca21d5cc51dca3e0b3bb54be0566b84c16d3b1f009fba707287

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/oceanwp-webfonts-css/4edeb4f370ee6a8dec27712e4b9aa1de.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 13:45:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 214
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.6

199.188.200.165

200 OK

7.0 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (20087), with CRLF line terminators
Size
7.0 kB (7046 bytes)
Hash
cd77ebaa4544fc721b35a2c7f8ac06f2
54797d61a69f0f375e7484f9151fcffeabda919f
6481824a1cfa4ba748d3b4378dd1c648e7ea077a9131990c8efc9d7f301bfe48

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7046
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0

199.188.200.165

200 OK

934 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (2938), with no line terminators
Size
934 B (934 bytes)
Hash
cf25dd071a208312bdc07f34d2cee027
76119563119eaae392ecc8903c989d98d0b93002
8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 24 Nov 2021 03:30:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.6

199.188.200.165

200 OK

2.1 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (8989), with no line terminators
Size
2.1 kB (2145 bytes)
Hash
6185808402bda215e4f7236f817466c2
bb7a5a8dea701972a0bb352122531f6e5d146377
f796ab2986eae473cc62ff0bfb30e0b8ad56ab419fe814df2943673808f1fac9

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Mon, 02 May 2022 11:58:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2145
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6

199.188.200.165

200 OK

1.4 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (5181), with no line terminators
Size
1.4 kB (1394 bytes)
Hash
7904cdab6435080eaec64b4d67beb8e0
16553f73d5549d22b09c992110fbcf947799a6ea
f443194efd5bc7ad935fb1e44a4a6c365e2e5f45dcf4d343d983ab898e5810d7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 14:31:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1394
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-custom-features.min.js?ver=3.3.6

199.188.200.165

200 OK

5.3 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-custom-features.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (26993), with no line terminators
Size
5.3 kB (5322 bytes)
Hash
72c4b08dff67659f0d5dfe3339913053
8ba5c7ccec413a25e64045587438f5333ffe98c0
ecb2a1ed1324162137b7e50fc947e890f3109e7ca68ee7b5b1f067426adec538

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-custom-features.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Mon, 02 May 2022 11:58:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5322
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.4

199.188.200.165

200 OK

12 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
12 kB (11547 bytes)
Hash
b56454016892c865bde2727eeca1d036
3c2623d4e5ceec9b89a46c46bc1bb651f45ac9d2
f6d10f3d1ca2bc8e9b2c3d2bab875085c46abf18ccac1a5642f410f10c00207d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Tue, 04 Oct 2022 07:48:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11547
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/uploads/elementor/css/post-309.css?ver=1654870778

199.188.200.165

200 OK

308 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/uploads/elementor/css/post-309.css?ver=1654870778
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1119), with no line terminators
Size
308 B (308 bytes)
Hash
7a349103ef07c77ab2247dc8133a5d2e
931e6b140efdd8431645d25f631e6c158b1b1e8c
27097c92d1c2e3d30ef3b4090c31865d275eeb91583c13bf0553f3bbf7a5fa8f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-309.css?ver=1654870778 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Fri, 10 Jun 2022 14:19:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 308
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/a14aa5fa76202380dcf0d3aad6f35cfb.css?ver=6.1.1

199.188.200.165

200 OK

312 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/a14aa5fa76202380dcf0d3aad6f35cfb.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4347), with no line terminators
Size
312 B (312 bytes)
Hash
2633cbce0a858fab543aa63b2df4ee1a
59c49964ec6ea20172bd2df88d80142323b82da2
b38172c451837b7a8e41e30ebd52ff820e72c20564eaf19be554af48592b0f0e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/oceanwp-webfonts-css/a14aa5fa76202380dcf0d3aad6f35cfb.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 13:45:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 312
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-quick-view.min.js?ver=3.3.6

199.188.200.165

200 OK

11 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-quick-view.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (37783), with no line terminators
Size
11 kB (11030 bytes)
Hash
6811f8fbc6e9542577d5e74bff7ec550
be4790288436a5ee8bc4531c083b62a42d4d8192
d7efb2500f20dc47449956781cef6b435855563d0e716678b23e46b0d970e83d

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-quick-view.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Mon, 02 May 2022 11:58:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11030
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-includes/js/underscore.min.js?ver=1.13.4

199.188.200.165

200 OK

7.2 kB

URL HTTP/2
nawazfreelancing.xyz/wp-includes/js/underscore.min.js?ver=1.13.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (18798)
Size
7.2 kB (7179 bytes)
Hash
f4bb18d2e152ba945cb63980362f40e9
925f93a6c4ee411e97d8dc3186f9d66c4b5169ab
16ab496a6c74f5f272f7a5c31e9cb69c753fea994396ef6deacf641180ad317b

