Overview

URLzafarr.com/
IP 162.241.7.200 (United States)
ASN#46606 UNIFIEDLAYER-AS-1
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-24 15:48:03 UTC
StatusLoading report..
IDS alerts0
Blocklist alert340
urlquery alerts No alerts detected
Tags None

Domain Summary (13)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
r3.o.lencr.org (6) 344 No data No data 23.36.76.226
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 44.238.202.79
zafarr.com (132) 0 2016-03-30 09:03:06 UTC 2022-11-22 20:30:56 UTC 162.241.7.200 Unknown ranking
fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-11-24 11:11:51 UTC 142.250.74.10
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-24 05:36:55 UTC 34.102.187.140
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-24 05:30:55 UTC 34.117.237.239
img-getpocket.cdn.mozilla.net (7) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
ocsp.pki.goog (7) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
polyfill.io (1) 102644 2016-02-12 00:04:58 UTC 2022-11-24 06:38:13 UTC 151.101.129.26
fonts.gstatic.com (4) 0 2014-09-09 00:40:21 UTC 2022-11-24 11:09:52 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
hubbleweb.net (6) 0 2015-08-25 06:40:55 UTC 2022-10-28 09:47:38 UTC 185.214.127.244 Unknown ranking

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-24 2 zafarr.com/ Malware
2022-11-24 2 zafarr.com/wp-content/uploads/elementor/css/post-6.css?ver=1660899265 Malware
2022-11-24 2 zafarr.com/wp-includes/css/classic-themes.min.css?ver=1 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woo-floating-cart-lite/xt-framework/includes/ (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/yaycurrency/blocks/style.css?ver=1660821195 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.s (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woocommerce-deals/assets/css/tawc-deals.css?v (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woo-floating-cart-lite/xt-framework/includes/ (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.m (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands. (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woo-floating-cart-lite/xt-framework/assets/js (...) Malware
2022-11-24 2 zafarr.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox. (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe. (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.mi (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woo-floating-cart-lite/public/assets/vendors/ (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woocommerce/assets/css/photoswipe/default-ski (...) Malware
2022-11-24 2 zafarr.com/wp-content/uploads/elementor/css/post-8516.css?ver=1662097326 Malware
2022-11-24 2 zafarr.com/wp-content/uploads/elementor/css/post-7587.css?ver=1662627319 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.b (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woo-floating-cart-lite/xt-framework/includes/ (...) Malware
2022-11-24 2 zafarr.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woo-floating-cart-lite/xt-framework/includes/ (...) Malware
2022-11-24 2 zafarr.com/wp-content/uploads/elementor/css/post-9879.css?ver=1661506185 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.cs (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-ico (...) Malware
2022-11-24 2 zafarr.com/wp-content/uploads/elementor/css/global.css?ver=1660899266 Malware
2022-11-24 2 zafarr.com/wp-content/themes/farmart/css/bootstrap.min.css?ver=3.3.7 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/resp (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/front (...) Malware
2022-11-24 2 zafarr.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ve (...) Malware
2022-11-24 2 zafarr.com/wp-content/themes/farmart/woocommerce.css?ver=20220204 Malware
2022-11-24 2 zafarr.com/wp-content/themes/farmart/style.css?ver=20220304 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widg (...) Malware
2022-11-24 2 zafarr.com/wp-includes/js/thickbox/thickbox.js?ver=3.1-20121105 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.mi (...) Malware
2022-11-24 2 zafarr.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/email-subscribers/lite/public/js/email-subscr (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.col (...) Malware
2022-11-24 2 zafarr.com/wp-includes/js/wp-util.min.js?ver=6.1.1 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/yaycurrency/src/script.js?ver=1.0 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/variation-swatches-for-woocommerce-pro/assets (...) Malware
2022-11-24 2 zafarr.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/fro (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare (...) Malware
2022-11-24 2 zafarr.com/wp-content/themes/farmart/js/plugins/jquery.coundown.js?ver=1.0.0 Malware
2022-11-24 2 zafarr.com/wp-content/themes/farmart/js/plugins/nprogress.js?ver=1.0.0 Malware
2022-11-24 2 zafarr.com/wp-content/themes/farmart/js/plugins/waypoints.min.js?ver=2.0.2 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ve (...) Malware
2022-11-24 2 zafarr.com/wp-content/themes/farmart/js/plugins/isInViewport.min.js?ver=1.1.0 Malware
2022-11-24 2 zafarr.com/wp-content/themes/farmart/js/plugins/notify.min.js?ver=1.0.0 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woo-floating-cart-lite/public/assets/js/front (...) Malware
2022-11-24 2 zafarr.com/ Malware
2022-11-24 2 zafarr.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ve (...) Malware
2022-11-24 2 zafarr.com/wp-content/themes/farmart/js/plugins/jquery.magnific-popup.js?ver=1.0 Malware
2022-11-24 2 zafarr.com/wp-content/themes/farmart/js/plugins/slick.min.js?ver=1.0 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widge (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/anima (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?v (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/eleme (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/yaycurrency/assets/dist/flags/ae.svg Malware
2022-11-24 2 zafarr.com/wp-content/plugins/yaycurrency/assets/dist/flags/us.svg Malware
2022-11-24 2 zafarr.com/wp-content/plugins/yaycurrency/assets/dist/flags/in.svg Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff (...) Malware
2022-11-24 2 zafarr.com/wp-content/themes/farmart/fonts/FarmartIcon.ttf?xi9l80 Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pac (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa (...) Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woo-floating-cart-lite/public/assets/img/open.svg Malware
2022-11-24 2 zafarr.com/wp-content/plugins/woo-floating-cart-lite/public/assets/img/close.svg Malware
2022-11-24 2 zafarr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawe (...) Malware

mnemonic secure dns
Scan Date Severity Indicator Comment
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed

Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed
2022-11-24 2 zafarr.com Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 162.241.7.200
Date UQ / IDS / BL URL IP
2022-11-24 15:48:03 +0000 0 - 0 - 340 zafarr.com/ 162.241.7.200
2022-11-20 11:29:30 +0000 0 - 0 - 6 zafarr.com/neti/index.php?emaut-id=10 162.241.7.200
2022-11-19 20:49:41 +0000 0 - 0 - 6 myflavory.qa/ie/qakbot.zip 162.241.7.200
2022-11-19 20:26:58 +0000 0 - 0 - 4 myflavory.sg/adt/qbot.zip 162.241.7.200
2022-11-19 20:17:40 +0000 0 - 0 - 6 myflavory.qa/ie/qbot.zip 162.241.7.200


Last 5 reports on ASN: UNIFIEDLAYER-AS-1
Date UQ / IDS / BL URL IP
2023-02-03 19:53:17 +0000 6 - 8 - 3 petersenhealthcare-secure-doc-auth.tk/adobe/d (...) 108.179.232.69
2023-02-03 19:52:06 +0000 0 - 0 - 1 villedisanti.com.br/s3c/auth.php?md=xcelhawJK (...) 162.214.65.10
2023-02-03 19:32:11 +0000 0 - 3 - 0 ctec.cloud/ 108.167.146.233
2023-02-03 19:29:48 +0000 0 - 2 - 0 www.abbeyinncedar.com/ 162.241.219.113
2023-02-03 19:21:54 +0000 0 - 0 - 16 palbonix.com/ 142.4.6.246


Last 5 reports on domain: zafarr.com
Date UQ / IDS / BL URL IP
2022-11-24 15:48:03 +0000 0 - 0 - 340 zafarr.com/ 162.241.7.200
2022-11-20 11:29:30 +0000 0 - 0 - 6 zafarr.com/neti/index.php?emaut-id=10 162.241.7.200
2022-11-19 00:17:37 +0000 0 - 0 - 7 zafarr.com/neti/index.php?qbot.zip 162.241.7.200
2022-11-17 00:08:14 +0000 0 - 0 - 7 zafarr.com/neti/index.php?qbot.zip 162.241.7.200
2022-11-16 12:12:15 +0000 0 - 0 - 6 zafarr.com/neti/index.php?qbot.zip 162.241.7.200


No other reports with similar screenshot

JavaScript

Executed Scripts (79)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (172)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5421
Expires: Thu, 24 Nov 2022 17:18:12 GMT
Date: Thu, 24 Nov 2022 15:47:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1612
Cache-Control: max-age=155412
Date: Thu, 24 Nov 2022 15:47:51 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 10:58:03 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 15:17:18 GMT
cache-control: public,max-age=3600
age: 1833
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4d7e4eed097b9c4e5d509419f1cfc85a
Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8
Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7824
Expires: Thu, 24 Nov 2022 17:58:15 GMT
Date: Thu, 24 Nov 2022 15:47:51 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 8ksTlHj7Y6YLHZ3Q8KaMVSez+yx6cq/demL1njg//2M0jCFoUztAGwZdrLhMQnSWD9xz0ydOz80=
x-amz-request-id: 0B8E4JPDK8H8NV3X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 15:43:27 GMT
age: 264
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 15:47:52 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 15:11:11 GMT
cache-control: public,max-age=3600
age: 2201
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 796
Cache-Control: max-age=149533
Date: Thu, 24 Nov 2022 15:47:52 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 09:20:05 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4ESD6+opaY0xAmjj0m3qaQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         44.238.202.79
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Q8Vw5q3yOI19EzIwPUJOvP7vtvw=

                                        
                                            GET / HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         162.241.7.200
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 24 Nov 2022 15:47:52 GMT
Server: Apache
X-LiteSpeed-Tag: e80_HTTP.200,e80_HTTP.301
X-Redirect-By: WordPress
Set-Cookie: yay_currency_widget=11529; expires=Sat, 24-Dec-2022 15:47:53 GMT; Max-Age=2592000; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://zafarr.com/
Content-Length: 0
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11134
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 15:47:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11134
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 15:47:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11134
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 15:47:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11133
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 15:47:54 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 30827
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ve4q5FDkwMGhPK6ZVVVCZtoBTaGaz43r_PwINzwS5Nx5tcZeQkVIfw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:47 GMT
age: 64687
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13882
Md5:    64d79191f005c9876b952c5f948aa0f7
Sha1:   1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
Sha256: 00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:54 GMT
age: 63840
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7462
Md5:    b4157f2c5c3c77ce699324ecb08f47c7
Sha1:   a7d9135f9d01ba13c3cdaf8b038c70212f159297
Sha256: 2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8rbsN9OVJmneT9ov-Q7V4RB8DP5UWhhn-7cnukHiBpl06zmMM0zJTg==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 64234
etag: "89accd230fba95fe0049678070817b36ead015fa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5070
Md5:    0856fdb55f19f03a1bec38b3d6e0ac77
Sha1:   89accd230fba95fe0049678070817b36ead015fa
Sha256: 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:15:22 GMT
age: 30752
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6789
Md5:    d9d93b2a6875d446c3467eb49767eef5
Sha1:   303c571b13b05fcf27ee1159d8fdf6369aaef0a2
Sha256: 2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
age: 64848
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 15:47:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 15:47:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 15:47:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v3/polyfill.min.js?features=ResizeObserver%2CMutationObserver&ver=2.1.1 HTTP/1.1 
Host: polyfill.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.129.26
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
last-modified: Fri, 18 Nov 2022 10:54:36 GMT
content-encoding: br
age: 0
accept-ranges: bytes
useragent_normaliser: firefox/105.0.0
date: Thu, 24 Nov 2022 15:47:55 GMT
vary: User-Agent, Accept-Encoding
server-timing: cache-bma1662, PASS, fastly;desc="Edge time";dur=10
content-length: 94
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   94
Md5:    eb8b0ba88b3acfb11ea81d5c02be9108
Sha1:   4b7f14cc2db25abdbe25472934b7469b2488f9d4
Sha256: 7237f15a97fe102c6ed13eadc0f7980da03cd06a20dfb7c7b8050e60dada617d
                                        
