r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3994
Expires: Thu, 24 Nov 2022 21:03:09 GMT
Date: Thu, 24 Nov 2022 19:56:35 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5712
Cache-Control: max-age=144588
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:35 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 12:06:23 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
feenyxshop.com/
162.213.253.37301 Moved Permanently 707 B IP 162.213.253.37:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Thu, 24 Nov 2022 19:56:35 GMT
server: LiteSpeed
location: https://feenyxshop.com/
x-turbo-charged-by: LiteSpeed
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5961
Expires: Thu, 24 Nov 2022 21:35:56 GMT
Date: Thu, 24 Nov 2022 19:56:35 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 19:18:59 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2256
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yWWlgjxYiQLavpmdFcIuyAnrvppnumoPjoKR0qpftiijQMP/qLhkkOqfDH+mGvmreMU/ZUqkqiI=
x-amz-request-id: CQ8VQYJ2YCYBBAAT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 19:43:31 GMT
age: 784
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 19:11:11 GMT
cache-control: public,max-age=3600
age: 2725
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 55af5b84a4883f5512d0e96b01164d8a
2814ea6fa0e31172a4ea46c20439566688d50ca2
3dccbfa8a098eba83317de69e3f83ef74154f682cd0faf099a5e35c53ae74a53
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 19:56:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 00:48:31 GMT
Expires: Tue, 29 Nov 2022 00:48:30 GMT
Etag: "2814ea6fa0e31172a4ea46c20439566688d50ca2"
Cache-Control: max-age=362513,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f4b5777922b4f4-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4983
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:36 GMT
Last-Modified: Thu, 24 Nov 2022 18:33:33 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.82.48.240101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.82.48.240:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /V6PtUKZO9zWesSvfxoqDw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NE3U9jgwBDZ4uRIuIuXjUufi8HY=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14681
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 19:56:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14681
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 19:56:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14681
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 19:56:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14681
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 19:56:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14681
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 19:56:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 79726
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 53530
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4157f2c5c3c77ce699324ecb08f47c7
a7d9135f9d01ba13c3cdaf8b038c70212f159297
2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:08:16 GMT
age: 78502
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0856fdb55f19f03a1bec38b3d6e0ac77
89accd230fba95fe0049678070817b36ead015fa
17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rrs7G6Wto6iY0rT6KsKwKAOPJjehXqD0jHZrR_eaiqpepQILFr7Dtw==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:07 GMT
age: 79651
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9d93b2a6875d446c3467eb49767eef5
303c571b13b05fcf27ee1159d8fdf6369aaef0a2
2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:10:24 GMT
age: 45974
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64d79191f005c9876b952c5f948aa0f7
1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DYBcunpyI0FBJsJGh1kKpFI3X8kzCkO3mCxzUtWnaMKBT-Bv-zkq3Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:59:18 GMT
age: 79040
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
192.0.77.37200 OK 217 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
IP 192.0.77.37:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /c/6.1.1/wp-includes/css/classic-themes.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: text/css
content-length: 217
last-modified: Tue, 25 Oct 2022 13:45:16 GMT
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fd6e45fec9010f48d052dc17826c75f0
218e01b9707f1e123eef81d70f24f0d95e526465
8ba8111e6058eb953ea4804e6fcbbba380a2087609b5bc49c7ccade7fef100a8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4220
Cache-Control: max-age=130508
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:39 GMT
Etag: "637f16c7-116"
Expires: Sat, 26 Nov 2022 08:11:47 GMT
Last-Modified: Thu, 24 Nov 2022 07:01:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
feenyxshop.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
162.213.253.37200 OK 670 B URL HTTP/2 feenyxshop.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP 162.213.253.37:0
File type ASCII text, with very long lines (2630), with no line terminators
Hash 6867f0990d852a8660a2d6f7a6675183
0240940bdf174107a14d132fa82b50b1445ff2f8
598b0ec44ac00e2f238bebe6077530ad4e6ac41f99122d495313302b380c2868
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:38 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 670
date: Thu, 24 Nov 2022 19:56:38 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
162.213.253.37200 OK 6.6 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
IP 162.213.253.37:0
File type ASCII text, with very long lines (30441)
Hash 3160c468e16b391c087428c6961602de
0e39e52d4887d3e52e7af98526a76a8b788738ed
4aaedd1cc4ee377bb8b5390fe56da25db79b9cf2d7e6c0d64c1bc8fc88436a95
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:38 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6581
date: Thu, 24 Nov 2022 19:56:38 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/
162.213.253.37200 OK 28 kB IP 162.213.253.37:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash c53e2dc7e8924c6a7f452ba729bef8a9
dd30e9211946484d4b729658aa15ae19d50fe8e5
d4fad4063942aaaeaad2fbf7938b1e04fd9ca5c3c8c6daad62eac6d5c07a746c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/8.0.25
x-litespeed-tag: 4c7_HTTP.200
content-type: text/html; charset=UTF-8
link: <https://feenyxshop.com/wp-json/>; rel="https://api.w.org/", <https://feenyxshop.com/wp-json/wp/v2/pages/677>; rel="alternate"; type="application/json", <https://feenyxshop.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 19:56:38 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.3.0
162.213.253.37200 OK 4.6 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.3.0
IP 162.213.253.37:0
File type ASCII text, with very long lines (29253), with no line terminators
Hash fb82840a097f388a006ec66728b93d9a
21b06b61b5f641d6ed7f6d7ec81869e0bdeda8af
7007860bbc4bb5ccb7f7d578205d2758d057b484c45e0b5083d3bbd02fb9febb
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.3.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:38 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4572
date: Thu, 24 Nov 2022 19:56:38 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i2.wp.com/feenyxshop.com/wp-content/uploads/2018/06/slider21.jpg?w=660
192.0.77.2200 OK 4.7 kB URL HTTP/2 i2.wp.com/feenyxshop.com/wp-content/uploads/2018/06/slider21.jpg?w=660
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 660x371, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a2d0c0d66ea2e93b372834e94420fa38
a109d7bc00c4423fcc7d0c818443676b838cd14c
44395b8218f008e4ac0439505e4a9988e2a04ae2fda4b05d9b69361438772f66
GET /feenyxshop.com/wp-content/uploads/2018/06/slider21.jpg?w=660 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: image/webp
content-length: 4670
last-modified: Mon, 21 Nov 2022 13:00:00 GMT
expires: Thu, 21 Nov 2024 01:00:00 GMT
cache-control: public, max-age=63115200
link: <http://feenyxshop.com/wp-content/uploads/2018/06/slider21.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4c9d587ae0e94c87"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/feenyxshop.com/wp-content/uploads/2018/06/f1.jpg?fit=30%2C37&ssl=1
192.0.77.2200 OK 476 B URL HTTP/2 i1.wp.com/feenyxshop.com/wp-content/uploads/2018/06/f1.jpg?fit=30%2C37&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 30x37, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0a2e8cc4a2bc6181cff79992fd5d34e4
2a2d7cc2180d1d14ff79b20c2927e60f3846c42d
5e66c577557a10a4b3c4e08f054ee62f55a23e9a5ce1d530bf13cdfcb2d5b668
GET /feenyxshop.com/wp-content/uploads/2018/06/f1.jpg?fit=30%2C37&ssl=1 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: image/webp
content-length: 476
last-modified: Mon, 21 Nov 2022 13:00:00 GMT
expires: Thu, 21 Nov 2024 01:00:00 GMT
cache-control: public, max-age=63115200
link: <https://feenyxshop.com/wp-content/uploads/2018/06/f1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "fc63760c255b5c72"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/feenyxshop.com/wp-content/plugins/revslider/public/assets/assets/transparent.png?w=660
192.0.77.2200 OK 44 B URL HTTP/2 i1.wp.com/feenyxshop.com/wp-content/plugins/revslider/public/assets/assets/transparent.png?w=660
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a27eb91ec0fd0f7028df161ed1a850aa
d81e96b0f1596a2ecf29d2af842545641e7896d6
59838aba3221fe69d2e4d7acf254576c6937b3e6d3a4d78c9baa702f63668b3b
GET /feenyxshop.com/wp-content/plugins/revslider/public/assets/assets/transparent.png?w=660 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: image/webp
content-length: 44
last-modified: Mon, 21 Nov 2022 13:00:00 GMT
expires: Thu, 21 Nov 2024 01:00:00 GMT
cache-control: public, max-age=63115200
link: <http://feenyxshop.com/wp-content/plugins/revslider/public/assets/assets/transparent.png>; rel="canonical"
x-content-type-options: nosniff
etag: "64e0068461f2354d"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/feenyxshop.com/wp-content/uploads/2018/06/f2.jpg?fit=38%2C37&ssl=1
192.0.77.2200 OK 440 B URL HTTP/2 i1.wp.com/feenyxshop.com/wp-content/uploads/2018/06/f2.jpg?fit=38%2C37&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 38x37, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 235983bcad09a104160754d7bf8d9d8f
28901e2b55200110446fb44834d2eca84b60a77e
227e6eb7d777f0f21bc12e28b36b394b038b3e0a0ae60a21a2ccc07f960f1841
GET /feenyxshop.com/wp-content/uploads/2018/06/f2.jpg?fit=38%2C37&ssl=1 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: image/webp
content-length: 440
last-modified: Mon, 21 Nov 2022 13:00:00 GMT
expires: Thu, 21 Nov 2024 01:00:00 GMT
cache-control: public, max-age=63115200
link: <https://feenyxshop.com/wp-content/uploads/2018/06/f2.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "d7ec6c83dd54e4ea"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/feenyxshop.com/wp-content/uploads/woocommerce-placeholder.png?resize=570%2C739&ssl=1
192.0.77.2200 OK 27 kB URL HTTP/2 i1.wp.com/feenyxshop.com/wp-content/uploads/woocommerce-placeholder.png?resize=570%2C739&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash de138afed3b49fb9bfdd48c2044bf740
73e2a16291a71f31a3d2ad129197dd48ff0cb656
b651f7fd5c8617374ddb83a8ae0b631ee016992f419604ea8002a265c5269ba3
GET /feenyxshop.com/wp-content/uploads/woocommerce-placeholder.png?resize=570%2C739&ssl=1 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: image/webp
content-length: 26850
last-modified: Mon, 21 Nov 2022 13:00:00 GMT
expires: Thu, 21 Nov 2024 01:00:00 GMT
cache-control: public, max-age=63115200
link: <https://feenyxshop.com/wp-content/uploads/woocommerce-placeholder.png>; rel="canonical"
x-content-type-options: nosniff
etag: "934cc3214cc45889"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i2.wp.com/feenyxshop.com/wp-content/uploads/2018/06/Layer-1-copy.png?resize=660%2C1904
192.0.77.2200 OK 566 kB URL HTTP/2 i2.wp.com/feenyxshop.com/wp-content/uploads/2018/06/Layer-1-copy.png?resize=660%2C1904
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 566 kB (566344 bytes)
Hash 0a4365e95c45cb846fa05b0e06b9e9af
e16eb2cf9bfdec29864e2fe7e2e5d87018e08cb7
c29c5ef99f64a9ca29e4c7e0a8cd6279097b2ca718633514597e475a414e9be4
GET /feenyxshop.com/wp-content/uploads/2018/06/Layer-1-copy.png?resize=660%2C1904 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: image/webp
content-length: 566344
last-modified: Mon, 21 Nov 2022 13:00:01 GMT
expires: Thu, 21 Nov 2024 01:00:01 GMT
cache-control: public, max-age=63115200
link: <http://feenyxshop.com/wp-content/uploads/2018/06/Layer-1-copy.png>; rel="canonical"
x-content-type-options: nosniff
etag: "3f1f1c8262a26b1b"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fd6e45fec9010f48d052dc17826c75f0
218e01b9707f1e123eef81d70f24f0d95e526465
8ba8111e6058eb953ea4804e6fcbbba380a2087609b5bc49c7ccade7fef100a8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4220
Cache-Control: max-age=130508
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:39 GMT
Etag: "637f16c7-116"
Expires: Sat, 26 Nov 2022 08:11:47 GMT
Last-Modified: Thu, 24 Nov 2022 07:01:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
www.googletagmanager.com/gtag/js?id=UA-225454829-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-225454829-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 498907424151df08d427bda013878254
3d2627405624967b33b2d539fee9a9c30066b5b4
a3ef79c4e33e6df31b2e1c116a627de182c56c5b337826208adf74fedce17f0c
GET /gtag/js?id=UA-225454829-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 19:56:39 GMT
expires: Thu, 24 Nov 2022 19:56:39 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43684
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/5.9.1/assets/js/frontend/woocommerce.min.js
192.0.77.37200 OK 1.1 kB URL HTTP/2 c0.wp.com/p/woocommerce/5.9.1/assets/js/frontend/woocommerce.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 84789d47697491ec6403785bd127c2c8
19cc59f2c9a117b064f1e704f15f83145f6c6cf0
95fa8dd034cabe47b7e896bc1370a6c8c08e8b074a7d2810def6e1fee66ee77b
GET /p/woocommerce/5.9.1/assets/js/frontend/woocommerce.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 18 May 2021 17:00:20 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
maps.google.com/maps/api/js?key=AIzaSyDOPG0RN8ZR2_okJUfB8A_XacCDTsoY_7E&ver=6.1.1
216.58.211.14200 OK 53 kB URL HTTP/2 maps.google.com/maps/api/js?key=AIzaSyDOPG0RN8ZR2_okJUfB8A_XacCDTsoY_7E&ver=6.1.1
IP 216.58.211.14:0
File type ASCII text, with very long lines (2381)
Hash 2608d7dad3c41960d0d3680bba2b8946
e10d8788ff0f53cd66ef1963cdeb667ead3f7aa5
0ca8aad7260e5e10a454a44ee16f55552eb019ec4fe3520407ebcf1443e75c43
GET /maps/api/js?key=AIzaSyDOPG0RN8ZR2_okJUfB8A_XacCDTsoY_7E&ver=6.1.1 HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 24 Nov 2022 19:56:39 GMT
expires: Thu, 24 Nov 2022 20:26:39 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53336
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=17
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.5
162.213.253.37200 OK 12 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.5
IP 162.213.253.37:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash d9e87ca4b1794034e57c7084192964b4
8c2bb3a54f8f37862cba0da963b2e344db6c5dc6
24fb2fb63a83d7a52273cf5a54af6f233ae0859900b7f228eb4bb1fba56f264b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.5 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:38 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12135
date: Thu, 24 Nov 2022 19:56:38 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.2
162.213.253.37200 OK 848 B URL HTTP/2 feenyxshop.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.2
IP 162.213.253.37:0
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.2 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:38 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Thu, 24 Nov 2022 19:56:38 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/feenyxshop.com/wp-content/uploads/2018/06/f3.jpg?fit=38%2C37&ssl=1
192.0.77.2200 OK 246 B URL HTTP/2 i0.wp.com/feenyxshop.com/wp-content/uploads/2018/06/f3.jpg?fit=38%2C37&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 38x37, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5369f3ef7d624d353024ccaa38b62e6c
0892d85079819f2405345364ece39f1ed1e08309
0e87271d6e3b7a4922d672096f7ed0236ef07da8783cea429df2aab50e39ead6
GET /feenyxshop.com/wp-content/uploads/2018/06/f3.jpg?fit=38%2C37&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: image/webp
content-length: 246
last-modified: Mon, 21 Nov 2022 13:00:00 GMT
expires: Thu, 21 Nov 2024 01:00:00 GMT
cache-control: public, max-age=63115200
link: <https://feenyxshop.com/wp-content/uploads/2018/06/f3.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ad247d052b7c5d19"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
feenyxshop.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.5.0
162.213.253.37200 OK 42 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.5.0
IP 162.213.253.37:0
File type ASCII text, with very long lines (65358)
Hash db1354790b328c764f0c530a8c17a965
28a1fab2c5824b7b379e3c4bfa48afc9cca73cd9
60cfeab11940700b50832d50ba20d367213a55c93bbce1db80ffc43f403675ea
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.5.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 42001
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
162.213.253.37200 OK 1.1 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
IP 162.213.253.37:0
Hash 263b70217f905feda4c01edde0b2737a
5ee9d3538967433d441e6aa357bf166724200523
1c82d8152cb3112b7df9b40a89ac28db20e51562266c13d392e8530fc06cd5ce
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1060
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/css/themify-icons.css?ver=1.0.0
162.213.253.37200 OK 2.7 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/css/themify-icons.css?ver=1.0.0
IP 162.213.253.37:0
Hash 0e7b25403e1c6ff00203071fcbf518db
26b2f285a1fa1e796cf704726f959eeedcdd3a93
4037010da57023768039da16cf5c543e3dccd2bee04248af4b2b1e2408b277fb
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/css/themify-icons.css?ver=1.0.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2669
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/css/woocommerce.css?ver=1.24
162.213.253.37200 OK 34 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/css/woocommerce.css?ver=1.24
IP 162.213.253.37:0
File type ASCII text, with very long lines (568)
Hash c2d38e94d338fe9ed9e918bd96d03fd5
120361f23f0356294a42c4aeb8b28f93cc3b0c11
063d5e76eb49717cea0fe9696ee366fc0190dd8d03320c73a9edb707955359f6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/css/woocommerce.css?ver=1.24 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34066
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/SmoothScroll.js?ver=1
162.213.253.37200 OK 7.4 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/SmoothScroll.js?ver=1
IP 162.213.253.37:0
File type ASCII text, with very long lines (2237)
Hash 1e8fb0edc63c6861b445897a8ca1118c
834145a93300779a45c5922d054c08b782ab5322
135901a5ed88283c71c97b966f22eb73610028453fe85f4844159f495634c9a4
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/SmoothScroll.js?ver=1 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7419
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.5.0
162.213.253.37200 OK 1.5 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.5.0
IP 162.213.253.37:0
File type ASCII text, with very long lines (2237)
Hash cbfcbc95f74680960e22ff3a7198d524
c6b51b6d3c36451b89fe8b690f9e277429712449
080144a5a097bac508ecf5fe0ac3b1d618ca8cfd70b8a99f7beff0faa355be50
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.5.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1477
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/css/animate.css?ver=3.6.0
162.213.253.37200 OK 4.2 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/css/animate.css?ver=3.6.0
IP 162.213.253.37:0
File type ASCII text, with CRLF line terminators
Hash b3bb2f71ea6fec146ddf99f7fd4ea3ef
0f58b653d3f2de7ca5dc10c41f0c09776519270f
20ddede563ebe6616529e766e19ebf5806e94a31cd8cb96609844513e023e460
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/css/animate.css?ver=3.6.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4187
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/css/eleganticon-style.css?ver=1.0.0
162.213.253.37200 OK 4.4 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/css/eleganticon-style.css?ver=1.0.0
IP 162.213.253.37:0
File type ASCII text, with very long lines (6610)
Hash 08dc8cbcf1768a7f799f0b4deff6cc1b
99237800614d8f06bded6d41f0d97604427efa5d
5a2d7c8fc32debfd97395ae8358a4ba91eb859de26eacb560d09c09b1f021df6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/css/eleganticon-style.css?ver=1.0.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4385
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/magnific/magnific-popup.css?ver=1.1.0
162.213.253.37200 OK 1.7 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/magnific/magnific-popup.css?ver=1.1.0
IP 162.213.253.37:0
Hash 03b0f3835745934343c47a2156262fe1
e99d28783482b3944d07ff3c68e18355c7887ff9
0ebf9903106fcf5bf718fa026aedb96decc0a48a7a9ec2e0dc1cad43119ad9ff
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/magnific/magnific-popup.css?ver=1.1.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1660
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/style.css?ver=3.2
162.213.253.37200 OK 1.0 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/style.css?ver=3.2
IP 162.213.253.37:0
File type ASCII text, with CRLF line terminators
Hash 57e934af9323d8939a9f2cfb0cf034b2
ae8470d85a9df49243a7f93a83c8a24ab836c92e
1f6c588b07b5cb3532728e3363994ae7b8f107fd1611f3e4587401081107a8cc
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/style.css?ver=3.2 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1021
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/css/slick.css?ver=1.8.0
162.213.253.37200 OK 483 B URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/css/slick.css?ver=1.8.0
IP 162.213.253.37:0
Hash 1e4f6b1a5456c5cefdd025118bf4e6b5
5713171df86af73933ccb408bd352ae4267fd196
80a0639fa558bbfef356bcdbf900c4586b7b51834efcec690384317ec52c7676
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/css/slick.css?ver=1.8.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 483
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/css/perfect-scrollbar.css?ver=0.6.12
162.213.253.37200 OK 513 B URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/css/perfect-scrollbar.css?ver=0.6.12
IP 162.213.253.37:0
File type ASCII text, with very long lines (4656)
Hash cc7a1fe316eed25a96417be60eb7001b
0c6090e0d19f9410e2e8295276818999c79d9e6d
2cbfeed761b6d6b70edabf4cce8dc3fad308962a6fb346830938a9e5edcf7448
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/css/perfect-scrollbar.css?ver=0.6.12 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 513
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.5
162.213.253.37200 OK 46 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.5
IP 162.213.253.37:0
File type ASCII text, with very long lines (42889)
Hash 8a1414caa3a79ea76bf0d8356fac0f3e
c17b65965336a7b7175c9aeaca8f3133fff0f1ae
1a2cb6609a5ceb91a96b58d62a6b58d3ea57975564d4c3e4982a0565cb2e777a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.5 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 45883
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/css/bootstrap.css?ver=3.2.0
162.213.253.37200 OK 21 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/css/bootstrap.css?ver=3.2.0
IP 162.213.253.37:0
File type ASCII text, with very long lines (540)
Hash 1656964a9592bc5b71bc64d43458c9af
b5a19e90690e5eb4f74f58b07959e22693e460a5
9c7cde1cde2ece5c17cdd3d984d5992b36b07b8a076720487043199d953cebb8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/css/bootstrap.css?ver=3.2.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20618
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/handlebars.min.js
162.213.253.37200 OK 16 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/handlebars.min.js
IP 162.213.253.37:0
File type ASCII text, with very long lines (32087)
Hash 4198713ec446fcd1b4f4df5062d2d19e
1c160ebf09cb91abce94ac432065e978ced503bd
e17207e9a5131e537e92ba246848624af970cede5d488da651fecf883b265ad2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/handlebars.min.js HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15491
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/bootstrap.min.js?ver=20150330
162.213.253.37200 OK 11 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/bootstrap.min.js?ver=20150330
IP 162.213.253.37:0
File type ASCII text, with very long lines (32034), with CRLF line terminators
Hash e8b8b179e56aaec4556232c4dd5ab18d
56971f5bc0264e7f5e2e91b773552357256c73ef
c35870346ad4d00700cfbe8f63ecf3209f085f8b7769999550ac340084a0b67d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/bootstrap.min.js?ver=20150330 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10640
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.2
162.213.253.37200 OK 4.7 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.2
IP 162.213.253.37:0
File type HTML document, ASCII text, with very long lines (14099), with no line terminators
Hash 4f124978348bf027678fc669f4072f41
d566898333b2f1304777e0f1bf9f5361d5e5ee5b
acfae196aafb6b4feef33b9368f131cb4d617cdfc83b78dd665984a8d7c4002f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.2 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4716
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/gmap3.js?ver=6.0.0
162.213.253.37200 OK 16 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/gmap3.js?ver=6.0.0
IP 162.213.253.37:0
File type ASCII text, with CRLF line terminators
Hash ee2f0145b9930bae231e9a2a5df17599
bd62b749167daa9b6fc37b420ee97d496ff6e11c
be32a9c18d5e49c2a19c9f61591567a988c4660e54c61526366494a1f180a6a0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/gmap3.js?ver=6.0.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16117
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/slick.min.js?ver=1.8.0
162.213.253.37200 OK 11 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/slick.min.js?ver=1.8.0
IP 162.213.253.37:0
File type ASCII text, with very long lines (42862)
Hash d7b6e001871041cf4e57ffdf902a6940
d92f530c2c4cdff567be167f06ff9a1cb776056d
639f2fa2412a6a8854978c262c4feeb9e49027e6c36dcddaed874b6b01b11803
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/slick.min.js?ver=1.8.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11329
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/woocommerce.js?ver=20150330
162.213.253.37200 OK 8.3 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/woocommerce.js?ver=20150330
IP 162.213.253.37:0
File type ASCII text, with very long lines (2238), with CRLF line terminators
Hash 91445d8034e4acf1946af0a421d54883
5c0dd868f1fd7130a490ad116f28b67bafbc0a57
60183e08bb74a116773163bf0a9763461cc652f1cf9effd862f8dcb5298d215a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/woocommerce.js?ver=20150330 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8265
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0
162.213.253.37200 OK 6.7 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0
IP 162.213.253.37:0
File type ASCII text, with very long lines (22658)
Hash 2a0bf5b3a5e76cd7a2f7919a4b45d346
670acb90f27b4ce6575b755e77c9d422aa0eafb0
cab6394851a32dd0b8364b1e20058f78782f31e66c3e12b616233ed999c6d6c5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6742
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
162.213.253.37200 OK 6.6 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP 162.213.253.37:0
File type HTML document, ASCII text, with very long lines (23808), with no line terminators
Hash 647eb91b31f716f01a5eee177e2eefe4
98ce940c94d258236232bd9cc68c0d13d69f0e3c
5554ff5d4a3e71483355c5b104c7633490e5771c26a4979a84fd801aa069da8f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 02:38:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6585
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.5.0
162.213.253.37200 OK 3.9 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.5.0
IP 162.213.253.37:0
File type Unicode text, UTF-8 text, with very long lines (11090)
Hash adea180fcdbb02afd6aa50ef9f218807
5475fb3499d56a5b14813859570c3795eb370753
e195704cccab64b39ae91a88a376ebcad7ba411b26541cc14bb2125f7f7dc41e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.5.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3869
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.3.0
162.213.253.37200 OK 7.4 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.3.0
IP 162.213.253.37:0
File type HTML document, ASCII text, with very long lines (26968), with no line terminators
Hash 7cb48054f2a538a9057a73014b6d37c1
9d4591b5217f93d6f88b67782108723e17167d5a
69b416d6f3d9d5f67a7a2c3ca27510ffdf719e217f6ce93105842e185ae9d63a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.3.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7410
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/typeahead.bundle.min.js
162.213.253.37200 OK 12 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/typeahead.bundle.min.js
IP 162.213.253.37:0
File type ASCII text, with very long lines (32095)
Hash e5ddc2f24f17e831c3e945b4ad1c8e9d
6441f44c4ab7aa24dec5caeb8244867207be224b
8a1a6ec762b299e0b0ea56ab1527db0e3d060e55a0ce8948e68a22fbb533e671
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/typeahead.bundle.min.js HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12334
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.8.0
162.213.253.37200 OK 2.4 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.8.0
IP 162.213.253.37:0
File type ASCII text, with very long lines (6842), with no line terminators
Hash a48c65d4f4a10436e884ec2a3a386310
0dab5943c78f471df2c249e2355e35bfcfdc363e
ac5772ebadc96808855d74f9c8bb5e6633b7108cb750cbdbd9cc45d3ee89ea29
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.8.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2373
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/countdown.js?ver=20150315
162.213.253.37200 OK 2.2 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/countdown.js?ver=20150315
IP 162.213.253.37:0
File type ASCII text, with very long lines (2247), with CRLF line terminators
Hash c734a0ba32c5becf442ece252f8430ff
c0b5dfe1b8c8e6f7dce56af6a86324d446eb5869
aa8dcb29e6e20b5163e39550a88c680b81379418ae1198f19198100c0ae33410
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/countdown.js?ver=20150315 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2169
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.5.0
162.213.253.37200 OK 3.4 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.5.0
IP 162.213.253.37:0
File type ASCII text, with very long lines (51719)
Hash 6a3b7da156b1a23da8dc50cdd23b8a03
a66a45d24957bcc14ca2ff6562a0e66be09031d6
696525a745ea9bfa67d220b8eefb4b6b81d2c083c4b8c7102916618671961884
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.5.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3446
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/perfect-scrollbar.jquery.min.js?ver=0.6.12
162.213.253.37200 OK 7.1 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/perfect-scrollbar.jquery.min.js?ver=0.6.12
IP 162.213.253.37:0
File type ASCII text, with very long lines (27323), with CRLF line terminators
Hash 7ca895e851dba5b540a9d62f047d5bd8
973d61a1782d4bf8c1fcf74503e7ce6d79fffc89
d2b67455740ba1569f4e19e03816bc5ee9a3b5f445b0725cd50530af71fb59e3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/perfect-scrollbar.jquery.min.js?ver=0.6.12 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7147
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/magnific/jquery.magnific-popup.min.js?ver=1.1.0
162.213.253.37200 OK 8.2 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/magnific/jquery.magnific-popup.min.js?ver=1.1.0
IP 162.213.253.37:0
File type ASCII text, with very long lines (22324)
Hash 2997a556a168c4effd52d1fed3855622
49332bde5d4c212c0f9081a235526ae33523dab0
8f22a4984bbda341f7a116a1d07f39330b32c9abcf3498c01f28f1afb51e71af
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/magnific/jquery.magnific-popup.min.js?ver=1.1.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8246
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/functions.js?ver=20150330
162.213.253.37200 OK 5.2 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/functions.js?ver=20150330
IP 162.213.253.37:0
File type ASCII text, with very long lines (2237), with CRLF line terminators
Hash 67d6a9c9772d280cf6e82111f9b3fc58
6d5ad2deec20ee7b6f884183105f2ef358271f22
35b50163511a7d6acb934db6fa448fa8b119542d01bdbcf87d125f0a71629155
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/functions.js?ver=20150330 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5224
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/jquery.unveil.js?ver=1.1.0
162.213.253.37200 OK 1.8 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/jquery.unveil.js?ver=1.1.0
IP 162.213.253.37:0
File type Unicode text, UTF-8 text, with very long lines (2237)
Hash 12b46a448efa8cb183896cf480b3beea
fbd19643b94c4cb4470fcd66cc8ada96d94de956
52df1b5ff3f659fb77389c2ba1f29294d17e8a02e7fa9a236ac7605d3dcf00e0
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/jquery.unveil.js?ver=1.1.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1835
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/js/sticky-kit.js?ver=20150330
162.213.253.37200 OK 2.5 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/js/sticky-kit.js?ver=20150330
IP 162.213.253.37:0
File type ASCII text, with very long lines (2237)
Hash 749723571e8ca2851b48234a7be9c39e
803405ebb3a1300738ef94348bfc93ef3f2a981d
8a476df44e2ed40db71e71f3f514d7810d47efe05dbfdf2bfcacd7df58f66a43
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/js/sticky-kit.js?ver=20150330 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2473
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.6
162.213.253.37200 OK 3.5 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.6
IP 162.213.253.37:0
File type ASCII text, with very long lines (8447), with no line terminators
Hash ee52e2db9789ed350ac39035c330a26a
1d03b414a69b7c6139a981957c784298765627a4
9ec82ca767b68e111ecfa08b5d64d112952030a5f7627daef479beeda5984123
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.6 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3534
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
162.213.253.37200 OK 4.6 kB URL HTTP/2 feenyxshop.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 162.213.253.37:0
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 02:37:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/uploads/2021/11/pheenyx.jpg
162.213.253.37200 OK 47 kB URL HTTP/2 feenyxshop.com/wp-content/uploads/2021/11/pheenyx.jpg
IP 162.213.253.37:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 413x134, components 3\012- data
Hash aba437b1d9221b9e41f1821366296a41
d4db8db9d0a04074e96414891f4aea3435b9cbc3
da5573890a1392a31c02e06b8aa1709d5c2a96a3d4dd264c52b71397c46c8c6d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/pheenyx.jpg HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: image/jpeg
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-length: 46803
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/css/template.css?ver=3.2
162.213.253.37200 OK 40 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/css/template.css?ver=3.2
IP 162.213.253.37:0
File type ASCII text, with very long lines (704)
Hash f6d27658d95677a5ecbcd508da84ee77
367b77b7b09b32d81a06231031788ef690b8103d
7e62a5ef0ef000707497a28c2e9e22ebacf74888c193197cc7074978fb0e30bd
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/css/template.css?ver=3.2 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: text/css
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 39936
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.5
162.213.253.37200 OK 83 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.5
IP 162.213.253.37:0
File type ASCII text, with very long lines (64270)
Hash f56d63f27de3997bd1b0dc091c83621f
efdde64a667cd28e8e20d4fd56b841582a352a03
7ecc17efacd8d81a6918b2d9b76c63efa910ea56c43e2b9a5389f79f2f5fd456
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.5 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 83113
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/5.9.1/assets/js/frontend/add-to-cart-variation.min.js
192.0.77.37200 OK 3.9 kB URL HTTP/2 c0.wp.com/p/woocommerce/5.9.1/assets/js/frontend/add-to-cart-variation.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (13595), with no line terminators
Hash 63b0e4cb8d826bf1260103074613a837
eff725e7188bfa5df5e308c342f8f7ef6fde3a48
d794fc3c0dfa001117680182baa7ad53c9d5c70b0abe5c100aab4f90ead4d2b0
GET /p/woocommerce/5.9.1/assets/js/frontend/add-to-cart-variation.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 18 May 2021 17:00:20 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c0.wp.com/p/woocommerce/5.9.1/assets/css/woocommerce-smallscreen.css
192.0.77.37200 OK 35 kB URL HTTP/2 c0.wp.com/p/woocommerce/5.9.1/assets/css/woocommerce-smallscreen.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (7043), with no line terminators
Hash 1e80db441bd0d88152b6e05f5ce80403
c134df84d95d4038469832d6530220ed0958ca70
c273036622123e5476bd3702f8947a8cd5e52e4ab72de6e54303d628d1d324a1
GET /p/woocommerce/5.9.1/assets/css/woocommerce-smallscreen.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:40 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 16 Feb 2021 23:11:32 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:40 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/5.9.1/assets/js/frontend/cart-fragments.min.js
192.0.77.37200 OK 18 kB URL HTTP/2 c0.wp.com/p/woocommerce/5.9.1/assets/js/frontend/cart-fragments.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash c89db5c982da718bc38cd701f99c7250
3b28252496f31ded95fa74324f6bade2c5d5bfc9
181ccac317c6dce41d48bb56841075f9716987e7c5fefa83da2b74ad17f443da
GET /p/woocommerce/5.9.1/assets/js/frontend/cart-fragments.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 25 May 2021 20:19:43 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 19:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c0.wp.com/p/woocommerce/5.9.1/assets/fonts/star.woff
192.0.77.37200 OK 1.3 kB URL HTTP/2 c0.wp.com/p/woocommerce/5.9.1/assets/fonts/star.woff
IP 192.0.77.37:0
File type Web Open Font Format, CFF, length 1304, version 1.0\012- data
Hash 335cbf607c55aa32fd06809d1f9eb127
e70dd0cd93614997e251f26477ea815435981e19
d87af7a2528beb59a990e0414df87b4e4115f77f3a4a750f6616ff189b70345a
GET /p/woocommerce/5.9.1/assets/fonts/star.woff HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://feenyxshop.com
Connection: keep-alive
Referer: https://c0.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:40 GMT
content-type: application/octet-stream
content-length: 1304
last-modified: Wed, 23 May 2018 15:30:10 GMT
expires: Fri, 24 Nov 2023 19:56:40 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css?ver=4.6.3
104.18.11.207200 OK 6.7 kB URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css?ver=4.6.3
IP 104.18.11.207:0
File type ASCII text, with very long lines (28900)
Hash ff973133b5bc857986fc2829732e2a01
00d5cad65028b9feb0b78bb219751a4d463cea6b
4ff77c74f09c745291106e23340887e225252eb7158e3f2038f6c06681e58e6e
GET /font-awesome/4.6.3/css/font-awesome.min.css?ver=4.6.3 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 632, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-04-23 06:04:33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: b2542e4bd9184b6b49f42c999639b8b3
cdn-cache: HIT
cf-cache-status: HIT
age: 17429962
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76f4b5885ae20b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/images/loading.gif
162.213.253.37200 OK 56 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/images/loading.gif
IP 162.213.253.37:0
File type GIF image data, version 89a, 512 x 512\012- data
Hash 79deed6306286b9e0fbd016ca251d3cb
ccf4a385d8035c9cf76b8cb9d41a3ec951d02058
2177facbb4a68594d9eefff6fb10f48f03f19fb90dcc1e2f69edf90889f4b109
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/images/loading.gif HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/wp-content/themes/kossy/css/template.css?ver=3.2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:40 GMT
content-type: image/gif
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-length: 55605
date: Thu, 24 Nov 2022 19:56:40 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/themes/kossy/fonts/ElegantIcons.woff
162.213.253.37200 OK 64 kB URL HTTP/2 feenyxshop.com/wp-content/themes/kossy/fonts/ElegantIcons.woff
IP 162.213.253.37:0
File type Web Open Font Format, CFF, length 63664, version 1.0\012- data
Hash fdd9e757bf61675343dcf55100422b84
f9be87fa2d1d4a95e8305afb51778db4bc759fbc
be1825e52a0dc7df04df9322f62abe2a2f2a25d98aac186de0140dfc7f6bdcae
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kossy/fonts/ElegantIcons.woff HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://feenyxshop.com/wp-content/themes/kossy/css/eleganticon-style.css?ver=1.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:40 GMT
content-type: font/woff
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-length: 63664
date: Thu, 24 Nov 2022 19:56:40 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/5.9.1/assets/js/js-cookie/js.cookie.min.js
192.0.77.37200 OK 57 kB URL HTTP/2 c0.wp.com/p/woocommerce/5.9.1/assets/js/js-cookie/js.cookie.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (1668)
Hash 64ad0ede6853e512f55a34a7ab09d9a9
5316ccdcba7dbf6deb7a26399edb9226e75dddbd
e6cdfa30274ab1647401c54cd9209f0e9949fffba56b859f1463f99c19826b23
GET /p/woocommerce/5.9.1/assets/js/js-cookie/js.cookie.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 19 Jan 2021 23:55:30 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/woocommerce/assets/fonts/star.woff
162.213.253.37200 OK 1.3 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/woocommerce/assets/fonts/star.woff
IP 162.213.253.37:0
File type Web Open Font Format, CFF, length 1304, version 1.0\012- data
Hash 335cbf607c55aa32fd06809d1f9eb127
e70dd0cd93614997e251f26477ea815435981e19
d87af7a2528beb59a990e0414df87b4e4115f77f3a4a750f6616ff189b70345a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/fonts/star.woff HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://feenyxshop.com/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:40 GMT
content-type: font/woff
last-modified: Fri, 11 Mar 2022 02:38:20 GMT
accept-ranges: bytes
content-length: 1304
date: Thu, 24 Nov 2022 19:56:40 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
162.213.253.37200 OK 2.5 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 162.213.253.37:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.5
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:41 GMT
content-type: image/gif
last-modified: Sun, 21 Nov 2021 13:22:21 GMT
accept-ranges: bytes
content-length: 2545
date: Thu, 24 Nov 2022 19:56:41 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
162.213.253.37200 OK 7.5 kB URL HTTP/2 feenyxshop.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 162.213.253.37:0
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://feenyxshop.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.5
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:41 GMT
content-type: font/woff
last-modified: Sun, 21 Nov 2021 13:22:21 GMT
accept-ranges: bytes
content-length: 7536
date: Thu, 24 Nov 2022 19:56:41 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/uploads/2018/06/slider21-100x50.jpg
162.213.253.37200 OK 1.2 kB URL HTTP/2 feenyxshop.com/wp-content/uploads/2018/06/slider21-100x50.jpg
IP 162.213.253.37:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 100x50, components 3\012- data
Hash 347e36138ce35a2312636d259d932ea9
430234ee90789a7326224b36c24f571264bd1883
85983f401e7b363324b4778440c46c7ba3423fada2cf36037e60b276d1435926
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2018/06/slider21-100x50.jpg HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:41 GMT
content-type: image/jpeg
last-modified: Sun, 21 Nov 2021 13:22:20 GMT
accept-ranges: bytes
content-length: 1205
date: Thu, 24 Nov 2022 19:56:41 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
i2.wp.com/feenyxshop.com/wp-content/uploads/2021/11/cropped-Feenyx-02.jpg?fit=32%2C32&ssl=1
192.0.77.2200 OK 256 B URL HTTP/2 i2.wp.com/feenyxshop.com/wp-content/uploads/2021/11/cropped-Feenyx-02.jpg?fit=32%2C32&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9f22921386591e4d21297a5f654c26d2
2682992cb7d4194de4742494cc1a42c564e78c87
dcba67b997db41921c3b967d9c91373514b6c6d58d830e5b89f44e0fb2ac66ed
GET /feenyxshop.com/wp-content/uploads/2021/11/cropped-Feenyx-02.jpg?fit=32%2C32&ssl=1 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:41 GMT
content-type: image/webp
content-length: 256
last-modified: Thu, 24 Nov 2022 19:56:41 GMT
expires: Sun, 24 Nov 2024 07:56:41 GMT
cache-control: public, max-age=63115200
link: <https://feenyxshop.com/wp-content/uploads/2021/11/cropped-Feenyx-02.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "80d9189fa8858fb3"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i2.wp.com/feenyxshop.com/wp-content/uploads/2021/11/cropped-Feenyx-02.jpg?fit=192%2C192&ssl=1
192.0.77.2200 OK 2.2 kB URL HTTP/2 i2.wp.com/feenyxshop.com/wp-content/uploads/2021/11/cropped-Feenyx-02.jpg?fit=192%2C192&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cdfa13f2b0457f3577cd79307a11f241
3a6e2e45112ac3bb352493a52f008dd244336f51
b3499d55c723f106ff61192c906548d26ff0416beb68538b66e559342218d97d
GET /feenyxshop.com/wp-content/uploads/2021/11/cropped-Feenyx-02.jpg?fit=192%2C192&ssl=1 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:41 GMT
content-type: image/webp
content-length: 2190
last-modified: Thu, 24 Nov 2022 19:56:41 GMT
expires: Sun, 24 Nov 2024 07:56:41 GMT
cache-control: public, max-age=63115200
link: <https://feenyxshop.com/wp-content/uploads/2021/11/cropped-Feenyx-02.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "0e16795b16c6185d"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 24 Nov 2022 18:41:08 GMT
expires: Thu, 24 Nov 2022 20:41:08 GMT
cache-control: public, max-age=7200
age: 4533
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.10200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.10:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://feenyxshop.com
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Nov 2022 19:56:41 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://feenyxshop.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
feenyxshop.com/?wc-ajax=get_refreshed_fragments
162.213.253.37200 OK 1.6 kB URL HTTP/2 feenyxshop.com/?wc-ajax=get_refreshed_fragments
IP 162.213.253.37:0
File type JSON data\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1568), with no line terminators
Hash 9da09ed2d67b6f2696c4d5d3b8563b46
179059a1ead79f0447c88d88ddda146544f1f730
1279670a34af5bf60a8c70dbdb7a4f09e8206a8b0fc776f73db45efac1035e0b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://feenyxshop.com
Connection: keep-alive
Referer: https://feenyxshop.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/8.0.25
access-control-allow-origin: https://feenyxshop.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
x-litespeed-tag: 4c7_HTTP.200,4c7_HTTP.200
content-type: application/json; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1568
date: Thu, 24 Nov 2022 19:56:42 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/underscore.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/underscore.min.js
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/underscore.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 27 Sep 2022 15:18:25 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik:400%2C500%7CRoboto:400
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik:400%2C500%7CRoboto:400
IP 142.250.74.10:0
GET /css?family=Rubik:400%2C500%7CRoboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 19:56:39 GMT
date: Thu, 24 Nov 2022 19:56:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
162.213.253.37200 OK 0 B URL HTTP/2 feenyxshop.com/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
IP 162.213.253.37:0
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5644
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.wp.com/s-202247.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /s-202247.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-2494"
content-encoding: br
expires: Mon, 20 Nov 2023 12:08:34 GMT
cache-control: max-age=31536000
x-nc: HIT arn
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/10.3/_inc/build/photon/photon.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/10.3/_inc/build/photon/photon.min.js
IP 192.0.77.37:0
GET /p/jetpack/10.3/_inc/build/photon/photon.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 31 Mar 2020 17:26:38 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/wp-util.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/wp-util.min.js
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/wp-util.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 20 Sep 2022 03:52:10 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.wp.com/e-202247.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202247.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:39 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 13 Nov 2023 09:17:34 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik:400,500,700|Mr+Dafoe&subset=latin%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik:400,500,700|Mr+Dafoe&subset=latin%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Rubik:400,500,700|Mr+Dafoe&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 19:56:39 GMT
date: Thu, 24 Nov 2022 19:56:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/5.9.1/packages/woocommerce-blocks/build/wc-blocks-style.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/woocommerce/5.9.1/packages/woocommerce-blocks/build/wc-blocks-style.css
IP 192.0.77.37:0
GET /p/woocommerce/5.9.1/packages/woocommerce-blocks/build/wc-blocks-style.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 19 Oct 2021 12:50:40 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/5.9.1/assets/js/jquery-blockui/jquery.blockUI.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/woocommerce/5.9.1/assets/js/jquery-blockui/jquery.blockUI.min.js
IP 192.0.77.37:0
GET /p/woocommerce/5.9.1/assets/js/jquery-blockui/jquery.blockUI.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 18 May 2021 17:00:20 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/5.9.1/assets/js/frontend/add-to-cart.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/woocommerce/5.9.1/assets/js/frontend/add-to-cart.min.js
IP 192.0.77.37:0
GET /p/woocommerce/5.9.1/assets/js/frontend/add-to-cart.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 22 Sep 2020 21:16:49 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/dist/vendor/regenerator-runtime.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/dist/vendor/regenerator-runtime.min.js
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/5.9.1/assets/css/woocommerce.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/woocommerce/5.9.1/assets/css/woocommerce.css
IP 192.0.77.37:0
GET /p/woocommerce/5.9.1/assets/css/woocommerce.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 16 Feb 2021 23:11:32 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/css/dist/block-library/style.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/dist/block-library/style.min.css
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/5.9.1/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/woocommerce/5.9.1/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css
IP 192.0.77.37:0
GET /p/woocommerce/5.9.1/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 24 Aug 2021 20:39:36 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/10.3/css/jetpack.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/10.3/css/jetpack.css
IP 192.0.77.37:0
GET /p/jetpack/10.3/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 28 Sep 2021 19:34:54 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/dist/vendor/wp-polyfill.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 20 Sep 2022 15:43:29 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
feenyxshop.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
162.213.253.37200 OK 0 B URL HTTP/2 feenyxshop.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP 162.213.253.37:0
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: feenyxshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 19:56:39 GMT
content-type: application/javascript
last-modified: Sun, 21 Nov 2021 13:22:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4694
date: Thu, 24 Nov 2022 19:56:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
c0.wp.com/p/woocommerce/5.9.1/assets/css/woocommerce-layout.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/woocommerce/5.9.1/assets/css/woocommerce-layout.css
IP 192.0.77.37:0
GET /p/woocommerce/5.9.1/assets/css/woocommerce-layout.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://feenyxshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 19:56:38 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 16 Feb 2021 23:11:32 GMT
content-encoding: br
expires: Fri, 24 Nov 2023 19:56:38 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2