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 13:15:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7179
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1

199.188.200.165

200 OK

12 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65497)
Size
12 kB (12400 bytes)
Hash
eae4534b9e0b15aaf7ad9f3111688549
4bde4256711207e4a95c1376f0b453cd660a63d8
b9adb98eaf24ecee30ef9b280527781e217f6e3829b8e22e5a42f7f14819cfec

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12400
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-includes/js/wp-util.min.js?ver=6.1.1

199.188.200.165

200 OK

690 B

URL HTTP/2
nawazfreelancing.xyz/wp-includes/js/wp-util.min.js?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1391)
Size
690 B (690 bytes)
Hash
ebe552e54e3815c6867913d252ff2a79
4982bd9ba944833e821be18419ad8408290f5d75
8b0aedc73b1d41ab59c0ad42553259c90458cfb72b149946a3bae3298c012e40

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 13:15:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 690
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/uploads/elementor/css/post-256.css?ver=1654874040

199.188.200.165

200 OK

468 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/uploads/elementor/css/post-256.css?ver=1654874040
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1849), with no line terminators
Size
468 B (468 bytes)
Hash
a68243577aa8fe7a6d947adf4eb64b75
7989487cda05ce0f0c444a1f8c5405adf81201e7
387d904e4477124967abf23265665967ea30ad76988eae4d897e11ec14366758

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-256.css?ver=1654874040 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Fri, 10 Jun 2022 15:14:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 468
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.4

199.188.200.165

200 OK

1.3 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (546)
Size
1.3 kB (1306 bytes)
Hash
2ae7a573e93aede50a6ca2b25417db0e
932ef087f28974c6f93da1647a61e04e79fdd99a
ddce554275ed09f63d1ee7f1291629c15820a91ada0af6d5814bab4a8842818f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 11:09:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1306
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

199.188.200.165

200 OK

2.9 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (12198), with no line terminators
Size
2.9 kB (2867 bytes)
Hash
869caa171b68cbec9fee5abbfb944ee8
f237e485e41f88b77384cfdb880f9d5a8f46eac8
25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2017 21:35:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2867
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.4

199.188.200.165

200 OK

2.9 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (30283), with no line terminators
Size
2.9 kB (2851 bytes)
Hash
1119301a85ab323270d853e94a9b2f2f
3bd61b9dd43e2e0166c4036273b4b02d50d3fec7
8cbeb42d6bac404c391197cf1f219086c8501143db7e4cfde22919d6124b3fc3

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Thu, 25 Nov 2021 18:21:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2851
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.4

199.188.200.165

200 OK

389 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (810), with no line terminators
Size
389 B (389 bytes)
Hash
bc80f83337ad9e96f9c5d9b3d0305b5d
464e35c91ecfa7e96e58cb7c9f523352758385ac
0b12bc106b406b2ecd33244ea0c1d17da81bbdb75874835d6ce5ef3a16fa8ad0

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Jun 2021 10:39:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 389
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

199.188.200.165

200 OK

3.6 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (19233)
Size
3.6 kB (3629 bytes)
Hash
af3bdf44d09914e8adb51fec560d8816
84bb225e096bab405868dd504e62133ba75cf1c1
4325dab21d3eb9efb8e285a0926be743f27e46446ccf5f9be65bb4b60c024152

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Mon, 01 Aug 2022 04:11:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3629
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.4

199.188.200.165

200 OK

4.8 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (17948), with no line terminators
Size
4.8 kB (4776 bytes)
Hash
915c8f059bb971c121814657dc9d78fa
464ee8c8c5f25d6e51558dba621150a17b58ff13
dd3c7c000e7acda27c95dc6f3980474e74ccd7fa384589474858ba435eb0d0e8

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 07:48:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4776
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8

199.188.200.165

200 OK

339 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (754), with no line terminators
Size
339 B (339 bytes)
Hash
f4cea5c82bb62f34a31f39a322513366
bab5dfb3f8d04b76f83ca994798534e697b85290
5b00e0c1288d5d1f1df303a55bd0ff67d9acf5b734bc0093a651727c48a077ff

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 17:24:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 339
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1

199.188.200.165

200 OK

6.2 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (51619), with no line terminators
Size
6.2 kB (6210 bytes)
Hash
20db916d10cfc8745d24a4d19a0f73aa
06e047ebe7c9ac50d2fd0f71a9e8388539e308db
9f11208676a929159b38acfb84e7ddd9b2dc01b359d5f4207be745cb3abb16b1

