Overview

URLnawazfreelancing.xyz/
IP 199.188.200.165 (United States)
ASN#22612 NAMECHEAP-NET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-24 13:56:06 UTC
StatusLoading report..
IDS alerts0
Blocklist alert209
urlquery alerts No alerts detected
Tags None

Domain Summary (13)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-24 05:30:55 UTC 34.117.237.239
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 34.215.56.181
fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-11-24 11:09:52 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
simple.oceanwp.org (1) 0 2017-10-04 07:51:07 UTC 2022-11-21 13:02:06 UTC 172.66.40.144 Domain (oceanwp.org) ranked at: 235353
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-24 05:36:55 UTC 34.102.187.140
nawazfreelancing.xyz (80) 0 2022-02-12 13:10:43 UTC 2022-11-23 11:28:08 UTC 199.188.200.165 Unknown ranking
ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 172.64.155.188
ocsp.pki.goog (5) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-24 11:11:51 UTC 142.250.74.10
r3.o.lencr.org (7) 344 No data No data 23.36.77.32

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-24 2 nawazfreelancing.xyz/ Malware
2022-11-24 2 nawazfreelancing.xyz/ Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/jazzcash-woocommerce-gateway/css/jc (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/fonts/fontawesome/css (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/woocommerce/packages/woocommerce-bl (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/8bae1332c95293 (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 Malware
2022-11-24 2 nawazfreelancing.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/jazzcash-woocommerce-gateway/js/but (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/js-cookie/js. (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-includes/js/imagesloaded.min.js?ver=4.1.4 Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6 Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/drop-down-mobile-m (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/vendors/flickity.p (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?v (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/libs/framework/ass (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/woo/woocommerce.m (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/woo/woo-quick-vie (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/frontend/add- (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/woocommerce/assets/js/flexslider/jq (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocomm (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/ocean-product-sharing/assets/js/soc (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/ocean-stick-anything/assets/js/stic (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/frontend.min.js (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/third/perfect-scr (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/ocean-social-sharing/assets/css/sty (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/c (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/c (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/4edeb4f370ee6a (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6 Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/js/wp-plugins/woocomm (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/modules/elementski (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/uploads/elementor/css/post-309.css?ver=1654 (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/a14aa5fa762023 (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/elementor/assets/css/frontend-lite. (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/uploads/elementor/css/post-256.css?ver=1654 (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/ocean-stick-anything/assets/js/vend (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/waypoints/wayp (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/asset (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/elementor/assets/js/webpack.runtime (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/ocean-modal-window/assets/js/modal- (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/elementskit-lite/widgets/init/asset (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/swiper/swiper. (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts/1Ptxg8zYS_SKggPN4i (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/w (...) Malware
2022-11-24 2 nawazfreelancing.xyz/wp-content/uploads/2022/02/How-to-Start-a-Freelancing- (...) Malware
2022-11-24 2 nawazfreelancing.xyz/?wc-ajax=get_refreshed_fragments Malware

mnemonic secure dns
Scan Date Severity Indicator Comment
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed

Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed
2022-11-24 2 nawazfreelancing.xyz Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 199.188.200.165
Date UQ / IDS / BL URL IP
2023-01-28 20:47:03 +0000 0 - 0 - 63 www.securednorth-rim.com/ 199.188.200.165
2022-11-24 13:56:06 +0000 0 - 0 - 209 nawazfreelancing.xyz/ 199.188.200.165
2022-11-24 12:14:34 +0000 0 - 0 - 36 witsvest.com/ 199.188.200.165


Last 5 reports on ASN: NAMECHEAP-NET
Date UQ / IDS / BL URL IP
2023-02-07 08:09:13 +0000 0 - 25 - 11 coastalover.xyz/ 162.255.119.186
2023-02-07 08:02:13 +0000 0 - 0 - 2 honnovii.com/requirements.zip 162.0.215.196
2023-02-07 07:51:58 +0000 0 - 1 - 0 striketogethernow.org/ 162.255.119.50
2023-02-07 07:48:45 +0000 0 - 1 - 2 sanotomopharmaceutical.com/ 162.255.119.218
2023-02-07 06:59:58 +0000 0 - 0 - 1 compesat.com/differ/106172/106172.zip 198.54.120.214


Last 1 reports on domain: nawazfreelancing.xyz
Date UQ / IDS / BL URL IP
2022-11-24 13:56:06 +0000 0 - 0 - 209 nawazfreelancing.xyz/ 199.188.200.165


No other reports with similar screenshot

JavaScript

Executed Scripts (55)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (112)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3138
Expires: Thu, 24 Nov 2022 14:48:10 GMT
Date: Thu, 24 Nov 2022 13:55:52 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         199.188.200.165
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
keep-alive: timeout=5, max=100
content-length: 707
date: Thu, 24 Nov 2022 13:55:53 GMT
server: LiteSpeed
location: https://nawazfreelancing.xyz/
x-turbo-charged-by: LiteSpeed