                                            GET /wp-content/uploads/elementor/css/post-6.css?ver=1660899265 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 19 Aug 2022 08:54:25 GMT
accept-ranges: bytes
content-length: 1513
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1513), with no line terminators
Size:   1513
Md5:    aedf6d6fbc9178365b36da3aee9e695b
Sha1:   5a195a8a52d15371290c060ab117762ab0178236
Sha256: 316b2bd4b2076a49f8c97e6020d83af4662862c22b12a6f0af4d89e043b9dd27

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 22 Nov 2022 15:19:12 GMT
accept-ranges: bytes
content-length: 217
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   217
Md5:    95e891f28e44a9b314c09545d86be2b7
Sha1:   f9b13a8bd47273b086a0a07df15f314e0af0bc3e
Sha256: 5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woo-floating-cart-lite/xt-framework/includes/modules/add-to-cart/assets/css/add-to-cart.css?ver=2.1.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 08 Aug 2022 11:14:28 GMT
accept-ranges: bytes
content-length: 3462
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3461)
Size:   3462
Md5:    948ca811f79f440c40f9f80617d13d3a
Sha1:   bb4d106b82a4c1df8ba99ec63a51a3cb5db9cb9a
Sha256: bbfbe905f24ceb76e79ccc2e4bcb9614fc100f31f21e0e0cb73bbb3bfe327a68

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/yaycurrency/blocks/style.css?ver=1660821195 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 18 Aug 2022 11:13:15 GMT
accept-ranges: bytes
content-length: 3179
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3179
Md5:    41c4011f46685c0d360a571b32f250b3
Sha1:   053f8362ba218b7d9a914ba63a7475f6390645c6
Sha256: 546187cc987a1907a0bedbd1e5be252b5215b64f167939b74c100f8582454e30

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 03:12:15 GMT
accept-ranges: bytes
content-length: 2630
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2630), with no line terminators
Size:   2630
Md5:    eade318fbed91c096467dffa56406638
Sha1:   69d306a2097e792f99c80a5e0bb8863260399cad
Sha256: d589803f3ab380582ab137b22493c2bacaa92424fa88cee212e80288cac11fbb

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce-deals/assets/css/tawc-deals.css?ver=1.0.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 17 Mar 2022 03:23:08 GMT
accept-ranges: bytes
content-length: 1177
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1177
Md5:    0d9a78ea8eb5628bd56257dcfa5ddfac
Sha1:   2c6b7f6986898b91dcf52ca4e065896e6e64ba78
Sha256: 524514fa650d43d20113f98fb44b05d08d9913a1362b11ae02f3d734799b988e

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.9 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 22 Mar 2022 06:04:56 GMT
accept-ranges: bytes
content-length: 776
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   776
Md5:    a5bf64d5859ee94a3e8e93d592d6d2a0
Sha1:   049eb63b42dbb820b06870a430f523bf06880721
Sha256: 25825611ade7ceaed7df3862ec56dc91ad1d2be539966ef7bbe84306e51cfb08

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 03:12:12 GMT
accept-ranges: bytes
content-length: 2731
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2731
Md5:    e6fae855021a88a0067fcc58121c594f
Sha1:   6299ac3987b5e81725781799dad361d19ac3b99d
Sha256: e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/thickbox/thickbox.css?ver=6.1.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 26 Oct 2020 02:25:09 GMT
accept-ranges: bytes
content-length: 2659
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2659
Md5:    37faeb50ef52da086e0f8c2c289e66d4
Sha1:   3b273af579e5e5fa7c276c32028abd6df566a995
Sha256: b390a3efe231d9f38b3a706a5765a2a2f0817e761f60a27556171e9a276980e3

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 23 Aug 2022 03:54:16 GMT
accept-ranges: bytes
content-length: 4933
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4933), with no line terminators
Size:   4933
Md5:    e372df47bd19e1563b557d7bdb817188
Sha1:   4efdf4050a78bdbd88aa255955b7423105895dd0
Sha256: 4b7693154069c53a16468d09d89c9eba5da6c0dfc69cf4d7eb675e32ba663361

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=5.4.5 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 03 Aug 2022 05:08:01 GMT
accept-ranges: bytes
content-length: 2141
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2141
Md5:    96869a165bce91ec071822df7022697c
Sha1:   d2da847c9734a50f73836f98ac62237ffcfb83f3
Sha256: dadb4e80b981be80b2657b58ee143dbdd7aa933fe567f2cc9d57a2db3be3be95

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woo-floating-cart-lite/xt-framework/includes/notices/assets/css/frontend-notices.css?ver=2.1.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 08 Aug 2022 11:14:28 GMT
accept-ranges: bytes
content-length: 1918
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1917)
Size:   1918
Md5:    2597a62581d2716ff4f286c1345b6f21
Sha1:   f696a87d26152c4880c2aa84ba996d63089c269b
Sha256: 95c26f844e4d6b19fcd07085388d5c40d5525d1759175461096fd8b28fec06b0

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/payment-gateway-stripe-and-woocommerce-integration/assets/css/eh-style.css?ver=3.7.3 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 03 Aug 2022 07:40:06 GMT
accept-ranges: bytes
content-length: 1587
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1587
Md5:    3b322af8b1ce7fdefd4647d2b878d0fe
Sha1:   c254d7ffd1c9db846e4eba5ba1ad26271214f650
Sha256: c774b276cb24d9485d9cc8cccbe8ceff2fb3666863ab3a5333840ccef5eb15d1

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/variation-swatches-for-woocommerce-pro/assets/css/frontend.css?ver=20171128 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 17 Mar 2022 03:23:08 GMT
accept-ranges: bytes
content-length: 2381
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   2381
Md5:    1533f310ad5d520665690a846a761471
Sha1:   672a0b5a67dd29ca53abdbcd63ec23cf7eabf133
Sha256: b1ab957b283939475db752c5e77405daf551d6a755be2458e7cb24026665c444

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/farmart/css/farmartIcon.css?ver=1.0.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 17 Mar 2022 03:22:07 GMT
accept-ranges: bytes
content-length: 2456
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2456
Md5:    a60488f25de94d2879f9200d4d22116b
Sha1:   7f468a2ecf312d88709780858e6cebc1e272802e
Sha256: 4d0e2eda48c4aac7feddbfd2d6e0f196adbfe83b702d0af96d9c1a7c59a08421

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 03:12:08 GMT
accept-ranges: bytes
content-length: 669
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (483)
Size:   669
Md5:    9eb2d3c87feb6bb2ffa63b70532b1477
Sha1:   38f226335a05ab0e30497bc7419eb5e243a9e26c
Sha256: 37bab6cd583982e8eff58501a99d7c5c4d63664c1ca34f9e3b7cf526c5b73ae2

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 03:12:08 GMT
accept-ranges: bytes
content-length: 677
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (491)
Size:   677
Md5:    3eef8c9e589a6fd58292e79bbac4ba5d
Sha1:   d3ebdb629b8d9c92380b14b1676b123398f0841b
Sha256: eea3d6ccda7f6503078cce9dc41176c1357af1c93a5b3625131ef7cf21c9d7c4

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 03:12:08 GMT
accept-ranges: bytes
content-length: 675
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (489)
Size:   675
Md5:    144e43c3b3d8ea5b278c062c202c92f2
Sha1:   3c037057a419245849747b4762d09d88cab66fc1
Sha256: 9cd63b8cea25045c14623c538d26752518a58c0c682795ce6ad3078976c65a37

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woo-floating-cart-lite/xt-framework/assets/js/jquery.ajaxqueue-min.js?ver=2.1.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 08 Aug 2022 11:14:28 GMT
accept-ranges: bytes
content-length: 542
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (542), with no line terminators
Size:   542
Md5:    09c88c20d386a5b5c3faaf49613b5cd3
Sha1:   ad3d50b48210b1c96f91609d4f686d67eb89bbce
Sha256: 63bf574ae05d5b3396f813afbfa8da15bc707407b7229757af411d9c87ae576f

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 02 Aug 2022 06:21:17 GMT
accept-ranges: bytes
content-length: 18617
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   18617
Md5:    32beb68a374e3aeac00abdf9e12b84ea
Sha1:   b5d18aa625e8696dd9d07cd0869337717b211ae0
Sha256: 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 03:12:13 GMT
accept-ranges: bytes
content-length: 3812
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3812
Md5:    9c6b63558e5de592c160563dbe08dd0d
Sha1:   e4969ab55cc566759623f6b4e1c7d6b3bcdc21cd
Sha256: 14a77bc82e039ce4be0d9ba9b0237495b0a9578d34eb92d444093d440f6190ba

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 23 Aug 2022 03:54:16 GMT
accept-ranges: bytes
content-length: 1834
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1668)
Size:   1834
Md5:    d0a6d8547c66b0d7b0172466558d1208
Sha1:   ff93916519c7b9483251f609e4d29f38c30a66e3
Sha256: 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=6.8.2 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 23 Aug 2022 03:54:16 GMT
accept-ranges: bytes
content-length: 3287
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3287), with no line terminators
Size:   3287
Md5:    e65cbce40458e232c2d8c7661dfeab7a
Sha1:   9aea5882139ac04bc182d376c34ac6c6e9b95842
Sha256: 8bdb4e5d2066e5a29a162cee6b418adeb546ce98025ab4741107dfaa8485415f

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/yaycurrency/src/styles.css?ver=1.8.5 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 18 Aug 2022 11:13:15 GMT
accept-ranges: bytes
content-length: 5976
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   5976
Md5:    4b210e69c231573b89782df15baff4ef
Sha1:   7f9246cbdfac48cfc64a3d45ed8070d4601bae69
Sha256: c5a8c699b32432d5d2a3dc3d1dd8e7e1ef36456ceccdc9d6805564af13c21374

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 23 Aug 2022 03:54:16 GMT
accept-ranges: bytes
content-length: 2938
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2938), with no line terminators
Size:   2938
Md5:    0fd625c3991a4015814cffdc88e2fc82
Sha1:   d7c2f53e058210ff3ea773297641008bab71a5f3
Sha256: 2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 23 Aug 2022 03:54:16 GMT
accept-ranges: bytes
content-length: 3037
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3037), with no line terminators
Size:   3037
Md5:    4e544022235ced14996464116a9ed9b2
Sha1:   31ee19d95973124b812a22c5ff5944d5b5bf8147
Sha256: 4ef2d5b0ef62523af87f3e13d8061449b2ddbfce07064f26b1305084abbf18f1

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woo-floating-cart-lite/public/assets/vendors/bodyScrollLock-min.js?ver=2.6.8 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 08 Aug 2022 11:14:28 GMT
accept-ranges: bytes
content-length: 5115
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5115), with no line terminators
Size:   5115
Md5:    2e3a078e3a8726d03066df9db8d5e3e2
Sha1:   5ffaf5f2287e89307b7b0fd578cd6dc4a643cca5
Sha256: 87c47a8067372bc79687c7e6323d3dba9eb1b546b9db382ef0e9aa3685722d28

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 23 Aug 2022 03:54:16 GMT
accept-ranges: bytes
content-length: 9281
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9281), with no line terminators
Size:   9281
Md5:    57a347480fbe0b3d235993f4f1ec3b2c
Sha1:   ec01673e887c236765156496c7d00111238554d8
Sha256: 9097a2c579616889e829be95554ebf90ec5900045f4d2282cce31d5a999acc03

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/farmart/css/magnific-popup.css?ver=2.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 17 Mar 2022 03:22:07 GMT
accept-ranges: bytes
content-length: 7635
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   7635
Md5:    3d3d09fa0e8a1552510bc7e04768fa5d
Sha1:   fa787d1657c2822ecac29a1e776fafd8ec81a200
Sha256: c818c0a9e616b3374b259292423ee0daed55d61034698170030b6b39178c9214

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=6.8.2 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 23 Aug 2022 03:54:16 GMT
accept-ranges: bytes
content-length: 7887
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7887), with no line terminators
Size:   7887
Md5:    e9832bf9ac8e609f5ece62974257220d
Sha1:   feb78d4ff80fd84163c98a67ded3ad06ef7bacb9
Sha256: 0070e220521a6a69cb33f7da37bd5c1aa7e76d0865fb9cdba6672eb5ba50e425

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-8516.css?ver=1662097326 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 02 Sep 2022 05:42:06 GMT
accept-ranges: bytes
content-length: 12223
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12223), with no line terminators
Size:   12223
Md5:    a0a4aaab68938ba572af68f775cd6be7
Sha1:   bc1c8c037abb8f97ec51d276e25d6a8a9b5b4610
Sha256: b3a52fa00f441cbb01e3ae7c230a75443564ea4b823e18a1f557842f6932eb3e

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-7587.css?ver=1662627319 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 08 Sep 2022 08:55:19 GMT
accept-ranges: bytes
content-length: 9979
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9979), with no line terminators
Size:   9979
Md5:    5bdd8d61202ef9a27f4735c79e5d52e1
Sha1:   da335a50bc38972f3df0770a2b69cd101e8da99f
Sha256: 953cf4526bcb8ab9c530c9bba69cb70523723140e1bb2ce6c887093d884d4e82

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 23 Aug 2022 03:54:16 GMT
accept-ranges: bytes
content-length: 9509
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9115)
Size:   9509
Md5:    a5451283952efd5df49466bbeace6911
Sha1:   dce405842471c303c3d8fd6fa3c084aa56a71029
Sha256: f4e38e5ef16efe51836cf7142412b8e1aa8b73ce89afed23be0cf77dfd8e095d

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woo-floating-cart-lite/xt-framework/includes/customizer/controls/xt_icons/css/xt-icons.css?ver=2.1.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 08 Aug 2022 11:14:28 GMT
accept-ranges: bytes
content-length: 14691
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (14146)
Size:   14691
Md5:    6bbb5dc1dac9b4907719cf1e1ce588ef
Sha1:   a707edc8836ab2016d71cfa037f92b4ca648cec9
Sha256: 26a4d5b53c987f33f145b8619a049cc0f7ac5cd90a273bb88195bf478be5cc04

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
content-length: 11224
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   11224
Md5:    79b4956b7ec478ec10244b5e2d33ac7d
Sha1:   a46025b9d05e3df30d610a8aef14f392c7058dc9
Sha256: 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woo-floating-cart-lite/xt-framework/includes/modules/add-to-cart/assets/js/add-to-cart-min.js?ver=2.1.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 08 Aug 2022 11:14:28 GMT
accept-ranges: bytes
content-length: 11769
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11769), with no line terminators
Size:   11769
Md5:    902a2245eb7a533738c97bc9278e0f9f
Sha1:   6e0dd41584a4477daa5d600a17d7c1c14f049cc4
Sha256: 5f058eb02ba3cb1293d15b2fe4cbc65af97645c299c9ea202dd2a37e78ec47ca

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 03:12:08 GMT
accept-ranges: bytes
content-length: 11775
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11736)
Size:   11775
Md5:    cf2bc7e2fd192b1429a1373769c63328
Sha1:   221f146300499fe8f9bec1a6c5aafb5229b9df85
Sha256: f5d960626fb6e8582213dcc29e2ff005efe5706c9ee766584255b9c9d848b6b4

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-9879.css?ver=1661506185 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 26 Aug 2022 09:29:45 GMT
accept-ranges: bytes
content-length: 26168
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7281)
Size:   26168
Md5:    d8d16eddb51c6a7e6bbc7dba767ed22b
Sha1:   fb29661baf6174d9e8b0fe57a80098d3a5d5c050
Sha256: fe01fb815a7a134c0caf393b532ba5d653f00bdeecc693c1dd9b015456a8ce12

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 03:12:15 GMT
accept-ranges: bytes
content-length: 30603
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30441)
Size:   30603
Md5:    d3ec229e04c8634c88cc4cb3f2934c11
Sha1:   785cb4beecaad98329fff0a54f9a5536cda200ab
Sha256: 73835f9dd494931cd0562ab2d4db8aaf3d54dca375abade1794ad1a12ae0d97c

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woo-floating-cart-lite/xt-framework/assets/js/jquery.touch-min.js?ver=2.1.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 08 Aug 2022 11:14:28 GMT
accept-ranges: bytes
content-length: 13579
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13579), with no line terminators
Size:   13579
Md5:    e1fb5d5aee5a08303550b52f30acd632
Sha1:   9037ae5c96c145d53b03a6b507eb2505f878d394
Sha256: 4d231e3f27140d1683925511519674cce216bb132a887cff75eb57b209001276

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.11.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 03:12:15 GMT
accept-ranges: bytes
content-length: 29337
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (29337), with no line terminators
Size:   29337
Md5:    4de6dfc6ff180e33262861a679d40546
Sha1:   8de11c7f99e413282baa349d11657ccd2c468d4f
Sha256: 3e61990964ebd31443be4e6598163ebd71b73b139c42d52547b8a290f7d059ca

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 03:12:08 GMT
accept-ranges: bytes
content-length: 19128
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19082)
Size:   19128
Md5:    50be31853049e4b4a10c277d5f95eb75
Sha1:   ac2dffc0c65ad6b209fedf2169d0c50eb4119a3e
Sha256: b651d87ef113cba0c8ec8a33bfdb694171effeba56b20be12e3c77fc15f6ae9f

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/global.css?ver=1660899266 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 19 Aug 2022 08:54:26 GMT
accept-ranges: bytes
content-length: 15766
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6697)
Size:   15766
Md5:    0990805be886ecdb54e9e11996693409
Sha1:   8e8c191b9d6ebc5cd925d1b7e866378fc98e81c3
Sha256: 952ae832d88e1eaf0bba62638bc3fa0d862063d8d6ac3b2ece69f7e9204565a5

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/farmart/css/bootstrap.min.css?ver=3.3.7 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 17 Mar 2022 03:22:07 GMT
accept-ranges: bytes
content-length: 19450
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18899)
Size:   19450
Md5:    1c31e51218b29125e690839d535206b9
Sha1:   62a038820569b500c7d83ca5ddf33d308eebf34b
Sha256: 35f9269b8dbc71c2f1a80ae0248c8717ab58e438de1f961cea2ac611c4f26dde

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.5.4 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 23 Mar 2022 11:14:43 GMT
accept-ranges: bytes
content-length: 30283
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30283), with no line terminators
Size:   30283
Md5:    d942a12c644c208f99aeaa5fc0914d92
Sha1:   3f9e011aec544347fbf476cc9f944679de65d35e
Sha256: 73b2fdcf25aa909c7b0f072cf791066350ab834ca1d0d01ef096bb5583318213

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/chaty/js/cht-front-script.min.js?ver=1651753294 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 25 Apr 2022 09:22:16 GMT
accept-ranges: bytes
content-length: 42899
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (42899), with no line terminators
Size:   42899
Md5:    6081ff2a57a07c85157bd87059682957
Sha1:   50225f4975b00220be6bbc01c8cc0fc9d8b9bee3
Sha256: c73dacfb85e2b4cd3a8f5450c907f5a553742d2de23dcc07253ec49843d511c5

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 03 Mar 2021 21:16:22 GMT
accept-ranges: bytes
content-length: 59016
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (58981)
Size:   59016
Md5:    d68d6bf519169d86e155bad0bed833f8
Sha1:   27ba9c67d0e775fc4e6dd62011daf4c3902698fc
Sha256: c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.9 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 22 Mar 2022 06:04:56 GMT
accept-ranges: bytes
content-length: 75684
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1646)
Size:   75684
Md5:    2395c81e72a52f14588816b4f72a7f17
Sha1:   711357e8d49c28be7605fcfbf881b90567decee1
Sha256: ea14d1b1233e6cbc9b1a156ac532f076f7adafc309726fca7bf8833f882ac872

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 23 Nov 2022 03:17:57 GMT
accept-ranges: bytes
content-length: 89684
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   89684
Md5:    17738318d61d394f1de8890d589afaec
Sha1:   f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
Sha256: cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 23 Nov 2022 03:17:57 GMT
accept-ranges: bytes
content-length: 94889
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47826)
Size:   94889
Md5:    71d925864153f0edf91037f3d31048e8
Sha1:   cc16a0524ac63b5ce29f703a66412224f0dd771a
Sha256: c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.8 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 02 Aug 2022 03:12:08 GMT
accept-ranges: bytes
content-length: 107993
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   107993
Md5:    4c3923551e9eca7e76a2f0269237ca61
Sha1:   41f6faea2dee3469d09878909b1fb3900872bdb9
Sha256: 5ba9e11db2bb2cd2b62b8502db6465fbc5f6ce1a490705c05692354f52d5a576

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woo-floating-cart-lite/public/assets/css/frontend.css?ver=2.6.8 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 08 Aug 2022 11:14:28 GMT
accept-ranges: bytes
content-length: 111206
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size:   111206
Md5:    ea70b08cb77986587cf2beec823a0147
Sha1:   1004c447efdc70e552f9e795237dc332027e645a
Sha256: 9c8619d95e73df5b2be45a77425e2cdf2f526bf750fd2a4f8284546c869ff734

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.5.4 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 23 Mar 2022 11:14:43 GMT
accept-ranges: bytes
content-length: 120523
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   120523
Md5:    fcabad2a10da2d2b03619f2ac4fa0d5c
Sha1:   307f623c875369bcccb565461c025363da927fd0
Sha256: 8eb8669e3beac58d8a5ecba69cb681604fbd75d837df8d7e332d173f2d36c142

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 23 Aug 2022 03:54:16 GMT
accept-ranges: bytes
content-length: 209867
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size:   209867
Md5:    b14e0a53861ed03f5d857154b373311c
Sha1:   7f6e0d751442277366d15425c64ee4c31752037c
Sha256: f3ddaf2e45a19650e8f47a163e4955e467e74803f6d20c3dbde53ce96dbdd476

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/farmart/woocommerce.css?ver=20220204 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 26 Aug 2022 09:21:36 GMT
accept-ranges: bytes
content-length: 194992
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   194992
Md5:    1c7640e0a38e6c36b556ae05bba28cbd
Sha1:   b810b78e1a4b5891bab2f504b47e862b6a7f4160
Sha256: fcfd769d93c962d7dc98b001dd67f924e117e728cbc7e997bd538dfeedf17619

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/farmart/style.css?ver=20220304 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 25 Aug 2022 04:19:55 GMT
accept-ranges: bytes
content-length: 411485
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   411485
Md5:    12bf92d41b89f0a9a09014ca6be20c6e
Sha1:   090ebfba3d85cb804b57a96155b2a47188d1f50c
Sha256: 4178e0f0e19fd461d3e9f66e061e3918d763a08f0571b8df81c6fee41a5fb80b

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.5.4 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 23 Mar 2022 11:14:43 GMT
accept-ranges: bytes
content-length: 444728
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size:   444728
Md5:    66bc9d935c87faa5301a794686658f31
Sha1:   f0186636a3c4c951889c934afb047edb7868813a
Sha256: f8e5f1eb63729ae89d67268474753a3fd85f8b29a8c3c8717f5cb2b966bf82d0

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2022/07/zafarr_logo_light-300x144.png HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Mon, 08 Aug 2022 10:32:06 GMT
accept-ranges: bytes
content-length: 17191
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 144, 8-bit/color RGBA, non-interlaced\012- data
Size:   17191
Md5:    6c51d3baccb82e4eae19533ee2cc5461
Sha1:   7f00922c90d4c158055e6ba62b53a4fce1ab62b3
Sha256: a3c45fe903ccc8c2cd1b512f54314c8b4f64716817c109444b67832e1b5cb98e

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/thickbox/thickbox.js?ver=3.1-20121105 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 23 Nov 2022 03:17:57 GMT
accept-ranges: bytes
content-length: 13242
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (597)
Size:   13242
Md5:    7a575ed24e7c210825458efde43e5df6
Sha1:   b3085f9a4d5ad7627543570e5dff576b1df762d1
Sha256: c0e09e793fb79507dc97ed702a4c2c9c00ab4d1677bd45bcd112e203c96dd661

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 02 Aug 2022 03:12:15 GMT
accept-ranges: bytes
content-length: 14927
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Size:   14927
Md5:    157f18464a93eab7fb62a7f3e618ac2c
Sha1:   f47727e80d529d6e4941fea32f2e8a8ee5008b8a
Sha256: 9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 23 Aug 2022 03:54:16 GMT
accept-ranges: bytes
content-length: 21310
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (21310), with no line terminators
Size:   21310
Md5:    f3d7b1578081c9cf982cfbc29f514836
Sha1:   fdb6b04b917b9a1c72e3cf2da686c2584d3fd50f
Sha256: c0f874276d38c6d9e43767d76a15de39506461b268a3cbf19fc8218f3ec8631a

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 23 Nov 2022 03:17:57 GMT
accept-ranges: bytes
content-length: 17823
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Size:   17823
Md5:    e495a4709e3eae31c67f8263f25d2d39
Sha1:   d43ba6a092e4823a71f3bff75d5ed279a481636b
Sha256: 1c1fef6e6b4f9832603850b9b6562e74d9a6a3700ba836efe88facc577121e8b

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 23 Aug 2022 03:54:16 GMT
accept-ranges: bytes
content-length: 2139
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2139), with no line terminators
Size:   2139
Md5:    b72c1cbb1530a011a27bd9800f26765a
Sha1:   27b825c5d8255f33b8427a059d4545ebd65e1746
Sha256: a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 02 Aug 2022 06:21:17 GMT
accept-ranges: bytes
content-length: 6475
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6475), with no line terminators
Size:   6475
Md5:    61449413a42d2daaa79dbe7298b40e21
Sha1:   d86c474164c603084397bdc50fb0e469d28b5772
Sha256: f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=5.4.5 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 03 Aug 2022 05:08:01 GMT
accept-ranges: bytes
content-length: 4551
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4551
Md5:    3ef50f309c3264761d5d9cef6ee28b52
Sha1:   a0d3c3515dbdbcd7b9a350ce3ab66d9646d7a72d
Sha256: f0d756fbeb3274d62775e709e479063afa849c753728e5d356280ef1ffd6586d

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 02 Aug 2022 03:12:13 GMT
accept-ranges: bytes
content-length: 11900
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11827)
Size:   11900
Md5:    06a3b48689b0314af6c5da5b6ff27bfd
Sha1:   a98a815d90cba195409d39bd74d31b1e6f9dbf95
Sha256: 4cd7a0d2c9eb03966a0dc60658526c20fa4e8ee4a0660da469f55edaf9a18c9f

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.8.2 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 23 Aug 2022 03:54:16 GMT
accept-ranges: bytes
content-length: 13887
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13887), with no line terminators
Size:   13887
Md5:    86a395a95e5aef3b24c6cb6367893e79
Sha1:   61070479632011366e97cda53743872a6356744d
Sha256: ddc53011e8c0788465983fa491db2d1f5bac6c8cffc49e344b717a3c8364e0fd

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 23 Nov 2022 03:17:57 GMT
accept-ranges: bytes
content-length: 1426
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391)
Size:   1426
Md5:    19d386c9004e54941c1cc61d357efa5d
Sha1:   0a77594006c8d86fdcc0adbc2b9aecaef3869586
Sha256: 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/yaycurrency/src/script.js?ver=1.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 18 Aug 2022 11:13:15 GMT
accept-ranges: bytes
content-length: 5744
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text
Size:   5744
Md5:    5ad6b50d013ea49fffbb111d541ba808
Sha1:   2faf18914daf2f78472dc98b7773485512ccf51e
Sha256: 5e079826685c1022c0b470b80e0f6bbd826953674908299d38a77384715ec9b5

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/variation-swatches-for-woocommerce-pro/assets/js/frontend.js?ver=20171127 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 17 Mar 2022 03:23:08 GMT
accept-ranges: bytes
content-length: 3932
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3932
Md5:    d7c102bcf1ed987919a3864dd0753ade
Sha1:   cd4a382e0f56ac53ec9bc9fa7ee78d8263d1999f
Sha256: 1abd6447f3993a8d351829ef6e56f5a0079d9e37d7b2d19be4f948aa233c37d4

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
accept-ranges: bytes
content-length: 5629
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5477)
Size:   5629
Md5:    3a56752b736635bf69cb069b8818cbfd
Sha1:   42e0951fe74bb3f56a30f51291823bcd4a84d76e
Sha256: ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.5.4 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 23 Mar 2022 11:14:43 GMT
accept-ranges: bytes
content-length: 40
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    94d041d462db321cdb888066586f2068
Sha1:   717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
Sha256: b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.17.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 02 Aug 2022 03:12:13 GMT
accept-ranges: bytes
content-length: 4602
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4602), with no line terminators
Size:   4602
Md5:    25d887c9c8997522cf1184e1171d605c
Sha1:   8f9fc958307ce831e7313d22d996908f578956e2
Sha256: ccdea9568a2dafdc3b5dfafd7cc65ed784a235fe1a3c2da2e4183a9bb834c136

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/farmart/js/plugins/jquery.coundown.js?ver=1.0.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 17 Mar 2022 03:22:07 GMT
accept-ranges: bytes
content-length: 1614
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1614
Md5:    2312f6c2f4dd75690465d5893dd02bb9
Sha1:   f442ad009edd4c881d6a48838c20d5b9e9fe115a
Sha256: 9a48b9cbd908b848d069fbeb1bbde96fcab3f89d6b107d8e2e3452d6fa40cf2b

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/farmart/js/plugins/photoswipe-ui.min.js?ver=4.1.1 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 17 Mar 2022 03:22:07 GMT
accept-ranges: bytes
content-length: 9876
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (9765)
Size:   9876
Md5:    9517baca43cd4e9cb23ff337fbc1baa1
Sha1:   38557bef17c33e172bc8e1670cd302d91622dfad
Sha256: 3d61ce954cdcf7aa4c73c4e1c112173e7f321f834e2eee36450d1bf52a67a459

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce-deals/assets/js/tawc-deals.js?ver=1.0.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 17 Mar 2022 03:23:08 GMT
accept-ranges: bytes
content-length: 1489
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1489
Md5:    b08c4b8048a71ab313852ea43549bb31
Sha1:   85285886dc982dab0c03e4a3ffd574065a74f69f
Sha256: cc732599b1f9f9c594266f23478d6341d1c35cccd469d63b4278dffbc4df2657

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/farmart/js/plugins/nprogress.js?ver=1.0.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 17 Mar 2022 03:22:07 GMT
accept-ranges: bytes
content-length: 11718
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   11718
Md5:    44152eae6dafa80f61ad33e04925713a
Sha1:   249b10a758510e4564888351214110552efbaca4
Sha256: bad32bf38a8585db5a99bc33acbcce9e34903346bf78eaa3af89e7334beee678

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/farmart/js/plugins/waypoints.min.js?ver=2.0.2 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 17 Mar 2022 03:22:07 GMT
accept-ranges: bytes
content-length: 8044
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7808)
Size:   8044
Md5:    ac5840cf0870ecc0833ec7f0b46abdac
Sha1:   b01f657a7b0d93cfd47fa06bd07dd6c9e6605629
Sha256: 8d73392f1f569c51f57b7f9a30278358484f1795584aa2cd540e5b8ea650593e

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.8 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 02 Aug 2022 03:12:08 GMT
accept-ranges: bytes
content-length: 4957
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4918)
Size:   4957
Md5:    530dffbfb4c3efd2c496617d77fb2448
Sha1:   1197e6ba4ac2dace2a8a63c5283ed0b590610152
Sha256: 08c70fae8c5a06e27f90b3b8bac23c07318fe3ead7cebd2a7ac2e56a7a6c00e0

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/farmart/js/plugins/jquery.counterup.min.js?ver=1.0.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 17 Mar 2022 03:22:07 GMT
accept-ranges: bytes
content-length: 2116
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2116
Md5:    8de2aad82a7a208b62f4b9ce14a155bf
Sha1:   ee19a05e57da9162524062d5fd1f85dd317fc33e
Sha256: 14dde748c5b46630a7ebbf38aed8feb9a450088568e7efa010dc208691020d6e

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/farmart/js/plugins/isInViewport.min.js?ver=1.1.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 17 Mar 2022 03:22:07 GMT
accept-ranges: bytes
content-length: 2304
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2193)
Size:   2304
Md5:    315faaf6c55d8a3c4845e21652543f51
Sha1:   388ce7a2202bd3006c9516ff19e49b3f4e8add70
Sha256: a35215b3ad41ee3a0d124079485e4b70f5beb32e5746daa1f55f5b42cf03d93a

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2022/08/Gifts.jpg HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zafarr.com/
Cookie: yay_currency_widget=11529
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         162.241.7.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Wed, 24 Aug 2022 09:06:00 GMT
accept-ranges: bytes
content-length: 322863
date: Thu, 24 Nov 2022 15:47:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x775, components 3\012- data
Size:   322863
Md5:    c2e1e931a88e8ca7fa2c6a3ae3d59f07
Sha1:   6768bd0e8239735841e83c87d3a4a550598bc863
Sha256: ee4946852858b8ba044f23aecf1c79aa9108000aa494c0d13fd2694b5f4d53df

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/farmart/js/plugins/notify.min.js?ver=1.0.0 HTTP/1.1 
Host: zafarr.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5