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Tue, 09 Aug 2022 12:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6210
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1

199.188.200.165

200 OK

2.0 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4918)
Size
2.0 kB (2044 bytes)
Hash
918938b0ee6977d6506f2e0fa248bd66
292ba27818bec580f76945b53fee4ff6cddcb2c2
a1da723cfdb1f8ea57aa7278637d07a83f39ff410dfbba24d8205882a110444e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2044
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/ocean-product-sharing/assets/css/style.min.css?ver=6.1.1

199.188.200.165

200 OK

642 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/ocean-product-sharing/assets/css/style.min.css?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (3151)
Size
642 B (642 bytes)
Hash
09500974b417e9ef7f92d91511a20514
4321e65bb76b190dc495e004fe55a2f98d6dbc42
314b106a9d1f82ce2b38ecf4a9c7e522c9710b2f8605102c064ea4863dcb6c60

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ocean-product-sharing/assets/css/style.min.css?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Wed, 01 Apr 2020 17:45:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 642
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0

199.188.200.165

200 OK

972 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document, ASCII text, with very long lines (3029), with no line terminators
Size
972 B (972 bytes)
Hash
5ed77e0c59800f40061b5c322cff21fa
ced9d401d300dd1fc676a673bbf7e6360beb402d
3b284b8a096256e6cd0d9cbf2cb4b36505e71c0d7b2227fcd3132dddbeea18cc

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 00:34:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 972
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/perfect-scrollbar.min.js?ver=3.3.6

199.188.200.165

200 OK

5.7 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/perfect-scrollbar.min.js?ver=3.3.6
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (8460), with CRLF line terminators
Size
5.7 kB (5709 bytes)
Hash
8fd2878f3a89882a6d692fe58b33c99d
88a2b25e006299925c5234f94af9beaf81c73667
2aa102c4c4e95e321067a7141d8874fcf729b929fa5bf39310b1a710600144eb

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/vendors/perfect-scrollbar.min.js?ver=3.3.6 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5709
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/ocean-modal-window/assets/js/modal-window.min.js?ver=2.0.8

199.188.200.165

200 OK

2.8 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/ocean-modal-window/assets/js/modal-window.min.js?ver=2.0.8
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (9951), with no line terminators
Size
2.8 kB (2830 bytes)
Hash
d3b7e9985ffedff57f4d003105aee51b
48c5ba16b16327c57c865b3d87241389e1c4191f
28e3191d3708123a95a0eab8e50e08e37f5efc3d3f4b438c42212accda3adba5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ocean-modal-window/assets/js/modal-window.min.js?ver=2.0.8 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Thu, 19 Aug 2021 11:46:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2830
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/ocean-social-sharing/assets/js/social.js?ver=2.0.2

199.188.200.165

200 OK

190 B

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/ocean-social-sharing/assets/js/social.js?ver=2.0.2
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
190 B (190 bytes)
Hash
2f7e6a2c25c66d041502b5f78681265a
916c0a1fbf242b4fed135b14940d346c3c35b68d
c83e9330d07720a5edfa1b52f83f7d9f24a97f4909209108a08f1d6c6482c38a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ocean-social-sharing/assets/js/social.js?ver=2.0.2 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Tue, 20 Jul 2021 12:33:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 190
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1

199.188.200.165

200 OK

10 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (32907)
Size
10 kB (10425 bytes)
Hash
72fd7d7a61961996172a081cb3eed6cb
7f6d4dc14ef08153606c57d374fd50b685ba383d
757fe1355fa4c3eed3c286520c6af9d344ab9d15a78d8d54a17e7573f866b9be

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10425
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

199.188.200.165

200 OK

6.8 kB

URL HTTP/2
nawazfreelancing.xyz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
6.8 kB (6800 bytes)
Hash
3d0ff0f6731d9cef860af9a5a0e3ce62
13aed444304d782039e261475c8b4450b83e743e
e8d05db77732c71843ced6f386ea82eb32243ac36e7ca3e071cb7f53e2ffbce5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 13:15:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6800
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

199.188.200.165

200 OK

4.6 kB

URL HTTP/2
nawazfreelancing.xyz/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (15660)
Size
4.6 kB (4619 bytes)
Hash
0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 01:21:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.4

199.188.200.165

200 OK

40 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (45047)
Size
40 kB (40424 bytes)
Hash
4b29f739d2f0c324f8fe0292072a0215
e5ed795866581ac6ad512a55e4ece20a235920b5
351aa10967750cc94c97b8ee2c44cd129b24d80497a8a8e5065b417f18834ff2