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4230
Cache-Control: max-age=164748
Date: Thu, 24 Nov 2022 13:55:53 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:41:41 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2507
Expires: Thu, 24 Nov 2022 14:37:40 GMT
Date: Thu, 24 Nov 2022 13:55:53 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 13:17:17 GMT
cache-control: public,max-age=3600
age: 2316
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    567df7db606cf5d0871aa5bc9311b6da
Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17
Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: gf91++sfGqZgd92JaRraFdcgRkh4G8WQWQcGGQ2bOOHDV960DxSRq9YPa/F4+Jp5LfrOf4OiDwM=
x-amz-request-id: F0F7GM8MV8GH0XPE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 13:40:25 GMT
age: 928
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 13:55:53 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 13:08:53 GMT
cache-control: public,max-age=3600
age: 2820
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 13:55:53 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 09:58:35 GMT
Expires: Tue, 29 Nov 2022 09:58:34 GMT
Etag: "db96dd1398d16ab058b7a1edf392c3daf534e1bb"
Cache-Control: max-age=417160,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f2a513992db4eb-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6446
Cache-Control: max-age=161902
Date: Thu, 24 Nov 2022 13:55:53 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:54:15 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
x-ua-compatible: IE=edge
link: <https://nawazfreelancing.xyz/wp-json/>; rel="https://api.w.org/", <https://nawazfreelancing.xyz/wp-json/wp/v2/pages/256>; rel="alternate"; type="application/json", <https://nawazfreelancing.xyz/>; rel=shortlink
etag: "16-1668830028;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 13270
date: Thu, 24 Nov 2022 13:55:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18666), with CRLF, LF line terminators
Size:   13270
Md5:    ce2ef27a354fdf3b069b1dc77d4593e4
Sha1:   187e02f12d9c9569847819e41202cec5ba757c63
Sha256: 364f83a7e6650247c21888a53652d706b177badc613d620e9a6eaea1061ea42e

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hLh3i1dLGkYypfEin7QFwg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.215.56.181
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LBrBdraCxRyKFb4F2gBG5GqJHwM=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 13:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Thu, 25 Aug 2022 00:12:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1754
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10435), with no line terminators
Size:   1754
Md5:    f7237084ac82ea6a4f5bf1448c3a2148
Sha1:   60457635a5e809ee1199c61090d8e33b91e8e1f2
Sha256: 18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/jazzcash-woocommerce-gateway/css/jc-buttons.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Fri, 18 Feb 2022 10:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 628
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with CRLF line terminators
Size:   628
Md5:    11ae8164e924ed8be6acdf961ae69511
Sha1:   9d131a8f5b30080dae23edf2e47555ee01c62a68
Sha256: f6df30de43a8c812bcc26bf02de8c344ee7186d084189cc1d3c67034d1dae9d8

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/css/woo/woo-mini-cart.min.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1157
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5855), with no line terminators
Size:   1157
Md5:    718133fffa38143f6bdca12685c09a7e
Sha1:   c9f2ef986bb32369275de66d9df74d2e95d9daf9
Sha256: 046685898f3802e012397d662368fff70a4ecdb86c18bba752f1bcc8e0052b8d

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12385
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59158), with CRLF line terminators
Size:   12385
Md5:    03edd6b23c3e400f4057f974b3e6dc36
Sha1:   11075ea4490b65601db5997900666da63b312272
Sha256: a657eacc3194fa6b028376dcb7eb91b2a1b72ae5b82afc421f8914c8f8b49665

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 13:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Thu, 03 Nov 2022 20:38:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22871
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size:   22871
Md5:    0c6730c96c60030ddaf42fcf5daf3b17
Sha1:   feb4c0071f27718582e58d365022a1b559de5765
Sha256: d996bec53b493bc579754f29f7d6d0b5332f3354c860a3787e2365a79c44f995

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Thu, 17 Dec 2020 12:47:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2313
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10927), with no line terminators
Size:   2313
Md5:    64f6237567e3cf8796295343039a352e
Sha1:   e4af3e6ae53c4c41828057b729b443dd158111ec
Sha256: c558229bb9505d28966ba3ad6daa109310112c4fa01997291aea288abf2e5573

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/oceanwp-webfonts-css/8bae1332c95293c81ecdb766a783efa6.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Thu, 24 Nov 2022 13:45:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 308
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4221), with no line terminators
Size:   308
Md5:    ffe7cc1f45fb340e9277f13e4dd27250
Sha1:   7ea58f2a7dad8746aecc4a955d5f15c8f556f1a8
Sha256: 7379c2c83fa2574019b6ed669e92d62a33c61ecdfd085eb950a98fa32f3d78e4

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 16 Nov 2022 03:20:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47826)
Size:   11616
Md5:    c4d7cc056b49b00e05cc29cc59aa3d5a
Sha1:   48c426bec60099d2a8628df430ed682c72aab42a
Sha256: 8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 02 Nov 2022 13:15:51 GMT
accept-ranges: bytes
content-length: 217
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   217
Md5:    95e891f28e44a9b314c09545d86be2b7
Sha1:   f9b13a8bd47273b086a0a07df15f314e0af0bc3e
Sha256: 5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25278
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65525), with no line terminators
Size:   25278
Md5:    c7e24d2596898bc369a61d492884e3ea
Sha1:   af79e97451f45c6673551c934ec5d728a70e76d7
Sha256: a64120bedaa97ab8bef0d075697422b35fa72608fcca11a4bc34c8a2a5c11567

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 18 Nov 2020 19:36:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   3995
Md5:    7e058b51f939eacfa31cdface14dded5
Sha1:   9d732e5afdeb42edef9e1b9631b7e95e054787cc
Sha256: 4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 19 Oct 2022 00:34:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3247
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9111)
Size:   3247
Md5:    078e27719ab2b91e57a3d06d05bf24d8
Sha1:   ee2c8af72d9dbb148d4101a374f6026d0c9c3044
Sha256: 1c8b599f3f7bfa8d7950d95a171f2c873d051960a91c91e22304293596e5b890

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 18 May 2021 21:00:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2139), with no line terminators
Size:   677
Md5:    a43fc0dde8fdd69656ad0957e62849c7
Sha1:   4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
Sha256: 1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 14 Jun 2022 11:42:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3024
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12402), with no line terminators
Size:   3024
Md5:    5b4cc772d1f76006e50ce5c966fc0d03
Sha1:   420b6f7972cbf75dbae2c0f5444ac5823e704aba
Sha256: 5cc92f11e2d1fbb48e4212a704be27c4a3ceaa02650a840b1d40ba50ab656914

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 20 Jul 2021 12:13:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 566
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2034), with no line terminators
Size:   566
Md5:    4988c65367365742f019d6dcef7b46f3
Sha1:   a8f4e5a970001249fd245576687b6ec82bc29840
Sha256: 720a1a14ae4ba4e72e2d1a3eaccda2432c8fc0fd50961aca67eddc00e705c8ea

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 02 Nov 2022 13:15:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30324
Md5:    3a1740685bd5c0bbd5f2b812e1eb7fb4
Sha1:   488e07695da787fed18361c50292aef35abb5e81
Sha256: 4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/jazzcash-woocommerce-gateway/js/buttons.js?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Fri, 18 Feb 2022 10:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 116
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   116
Md5:    e70f755fa780eeae285d8b0fea7a7ccc
Sha1:   913ccb53e39d713354a5035d253d07a913ef35f2
Sha256: 239e0fedd7a000f2e0b95d32d83de2e677e733aeda252594a165e11117f95ded

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 20 Jan 2021 04:55:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1668)
Size:   899
Md5:    22d65ba38528349e705d912ce26bf8ac
Sha1:   c89ba006009043d93b88ff155b4fec8797330550
Sha256: 6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Sun, 14 Jun 2020 04:23:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1733
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5477)
Size:   1733
Md5:    fa921f07ecc438baf227765de450e215
Sha1:   1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95
Sha256: b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 02 May 2022 11:58:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4015
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19789), with no line terminators
Size:   4015
Md5:    fbacc63ed65058dc22ba28d20d42d87d
Sha1:   af4505033ad4fb82fb157d7f630b8a6edb2ee0f8
Sha256: 986aed424cc140b10b1342beb59e7fe01b1fa885e4b0f5e09427829cbf381911

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 02 May 2022 11:58:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3389
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14087), with no line terminators
Size:   3389
Md5:    6aa67788ab055cf5d63f3270d0f1465a
Sha1:   bf8925d13a7eda79e861a81d3be26c3a55269ade
Sha256: 3b1fb09012628314619090be1e6b3b63ca3012ca4c46d5b646d97d337e95029b

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 07 Mar 2022 14:31:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1327
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4111), with no line terminators
Size:   1327
Md5:    6785a1bb095623b52d8b6f5c77ab1c4d
Sha1:   d375933429eba23eb86eb5c9795800c7e717f480
Sha256: 9084fd970309f300cceae024e2a0a6ab1bc3a1e133fb0faaebae407029c22023

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13619
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21914), with CRLF line terminators
Size:   13619
Md5:    3e338d8c5330808ddfaa6b246a5798a3
Sha1:   c9d44543da80d050e353a51267bfe90a415c5795
Sha256: 0a4a040b702be0be8b9b9112598213949eec71734b4ef1c8387dca0359ff2397

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 07 Mar 2022 14:31:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 815
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2002), with no line terminators
Size:   815
Md5:    171844f21c8e85a19bf6d9400931e40c
Sha1:   183cd302d49cf285c7da829ce756af531e7f7755
Sha256: 4a0576e94d974ddf90c433f6cc2f03a03c4a2117faaa96515c7e5004b7886a5f

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 14 Apr 2021 14:48:22 GMT
accept-ranges: bytes
content-length: 40
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    94d041d462db321cdb888066586f2068
Sha1:   717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
Sha256: b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/css/woo/woocommerce.min.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13521
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65397)
Size:   13521
Md5:    a79d1db5fa157b677dc0e4f179c33a0b
Sha1:   cbba30f6625bbe89f5e0b88108c4de849f519491
Sha256: f1f672f21190c23efc2ae84ad2b81d72b26524175a3ab5685d5f1cb737ea822c

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/css/woo/woo-quick-view.min.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1224
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (5183), with no line terminators
Size:   1224
Md5:    2e1fa7807313b7aa8f7855be02959ae4
Sha1:   e79ffa516214319f1d0ecca7e992fd8f96b6edd3
Sha256: a05144b8670e787b2f8679f948f66b2251c88f54103e2b4ec44fda81ee5d9fc5

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 19 Oct 2022 00:34:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3431
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13880), with no line terminators
Size:   3431
Md5:    459fba86094e948f2046f4607bc0c02f
Sha1:   5b41f2b77e93fdcd7e8f0f5d1c50dd51b8a45f7c
Sha256: 71feb5b709466deb028daa294a0f3eb5f8f6658cdb912a463162f6d1404d5412

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.7.1.0 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 24 Aug 2022 02:07:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6252
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22741), with no line terminators
Size:   6252
Md5:    63d9da90362f282049882ebb69307768
Sha1:   9fa77a366a4581a0a01d7245b54bc37e25245159
Sha256: 8a7c40b356546c47f3387e35363d67e6ed28d7d02aaa56b4da66461add016ff4

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-mini-cart.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 02 May 2022 11:58:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2851
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11594), with no line terminators
Size:   2851
Md5:    8ba18ca7e97cc3dac4879a9d5ab3b7ea
Sha1:   04daa44950a48f969b9e0c95394f98d86e35504c
Sha256: 6a300cac3b5059a51e5792e96badc5046a949f112028fdc6c8ab990e91466bdc

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ocean-product-sharing/assets/js/social.js?ver=2.0.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 20 Jul 2021 12:33:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 190
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   190
Md5:    8c7692cce875253bfd51b96a17c1e420
Sha1:   d521f7455d53d840fc7a7047a04c6c0c95216131
Sha256: 0c022893cc923ae4811e3329bcb9437d5ecfcd7cd00b0f86d145113b59b1ab7c

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 20 Jul 2021 12:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1965
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6205), with no line terminators
Size:   1965
Md5:    f66ce0d8f0a9020caf198a0233aad24e
Sha1:   7cbcbce689f33ffd77b6ac2d7f0bf951dccef910
Sha256: e9bd986022e365f72f40df672cb739870c13c8dbbb7ff3ec1e4c15a41e72cf21

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11702
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (40474)
Size:   11702
Md5:    cf45d3e8044770ba8eabf3833e30fdbe
Sha1:   90f787b69fa2f83b87c28f3caa67985b04b333bd
Sha256: c83321c916d9ca392150cf727108c0927ce9394be70e9b08920cff666f823fb4

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/css/third/perfect-scrollbar.css?ver=1.5.0 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 20 Jul 2021 12:13:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 559
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  troff or preprocessor input, ASCII text
Size:   559
Md5:    7e707b68c8429646b7fe75264dabb6fd
Sha1:   627e8e10f437e7ba03eac9036ec9a6e6c44eee44
Sha256: af44f7935f5d2778dfbd5d3bcb19d1a6d4a1a6ab3d0bff1029b834e2e1f3699c

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ocean-modal-window/assets/css/style.min.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 09 Nov 2022 13:03:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 429
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1276), with no line terminators
Size:   429
Md5:    873225a76eedd7a12ea0f7dfa8cc8333
Sha1:   f2fc980fa2979a9f3cb3f89fcd557f935a415d32
Sha256: a0c9631c0b739fce6296ab313cdf42ae312761857be3fdfbaad13972ca937da9

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ocean-social-sharing/assets/css/style.min.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 01 Apr 2020 17:49:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1118
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6086)
Size:   1118
Md5:    52924d98045c3095471517557d01e5e4
Sha1:   c5253fae24568a2a1143b266582f129f946d2774
Sha256: ebfe2ca784845dcecb6b67e169268ae4402272f23fc473dfb61b1e010e0f2581

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (483)
Size:   286
Md5:    8828fa3c5bdcfa66615714a2b8c9d807
Sha1:   4f556d0b005ac7754af607418df445f8cf98e8b1
Sha256: 16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57726)
Size:   12133
Md5:    f463afd8661ddc733305df1f0cbdaff2
Sha1:   77262f0209e75e340eb7014aba9cd8d69966032f
Sha256: c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/oceanwp-webfonts-css/4edeb4f370ee6a8dec27712e4b9aa1de.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Thu, 24 Nov 2022 13:45:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 214
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (709), with no line terminators
Size:   214
Md5:    a737cffa2d0f198e63832946c17e12e4
Sha1:   c069dca32c16c0e026af94d91a7fd160edb2e6c0
Sha256: c6bb2a07f4785ca21d5cc51dca3e0b3bb54be0566b84c16d3b1f009fba707287

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7046
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20087), with CRLF line terminators
Size:   7046
Md5:    cd77ebaa4544fc721b35a2c7f8ac06f2
Sha1:   54797d61a69f0f375e7484f9151fcffeabda919f
Sha256: 6481824a1cfa4ba748d3b4378dd1c648e7ea077a9131990c8efc9d7f301bfe48

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 24 Nov 2021 03:30:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2938), with no line terminators
Size:   934
Md5:    cf25dd071a208312bdc07f34d2cee027
Sha1:   76119563119eaae392ecc8903c989d98d0b93002
Sha256: 8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 02 May 2022 11:58:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2145
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8989), with no line terminators
Size:   2145
Md5:    6185808402bda215e4f7236f817466c2
Sha1:   bb7a5a8dea701972a0bb352122531f6e5d146377
Sha256: f796ab2986eae473cc62ff0bfb30e0b8ad56ab419fe814df2943673808f1fac9

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 07 Mar 2022 14:31:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1394
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5181), with no line terminators
Size:   1394
Md5:    7904cdab6435080eaec64b4d67beb8e0
Sha1:   16553f73d5549d22b09c992110fbcf947799a6ea
Sha256: f443194efd5bc7ad935fb1e44a4a6c365e2e5f45dcf4d343d983ab898e5810d7

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-custom-features.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 02 May 2022 11:58:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5322
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26993), with no line terminators
Size:   5322
Md5:    72c4b08dff67659f0d5dfe3339913053
Sha1:   8ba5c7ccec413a25e64045587438f5333ffe98c0
Sha256: ecb2a1ed1324162137b7e50fc947e890f3109e7ca68ee7b5b1f067426adec538

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 04 Oct 2022 07:48:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11547
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   11547
Md5:    b56454016892c865bde2727eeca1d036
Sha1:   3c2623d4e5ceec9b89a46c46bc1bb651f45ac9d2
Sha256: f6d10f3d1ca2bc8e9b2c3d2bab875085c46abf18ccac1a5642f410f10c00207d

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-309.css?ver=1654870778 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Fri, 10 Jun 2022 14:19:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 308
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1119), with no line terminators
Size:   308
Md5:    7a349103ef07c77ab2247dc8133a5d2e
Sha1:   931e6b140efdd8431645d25f631e6c158b1b1e8c
Sha256: 27097c92d1c2e3d30ef3b4090c31865d275eeb91583c13bf0553f3bbf7a5fa8f

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/oceanwp-webfonts-css/a14aa5fa76202380dcf0d3aad6f35cfb.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Thu, 24 Nov 2022 13:45:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 312
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4347), with no line terminators
Size:   312
Md5:    2633cbce0a858fab543aa63b2df4ee1a
Sha1:   59c49964ec6ea20172bd2df88d80142323b82da2
Sha256: b38172c451837b7a8e41e30ebd52ff820e72c20564eaf19be554af48592b0f0e

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-quick-view.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 02 May 2022 11:58:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11030
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (37783), with no line terminators
Size:   11030
Md5:    6811f8fbc6e9542577d5e74bff7ec550
Sha1:   be4790288436a5ee8bc4531c083b62a42d4d8192
Sha256: d7efb2500f20dc47449956781cef6b435855563d0e716678b23e46b0d970e83d

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 02 Nov 2022 13:15:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7179
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18798)
Size:   7179
Md5:    f4bb18d2e152ba945cb63980362f40e9
Sha1:   925f93a6c4ee411e97d8dc3186f9d66c4b5169ab
Sha256: 16ab496a6c74f5f272f7a5c31e9cb69c753fea994396ef6deacf641180ad317b

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12400
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   12400
Md5:    eae4534b9e0b15aaf7ad9f3111688549
Sha1:   4bde4256711207e4a95c1376f0b453cd660a63d8
Sha256: b9adb98eaf24ecee30ef9b280527781e217f6e3829b8e22e5a42f7f14819cfec

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 02 Nov 2022 13:15:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 690
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391)
Size:   690
Md5:    ebe552e54e3815c6867913d252ff2a79
Sha1:   4982bd9ba944833e821be18419ad8408290f5d75
Sha256: 8b0aedc73b1d41ab59c0ad42553259c90458cfb72b149946a3bae3298c012e40

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-256.css?ver=1654874040 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Fri, 10 Jun 2022 15:14:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 468
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1849), with no line terminators
Size:   468
Md5:    a68243577aa8fe7a6d947adf4eb64b75
Sha1:   7989487cda05ce0f0c444a1f8c5405adf81201e7
Sha256: 387d904e4477124967abf23265665967ea30ad76988eae4d897e11ec14366758

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 25 May 2022 11:09:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1306
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (546)
Size:   1306
Md5:    2ae7a573e93aede50a6ca2b25417db0e
Sha1:   932ef087f28974c6f93da1647a61e04e79fdd99a
Sha256: ddce554275ed09f63d1ee7f1291629c15820a91ada0af6d5814bab4a8842818f

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 11 Jan 2017 21:35:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2867
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   2867
Md5:    869caa171b68cbec9fee5abbfb944ee8
Sha1:   f237e485e41f88b77384cfdb880f9d5a8f46eac8
Sha256: 25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Thu, 25 Nov 2021 18:21:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2851
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30283), with no line terminators
Size:   2851
Md5:    1119301a85ab323270d853e94a9b2f2f
Sha1:   3bd61b9dd43e2e0166c4036273b4b02d50d3fec7
Sha256: 8cbeb42d6bac404c391197cf1f219086c8501143db7e4cfde22919d6124b3fc3

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 08 Jun 2021 10:39:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 389
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (810), with no line terminators
Size:   389
Md5:    bc80f83337ad9e96f9c5d9b3d0305b5d
Sha1:   464e35c91ecfa7e96e58cb7c9f523352758385ac
Sha256: 0b12bc106b406b2ecd33244ea0c1d17da81bbdb75874835d6ce5ef3a16fa8ad0

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 01 Aug 2022 04:11:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3629
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19233)
Size:   3629
Md5:    af3bdf44d09914e8adb51fec560d8816
Sha1:   84bb225e096bab405868dd504e62133ba75cf1c1
Sha256: 4325dab21d3eb9efb8e285a0926be743f27e46446ccf5f9be65bb4b60c024152

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 04 Oct 2022 07:48:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4776
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17948), with no line terminators
Size:   4776
Md5:    915c8f059bb971c121814657dc9d78fa
Sha1:   464ee8c8c5f25d6e51558dba621150a17b58ff13
Sha256: dd3c7c000e7acda27c95dc6f3980474e74ccd7fa384589474858ba435eb0d0e8

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Thu, 10 Nov 2022 17:24:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 339
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (754), with no line terminators
Size:   339
Md5:    f4cea5c82bb62f34a31f39a322513366
Sha1:   bab5dfb3f8d04b76f83ca994798534e697b85290
Sha256: 5b00e0c1288d5d1f1df303a55bd0ff67d9acf5b734bc0093a651727c48a077ff

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 09 Aug 2022 12:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6210
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (51619), with no line terminators
Size:   6210
Md5:    20db916d10cfc8745d24a4d19a0f73aa
Sha1:   06e047ebe7c9ac50d2fd0f71a9e8388539e308db
Sha256: 9f11208676a929159b38acfb84e7ddd9b2dc01b359d5f4207be745cb3abb16b1

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2044
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4918)
Size:   2044
Md5:    918938b0ee6977d6506f2e0fa248bd66
Sha1:   292ba27818bec580f76945b53fee4ff6cddcb2c2
Sha256: a1da723cfdb1f8ea57aa7278637d07a83f39ff410dfbba24d8205882a110444e

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ocean-product-sharing/assets/css/style.min.css?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 01 Apr 2020 17:45:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 642
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3151)
Size:   642
Md5:    09500974b417e9ef7f92d91511a20514
Sha1:   4321e65bb76b190dc495e004fe55a2f98d6dbc42
Sha256: 314b106a9d1f82ce2b38ecf4a9c7e522c9710b2f8605102c064ea4863dcb6c60

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 19 Oct 2022 00:34:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 972
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3029), with no line terminators
Size:   972
Md5:    5ed77e0c59800f40061b5c322cff21fa
Sha1:   ced9d401d300dd1fc676a673bbf7e6360beb402d
Sha256: 3b284b8a096256e6cd0d9cbf2cb4b36505e71c0d7b2227fcd3132dddbeea18cc

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/js/vendors/perfect-scrollbar.min.js?ver=3.3.6 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 09 Aug 2022 11:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5709
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8460), with CRLF line terminators
Size:   5709
Md5:    8fd2878f3a89882a6d692fe58b33c99d
Sha1:   88a2b25e006299925c5234f94af9beaf81c73667
Sha256: 2aa102c4c4e95e321067a7141d8874fcf729b929fa5bf39310b1a710600144eb

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ocean-modal-window/assets/js/modal-window.min.js?ver=2.0.8 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Thu, 19 Aug 2021 11:46:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2830
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9951), with no line terminators
Size:   2830
Md5:    d3b7e9985ffedff57f4d003105aee51b
Sha1:   48c5ba16b16327c57c865b3d87241389e1c4191f
Sha256: 28e3191d3708123a95a0eab8e50e08e37f5efc3d3f4b438c42212accda3adba5

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ocean-social-sharing/assets/js/social.js?ver=2.0.2 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Tue, 20 Jul 2021 12:33:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 190
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   190
Md5:    2f7e6a2c25c66d041502b5f78681265a
Sha1:   916c0a1fbf242b4fed135b14940d346c3c35b68d
Sha256: c83e9330d07720a5edfa1b52f83f7d9f24a97f4909209108a08f1d6c6482c38a

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10425
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (32907)
Size:   10425
Md5:    72fd7d7a61961996172a081cb3eed6cb
Sha1:   7f6d4dc14ef08153606c57d374fd50b685ba383d
Sha256: 757fe1355fa4c3eed3c286520c6af9d344ab9d15a78d8d54a17e7573f866b9be

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 02 Nov 2022 13:15:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6800
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   6800
Md5:    3d0ff0f6731d9cef860af9a5a0e3ce62
Sha1:   13aed444304d782039e261475c8b4450b83e743e
Sha256: e8d05db77732c71843ced6f386ea82eb32243ac36e7ca3e071cb7f53e2ffbce5

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Wed, 25 May 2022 01:21:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   4619
Md5:    0232689bd203f330529b36a437f41a68
Sha1:   9046583f7469ad38297969f10a9513eb895d5316
Sha256: feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 18 Jul 2022 14:02:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 40424
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (45047)
Size:   40424
Md5:    4b29f739d2f0c324f8fe0292072a0215
Sha1:   e5ed795866581ac6ad512a55e4ece20a235920b5
Sha256: 351aa10967750cc94c97b8ee2c44cd129b24d80497a8a8e5065b417f18834ff2

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.7.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 01 Jun 2020 20:47:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34004
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65280)
Size:   34004
Md5:    83a90323ac82b98062b4b2c8ac8c5051
Sha1:   d7d376677e3546b756b4fec6219be72b85c4f8f5
Sha256: 7fd68e9ea0ebd35958da46d7373113d1a3646a671217cf2cf471c65c3d710613

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.4 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:54 GMT
last-modified: Mon, 21 Nov 2022 21:13:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 47392
date: Thu, 24 Nov 2022 13:55:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size:   47392
Md5:    63d679da2b6b5a98e7d654c4622e2678
Sha1:   191d3b77c702cb075f91a94b74e3d3c662a7cb10
Sha256: d3781ff8015b5a9497991039d6bed858ce416d7e2a80780b2f43b8ab40d63f9e

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17858
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 13:55:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17858
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 13:55:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17858
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 13:55:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17858
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 13:55:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17858
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 13:55:55 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 58083
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 31887
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:08:16 GMT
age: 56859
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7462
Md5:    b4157f2c5c3c77ce699324ecb08f47c7
Sha1:   a7d9135f9d01ba13c3cdaf8b038c70212f159297
Sha256: 2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:10:24 GMT
age: 24331
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6789
Md5:    d9d93b2a6875d446c3467eb49767eef5
Sha1:   303c571b13b05fcf27ee1159d8fdf6369aaef0a2
Sha256: 2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rrs7G6Wto6iY0rT6KsKwKAOPJjehXqD0jHZrR_eaiqpepQILFr7Dtw==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:07 GMT
age: 58008
etag: "89accd230fba95fe0049678070817b36ead015fa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5070
Md5:    0856fdb55f19f03a1bec38b3d6e0ac77
Sha1:   89accd230fba95fe0049678070817b36ead015fa
Sha256: 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DYBcunpyI0FBJsJGh1kKpFI3X8kzCkO3mCxzUtWnaMKBT-Bv-zkq3Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:59:18 GMT
age: 57397
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13882
Md5:    64d79191f005c9876b952c5f948aa0f7
Sha1:   1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
Sha256: 00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 13:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 13:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nawazfreelancing.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 16:40:18 GMT
expires: Fri, 17 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 594938
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size:   30928
Md5:    ac0d2859ea5f8fd6bcb3c305c08ec184
Sha1:   7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
Sha256: ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 13:55:56 GMT
Etag: "637e9833-117"
Server: ECS (amb/6B94)
Content-Length: 279

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 13:55:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2017/02/diamond.png HTTP/1.1 
Host: simple.oceanwp.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.66.40.144
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 24 Nov 2022 13:55:56 GMT
content-length: 3980
vary: Accept-Encoding
last-modified: Fri, 02 Jun 2017 22:59:35 GMT
cache-control: public, max-age=31536000
expires: Thu, 09 Feb 2023 23:17:08 GMT
cf-cache-status: HIT
age: 120106
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q7RR%2FwnpqADjVw%2FRv1IYa0%2FYGy4jLT9KkNcQX8w4ffcVTCyxQ4u7sdlUAc%2BAfGSm78mG9OmGTSJiSGzwoPmUyLoSwABmDrxWwmMSfYmo7SEgx7C%2BqTtUN3Spn90JGmQh4OkRhwE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f2a5234a81b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 128 x 224, 8-bit colormap, non-interlaced\012- data
Size:   3980
Md5:    453c6f6c5ec70449590d2b0bf68d3ca7
Sha1:   3b6e25d8c225457a4ac069119f0c7bd0ab5da63a
Sha256: bc099206b71b52c0adf1a7c30e3169ad8d52668de452808cfe709c55473b3754
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 13:55:56 GMT
Etag: "637e9833-117"
Last-Modified: Thu, 24 Nov 2022 13:55:56 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=115527
Date: Thu, 24 Nov 2022 13:55:56 GMT
Etag: "637e9833-117"
Expires: Fri, 25 Nov 2022 22:01:23 GMT
Last-Modified: Wed, 23 Nov 2022 22:01:23 GMT
Server: nginx
Content-Length: 279

                                        
                                            GET /wp-content/uploads/oceanwp-webfonts/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrQ.ttf HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/wp-content/uploads/oceanwp-webfonts-css/8bae1332c95293c81ecdb766a783efa6.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: font/ttf
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:56 GMT
last-modified: Wed, 10 Aug 2022 01:44:54 GMT
accept-ranges: bytes
content-length: 46760
date: Thu, 24 Nov 2022 13:55:56 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 18 tables, 1st "GDEF", 12 names, Microsoft, language 0x409, Copyright 2010 The Raleway Project Authors (impallari@gmail.com), with Reserved Font Name "Ralew\012- data
Size:   46760
Md5:    bdebf93c5407fe68ebcf28ea8e7bf5cf
Sha1:   efea252ba989bdafdda75070b433706be9eb60c1
Sha256: ccea64b644439db63b8dbe4e042401ceffbb0ba0ab7338e856aa7fb1f4d33e49

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/oceanwp/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:56 GMT
last-modified: Thu, 17 Dec 2020 12:47:14 GMT
accept-ranges: bytes
content-length: 30064
date: Thu, 24 Nov 2022 13:55:56 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30064, version 1.0\012- data
Size:   30064
Md5:    0cb0b9c589c0624c9c78dd3d83e946f6
Sha1:   5da603104d4d6e362824ec9e7db32eb2d617949a
Sha256: 104673f4859604362a18fc6294197d8fffb8cb24ad3211e92eb04f655e18cf4a

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:56 GMT
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-length: 78196
date: Thu, 24 Nov 2022 13:55:56 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size:   78196
Md5:    e8a427e15cc502bef99cfd722b37ea98
Sha1:   a9922842a120a7f1eaced667480c5e185a106d69
Sha256: d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2022/02/How-to-Start-a-Freelancing-Business-on-the-Side-and-Make-Money-as-a-Freelancer-768x432-1.webp HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: image/webp
                                        
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 13:55:56 GMT
last-modified: Sun, 13 Feb 2022 17:42:08 GMT
accept-ranges: bytes
content-length: 13804
date: Thu, 24 Nov 2022 13:55:56 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   13804
Md5:    99e378111104ca0f280698a22206fa6b
Sha1:   9ed78fec487c58eb738b07f1c19ce1b5e256f6ae
Sha256: 3c04ba3140bf68923ec3bd7e133163e3b07699dcca007d98cdbb085838705259

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 404 Not Found
content-type: text/html
                                        
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-length: 1238
date: Thu, 24 Nov 2022 13:55:56 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   1238
Md5:    0bde7d4b3da67537eaf9188e6f8049cf
Sha1:   64300fc482d01d38b40ab20e15960b6509665e5a
Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 
Host: nawazfreelancing.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://nawazfreelancing.xyz
Connection: keep-alive
Referer: https://nawazfreelancing.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.165
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
x-ua-compatible: IE=edge
access-control-allow-origin: https://nawazfreelancing.xyz
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
x-litesp