Overview

URLsuperglobalmall.net/.well-known/onlinebk/torsion/index.php
IP 162.0.239.174 (United States)
ASN#22612 NAMECHEAP-NET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-09-20 12:54:52 UTC
StatusLoading report..
IDS alerts0
Blocklist alert35
urlquery alerts No alerts detected
Tags None

Domain Summary (15)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
www.facebook.com (1) 99 2017-01-30 05:00:00 UTC 2022-09-20 04:41:57 UTC 157.240.200.35
ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-09-20 08:06:10 UTC 93.184.220.29
www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-20 07:44:02 UTC 142.250.74.164
connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-09-20 08:29:02 UTC 157.240.200.14
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-20 04:46:53 UTC 34.120.237.76
www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-20 10:20:09 UTC 142.250.74.174
www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-20 04:46:55 UTC 142.250.74.72
r3.o.lencr.org (3) 344 2020-12-02 08:52:13 UTC 2022-09-20 04:47:05 UTC 23.36.77.32
superglobalmall.net (63) 0 2021-02-03 02:49:32 UTC 2022-09-20 12:15:20 UTC 162.0.239.174 Unknown ranking
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-20 04:47:04 UTC 34.117.237.239
ocsp.pki.goog (5) 175 2017-06-14 07:23:31 UTC 2022-09-20 04:47:45 UTC 142.250.74.3
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-20 09:16:43 UTC 143.204.55.27
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-20 05:19:24 UTC 143.204.55.25
push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-20 05:36:22 UTC 35.163.196.193
www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-09-20 09:06:49 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-20 2 superglobalmall.net/.well-known/onlinebk/torsion/index.php UniCredit Bank Aktiengesellschaft
2022-09-20 2 superglobalmall.net/.well-known/onlinebk/torsion/index.php UniCredit Bank Aktiengesellschaft

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-20 2 superglobalmall.net/.well-known/onlinebk/torsion/index.php Phishing
2022-09-20 2 superglobalmall.net/.well-known/onlinebk/torsion/index.php Phishing
2022-09-20 2 superglobalmall.net/wp-content/themes/davinci2/webfonts/OpenSans.woff Phishing
2022-09-20 2 superglobalmall.net/wp-content/themes/davinci2/assets/css/allstyle.css?ver=1.6.9 Phishing
2022-09-20 2 superglobalmall.net/wp-content/themes/davinci2/webfonts/OpenSans600.woff Phishing
2022-09-20 2 superglobalmall.net/wp-content/themes/davinci2/webfonts/OpenSans700.woff Phishing
2022-09-20 2 superglobalmall.net/wp-content/themes/davinci2/webfonts/fa-regular-400.woff Phishing
2022-09-20 2 superglobalmall.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 Phishing
2022-09-20 2 superglobalmall.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/google-analytics-dashboard-for-wp/as (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/themes/davinci2/webfonts/fa-brands-400.woff Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/popup-addon-for-ninja-forms/js/magni (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/themes/davinci2/webfonts/fa-solid-900.woff Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/popup-addon-for-ninja-forms/js/nf-po (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/themes/davinci2/adstm/customization/style.cs (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/erp/modules/crm/assets/css/erp-subsc (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/popup-addon-for-ninja-forms/css/anim (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/alids/assets/front/css/shopping_cart (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/a (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/contact-form-7/includes/swv/js/index (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/email-subscribers/lite/public/js/ema (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/page-scroll-to-id/js/page-scroll-to- (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/alids/assets/front/js/core.min.js?ve (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/alids/assets/front/js/formatPrice.mi (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/alids/assets/front/js/currencyPrice. (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/alids/assets/front/js/cart.min.js?ve (...) Phishing
2022-09-20 2 superglobalmall.net/wp-content/themes/davinci2/assets/js_/allmin.js?ver=1.6.9 Phishing
2022-09-20 2 superglobalmall.net/wp-content/plugins/alids/assets/front/js/search-product (...) Phishing
2022-09-20 2 superglobalmall.net/wp-admin/admin-ajax.php Phishing
2022-09-20 2 superglobalmall.net/wp-content/uploads/2020/06/Super-mall-FIVICON-TRANS1.bmp Phishing
2022-09-20 2 superglobalmall.net/wp-admin/admin-ajax.php Phishing
2022-09-20 2 superglobalmall.net/wp-admin/admin-ajax.php Phishing
2022-09-20 2 superglobalmall.net/wp-admin/admin-ajax.php Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 162.0.239.174
Date UQ / IDS / BL URL IP
2022-10-27 14:10:46 +0000 0 - 0 - 3 superglobalconsulting.com/vendor/worldwide/cl (...) 162.0.239.174
2022-10-09 15:45:08 +0000 0 - 0 - 2 superglobalmall.com/alaskaa.zip 162.0.239.174
2022-10-01 23:47:50 +0000 0 - 0 - 19 sgmallsales.com/.well-known/BANK/torsion/index.php 162.0.239.174
2022-09-20 12:54:52 +0000 0 - 0 - 35 superglobalmall.net/.well-known/onlinebk/tors (...) 162.0.239.174
2022-09-16 09:29:20 +0000 0 - 0 - 9 productmarkethub.com/wp-admin/index.html 162.0.239.174


Last 5 reports on ASN: NAMECHEAP-NET
Date UQ / IDS / BL URL IP
2023-02-09 11:15:22 +0000 0 - 0 - 1 baseballcvsoftball.com/amazon%20(1).zip 198.187.29.75
2023-02-09 10:51:00 +0000 0 - 2 - 0 essayscorers.com/te/index.php?VELIT=3 68.65.122.207
2023-02-09 10:32:06 +0000 0 - 0 - 1 compesat.com/differ/21962/21962.zip 198.54.120.214
2023-02-09 09:54:06 +0000 0 - 1 - 0 bombergers.store/ 192.64.119.153
2023-02-09 09:41:17 +0000 0 - 0 - 0 popraviauto.com 185.61.154.30


Last 1 reports on domain: superglobalmall.net
Date UQ / IDS / BL URL IP
2022-09-20 12:54:52 +0000 0 - 0 - 35 superglobalmall.net/.well-known/onlinebk/tors (...) 162.0.239.174


No other reports with similar screenshot

JavaScript

Executed Scripts (53)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (91)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 12:01:52 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mE8hU9sOOpuzk5s41smm4EALI8Y1YmvlyhEPo0YdUeqJ7W965XIhyQ==
Age: 3169


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6838
Expires: Tue, 20 Sep 2022 14:48:39 GMT
Date: Tue, 20 Sep 2022 12:54:41 GMT
Connection: keep-alive

                                        
                                            GET /.well-known/onlinebk/torsion/index.php HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         162.0.239.174
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Tue, 20 Sep 2022 12:54:41 GMT
Server: Apache
Location: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Content-Length: 274
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   274
Md5:    0d15f33f2ee871bfcc5ec29171f037ce
Sha1:   fd1156bd172a9645872e8a70eb06e894e68fa5cb
Sha256: f25c708c2cd496eb1db9c75886a0286aad40f6ec45ed91f526061f77d851a100

Alerts:
  Blocklists:
    - openphish: UniCredit Bank Aktiengesellschaft
    - fortinet: Phishing
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HQ7udW5y8Qiip8Mr4d-wsHy9bJKGNaTio6HqcwMjdxiJbHy6eqDdZg==
age: 29968
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 20 Sep 2022 12:54:41 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 20 Sep 2022 12:03:22 GMT
Cache-Control: max-age=3600
Expires: Tue, 20 Sep 2022 12:55:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: S9D96UnoN4fSfIatTKCVtRJjo-QJOGGaTLmK56L89u2vH3NLsQuN5w==
Age: 3079


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2736
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 12:54:42 GMT
Last-Modified: Tue, 20 Sep 2022 12:09:06 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: I28aanWGQQjI7c6t0ygzEA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.163.196.193
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jMBP8IwdO9WJ8aSoQxFXzFLLSKA=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 12:54:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /.well-known/onlinebk/torsion/index.php HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         162.0.239.174
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 20 Sep 2022 12:54:41 GMT
Server: Apache
X-LiteSpeed-Tag: 85e_HTTP.404
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <https://superglobalmall.net/wp-json/>; rel="https://api.w.org/"
Set-Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; expires=Thu, 20-Oct-2022 12:54:42 GMT; Max-Age=2592000; path=/ PHPSESSID=83597f61a42ec555b5494e8a3cd8436b; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 19959
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10733), with CRLF, LF line terminators
Size:   19959
Md5:    88edc2a6d45d10a7946a7bc6a686c91b
Sha1:   7519347335a2b1581590fc9684b7caffa9fd4deb
Sha256: fece5b98e9258e4cd34048330965de1df5ccdcda8ff76f4ffcf885bcc17f4011

Alerts:
  Blocklists:
    - openphish: UniCredit Bank Aktiengesellschaft
    - fortinet: Phishing
                                        
                                            GET /gtag/js?id=UA-143048625-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Sep 2022 12:54:42 GMT
expires: Tue, 20 Sep 2022 12:54:42 GMT
cache-control: private, max-age=900
last-modified: Tue, 20 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42294
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   42294
Md5:    a2b5db6a4bf72212810244007b7b50a1
Sha1:   0dddfd1a2a679f7bf8ff1dab54d19c5478efec94
Sha256: 67288dfa6e258b709b73dc82204ec70d095cf3f22c83a3ed3b2486c4ed9a47cd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 12:54:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js?ver=6.0.2 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Tue, 20 Sep 2022 12:54:43 GMT
date: Tue, 20 Sep 2022 12:54:43 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (850), with no line terminators
Size:   556
Md5:    27b68162c75bebb4dacf518c46e974d5
Sha1:   99abc7e3e02891bec5de3dda3cb18a6f865f82bc
Sha256: 93415a1ed398b656767f092c53ca274ad9ae9c8cb0672831fa3c4ab275f994d1
                                        
                                            GET /wp-content/themes/davinci2/webfonts/OpenSans.woff HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 20576
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 20696, version 1.0\012- data
Size:   20576
Md5:    db62d7a1b951a996a26ddb550855caeb
Sha1:   09f42616188a935d3ce556bbf887e977e5504b25
Sha256: b2c70745b6f83ac8b419dac34b33d2377dd87448751f5182d9ac6aab24aa457c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/davinci2/assets/css/allstyle.css?ver=1.6.9 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 37872
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65324)
Size:   37872
Md5:    eab08205e249a35b0d1d0e1397cd1bb3
Sha1:   0ae9c859056d9b2d4e3f0e5ec8bca98f740c5231
Sha256: 94558e194414c1700bbbe7591649434213dae9cb661602410b6911550577c836