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Mon, 18 Jul 2022 14:02:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 40424
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.7.4

199.188.200.165

200 OK

34 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.7.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65280)
Size
34 kB (34004 bytes)
Hash
83a90323ac82b98062b4b2c8ac8c5051
d7d376677e3546b756b4fec6219be72b85c4f8f5
7fd68e9ea0ebd35958da46d7373113d1a3646a671217cf2cf471c65c3d710613

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.7.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: application/javascript
last-modified: Mon, 01 Jun 2020 20:47:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34004
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.4

199.188.200.165

200 OK

47 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.4
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size
47 kB (47392 bytes)
Hash
63d679da2b6b5a98e7d654c4622e2678
191d3b77c702cb075f91a94b74e3d3c662a7cb10
d3781ff8015b5a9497991039d6bed858ce416d7e2a80780b2f43b8ab40d63f9e

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.4 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
content-type: text/css
last-modified: Mon, 21 Nov 2022 21:13:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 47392
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17858
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 13:55:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17858
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 13:55:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17858
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 13:55:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17858
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 13:55:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17858
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 13:55:55 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7993 bytes)
Hash
92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 58083
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 31887
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7462 bytes)
Hash
b4157f2c5c3c77ce699324ecb08f47c7
a7d9135f9d01ba13c3cdaf8b038c70212f159297
2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:08:16 GMT
age: 56859
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6789 bytes)
Hash
d9d93b2a6875d446c3467eb49767eef5
303c571b13b05fcf27ee1159d8fdf6369aaef0a2
2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:10:24 GMT
age: 24331
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5070 bytes)
Hash
0856fdb55f19f03a1bec38b3d6e0ac77
89accd230fba95fe0049678070817b36ead015fa
17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rrs7G6Wto6iY0rT6KsKwKAOPJjehXqD0jHZrR_eaiqpepQILFr7Dtw==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:07 GMT
age: 58008
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13882 bytes)
Hash
64d79191f005c9876b952c5f948aa0f7
1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DYBcunpyI0FBJsJGh1kKpFI3X8kzCkO3mCxzUtWnaMKBT-Bv-zkq3Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:59:18 GMT
age: 57397
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.195

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nawazfreelancing.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 16:40:18 GMT
expires: Fri, 17 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 594938
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
4684e076aae44cfe0a6099bfb746ff4b
4d04502c2708367d77b1506ee34fb007986e95b5
cf8a15d50dfe92a31d5a3e92355e4d983ff8ecaff4f170a3f6430aa4dff0e8db

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:55:56 GMT
Etag: "637e9833-117"
Server: ECS (amb/6B94)
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:55:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

simple.oceanwp.org/wp-content/uploads/2017/02/diamond.png

172.66.40.144

200 OK

4.0 kB

URL HTTP/2
simple.oceanwp.org/wp-content/uploads/2017/02/diamond.png
IP
172.66.40.144:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 128 x 224, 8-bit colormap, non-interlaced\012- data
Size
4.0 kB (3980 bytes)
Hash
453c6f6c5ec70449590d2b0bf68d3ca7
3b6e25d8c225457a4ac069119f0c7bd0ab5da63a
bc099206b71b52c0adf1a7c30e3169ad8d52668de452808cfe709c55473b3754

HTTP Headers

GET /wp-content/uploads/2017/02/diamond.png HTTP/1.1
Host: simple.oceanwp.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:55:56 GMT
content-type: image/png
content-length: 3980
vary: Accept-Encoding
last-modified: Fri, 02 Jun 2017 22:59:35 GMT
cache-control: public, max-age=31536000
expires: Thu, 09 Feb 2023 23:17:08 GMT
cf-cache-status: HIT
age: 120106
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q7RR%2FwnpqADjVw%2FRv1IYa0%2FYGy4jLT9KkNcQX8w4ffcVTCyxQ4u7sdlUAc%2BAfGSm78mG9OmGTSJiSGzwoPmUyLoSwABmDrxWwmMSfYmo7SEgx7C%2BqTtUN3Spn90JGmQh4OkRhwE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f2a5234a81b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
4684e076aae44cfe0a6099bfb746ff4b
4d04502c2708367d77b1506ee34fb007986e95b5
cf8a15d50dfe92a31d5a3e92355e4d983ff8ecaff4f170a3f6430aa4dff0e8db

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:55:56 GMT
Etag: "637e9833-117"
Last-Modified: Thu, 24 Nov 2022 13:55:56 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
4684e076aae44cfe0a6099bfb746ff4b
4d04502c2708367d77b1506ee34fb007986e95b5
cf8a15d50dfe92a31d5a3e92355e4d983ff8ecaff4f170a3f6430aa4dff0e8db