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5111
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 12:54:43 GMT
Last-Modified: Tue, 20 Sep 2022 11:29:32 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /en-US/sdk.js?ver=1.6.9 HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 476f020c7693c0d99e507f981202c63f
etag: "e7d22af0abb5a702d58f6ab712380fe7"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 20 Sep 2022 13:14:43 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: LY22J8AKy9697aJ1aTXdmg==
x-fb-debug: yfXaswRDJZDLyl46/sUBMgEgosSOThFdBC7wS7VD+fVjjD3OwCOou11cq4IbsbvzSdmz13HsWzmyEuN4u36qyg==
content-length: 1687
priority: u=3,i
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:54:43 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1961)
Size:   1687
Md5:    2d8db627c00acbdebdeda2756935dd9a
Sha1:   18edc2cf164b80ab3c648c2441c2906a17c8b9bb
Sha256: 90d9011b3661b0757143c79e1b6234d01ebb932a354942d7eb41236ae7533151
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5111
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 12:54:43 GMT
Last-Modified: Tue, 20 Sep 2022 11:29:32 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /wp-content/themes/davinci2/style.css?ver=1.6.9 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 47799
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65266), with CRLF line terminators
Size:   47799
Md5:    fe35268589b153b5fdec1ccc8c39cab5
Sha1:   272959045b3fdfd9ec9976a0b019e9b76826f244
Sha256: 481866f4bab9e30f184b2d2367b92dfec7ca2a5101bf4f465786c48162a06231
                                        
                                            GET /wp-content/themes/davinci2/webfonts/OpenSans600.woff HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 20683
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 20796, version 1.0\012- data
Size:   20683
Md5:    efed543178484d2927b776ca554dc386
Sha1:   272b4545b4a2d22bbd6a8cafa98e7e1863984a78
Sha256: 136e93ee84779a65e68347e6d8836fbee2c177f2940846275fa3cc89d5c5b079

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/davinci2/webfonts/OpenSans700.woff HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 20547
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 20676, version 1.0\012- data
Size:   20547
Md5:    e2715a06d41f67a102ad05bed850acec
Sha1:   3f03d5a1e66a49ef7902ad744d7a8400b7988257
Sha256: 1dbe5189546e1979389a270b7df84f6d9312f6fe2d5a177ed3b25e7d473c2acc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/davinci2/webfonts/fa-regular-400.woff HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 18162
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 18156, version 1.0\012- data
Size:   18162
Md5:    577ac00bfa77a421fb1ad2c15dfe8830
Sha1:   d3a0fd1e8ffef5499da1a108f93e151a1af78be9
Sha256: 1e0e57a9dfdca951b5a2bf9212e8b23bbe6deb42b280c874ebf9ba5beb2d931a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2022 06:23:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30908
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30908
Md5:    9640915738503451aa21181699feab5b
Sha1:   c053eaf36ef0da96619706b3abda326305063bd6
Sha256: f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2022 06:23:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4169
Md5:    5629711d7fdd5b28441bac39b851299f
Sha1:   4e0bf2b7383097f7c352023a1b1b1b48a50356b6
Sha256: 44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11787
Expires: Tue, 20 Sep 2022 16:11:10 GMT
Date: Tue, 20 Sep 2022 12:54:43 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11787
Expires: Tue, 20 Sep 2022 16:11:10 GMT
Date: Tue, 20 Sep 2022 12:54:43 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.8.2 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:20:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3244
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1571)
Size:   3244
Md5:    967b1fb5314d24ef7f24fcb9c90e7013
Sha1:   e971e58ebd738600b27b966ded6dab8733f22339
Sha256: c8d80ecc14430de7c5fd23d9abab5f71a62eb506344da0e1882845478d6eec50

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/davinci2/webfonts/fa-brands-400.woff HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 74928, version 1.0\012- data
Size:   74954
Md5:    e55fec690953cb3865fb7bbafec89f5d
Sha1:   8289571333208a9dff4337794b99262742270823
Sha256: eff5d51ccda597b2360488a760bd6e86a112a9fbd0bec123586cb66795867950

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7sCevVX1nGXxZxnrXSURjUcap1a7vCZwrMMIXfzcBPR1srMxJHLGUg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:07:05 GMT
age: 53258
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11832
Md5:    2ed7323b395e757f7766ea0045efdaca
Sha1:   8b91bc3069a3217bc719c27959d578b353b5d9dc
Sha256: 8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
                                        
                                            GET /wp-content/plugins/popup-addon-for-ninja-forms/js/magnific-popup.js?ver=6.0.2 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:22:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6173
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (16626)
Size:   6173
Md5:    9468fb45f9fe1e0d667c7615dd213ba8
Sha1:   18664a7605bed5d8cb509ccf4701a3a07bd4754a
Sha256: 794d1498e1d117fabe89f4e44f486f7263db13dad2f300ae4c22def881381430

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/davinci2/webfonts/fa-solid-900.woff HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 80484, version 1.0\012- data
Size:   80503
Md5:    b2593bee5f4c4abf122b9ac499c1fbc4
Sha1:   01729ec96929cc56960903b116910c49bb8b855d
Sha256: 0bdd47e13c9544378e9798a19ad8f2c0ecba49be367c96d2e87e1d34a5fa6d7d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9865
x-amzn-requestid: 7eeeff5b-cb13-4060-96a6-bf5a4be57331
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugokGQVoAMFXmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e169-4211dbbe1a22d0255a45aff0;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zDPKSOJ7SJImKcluUMhGvVMHv4t2oKLD2AJfGKAFSfedsdSA4VgZ_g==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:02:56 GMT
etag: "b8484fb5443344b03e52dd56b1d6c5682eb6221a"
age: 53507
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9865
Md5:    1a7d863845e96c5927e812f325c08c16
Sha1:   b8484fb5443344b03e52dd56b1d6c5682eb6221a
Sha256: fcb382029332a44deaf212298b618074a752d674d0c735a1b8b861ab4bb6ff0f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y3urrVdjZEds_DKf3yL2XfaOy-5UPBwU-YVWe5eKYsDpl3JPmqffsw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:23:30 GMT
age: 52273
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9543
Md5:    30fbdfee7ec4513a5ff3dfcb7282f816
Sha1:   a852edb64a7220532aa619ab2a440c3a7e11b97a
Sha256: 4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7358
x-amzn-requestid: 88cc5413-2f66-4dc6-b20d-57dd16e77e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugqUHZIoAMFd3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e175-7357c2251f4434bc4686f9ed;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tqQuwCb5au2yf-m5wbZyUdOh7VEnYzxCk19p2IlH0vHCFx9Lkhu6lw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:00:04 GMT
age: 53679
etag: "4188174bf6e595335f784d2bf9c90db57294b2fc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7358
Md5:    49ffb7cd4c40b37f5b61c1fd86ee36ec
Sha1:   4188174bf6e595335f784d2bf9c90db57294b2fc
Sha256: 5af29dbb676f5a38288e73e9ca4feada901ccfb06385110ca0a46a4970532d32
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9873
x-amzn-requestid: 7171299f-e6e3-40ef-a292-33779346e1ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI-FDIIAMF-xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-31f9413434a6b00e77e7709b;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: evL3aL1ULo6B2a8Rp6iILKCX7F14O9HMSbEqkEY3XHFhmMptE8FaVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:50:04 GMT
age: 54279
etag: "0e14f5062e40ce94346494ff947bfcf74b5e88c1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9873
Md5:    7ca0c1a7f205ad07f1cce80b26448873
Sha1:   0e14f5062e40ce94346494ff947bfcf74b5e88c1
Sha256: ebc960279032671136749823c126ec807334d9eaf2b019abcc63b41bcdbf4a7f
                                        
                                            GET /wp-content/plugins/popup-addon-for-ninja-forms/js/nf-popups.js?ver=6.0.2 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:22:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1124
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1124
Md5:    fc7ef63853ab7bda0748fa5dd631d86d
Sha1:   ee79c96933412f59a68bc0da1e8c9580582cddd6
Sha256: 14390c540387a752dc3d3891e14353deabdd7bd6d5a9c6795487d263c8214bf2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/sale-alert//assets/frontend/js/jquery.cookie.js?ver=2.0.0 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Thu, 26 Dec 2019 19:57:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1442
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1442
Md5:    f25dc7e125f7cb1d42dd7ccf4ee990ff
Sha1:   7ce1c18559c91cd44321031ff064552a6c1c631b
Sha256: 232ecb6a4e459eec3d1184b99db82febac9478599e91d42ba443452fc60eb8b2
                                        
                                            GET /wp-content/plugins/sale-alert//assets/frontend/js/jquery.playSound.js?ver=2.0.0 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Thu, 26 Dec 2019 19:57:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 443
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   443
Md5:    35135ce222e59336b96cd170cb4aee55
Sha1:   4bfb4197e92443b1c3b969d5740fa8014acedfa5
Sha256: 3e53b510c1fca2fc2bcd5d750bf78f74ed8abc762bec86e06cc8afa5a3947a01
                                        
                                            GET /wp-content/plugins/sale-alert//assets/frontend/js/main.js?ver=2.0.0 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Thu, 26 Dec 2019 19:57:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1595
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1595
Md5:    f7df6a30248edddd256d553dded4938c
Sha1:   0c6b44bb7c5a6c2ecf602938b5de5cde81869255
Sha256: 66a5b446e06585bb763eb3aaa11d85d95d34adfcc6d7d85e9d5f17355d80a6b5
                                        
                                            GET /wp-content/themes/davinci2/adstm/customization/style.css?ver=4.7 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 12:54:42 GMT
Accept-Ranges: bytes
Content-Length: 0
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2022 06:23:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 11681
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   11681
Md5:    e5548800176e913a9084f47a3e1e04f6
Sha1:   eff4604acc5c26ae82a19188de2f98bf5b79d80c
Sha256: a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:20:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 972
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   972
Md5:    8bf268dfcca7cb20719b7ea14373ef4a
Sha1:   58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
Sha256: eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
                                        
                                            GET /wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=5.4.11 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:20:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 769
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   769
Md5:    2d562f04002ba45d7676264f8a47a9e7
Sha1:   3dd568ef4b039bd30d546c305983021e05acdb1f
Sha256: e596318605ededbaf90b4a9429b37a14855dda62f87fe8b55881ff64aa890808
                                        
                                            GET /wp-content/plugins/erp/modules/crm/assets/css/erp-subscription-form.css?ver=1.11.1 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:23:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 540
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   540
Md5:    9a4a357536eec063ec1628d20ec46ad5
Sha1:   b1058d22612335da09e79de19ac12d98d9ef7621
Sha256: 456586d2af2c98b17ca60e5f74b42037a5c0b13ae4255031f6ae33faa6a797b5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/popup-addon-for-ninja-forms/css/animations.css?ver=6.0.2 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:43 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:22:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2621
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (16755)
Size:   2621
Md5:    f33cff0ba0b03380f6b6c50146faf5ee
Sha1:   77c05a2304724273f1145f3dfc660f59fa5d17eb
Sha256: 427029b71729b61a7369a51140e9141a75403e2f5d1cb12f3ccde0384bc41418

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10894
x-amzn-requestid: 257316b9-2da7-4b43-a8b3-d89c088de1ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbsFXFpzoAMFkpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63215a22-6f365f587f25845668bf59b7;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 04:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LSbWIJN46uVGRdFSejE3rNtq5549StAmO0mQiKOjUED62cVh5ddd9Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 11:47:48 GMT
age: 67132
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10894
Md5:    d3e70b2859ca89b353682d03f6b46b93
Sha1:   ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
Sha256: 43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b
                                        
                                            GET /wp-content/plugins/popup-addon-for-ninja-forms/css/magnific-popup.css?ver=6.0.2 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:22:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1803
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1803
Md5:    17557547a7a83c38830df713a106b358
Sha1:   9b6c906c2e68f8c0e56eb4c8c774c5753ba360f4
Sha256: 8581a57355656fb668a374c28b3476b8e6041c3d9e36cc49fae997adc799b8f3
                                        
                                            GET /wp-content/plugins/sale-alert//assets/frontend/css/style.css?ver=6.0.2 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Thu, 26 Dec 2019 19:57:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 805
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   805
Md5:    ddb281fcd50d64585dd22a667d6fed34
Sha1:   22b50704ccabc6b5671a20d662bc3266807c368e
Sha256: fc393a08cd6caf612b37b3fb168c178740685be94bcd65ac94a972adea1c6341
                                        
                                            GET /wp-content/plugins/alids/assets/front/css/flags.css?ver=1.8.27.14 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:19:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 144
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   144
Md5:    ab0553dc7d4837b2082f2d6d869e84db
Sha1:   20cb0df2c23d79569058582e595dc139e7c4850c
Sha256: c5848e2bf3fb6a0dc1b8f0524dc837e4267e7810b3fd4ccd75ba9d54b7ee5df0
                                        
                                            GET /wp-content/plugins/alids/assets/front/css/shopping_cart.css?ver=1.8.27.14 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:19:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2680
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1022), with CRLF line terminators
Size:   2680
Md5:    17d5d1dbecb0f188e84711a9de65005f
Sha1:   a4ab688646ed6c4cc93bee0a7b552256026c891c
Sha256: 910228704527ec1484d845a100d21a689264ea6ace17222157683ae8aca68d75

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/alids/assets/front/css/search-product.css?ver=1.8.27.14 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:19:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 804
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   804
Md5:    eff6a33e088fc3834287339e35537a38
Sha1:   52ee43c5995c9e0977bfa51a73a39164b1c8e036
Sha256: a8d42a6ef863d36b7dc265713a787cb5c92dc33253c56b921c339db4156bcd8f
                                        
                                            GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.12.2 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:20:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2029
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6020), with no line terminators
Size:   2029
Md5:    760439487c670d81246fec07b784a8a1
Sha1:   b5f429f45bd83bf74aa98a54608cc51f7e2f8605
Sha256: f6e5d9ec91315c7742d08556b4271b998da79a278307a7dfc2ede0b2b15a86e9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:20:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2914
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (9680), with no line terminators
Size:   2914
Md5:    7c2c4ebd10adb73367b5c5f0e1e5d3ce
Sha1:   a67e4fd0e3e7452e74b22517ba924b58307d7758
Sha256: 5244443e699788a134cc77adfc3fd18f03386df5fe49e6c82b057387ba4d0ebd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:20:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3934
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (12211), with no line terminators
Size:   3934
Md5:    7ef755c2700783f9eae63fc539149a18
Sha1:   e57c0c5ceb5e2fbf1aaad44aad6319f8b26b69a1
Sha256: 95c808afbeaf569865125c132b69df4a68bca03fd6b792d38ef9a0e341dbf06b
                                        
                                            GET /wp-content/plugins/erp/modules/crm/assets/js/erp-subscription-form.js?ver=1.11.1 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:23:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 493
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   493
Md5:    88987b0782aa056e72cd351292217cf3
Sha1:   b752e8e195193f8ee8de162411219f17f694ffe6
Sha256: 00e55e5cde8c3f9c19110fdf21655a21a247115e7828e5116a3f28eef76572be
                                        
                                            GET /wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=5.4.11 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:20:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1580
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1580
Md5:    82b2b972a81f9d7cdd89741c78df3b46
Sha1:   1223f8418c2c74106c4d5c596282942a30df73e2
Sha256: 02d832c31eb011c5a047da065dfef21962c427fcff51bf13032e1322834de7db

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.5 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:22:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6337
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (25961)
Size:   6337
Md5:    5e5ce0255bf6a3a91f8daa749ac1550b
Sha1:   daee0c82b00ecc2ad45695f5558daf497007714b
Sha256: fbc9440b2e0d46a3183da57a904780de841786a8a9ff0e2adec3ee4e35786696

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/alids/assets/front/js/popover.js?ver=1.8.27.14 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:19:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3509
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (10866), with CRLF line terminators
Size:   3509
Md5:    cfe9497cac9bc1aa0e37ed5dfb524ef6
Sha1:   c6036cc55df7530bdad013088d849562e0b6fc15
Sha256: ac590589f3aedddd02f64d257d23b6da9f20c558207271c7bdca179eaef2dd18
                                        
                                            GET /wp-content/plugins/alids/assets/front/js/core.min.js?ver=1.8.27.14 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:19:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1092
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2717), with no line terminators
Size:   1092
Md5:    d3554f02ab0b815ec7391806990f8326
Sha1:   db4db0c176b9f3cf35d20fff49b7a28707196ea3
Sha256: fbb97b64b39c9aa31c3b4dc7082d75979850d9cc52b5c0c953df0d6157e2abfa

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/alids/assets/front/js/formatPrice.min.js?ver=1.8.27.14 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:19:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1087
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2202), with no line terminators
Size:   1087
Md5:    e75c9f053695232618674af1a4a9803f
Sha1:   72675fa417ef5aacb28eb26a61c4b783292c1a3e
Sha256: dd118890ad924f80ca5b5a19628aa58df2f39aa5c9446d3c953d0d68483e5fab

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/alids/assets/front/js/currencyPrice.min.js?ver=1.8.27.14 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:19:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 466
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1251), with no line terminators
Size:   466
Md5:    1dd26a5d3a7225fd5156f59ca36231b7
Sha1:   089ed015d547a9b6b67877c9c247381792649605
Sha256: da821859652dd9aeecb3cf6e5505933e0268a6d0c3eb57e1ea916f2e2e062295

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/alids/src/js/handlebars/handlebars.min.js?ver=4.0.5 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:19:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 21084
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32098), with CRLF line terminators
Size:   21084
Md5:    dd2ebf4109413692a7384b365fd71420
Sha1:   4bd4ac8cedc91df4a8e98c1ddc9ef31a2a31342c
Sha256: 96c51405bc2aaf687eca4440101d2ad8489ab1eab53a9dbf0a16aa612969f5fd
                                        
                                            GET /wp-content/plugins/alids/assets/front/js/cart.min.js?ver=1.8.27.14 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:19:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1824
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6509), with no line terminators
Size:   1824
Md5:    bb79735b8aef6cad50f8c5cd4de4bb8c
Sha1:   83051a9cbfce74e03ab03e0e20679f7476acdd19
Sha256: 8929da1dceb1508e3797a91619ed2ed5af3605ff2782ed56250cc2b8cd14916d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/davinci2/assets/js_/allmin.js?ver=1.6.9 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 40515
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   40515
Md5:    73ee641510a9702a1be8a43c4dafe899
Sha1:   dba8128978722ca33fa05117040b95692ab64ea4
Sha256: 63b8db196c9a7ca0fdc7c1e07441b7d9aa1b5dd93526c15f7de0cdca5cb3f2d7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/alids/assets/front/js/search-product.min.js?ver=1.8.27.14 HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:19:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 707
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1537), with no line terminators
Size:   707
Md5:    c5b61edbfbbf46dec0474477fdc71bbf
Sha1:   3774d33ac7a1a115ab492fd8095c20f288c4193f
Sha256: c4d6f3822938c0044ec3b19df5e025b2dd80d655f298a0008685dc26fc777030

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/davinci2/images/404.jpg HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/wp-content/themes/davinci2/style.css?ver=1.6.9
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Content-Length: 83269
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 1920x709, components 3\012- data
Size:   83269
Md5:    407d58ee7c59a5302bb01a30fb5c75c6
Sha1:   471df9cc34ebb4b88195fcd78323e63fc8b05393
Sha256: d65e37319a855a58e9af53d1ad52fb5d3d2f5f19c655c06a952fada252dfa842
                                        
                                            GET /wp-content/uploads/2019/06/Site-Logo-1.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sat, 29 Jun 2019 18:14:11 GMT
Accept-Ranges: bytes
Content-Length: 15388
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 262 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size:   15388
Md5:    cbe59a14084aa54ff4a4389f5153c865
Sha1:   25d79b5c053846ea1001569484f440a729b6c153
Sha256: 936a9152c9baadba694c82d9f6532e1b8dd026f9e478505d24a1707e447856fc
                                        
                                            GET /wp-content/themes/davinci2/images/f1.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Content-Length: 1371
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 94 x 64, 8-bit colormap, non-interlaced\012- data
Size:   1371
Md5:    895d335c329b8f99d18161fe84913416
Sha1:   abc6215ccb8abe8087dcae7d17907ae655b91e36
Sha256: fa8602354262206b5a3c6558116a64782136c745a61e3d813b689113b4aa887a
                                        
                                            GET /wp-content/themes/davinci2/images/f2.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Content-Length: 1160
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 94 x 64, 8-bit colormap, non-interlaced\012- data
Size:   1160
Md5:    481b3f4d395beb8a7fb75cf8dcc9211f
Sha1:   7bee9fd00d7253472549ec3912344e777316c338
Sha256: 4f665ba06f046da12a90a9d40d49278c21ec924d58f5b552203617c2365bf146
                                        
                                            GET /wp-content/themes/davinci2/images/f3.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Content-Length: 1164
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 94 x 64, 8-bit colormap, non-interlaced\012- data
Size:   1164
Md5:    e36d96b3bc57daefcd5cf93702adc77c
Sha1:   5760071874d181a2264d1b15b8a75fd29aece5d6
Sha256: 86186ae2b77e30bfbf640c12e76ee48717e4e4ebbd23ece0c7f9ad8726972697
                                        
                                            GET /wp-content/themes/davinci2/images/f4.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Content-Length: 2636
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 94 x 64, 8-bit colormap, non-interlaced\012- data
Size:   2636
Md5:    9378037e45d4183e681570f2541f9e26
Sha1:   f3e00080e56a96bce08fdb706377a4d3274bd7fd
Sha256: a57c21631491f32ddb1923e8e39c302597b9adc2a91da3abd533a41cf82c7d60
                                        
                                            GET /wp-content/themes/davinci2/images/f9.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Content-Length: 2360
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 94 x 64, 8-bit colormap, non-interlaced\012- data
Size:   2360
Md5:    3df7f61312d6577cfb09c5bdcf006cee
Sha1:   428138267c7670ce0b0e03bee57d1f0bb0cb6230
Sha256: 388e55d550be71840f5b343cef875604b92a84cc586d15a7b019314e71900c8a
                                        
                                            GET /wp-content/themes/davinci2/images/f8.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Content-Length: 3155
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 94 x 64, 8-bit colormap, non-interlaced\012- data
Size:   3155
Md5:    eba75ece1120034cdd593e87f96cf363
Sha1:   d067a6fdfba03d29ddc3e6217335d9c6b2d138ce
Sha256: 3a38f74b8ba9c5d927d9d0b27297ae423a478c99698ee4406e4b2e82b2a7a7dc
                                        
                                            GET /wp-content/themes/davinci2/images/f5.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Content-Length: 2202
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 128 x 64, 8-bit colormap, non-interlaced\012- data
Size:   2202
Md5:    19ff42a61eba491ad58e10d30fe1ff77
Sha1:   4e35ba2cbf0fd445e482eb477067565fedc9292f
Sha256: 32b23aff1c89637fa988c4183f2d2f40e1c182c644fd48b58eb41e7c0f229a04
                                        
                                            GET /wp-content/themes/davinci2/images/f6.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Content-Length: 1128
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 124 x 64, 8-bit colormap, non-interlaced\012- data
Size:   1128
Md5:    17f0e2a467b953ff4e0ff556ce116b18
Sha1:   b1eddb0d7bee9e118eb57c86c0385d4699f9ed0d
Sha256: cb7d8a964fe259c969f93c59138a25e860f04e9671d5f9fda4b68afc2eb8cfc9
                                        
                                            GET /wp-content/themes/davinci2/images/f7.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2022 10:17:33 GMT
Accept-Ranges: bytes
Content-Length: 2721
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 124 x 64, 8-bit colormap, non-interlaced\012- data
Size:   2721
Md5:    2c0b06c093c7b65a506521e5fe20f22c
Sha1:   593fb9d38d7ce00988c18165c5cc2f8ab85965c4
Sha256: 9b376aa4811d78461c7c03886dfc13286c8283e1a8f79db526c386f73f9cd4ee
                                        
                                            POST /wp-admin/admin-ajax.php HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://superglobalmall.net
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Access-Control-Allow-Origin: https://superglobalmall.net
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 217
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   217
Md5:    1392d26809f526d79a07fa163c92c67f
Sha1:   48ae88d4ed62d6325ca0c2b83dcc979314d5bb43
Sha256: 1a3c123f28968f9d77b83e30eb39ed70e45d7af489c63204e5056f12bd4c6201

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 20 Sep 2022 12:41:12 GMT
expires: Tue, 20 Sep 2022 14:41:12 GMT
cache-control: public, max-age=7200
age: 813
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://superglobalmall.net
Connection: keep-alive
Referer: https://superglobalmall.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
age: 544636
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (581)
Size:   157726
Md5:    6519c7c04cf32a57b1c5ee45a73c233e
Sha1:   4939bb921988e9eb13780cc2244f3099776e9bfb
Sha256: 8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 12:54:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2020/06/Super-mall-FIVICON-TRANS1-50x50.jpg HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Tue, 20 Sep 2022 12:54:45 GMT
Server: Apache
Last-Modified: Thu, 11 Jun 2020 04:46:12 GMT
Accept-Ranges: bytes
Content-Length: 1209
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size:   1209
Md5:    1bf20d2c9ff6c9464e157ebf898df669
Sha1:   cccb1b94e5598f29bbe97201e43538b7ee3bdd02
Sha256: a1fcc9d56f7742d82b28e68845b9db46c3445f03d2d0f19b200bbbf4d218217c
                                        
                                            GET /wp-content/uploads/2020/06/Super-mall-FIVICON-TRANS1.bmp HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/bmp
                                        
Date: Tue, 20 Sep 2022 12:54:45 GMT
Server: Apache
Last-Modified: Thu, 11 Jun 2020 04:46:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5596
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  PC bitmap, Windows 3.x format, 127 x 90 x 24, image size 34560, resolution 3780 x 3780 px/m, cbSize 34614, bits offset 54\012- data
Size:   5596
Md5:    352e87e94bb9266c965d3147f0ded242
Sha1:   e6c0a5fa44b0c9d7d6b5961ffeaf82682ccd4f3e
Sha256: cc8fd09db0ced124d5c34a9a2cc5aca405aaf53b26da4c55a8ec0bab825e2959

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/alids/assets/img/flags/png/US.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:45 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 17:19:39 GMT
Accept-Ranges: bytes
Content-Length: 444
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 22 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   444
Md5:    678b340cdb6caeea909c136e0edce7f0
Sha1:   c86ebc345d1c91ccfddd4cc5cbb6257aea0cb414
Sha256: 63f63ff2f6866d673d3d3b88cc230cb16a10606de31b1e161eb84daa898af428
                                        
                                            POST /wp-admin/admin-ajax.php HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 34
Origin: https://superglobalmall.net
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 20 Sep 2022 12:54:44 GMT
Server: Apache
Access-Control-Allow-Origin: https://superglobalmall.net
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 382
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- HTML document, ASCII text, with very long lines (1328), with no line terminators
Size:   382
Md5:    a72e26afae4ccdf0e1b033a6b568da3c
Sha1:   589b5f2caa9e5b96be5d9ec324c0a5fe2afd9f78
Sha256: f19a0ca0aa17a09b836a2a8f934ba8254ef794fab5c085a9199a4164e1c62d89

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /wp-admin/admin-ajax.php HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 58
Origin: https://superglobalmall.net
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Tue, 20 Sep 2022 12:54:45 GMT
Server: Apache
Access-Control-Allow-Origin: https://superglobalmall.net
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 243
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (452), with no line terminators
Size:   243
Md5:    f359f54bc4e92d6c8befcdf262dd1008
Sha1:   d69eb2d868c3355c4eb5efc0ce2d4da2415e7b37
Sha256: 24ca9401b6b655673f132e29c4fa32ead9077c79e614598fe37aa2b3a82b239d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /tr/?id=317009515871787&ev=PageView&dl=https%3A%2F%2Fsuperglobalmall.net%2F.well-known%2Fonlinebk%2Ftorsion%2Findex.php&rl=&if=false&ts=1663678485704&sw=1280&sh=1024&v=2.9.83&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.1.1663678485704.1427418778&it=1663678485372&coo=false&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         157.240.200.35
HTTP/2 200 OK
content-type: image/gif
                                        
date: Tue, 20 Sep 2022 12:54:45 GMT
expires: Tue, 20 Sep 2022 12:54:45 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   44
Md5:    b798f4ce7359fd815df4bdf76503b295
Sha1:   f8cc6addf1707ad236ad9970b0a48f9733d07da5
Sha256: 10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
                                        
                                            POST /wp-admin/admin-ajax.php HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 29
Origin: https://superglobalmall.net
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b; _ga=GA1.2.985884693.1663678485; _gid=GA1.2.948432221.1663678485; _gat_gtag_UA_143048625_1=1; _fbp=fb.1.1663678485704.1427418778
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 20 Sep 2022 12:54:48 GMT
Server: Apache
Access-Control-Allow-Origin: https://superglobalmall.net
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 326
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   326
Md5:    394d6033f776d7f15a0b8e0f8422ba66
Sha1:   78846ef66e09e6e65e1ec8d7f22f700a0ca47328
Sha256: 08c908cf7d0a78be37e99ed4536699b83e66e6570987f04c37d0fe661f906926

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/sale-alert//assets/close-icon.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b; _ga=GA1.2.985884693.1663678485; _gid=GA1.2.948432221.1663678485; _gat_gtag_UA_143048625_1=1; _fbp=fb.1.1663678485704.1427418778
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:49 GMT
Server: Apache
Last-Modified: Thu, 26 Dec 2019 19:57:06 GMT
Accept-Ranges: bytes
Content-Length: 10503
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Size:   10503
Md5:    55ad1696367073a56dc08c960c67dfae
Sha1:   9b2f153c0e3c88bd75d83fee5fcc19b9a566199c
Sha256: 353f9373bc699b6c5a7ae643816d495557990f20a6e9f518031311ad36fb85b1
                                        
                                            GET /wp-content/uploads/2020/01/images.png HTTP/1.1 
Host: superglobalmall.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://superglobalmall.net/.well-known/onlinebk/torsion/index.php
Cookie: ads_session_d65e8c0b02765f4866884b6809442722=558ecec064cbfde33298378af9e4c6ce%7C%7C1663851282%7C%7C1663847682%7C%7C4c59085b42310b063377ecfce1e48903; PHPSESSID=83597f61a42ec555b5494e8a3cd8436b; _ga=GA1.2.985884693.1663678485; _gid=GA1.2.948432221.1663678485; _gat_gtag_UA_143048625_1=1; _fbp=fb.1.1663678485704.1427418778
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         162.0.239.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 12:54:49 GMT
Server: Apache
Last-Modified: Wed, 01 Jan 2020 01:54:22 GMT
Accept-Ranges: bytes
Content-Length: 7979
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 229 x 220, 8-bit colormap, non-interlaced\012- data
Size:   7979
Md5:    fcb1d163cefebfe052b798290d27b620
Sha1:   57aef04f2e22d6fec20d6a727139c8e11a42dc1a
Sha256: 1affa2ca8d652dfba0183790c2967f465782baa73d01e7860b0c9b6929c27c11