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=115527
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:55:56 GMT
Etag: "637e9833-117"
Expires: Fri, 25 Nov 2022 22:01:23 GMT
Last-Modified: Wed, 23 Nov 2022 22:01:23 GMT
Server: nginx
Content-Length: 279

nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrQ.ttf

199.188.200.165

200 OK

47 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrQ.ttf
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
TrueType Font data, 18 tables, 1st "GDEF", 12 names, Microsoft, language 0x409, Copyright 2010 The Raleway Project Authors (impallari@gmail.com), with Reserved Font Name "Ralew\012- data
Size
47 kB (46760 bytes)
Hash
bdebf93c5407fe68ebcf28ea8e7bf5cf
efea252ba989bdafdda75070b433706be9eb60c1
ccea64b644439db63b8dbe4e042401ceffbb0ba0ab7338e856aa7fb1f4d33e49

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/oceanwp-webfonts/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrQ.ttf HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/8bae1332c95293c81ecdb766a783efa6.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:56 GMT
content-type: font/ttf
last-modified: Wed, 10 Aug 2022 01:44:54 GMT
accept-ranges: bytes
content-length: 46760
date: Thu, 24 Nov 2022 13:55:56 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0

199.188.200.165

200 OK

30 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 30064, version 1.0\012- data
Size
30 kB (30064 bytes)
Hash
0cb0b9c589c0624c9c78dd3d83e946f6
5da603104d4d6e362824ec9e7db32eb2d617949a
104673f4859604362a18fc6294197d8fffb8cb24ad3211e92eb04f655e18cf4a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/oceanwp/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:56 GMT
content-type: font/woff2
last-modified: Thu, 17 Dec 2020 12:47:14 GMT
accept-ranges: bytes
content-length: 30064
date: Thu, 24 Nov 2022 13:55:56 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

199.188.200.165

200 OK

78 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:56 GMT
content-type: font/woff2
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-length: 78196
date: Thu, 24 Nov 2022 13:55:56 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/wp-content/uploads/2022/02/How-to-Start-a-Freelancing-Business-on-the-Side-and-Make-Money-as-a-Freelancer-768x432-1.webp

199.188.200.165

200 OK

14 kB

URL HTTP/2
nawazfreelancing.xyz/wp-content/uploads/2022/02/How-to-Start-a-Freelancing-Business-on-the-Side-and-Make-Money-as-a-Freelancer-768x432-1.webp
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
14 kB (13804 bytes)
Hash
99e378111104ca0f280698a22206fa6b
9ed78fec487c58eb738b07f1c19ce1b5e256f6ae
3c04ba3140bf68923ec3bd7e133163e3b07699dcca007d98cdbb085838705259

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/02/How-to-Start-a-Freelancing-Business-on-the-Side-and-Make-Money-as-a-Freelancer-768x432-1.webp HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:56 GMT
content-type: image/webp
last-modified: Sun, 13 Feb 2022 17:42:08 GMT
accept-ranges: bytes
content-length: 13804
date: Thu, 24 Nov 2022 13:55:56 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/favicon.ico

199.188.200.165

404 Not Found

1.2 kB

URL HTTP/2
nawazfreelancing.xyz/favicon.ico
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Thu, 24 Nov 2022 13:55:56 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

nawazfreelancing.xyz/?wc-ajax=get_refreshed_fragments

199.188.200.165

200 OK

1.3 kB

URL HTTP/2
nawazfreelancing.xyz/?wc-ajax=get_refreshed_fragments
IP
199.188.200.165:0
ASN
#22612 NAMECHEAP-NET

File type
JSON data\012- HTML document, ASCII text, with very long lines (1291), with no line terminators
Size
1.3 kB (1291 bytes)
Hash
6cb65e3aac402352bb2ab00138fd72f6
783662caa083a971ff0142252eaa64d49e08cca7
d956a7367fdffd129801c88450c017c36fc7ada378744812c72c22708c63669c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: nawazfreelancing.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://nawazfreelancing.xyz
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-ua-compatible: IE=edge
access-control-allow-origin: https://nawazfreelancing.xyz
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
x-litespeed-tag: e9f_HTTP.200,e9f_HTTP.200
content-type: application/json; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-litespeed-cache-control: no-cache
content-length: 1291
date: Thu, 24 Nov 2022 13:55:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 13:55:54 GMT
date: Thu, 24 Nov 2022 13:55:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (55)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations