firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 6223248c33009fd48ef053d1ba379132
bb14f9500425f64883101297baeda1a69ca65fb2
4db22da1db8573be87bd7cf4fb98dd69a47e4938c0e81cb21f015c5a9d485c6f
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Content-Type, Backoff, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 25 Oct 2022 02:53:05 GMT
Expires: Tue, 25 Oct 2022 03:35:17 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XncdrMCWJ6FE_MHeqHQK_zjKbO9g3tHXCR0CfptxJe-zRysOuPlzIw==
Age: 3130
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b3537658770790ad6cf0d727f0c0acd2
8365cadda05ef27b2ebd627d545e31886b512bde
df992311f130f15459739841de925c7eec2604d5a68ca6b2a67b6dc8d229212c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF992311F130F15459739841DE925C7EEC2604D5A68CA6B2A67B6DC8D229212C"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15770
Expires: Tue, 25 Oct 2022 08:08:06 GMT
Date: Tue, 25 Oct 2022 03:45:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a39eea1096852891690eaee02a64383e
c273000f799fc3676e8e3ef3617611a31252cffc
d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4445
Expires: Tue, 25 Oct 2022 04:59:21 GMT
Date: Tue, 25 Oct 2022 03:45:16 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: f5SHfy+RkYyVF2vc9feBbKXxqDGoJV5eZlCln9jXdKxTk49rWj3KAnBVZWYA5fLTGBM8dQp38hM=
x-amz-request-id: X2GV90D1KFMRCWJV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 25 Oct 2022 03:08:46 GMT
age: 2190
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 03:45:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
freshfoods.co.zw/
139.99.139.228301 Moved Permanently 237 B IP 139.99.139.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3cc87c5efab95d67818acbf8b0427591
9168fd97b64004a078609b4f78dc6c62d0dae24c
3bca3ff6564b38c179d11d1a0d3bd519570a7138da46ffc14db32e88c0d630ac
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 25 Oct 2022 03:45:16 GMT
Server: Apache
Location: https://www.freshfoods.co.zw/
Content-Length: 237
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 25 Oct 2022 03:33:32 GMT
Cache-Control: max-age=3600
Expires: Tue, 25 Oct 2022 04:02:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mH19ltRXqw756V20de6kGtdhoelCbsgRdc0PREVvBup6I5wyRNJ_Dg==
Age: 704
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7c6fdc8e76ef5875b5c965ade2df503e
45d548aa2a9d7ede163743274790700878eaea62
d2ff6eacd48af4892a2642e5d7bb925ca683062139f5a5cb4047f6f706830618
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5188
Cache-Control: max-age=107277
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 03:45:16 GMT
Etag: "63564795-1d7"
Expires: Wed, 26 Oct 2022 09:33:13 GMT
Last-Modified: Mon, 24 Oct 2022 08:06:45 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.80.175.197101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.80.175.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: r8Uq3+iRNqKLb4Jyr/66Vw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Z5MwCZtNaWucdXkzbc9so2CTw+o=
www.freshfoods.co.zw/
139.99.139.228301 Moved Permanently 0 B IP 139.99.139.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: www.freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Tue, 25 Oct 2022 03:45:17 GMT
Server: Apache
X-Redirect-By: WordPress
Location: https://freshfoods.co.zw/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3122
Expires: Tue, 25 Oct 2022 04:37:20 GMT
Date: Tue, 25 Oct 2022 03:45:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3122
Expires: Tue, 25 Oct 2022 04:37:20 GMT
Date: Tue, 25 Oct 2022 03:45:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3122
Expires: Tue, 25 Oct 2022 04:37:20 GMT
Date: Tue, 25 Oct 2022 03:45:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3122
Expires: Tue, 25 Oct 2022 04:37:20 GMT
Date: Tue, 25 Oct 2022 03:45:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3122
Expires: Tue, 25 Oct 2022 04:37:20 GMT
Date: Tue, 25 Oct 2022 03:45:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6eadd02-82a9-458e-b8d3-f041a56839a4.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6eadd02-82a9-458e-b8d3-f041a56839a4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ec34a7d27444babd061049b1a32de5a
5775ff144eb9b5ceeb1200c24c9956a45053bb21
a52f9c07e3597ae4dac702768837e08f91e6626b94916e08bae17316ce46836a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6eadd02-82a9-458e-b8d3-f041a56839a4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11097
x-amzn-requestid: 34a89d7d-39d2-4abf-bddf-680414f91ae4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ah3FCHZ9IAMFVFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63570553-2080e4f8445b1e312256afab;Sampled=0
x-amzn-remapped-date: Mon, 24 Oct 2022 21:36:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mMIhk3TXq9yHVruCigY42KLgkMlYnAbfhxKsIdBGAreSlLmxKS3_KQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 22:42:54 GMT
age: 18144
etag: "5775ff144eb9b5ceeb1200c24c9956a45053bb21"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33fda234-9118-4b4b-86d9-02c36810eda5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33fda234-9118-4b4b-86d9-02c36810eda5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b949df0edd9d64aa962e3bf4b267889e
3ef04f8c638dddf8bb8b70aae74770892307c814
e6c42bdd84bc9661c25a201599c29257b843d86d638ec479e7b5fa7bf81bc961
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33fda234-9118-4b4b-86d9-02c36810eda5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11622
x-amzn-requestid: 2d6c3eb8-6a67-40bb-b970-a92caf783a4f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aYPSZFWpoAMFU1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63532c0f-14a2cd9f68bda5a01a765a2d;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 23:32:31 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _AwDcPb8X7mPlOseeJZxw4kaQsR4d_HDyqEUM7I4RfurX2iDap87YA==
via: 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 04:01:00 GMT
age: 85458
etag: "3ef04f8c638dddf8bb8b70aae74770892307c814"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf8cfe72-ca76-42ae-a95f-b33a2edb91b3.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf8cfe72-ca76-42ae-a95f-b33a2edb91b3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 80bab61eeda285e378b86b3efc4f87f9
5c690531e195332c04092ce22e7bdcecccc3c9d5
0c4dec046835501b598b5165acd592c3baeb2d6e21b6ac5fd549e790a802cd02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf8cfe72-ca76-42ae-a95f-b33a2edb91b3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7977
x-amzn-requestid: 3e217877-33a2-4efc-a21f-b75764a8ced9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ah3FWGRooAMFagw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63570555-2bc77cb653ef022b4aab7f71;Sampled=0
x-amzn-remapped-date: Mon, 24 Oct 2022 21:36:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H9SrkX9dE_JU-7hTyxvpc7a2fQNo_WaeSxT5r3P63tu28yjFahtnXQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 21:42:39 GMT
age: 21759
etag: "5c690531e195332c04092ce22e7bdcecccc3c9d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdaf6e77-1767-457b-be73-df8fbb3ea07a.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdaf6e77-1767-457b-be73-df8fbb3ea07a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 983b88b39042346cc10240d3db282ea4
bd6f82a917f5f4c9c86bfad52ddb137d1e648851
14bb4ea6ee7d95a5391ce82eb2473fbe250577a263e25a7348cda56a4ca218f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdaf6e77-1767-457b-be73-df8fbb3ea07a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14822
x-amzn-requestid: 9733fc7a-015f-4404-a314-962cf28b32b5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: agBzWGJtIAMFe8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635649ae-176dc0d327375f5b30a7704e;Sampled=0
x-amzn-remapped-date: Mon, 24 Oct 2022 08:15:42 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qoEEEJKD1Rx1XiER9MI435Bwq7V-aosE8kO0B0-lr4vnPD3SSEjqkg==
via: 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 21:42:38 GMT
age: 21760
etag: "bd6f82a917f5f4c9c86bfad52ddb137d1e648851"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f505e74-07f3-4154-bfa4-5dfc184b8262.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f505e74-07f3-4154-bfa4-5dfc184b8262.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 01dacddfb62128799a20e0541bf5a18c
1bb8047c270b76c9dfcd8dba4a63b25c7604f03d
65f5c51b84ff7a131a3a695142ae9d82a73a516792abdd2d137714a1a3cf3bb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f505e74-07f3-4154-bfa4-5dfc184b8262.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7361
x-amzn-requestid: e0f20463-79ba-4eec-b7f5-adbe39995a00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aYvMsGpjIAMFyIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63535f1d-79afe3a37142b5743a499e36;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 03:10:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QxySJ74mvhz9JJK3s-uBK87yNZE4DRbrMann1Kfu8Rk3W_tsNeKTdg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 04:24:34 GMT
age: 84044
etag: "1bb8047c270b76c9dfcd8dba4a63b25c7604f03d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F075a794f-9140-4676-afb2-493f44932cc3.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F075a794f-9140-4676-afb2-493f44932cc3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3cf322f19151bcfa374c2e32b9ac986f
e8e69ac951def18bc1e03ecd4fe8a21d3b825b27
54ddfd1876f65e264b9b3209a0e805a3796013b4aacc8e9fd20b49754b4917a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F075a794f-9140-4676-afb2-493f44932cc3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4206
x-amzn-requestid: 6b02f96a-ea03-4eff-acde-c73925260102
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ah3E3GPQoAMFpIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63570552-77cf762d0e54f1f60efe52c3;Sampled=0
x-amzn-remapped-date: Mon, 24 Oct 2022 21:36:18 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jcuTYNKiYp8BkDnzo34tidRVmcFlE_xDfPGGgrUKfR67IfwGjFxceA==
via: 1.1 fec77e486350d1bd33f526a760d8b5a4.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 21:42:36 GMT
age: 21762
etag: "e8e69ac951def18bc1e03ecd4fe8a21d3b825b27"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d114ab00b1cfe7f9b4f56c7b3655b55d
641e580d6148329b0c9eb2d49f5f8a30c08f30e9
e5420e919b2c05c148179c7d85a210941be6862b1f65ccfafcfc38d960bf38d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 03:45:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d114ab00b1cfe7f9b4f56c7b3655b55d
641e580d6148329b0c9eb2d49f5f8a30c08f30e9
e5420e919b2c05c148179c7d85a210941be6862b1f65ccfafcfc38d960bf38d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 03:45:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
freshfoods.co.zw/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=2.9.2
139.99.139.228200 OK 17 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=2.9.2
IP 139.99.139.228:0
File type ASCII text, with very long lines (16845), with no line terminators
Hash 02bacbad1e26f0b3d1772d4cf5a047dc
89292741d360f7eb3319437cd32a80ea7b388941
df15236d4098113e3479fc540a9bd1046ca6029f5508098e9c4245a0e12fab05
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=2.9.2 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:19 GMT
Server: Apache
Last-Modified: Tue, 20 Jul 2021 21:41:54 GMT
Accept-Ranges: bytes
Content-Length: 16845
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/
139.99.139.228200 OK 152 kB IP 139.99.139.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1835), with CRLF, LF line terminators
Size 152 kB (152458 bytes)
Hash eb879c78a64af6ad992996a590da7cb4
2aa48c47992aa74bfe641198dfc38021741178f4
bd69fcb6e8ef7cbc9707393b9381cead3833be60bd272808c27d16d597634d4d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:18 GMT
Server: Apache
Link: <https://freshfoods.co.zw/index.php?rest_route=/>; rel="https://api.w.org/", <https://freshfoods.co.zw/>; rel=shortlink
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
freshfoods.co.zw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style-legacy.css?ver=5.3.3
139.99.139.228404 Not Found 315 B URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style-legacy.css?ver=5.3.3
IP 139.99.139.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style-legacy.css?ver=5.3.3 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Tue, 25 Oct 2022 03:45:19 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
freshfoods.co.zw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style-legacy.css?ver=5.3.3
139.99.139.228404 Not Found 315 B URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style-legacy.css?ver=5.3.3
IP 139.99.139.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style-legacy.css?ver=5.3.3 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Tue, 25 Oct 2022 03:45:19 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
139.99.139.228200 OK 2.6 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (2630), with no line terminators
Hash eade318fbed91c096467dffa56406638
69d306a2097e792f99c80a5e0bb8863260399cad
d589803f3ab380582ab137b22493c2bacaa92424fa88cee212e80288cac11fbb
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:19 GMT
Server: Apache
Last-Modified: Sat, 19 Jun 2021 01:31:43 GMT
Accept-Ranges: bytes
Content-Length: 2630
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
139.99.139.228200 OK 15 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP 139.99.139.228:0
File type Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Hash 157f18464a93eab7fb62a7f3e618ac2c
f47727e80d529d6e4941fea32f2e8a8ee5008b8a
9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Sat, 19 Jun 2021 01:31:44 GMT
Accept-Ranges: bytes
Content-Length: 14927
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-includes/css/dist/block-library/style.min.css?ver=5.2.17
139.99.139.228200 OK 29 kB URL HTTP/1.1 freshfoods.co.zw/wp-includes/css/dist/block-library/style.min.css?ver=5.2.17
IP 139.99.139.228:0
File type ASCII text, with very long lines (29271), with no line terminators
Hash 80abe0410c6640e58fc1e18516c6602f
34234c0fa85de9bc2497ab84d3ae3e3355207fec
857c89b90bea6b75f04b6cc7b659594ea58b72724f1c6dde3955c958d4627245
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.2.17 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:19 GMT
Server: Apache
Last-Modified: Sat, 24 Jul 2021 10:03:10 GMT
Accept-Ranges: bytes
Content-Length: 29271
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.5.3
139.99.139.228200 OK 4.5 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.5.3
IP 139.99.139.228:0
File type ASCII text, with very long lines (4534), with no line terminators
Hash 06e010d759ee26e5507ccddd9fd1fa1e
0795c2169c636a8fd0fd2bd5f61e8be56ca337f2
b19dbcfc345c29786776f770b767550824e59dbccbf801c1e4fd0ae3f9cba4b2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.5.3 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 20:44:24 GMT
Accept-Ranges: bytes
Content-Length: 4534
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/js/jquery.shuffle.min.js?ver=3.0.0
139.99.139.228200 OK 13 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/jquery.shuffle.min.js?ver=3.0.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (12821)
Hash 54fcfddd4e512c1b92cd0b5486e6ca8f
ffb953e2d036ff0d72aeaac3d8b8587358fc4b3f
6592712c1dfa4fcf94be74b77fa551283c7678cb939b11553e06e69f41dcb024
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/jquery.shuffle.min.js?ver=3.0.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:42 GMT
Accept-Ranges: bytes
Content-Length: 13005
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/js/jquery.countdown.min.js?ver=2.0.4
139.99.139.228200 OK 4.6 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/jquery.countdown.min.js?ver=2.0.4
IP 139.99.139.228:0
File type ASCII text, with very long lines (3349)
Hash f67da8ef1bb72583a9be2d03590e071d
08eb3f24f36d538f11bd6fa97ab72767f369c44d
96cfb196db175fd802227935d2e58a6c25b6783ac42adb85782bc986fe3fde82
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/jquery.countdown.min.js?ver=2.0.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:43 GMT
Accept-Ranges: bytes
Content-Length: 4552
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
139.99.139.228200 OK 22 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP 139.99.139.228:0
File type HTML document, ASCII text, with very long lines (21571), with no line terminators
Hash df014e8aea0c4f0977ca529123322095
ba558b1415825a597ce46352f3c9a1eac8487cc8
fa672ad28fb96bb2f8a5a3e0078564b3950b221c3def0f5fc88cc6cc2871b719
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 02:57:38 GMT
Accept-Ranges: bytes
Content-Length: 21571
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.0.23
139.99.139.228200 OK 24 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.0.23
IP 139.99.139.228:0
File type HTML document, ASCII text, with very long lines (24059), with no line terminators
Hash 8d8f4e2ace4c179e7d0049fbba55b0a0
3dcd55349d73ba42ce75f06cba81b23d601ca12c
3a3fe80fe7e855544570d4f5844b8805a746bc648624c5ea7e8abb07c7c64ffc
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.0.23 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Sat, 19 Jun 2021 01:31:44 GMT
Accept-Ranges: bytes
Content-Length: 24059
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
139.99.139.228200 OK 31 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (30441)
Hash d3ec229e04c8634c88cc4cb3f2934c11
785cb4beecaad98329fff0a54f9a5536cda200ab
73835f9dd494931cd0562ab2d4db8aaf3d54dca375abade1794ad1a12ae0d97c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Sat, 19 Jun 2021 01:31:43 GMT
Accept-Ranges: bytes
Content-Length: 30603
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.6.0
139.99.139.228200 OK 275 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.6.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (65358)
Size 275 kB (274869 bytes)
Hash 7ce23df41f0df13d8aa07058990195e6
c01b09e729d3e094c91a9baa9a6e4a3c2df4f8dc
dac931a95dbb1bd18a6440cae735af9d8c52b383d426379c3bd9520ce375421d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.6.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:39:50 GMT
Accept-Ranges: bytes
Content-Length: 274869
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
139.99.139.228200 OK 9.4 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
IP 139.99.139.228:0
File type ASCII text, with very long lines (9437), with no line terminators
Hash fe6f7681b3418899883937e379005ee0
68d977eabc937edebb3de3dd45992177cbaf3470
c9dd590b56729b6eb692c64c1d530adbddbf39f72cb437e3280fd00de8c7d354
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 02:57:39 GMT
Accept-Ranges: bytes
Content-Length: 9437
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2
139.99.139.228200 OK 2.6 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2
IP 139.99.139.228:0
Hash 76e12144b6be9bc0a17dd880c5566156
c57db768b452aea923a2b083162e9e6ffb98d2f8
070edfef42e0980783d0acf8fa9ca6a9833b994eca13ffaa94e9a2deb47c92cf
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 08:43:59 GMT
Accept-Ranges: bytes
Content-Length: 2640
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.5.4
139.99.139.228200 OK 18 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.5.4
IP 139.99.139.228:0
File type Unicode text, UTF-8 text, with very long lines (17923), with no line terminators
Hash 1cbcc9e85ba99c007f519bf1a67feb58
82d238c9b2a1797c0ad785c01309c49dc1f302af
48052f6267b2e21fb086ad26457c715b3b8b5e8c6fcbcdea42589da06b05e9be
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.5.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 02:57:42 GMT
Accept-Ranges: bytes
Content-Length: 17925
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=5.5.4
139.99.139.228200 OK 63 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=5.5.4
IP 139.99.139.228:0
File type Unicode text, UTF-8 text, with very long lines (62789), with no line terminators
Hash 7892d7349e74e7dd7fae386eda2dded7
bd31f749a68bfffc0ba299d94b5de5d3803d9b9b
37811d4d55ec74751bcaa643b3a9798f1d577ac2910b63c6ca202c2e36544e05
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=5.5.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 02:57:39 GMT
Accept-Ranges: bytes
Content-Length: 62803
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.0.23
139.99.139.228200 OK 29 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.0.23
IP 139.99.139.228:0
File type ASCII text, with very long lines (29253), with no line terminators
Hash 0826f9aa4b7e761ea6044f29ba8e432a
7d3bec8f54ca99e00442ca3ae0026153376f80be
1cc1d2811dc382e9ea8c475cd9ad79b20227fb8a33e6b5225587f58134d99b77
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.0.23 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Sat, 19 Jun 2021 01:31:43 GMT
Accept-Ranges: bytes
Content-Length: 29253
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
139.99.139.228200 OK 3.8 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
IP 139.99.139.228:0
Hash 9c6b63558e5de592c160563dbe08dd0d
e4969ab55cc566759623f6b4e1c7d6b3bcdc21cd
14a77bc82e039ce4be0d9ba9b0237495b0a9578d34eb92d444093d440f6190ba
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 20:44:23 GMT
Accept-Ranges: bytes
Content-Length: 3812
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.5
139.99.139.228200 OK 61 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.5
IP 139.99.139.228:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 17483cba15fac4ce50a8fdd509d89752
aaf8439d8f821ddebfc904a5832da82bd1f11432
2c676853bc35362cf991f779d8ec093fb2c9b64fbd30c9d46234ae1de7cc1820
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.5 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:39:16 GMT
Accept-Ranges: bytes
Content-Length: 61155
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/themes/naturecircle/style.css?ver=5.2.17
139.99.139.228200 OK 4.9 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/style.css?ver=5.2.17
IP 139.99.139.228:0
File type ASCII text, with very long lines (496)
Hash 278c96d379f230616282b6f3bf73e19d
a71a872bfd6828f05dadc535947bea02da24568d
c6d09e4a115f8508d9deacda9b0c87030ecc66ec87d69e2a586f3267a64901ec
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/style.css?ver=5.2.17 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:42 GMT
Accept-Ranges: bytes
Content-Length: 4890
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/themes/naturecircle/css/fontawesome.css?ver=5.1.0
139.99.139.228200 OK 45 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/css/fontawesome.css?ver=5.1.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (44134)
Hash 45dcbaea3a1b2acc4e7fd6872ffb680b
d45ff9443c6608038f42794d46251dd6c7a8b4e4
87adc707f1c73d60ff123355df87f174f522ece7d703494be7840157e8cbf6b5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/css/fontawesome.css?ver=5.1.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:40 GMT
Accept-Ranges: bytes
Content-Length: 44753
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/themes/naturecircle/css/megamenu_style.css?ver=2.0.4
139.99.139.228200 OK 92 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/css/megamenu_style.css?ver=2.0.4
IP 139.99.139.228:0
File type ASCII text, with very long lines (483)
Hash ac9cb8824cf1939e5cbaaa58c60e2e74
48bc5001e0f983ec0710620a58c2886601a67a7d
35c4192f8b64a4e0861a7472365c1615f58417e9b23419f0fec3be44dd59d91a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/css/megamenu_style.css?ver=2.0.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:39 GMT
Accept-Ranges: bytes
Content-Length: 91888
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/themes/naturecircle/css/owl.carousel.css?ver=2.3.4
139.99.139.228200 OK 4.7 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/css/owl.carousel.css?ver=2.3.4
IP 139.99.139.228:0
Hash c8322bd5bffc8e2856f2cbcd03c61d18
a2fa945f9ac01fa3191a950c3f2cce188f50c4ef
aaf08be6ae4ed211293a6d4280e2d052e1f332eb0066a0dc0192fd8a3a9f39d2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/css/owl.carousel.css?ver=2.3.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:39 GMT
Accept-Ranges: bytes
Content-Length: 4744
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/jquery.fancybox.css?ver=2.1.5
139.99.139.228200 OK 4.9 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/jquery.fancybox.css?ver=2.1.5
IP 139.99.139.228:0
Hash 6c55951ce1e3115711f63f99b7501f3a
5f163444617b6cf267342f06ac166a237bb62df9
968a8e56e4adaf8c135199ebd7f6cc065424ca45974d4dfbeb5607e69fe72fcd
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/fancybox/jquery.fancybox.css?ver=2.1.5 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:43 GMT
Accept-Ranges: bytes
Content-Length: 4895
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-buttons.css?ver=1.0.5
139.99.139.228200 OK 2.4 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-buttons.css?ver=1.0.5
IP 139.99.139.228:0
Hash cac75538c2e3ddfadef839feaca8e356
1a9d8e5c22b371fcc69d4dbbb823d9c39f04c0c8
ae270bcb50f2d50d85d66e5fa909ad765d6a899b387bb6508d3d3e94bad43ec1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-buttons.css?ver=1.0.5 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:42 GMT
Accept-Ranges: bytes
Content-Length: 2447
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/themes/naturecircle/css/animate.css?ver=5.2.17
139.99.139.228200 OK 73 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/css/animate.css?ver=5.2.17
IP 139.99.139.228:0
Hash a3fbee76c6e8f379d3bf21bd0536c1e1
f3290035ee9862f5fc70598690833d2b595f0697
c589b1dc1a0dfd51fa1289711a3eaea7a903b4b9c948a9447c5504cdf0f4ab38
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/css/animate.css?ver=5.2.17 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:40 GMT
Accept-Ranges: bytes
Content-Length: 73088
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/themes/naturecircle/css/bootstrap.min.css?ver=4.1.0
139.99.139.228200 OK 140 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/css/bootstrap.min.css?ver=4.1.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (65324)
Size 140 kB (140421 bytes)
Hash fee68c0f2f583161134a1fcb5950501d
8e52dd818562db0ba0764bba172cb91ce248d8b0
34959e43e6ecf368807a84f92ad9aa6e2dcd5f0c5c1e57da55e8f3248d9d9255
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/css/bootstrap.min.css?ver=4.1.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:20 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:40 GMT
Accept-Ranges: bytes
Content-Length: 140421
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-thumbs.css?ver=1.0.7
139.99.139.228200 OK 735 B URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-thumbs.css?ver=1.0.7
IP 139.99.139.228:0
Hash 52ddd84a9f42c1d4cd86d518a7f7e8bc
4ac329c16a5277592fc12a37cca3d72ca4ec292f
d836d81acb5d5e712c55c4f7911d93513fe1d7d0336353085aa5bd0f36b6998c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-thumbs.css?ver=1.0.7 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:42 GMT
Accept-Ranges: bytes
Content-Length: 735
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/themes/naturecircle/css/stroke-gap-icons.css?ver=5.2.17
139.99.139.228200 OK 115 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/css/stroke-gap-icons.css?ver=5.2.17
IP 139.99.139.228:0
File type ASCII text, with very long lines (60876)
Size 115 kB (115264 bytes)
Hash 3a4258ee22adef0d4f82aeddcf50c73b
e02fe21741057afef8bd46db3dd80c0473359223
f12ae1b4d197600feac863e8c0d8ee2bc6baf2643babc1f8fbecbfad5b7ee36d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/css/stroke-gap-icons.css?ver=5.2.17 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:40 GMT
Accept-Ranges: bytes
Content-Length: 115264
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/themes/naturecircle/css/opt_css.css?ver=1.0.0
139.99.139.228200 OK 0 B URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/css/opt_css.css?ver=1.0.0
IP 139.99.139.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/css/opt_css.css?ver=1.0.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:39 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
139.99.139.228200 OK 10 kB URL HTTP/1.1 freshfoods.co.zw/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 139.99.139.228:0
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Thu, 19 May 2016 22:11:28 GMT
Accept-Ranges: bytes
Content-Length: 10056
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.0.0
139.99.139.228200 OK 96 kB URL HTTP/1.1 freshfoods.co.zw/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.0.0
IP 139.99.139.228:0
File type Unicode text, UTF-8 text, with very long lines (31984), with LF, NEL line terminators
Hash 686c7af3cc4a1474646963751a4a5a7e
78629247cd18c9744c26431084fe37d82fd86f8a
e4c68f0b34a79813171f4674c1d17411378987dccdfa9b1d67ae3582a7b8010a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.0.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Wed, 06 Feb 2019 21:28:04 GMT
Accept-Ranges: bytes
Content-Length: 96193
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Poppins%3A200%2C300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext
142.250.74.10200 OK 194 kB URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A200%2C300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
Size 194 kB (194426 bytes)
Hash 260dda28fa105de0872b70f03ccc9d0e
c358d38e90ea1603fcb4ad7b583577e6588c192d
288f928d03d9d105c148c32b2307407edb53af63097e5a24a9f2e790f26ed202
GET /css?family=Poppins%3A200%2C300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 25 Oct 2022 03:45:19 GMT
date: Tue, 25 Oct 2022 03:45:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
freshfoods.co.zw/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
139.99.139.228200 OK 97 kB URL HTTP/1.1 freshfoods.co.zw/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 139.99.139.228:0
File type ASCII text, with very long lines (31997)
Hash 49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Sat, 24 Jul 2021 10:03:19 GMT
Accept-Ranges: bytes
Content-Length: 96873
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4
139.99.139.228200 OK 124 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4
IP 139.99.139.228:0
File type ASCII text, with very long lines (42889)
Size 124 kB (123959 bytes)
Hash 04f0a5790668162c9241bfd598d6400c
dd55a501364bbd8a0b43eca3cd681748cd89a03e
463f24ed151c0bc8775c09e92c3885fd96dc17f1e91ca64d70f3ba9600e0eb86
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:39:21 GMT
Accept-Ranges: bytes
Content-Length: 123959
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
139.99.139.228200 OK 9.5 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 139.99.139.228:0
File type ASCII text, with very long lines (9151)
Hash 2e96f622673104a3fb67ab56f849c073
f4c17ae4709cad9bc997357581f4e30fc4bbee2c
b49498d1142de7f2e16afc2cd4250d2ba30c5df4de5d291f51d7cf69727efdbe
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 02:57:38 GMT
Accept-Ranges: bytes
Content-Length: 9545
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0
139.99.139.228200 OK 485 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (65358)
Size 485 kB (485416 bytes)
Hash e6049b1ca50005dcfbb1cde5a4c57c7d
0356b14cbf3eab635b2c59565f2da80e3acead55
97b5b6bb0bfd4413504da4a5b78546698c75a127fff51b095080ee7fd3b8ec0c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:39:51 GMT
Accept-Ranges: bytes
Content-Length: 485416
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.5.4
139.99.139.228200 OK 3.0 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.5.4
IP 139.99.139.228:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 8bc2109ef48cabf7a26b73d7c3536c5f
0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b
8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.5.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 02:57:38 GMT
Accept-Ranges: bytes
Content-Length: 3037
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-includes/js/dist/hooks.min.js?ver=2.2.0
139.99.139.228200 OK 5.0 kB URL HTTP/1.1 freshfoods.co.zw/wp-includes/js/dist/hooks.min.js?ver=2.2.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (4951), with no line terminators
Hash dd0b208b4777a033a5f23e91eb688b1e
20c2dbea0fe15ee2cbaf56fe7c922a7d8b5bb3ce
21c3b5ce4917bf44407b86f7f5780b6a7ec029f570e85dd1edbe43e633177494
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/hooks.min.js?ver=2.2.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Thu, 09 Sep 2021 11:31:33 GMT
Accept-Ranges: bytes
Content-Length: 4951
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/say-what/assets/build/frontend.js?ver=658db854f48fb86c32bd0f1d219c2d63
139.99.139.228200 OK 1.9 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/say-what/assets/build/frontend.js?ver=658db854f48fb86c32bd0f1d219c2d63
IP 139.99.139.228:0
File type ASCII text, with very long lines (1875), with no line terminators
Hash 94a2b4185fca103e9b27f8848498a13c
6c1cb20578b4a0dee99ae417a8bad1771db9e9e3
abdab4a76a863af7490d2bebe1e6fbb99141d1bac4bfdc40d2e3748422f36614
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/say-what/assets/build/frontend.js?ver=658db854f48fb86c32bd0f1d219c2d63 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Fri, 04 Jun 2021 21:54:14 GMT
Accept-Ranges: bytes
Content-Length: 1875
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.5
139.99.139.228200 OK 359 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.5
IP 139.99.139.228:0
File type ASCII text, with very long lines (64270)
Size 359 kB (359139 bytes)
Hash 8f2a44bd0b0e16f0d4811d07ef181444
0c26d32bb448921f78c9e9975743d32d8d10f44c
a0553c348e423d7c2e0f37085d143e16a5ce1dc922ab63ae331866bffed3b9c4
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.5 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:39:21 GMT
Accept-Ranges: bytes
Content-Length: 359139
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0
139.99.139.228200 OK 992 B URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0
IP 139.99.139.228:0
Hash 787fe4f547a6cb7f4ce4934641085910
c2dee88d5bdfef214ce9c56f71a1df51cda0f328
654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:39:55 GMT
Accept-Ranges: bytes
Content-Length: 992
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
139.99.139.228200 OK 13 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
IP 139.99.139.228:0
File type ASCII text, with very long lines (12987), with no line terminators
Hash 6ad9165b167d54947b37f4b9de75ab39
4c02f66fd8c26141450e310d6786f50f99913dd4
eea0b9621509f98be77c5af1e9b5c952a675bda2b27c419876364017069e0c19
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 08:43:59 GMT
Accept-Ranges: bytes
Content-Length: 12987
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb9238eaa63063c98563a1961fbbfefa
9b23eea87129d9516b8e7527cce7b8b1efcfa1fe
ff87d571f813dd558347df32a52e27ebb6c66968a6d2e584e6b6467944ef40fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 03:45:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://freshfoods.co.zw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 21:48:50 GMT
expires: Thu, 19 Oct 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 453392
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb9238eaa63063c98563a1961fbbfefa
9b23eea87129d9516b8e7527cce7b8b1efcfa1fe
ff87d571f813dd558347df32a52e27ebb6c66968a6d2e584e6b6467944ef40fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 03:45:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb9238eaa63063c98563a1961fbbfefa
9b23eea87129d9516b8e7527cce7b8b1efcfa1fe
ff87d571f813dd558347df32a52e27ebb6c66968a6d2e584e6b6467944ef40fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 03:45:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb9238eaa63063c98563a1961fbbfefa
9b23eea87129d9516b8e7527cce7b8b1efcfa1fe
ff87d571f813dd558347df32a52e27ebb6c66968a6d2e584e6b6467944ef40fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 03:45:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb9238eaa63063c98563a1961fbbfefa
9b23eea87129d9516b8e7527cce7b8b1efcfa1fe
ff87d571f813dd558347df32a52e27ebb6c66968a6d2e584e6b6467944ef40fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 03:45:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
139.99.139.228200 OK 1.8 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 139.99.139.228:0
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 02:57:38 GMT
Accept-Ranges: bytes
Content-Length: 1834
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/exo/v20/4UaOrEtFpBISc36j.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/exo/v20/4UaOrEtFpBISc36j.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 20364, version 1.0\012- data
Hash 0de6b557071176e7a82239a7ee11306b
b85c796676d5d08baa1bcc0957a80b5e3a3ddf47
3e9d07ebb7ea3f8e5c5568fa3b4e81d5b93aacfd93cc05192a30c0438039d349
GET /s/exo/v20/4UaOrEtFpBISc36j.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://freshfoods.co.zw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20364
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 03:18:12 GMT
expires: Tue, 24 Oct 2023 03:18:12 GMT
cache-control: public, max-age=31536000
age: 88030
last-modified: Mon, 11 Jul 2022 19:24:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
216.58.207.195200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Hash fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://freshfoods.co.zw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 21:14:39 GMT
expires: Tue, 24 Oct 2023 21:14:39 GMT
cache-control: public, max-age=31536000
age: 23443
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb9238eaa63063c98563a1961fbbfefa
9b23eea87129d9516b8e7527cce7b8b1efcfa1fe
ff87d571f813dd558347df32a52e27ebb6c66968a6d2e584e6b6467944ef40fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 03:45:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.5.4
139.99.139.228200 OK 2.1 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.5.4
IP 139.99.139.228:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.5.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 02:57:38 GMT
Accept-Ranges: bytes
Content-Length: 2139
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.5.4
139.99.139.228200 OK 2.9 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.5.4
IP 139.99.139.228:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 51af5d767f0300f23ecec6298b707395
5eb2d3d937fe0392a974937125d0420666b9396c
9c7c023f91428234ca0ea4df1199758686f4dcd04da96ba63571788fb3389c0b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.5.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 02:57:38 GMT
Accept-Ranges: bytes
Content-Length: 2938
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtM.woff2
216.58.207.195200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtM.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 20968, version 1.0\012- data
Hash 726ce483f9627699bb178e053afbd3a4
3840d4461253413a4d71d2702c39cf4edfb89753
6454829f91def11ae630252985f686e8553c439ee0ee4d20b0e6dda0429fd30d
GET /s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://freshfoods.co.zw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20968
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 21:25:09 GMT
expires: Tue, 24 Oct 2023 21:25:09 GMT
cache-control: public, max-age=31536000
age: 22813
last-modified: Mon, 18 Jul 2022 19:02:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs18NvsUZiZQ.woff2
216.58.207.195200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs18NvsUZiZQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 10260, version 1.0\012- data
Hash e462f7ffb08d8bf86fff4aade61b0d72
bbebc3b747cc5c12b513070faa1ceaf3331df1d4
1f8cb94dc31befeebeb9b93a9ab4194e8b839edd9985d973b23514f7a6c52a0c
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs18NvsUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://freshfoods.co.zw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10260
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 21:12:28 GMT
expires: Tue, 24 Oct 2023 21:12:28 GMT
cache-control: public, max-age=31536000
age: 23574
last-modified: Mon, 18 Jul 2022 19:12:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
216.58.207.195200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://freshfoods.co.zw
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:31:00 GMT
expires: Thu, 19 Oct 2023 19:31:00 GMT
cache-control: public, max-age=31536000
age: 461662
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
freshfoods.co.zw/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
139.99.139.228200 OK 12 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
IP 139.99.139.228:0
File type ASCII text, with very long lines (11827)
Hash 06a3b48689b0314af6c5da5b6ff27bfd
a98a815d90cba195409d39bd74d31b1e6f9dbf95
4cd7a0d2c9eb03966a0dc60658526c20fa4e8ee4a0660da469f55edaf9a18c9f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 20:44:24 GMT
Accept-Ranges: bytes
Content-Length: 11900
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
demo.roadthemes.com/naturecircle/wp-content/plugins/mega_main_menu/framework/src/img/megamain-logo-120x120.png
162.241.159.229500 Internal Server Error 0 B URL HTTP/1.1 demo.roadthemes.com/naturecircle/wp-content/plugins/mega_main_menu/framework/src/img/megamain-logo-120x120.png
IP 162.241.159.229:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /naturecircle/wp-content/plugins/mega_main_menu/framework/src/img/megamain-logo-120x120.png HTTP/1.1
Host: demo.roadthemes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 500 Internal Server Error
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
freshfoods.co.zw/wp-content/themes/naturecircle/js/bootstrap.min.js?ver=4.1.0
139.99.139.228200 OK 51 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/bootstrap.min.js?ver=4.1.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (50395)
Hash ce6e785579ae4cb555c9de311d1b9271
5ef2c15b47d7290698c737676ba9c3056b45f2e8
0bca10549df770ab6790046799e5a9e920c286453ebbb2afb0d3055339245339
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/bootstrap.min.js?ver=4.1.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:43 GMT
Accept-Ranges: bytes
Content-Length: 50676
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/js/owl.carousel.js?ver=2.3.4
139.99.139.228200 OK 90 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/owl.carousel.js?ver=2.3.4
IP 139.99.139.228:0
File type ASCII text, with very long lines (360)
Hash ccdf893e7d8b26933af0c336bcc3943e
ac575ba3377f95ef22bad865ec35b0b3dcb0dfe0
db9d6cf3c1c4b047c62f646e7d9991c06a212931c362bf53f9a2406b30f09466
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/owl.carousel.js?ver=2.3.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:43 GMT
Accept-Ranges: bytes
Content-Length: 89992
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/js/owl.carousel.min.js?ver=2.3.4
139.99.139.228200 OK 44 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/owl.carousel.min.js?ver=2.3.4
IP 139.99.139.228:0
File type ASCII text, with very long lines (31997)
Hash f416f9031fef25ae25ba9756e3eb6978
e2a600e433df72b4cfde93d7880e3114917a3cbe
a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/owl.carousel.min.js?ver=2.3.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:22 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:43 GMT
Accept-Ranges: bytes
Content-Length: 44342
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/fonts/fa-regular-400.woff2
139.99.139.228200 OK 15 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/fonts/fa-regular-400.woff2
IP 139.99.139.228:0
File type Web Open Font Format (Version 2), TrueType, length 14952, version 1.0\012- data
Hash a3715c6fe264a51f1d9260b447ff46bc
285cf9d32fae400ca979a369d299973307aa3416
1669bec36f12c35a00a2d23cf71b6061c85b8435f5c26445aab338f88dfe6629
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/fonts/fa-regular-400.woff2 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://freshfoods.co.zw/wp-content/themes/naturecircle/css/fontawesome.css?ver=5.1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:40 GMT
Accept-Ranges: bytes
Content-Length: 14952
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2
freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/jquery.fancybox.pack.js?ver=2.1.5
139.99.139.228200 OK 23 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/jquery.fancybox.pack.js?ver=2.1.5
IP 139.99.139.228:0
File type ASCII text, with very long lines (645)
Hash cc9e759f24ba773aeef8a131889d3728
53360764b429c212f424399384417ccc233bb3be
bc50bf49cbe79ee49b4ee8b56f26ff4877bc4945c16f260b1481ba2355c96347
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/fancybox/jquery.fancybox.pack.js?ver=2.1.5 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:43 GMT
Accept-Ranges: bytes
Content-Length: 23135
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-buttons.js?ver=1.0.5
139.99.139.228200 OK 3.0 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-buttons.js?ver=1.0.5
IP 139.99.139.228:0
File type ASCII text, with very long lines (411)
Hash f53c246661fb995a3f12e67fa38e0fa0
91e41741c2e93f732c82aaacec4cfc6e3f3ec876
2d63b8ad7966c80ce51051da38da14f52b99cfb019aec650b2437fc74fac1560
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-buttons.js?ver=1.0.5 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:42 GMT
Accept-Ranges: bytes
Content-Length: 3041
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-media.js?ver=1.0.6
139.99.139.228200 OK 5.3 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-media.js?ver=1.0.6
IP 139.99.139.228:0
Hash c017067f48d97ec4a077ccdf056e6a2e
3bdf69ed2469e4fb57f5a95f17300eef891ff90d
e53e650a83dbce1ab8d93c365299f2e8f5070c414c9ea302f2422ca65f5fdab4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-media.js?ver=1.0.6 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:42 GMT
Accept-Ranges: bytes
Content-Length: 5305
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
139.99.139.228200 OK 77 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 139.99.139.228:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://freshfoods.co.zw/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Sat, 19 Jun 2021 01:31:43 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: font/woff2
freshfoods.co.zw/wp-content/themes/naturecircle/images/bg_top.jpg
139.99.139.228200 OK 4.4 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/images/bg_top.jpg
IP 139.99.139.228:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1919x22, components 3\012- data
Hash db796896182f4849c487f0975d35cd0a
3919a423a26420e3ba9d8e16b3e90ea30dc9cd5c
98efff9810506d9973d111e71ac761aecc3376a519ea20e11ee5254a9483ea00
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/images/bg_top.jpg HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/wp-content/themes/naturecircle/css/theme1.css?ver=1.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:42 GMT
Accept-Ranges: bytes
Content-Length: 4350
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
freshfoods.co.zw/wp-content/themes/naturecircle/images/bg_line.png
139.99.139.228200 OK 1.2 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/images/bg_line.png
IP 139.99.139.228:0
File type PNG image data, 14 x 7, 8-bit/color RGBA, non-interlaced\012- data
Hash 7e0a4b4a4bde14bcc7e6418b490e4355
da3cd98bae7d06cd8724a9a0109fd13ec0b9f5fe
c201d6fcb07ad8749657d01941bb7423e8ebd2955dedfec62c21717677e528bf
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/images/bg_line.png HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/wp-content/themes/naturecircle/css/theme1.css?ver=1.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:42 GMT
Accept-Ranges: bytes
Content-Length: 1197
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
freshfoods.co.zw/wp-content/themes/naturecircle/images/bg_bottom.jpg
139.99.139.228200 OK 4.4 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/images/bg_bottom.jpg
IP 139.99.139.228:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x22, components 3\012- data
Hash dfb600011e3c1aa52c5044966b937e62
355d8438f75b60e6ca246ce07d143da7cc129459
7ef8381290daa08dac66a3dfa20ee59cd6055bb7fba4f2112c3f0a31a9eeea16
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/images/bg_bottom.jpg HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/wp-content/themes/naturecircle/css/theme1.css?ver=1.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:42 GMT
Accept-Ranges: bytes
Content-Length: 4375
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-thumbs.js?ver=1.0.7
139.99.139.228200 OK 3.8 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-thumbs.js?ver=1.0.7
IP 139.99.139.228:0
Hash cf1fc1df534eede4cb460c5cbd71aba6
53e194f4a72e649c04fb586dd57762b8c022800b
0ba02b924fc5beeb370ed64d478401e94a513e970cac2c46266c708348135cf2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/fancybox/helpers/jquery.fancybox-thumbs.js?ver=1.0.7 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:42 GMT
Accept-Ranges: bytes
Content-Length: 3836
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/js/superfish/superfish.min.js?ver=1.3.15
139.99.139.228200 OK 4.3 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/superfish/superfish.min.js?ver=1.3.15
IP 139.99.139.228:0
File type ASCII text, with very long lines (4065)
Hash 2b93a3aca5d8ef8b8acfc24fd5d75b8e
728614d29875fe0d322ed1c8aeba6253f1eba811
c6fd16c8647ea8f1409657c80ab96b603a45f6a4d83c657c4eda10591a7903b8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/superfish/superfish.min.js?ver=1.3.15 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:43 GMT
Accept-Ranges: bytes
Content-Length: 4293
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/js/modernizr.custom.min.js?ver=2.6.2
139.99.139.228200 OK 3.1 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/modernizr.custom.min.js?ver=2.6.2
IP 139.99.139.228:0
File type HTML document, ASCII text, with very long lines (2861)
Hash 6ab50f7923c5f783c336d1bf3a579c1b
fc75cd09d3084021048a41da9c47f2fe42ad96eb
6a1fe0907100410728ab4d870e8b1cca4b9ce788b9c87e83444dd0cd5818ca3e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/modernizr.custom.min.js?ver=2.6.2 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:43 GMT
Accept-Ranges: bytes
Content-Length: 3074
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/js/jquery.mousewheel.min.js?ver=3.1.12
139.99.139.228200 OK 2.8 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/jquery.mousewheel.min.js?ver=3.1.12
IP 139.99.139.228:0
File type ASCII text, with very long lines (2609)
Hash 639d1c35a685d111aa4a509a2dbf660c
d0991ef04e2dd8fd1b0cb0c8bb0f1026649d9b25
1fdbb2180496fca532f43deaffec879f8ca6990258b38a469aed4120d6c0d2fe
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/jquery.mousewheel.min.js?ver=3.1.12 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:43 GMT
Accept-Ranges: bytes
Content-Length: 2777
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/js/variables.js?ver=20140826
139.99.139.228200 OK 1.4 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/variables.js?ver=20140826
IP 139.99.139.228:0
Hash 64a7e8b21eace8b310874c7ee95ffc0a
816da3200f6808dc8ed9db3ec05fead9a754adc2
a025e7dacb1a3507f508d78c349d2059a46eb582358dcf5ffb4b33a5ec721c10
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/variables.js?ver=20140826 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2022 15:21:08 GMT
Accept-Ranges: bytes
Content-Length: 1422
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/js/jquery.counterup.min.js?ver=1.0
139.99.139.228200 OK 1.1 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/jquery.counterup.min.js?ver=1.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (917)
Hash ef36cca760bf1cd76cfcd0e4dc10cef1
ef38469f60d58850fe55c4de2ec7e289a2415d71
26d40f8ffdf1b9bf286a954c6888a33cda0cd031e802d821fe0c0562e379ae29
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/jquery.counterup.min.js?ver=1.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:43 GMT
Accept-Ranges: bytes
Content-Length: 1067
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/themes/naturecircle/js/naturecircle-theme.js?ver=20140826
139.99.139.228200 OK 36 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/js/naturecircle-theme.js?ver=20140826
IP 139.99.139.228:0
File type ASCII text, with very long lines (449)
Hash 5b37f9d9a57a230bca953bc35f1f1d33
ebd631268628476fcfd69c11e5e1ed91667faf9b
af60b04f5309756ee15556235ff5810febe0caada08450765697eae3ad9cec0e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/js/naturecircle-theme.js?ver=20140826 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:37:42 GMT
Accept-Ranges: bytes
Content-Length: 35707
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.3.4
139.99.139.228200 OK 3.3 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.3.4
IP 139.99.139.228:0
File type ASCII text, with very long lines (3332), with no line terminators
Hash 2ee66c718acb537472f7da5cb06e294c
364b120ecac3e5952d3169ba3fbaa6e9a671abc7
f5afc6bf051eb319fab3ed2467029e271c5a231295a658fae964c9f065b08abc
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.3.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Tue, 25 May 2021 10:12:25 GMT
Accept-Ranges: bytes
Content-Length: 3332
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/mega_main_menu/src/js/frontend.js?ver=2.2.1
139.99.139.228200 OK 15 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/mega_main_menu/src/js/frontend.js?ver=2.2.1
IP 139.99.139.228:0
File type ASCII text, with very long lines (367), with CRLF line terminators
Hash b6dff1628078e6bedbdde382d1759a60
da591e520ace1fe4999f3b8c866de027159d2bab
414ea84fc4529a749bf400e35a46bcc39cc0248aab5dc5e8026a06de1152bca8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/mega_main_menu/src/js/frontend.js?ver=2.2.1 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:23 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:38:37 GMT
Accept-Ranges: bytes
Content-Length: 14797
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-includes/js/wp-embed.min.js?ver=5.2.17
139.99.139.228200 OK 1.4 kB URL HTTP/1.1 freshfoods.co.zw/wp-includes/js/wp-embed.min.js?ver=5.2.17
IP 139.99.139.228:0
File type ASCII text, with very long lines (1391), with no line terminators
Hash 570ae0f3c201604926ea599d3d1f6c04
2c29243a73660964d4712b969d2a15e27777bc14
5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-embed.min.js?ver=5.2.17 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Sat, 24 Jul 2021 10:03:17 GMT
Accept-Ranges: bytes
Content-Length: 1391
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-includes/js/underscore.min.js?ver=1.8.3
139.99.139.228200 OK 16 kB URL HTTP/1.1 freshfoods.co.zw/wp-includes/js/underscore.min.js?ver=1.8.3
IP 139.99.139.228:0
File type ASCII text, with very long lines (16010), with no line terminators
Hash 531c690707d18f60906bdf12d2ade193
0bddd39d059105bec8a13d3594b95e19146ee13d
e5f5736867880dc34e00e9d915d49094d5aa572c73771e87a082bd721b5a4f7c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Sat, 24 Jul 2021 10:03:19 GMT
Accept-Ranges: bytes
Content-Length: 16010
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-includes/js/wp-util.min.js?ver=5.2.17
139.99.139.228200 OK 1.0 kB URL HTTP/1.1 freshfoods.co.zw/wp-includes/js/wp-util.min.js?ver=5.2.17
IP 139.99.139.228:0
File type ASCII text, with very long lines (1042), with no line terminators
Hash c1b91f4ecdee99d6902adc5d752d0003
73534c8860439b9795371f3b01d27fcefdc82811
d07866ced017c54663d1fc5b68b925540f824f39504198bf12b6ec30942dc253
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-util.min.js?ver=5.2.17 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Sat, 24 Jul 2021 10:03:18 GMT
Accept-Ranges: bytes
Content-Length: 1042
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=5.5.4
139.99.139.228200 OK 14 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=5.5.4
IP 139.99.139.228:0
File type ASCII text, with very long lines (13595), with no line terminators
Hash d4404db36e560c1db1966e54e3ae9de6
1ed4dbed6b34c988ccd3c079ca6563099a59cc5f
1113cb471b59e05bbc7b41a1c17d18647090249f7a6ac9419b71598c0c37c683
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=5.5.4 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 02:57:38 GMT
Accept-Ranges: bytes
Content-Length: 13595
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
139.99.139.228200 OK 21 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (20418)
Hash b00a0fd5e283160549de2c7b36243b7b
f2401243950cd9624002921265e46a518851f12b
314ce6baaa3218eb171fa2c278d7fdf1b9872305dfa667e9cbf2df77c83a9a88
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:39:55 GMT
Accept-Ranges: bytes
Content-Length: 20637
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.6.0
139.99.139.228200 OK 11 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.6.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (10914)
Hash 10fb6b50c642584bca8fa0ee66ab616e
4f6c9b611990fec18925f1c72557b14a03400cf0
d1c5c500acc41e4dcf1c8f13fcba4d524233a2ac190446f300fca2ed4c834f69
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.6.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:39:51 GMT
Accept-Ranges: bytes
Content-Length: 11133
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.6.0
139.99.139.228200 OK 2.5 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.6.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (2326)
Hash ec326b42443a0157a582537ef34df2f5
ab66c9ec3093da4e360b62e13074caef8ca787d9
6c176a55f46c95137c6700b0777db49956705fe356f8ed5ffcb8b450f6d96b57
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.6.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:39:51 GMT
Accept-Ranges: bytes
Content-Length: 2545
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/uploads/2021/03/fresh-foods-logo-122x86-1.png
139.99.139.228200 OK 3.6 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/uploads/2021/03/fresh-foods-logo-122x86-1.png
IP 139.99.139.228:0
File type PNG image data, 122 x 86, 8-bit colormap, non-interlaced\012- data
Hash 3d0e9b56737435c9f13cddd13fc00cd6
800d17a587f35ae972b28a9fc230e1c92dab831a
56632b574fa1f9fdaa2f92d86690cf191e414452ee41c730348031a890b2e03a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/03/fresh-foods-logo-122x86-1.png HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 21:08:47 GMT
Accept-Ranges: bytes
Content-Length: 3634
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
freshfoods.co.zw/wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.6.0
139.99.139.228200 OK 4.2 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.6.0
IP 139.99.139.228:0
File type ASCII text, with very long lines (3973)
Hash 2f470a58760eed9ec50dd7e6992198d3
84bd23fc02189aec468209610e80a6c2a593723e
df34f3aef92fa54088e14b001bfe002d36ff6d765b24cbd9f47e2208e103625e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.6.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:39:51 GMT
Accept-Ranges: bytes
Content-Length: 4192
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/plugins/roadthemes-helper/js/product_options.js?ver=5.2.17
139.99.139.228200 OK 7.3 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/plugins/roadthemes-helper/js/product_options.js?ver=5.2.17
IP 139.99.139.228:0
File type ASCII text, with CRLF line terminators
Hash 0ebb550742fea1f0b27e2cec7a7832df
864085ee28e4b81ca8a9ddb106921930790516f3
679bd93b58e6dce0f7aaa55351dc2b4151b714ac96dce95eabfd46c416711d2d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/roadthemes-helper/js/product_options.js?ver=5.2.17 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 20:38:41 GMT
Accept-Ranges: bytes
Content-Length: 7342
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
freshfoods.co.zw/wp-content/uploads/2021/03/Untitled-1.jpg
139.99.139.228200 OK 51 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/uploads/2021/03/Untitled-1.jpg
IP 139.99.139.228:0
File type gzip compressed data, max compression\012- data
Hash da651e07774719e0a8c689cceb188d3a
4c7890948e9526a84668a96045c811ae78b3c035
3bfefc9f870fb117b4f6bb272ed2bd04befcba1e290343b211a6d7b66190ccad
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/03/Untitled-1.jpg HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Sat, 27 Mar 2021 12:50:29 GMT
Accept-Ranges: bytes
Content-Length: 49923
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
freshfoods.co.zw/wp-content/uploads/2021/03/1.png
139.99.139.228200 OK 191 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/uploads/2021/03/1.png
IP 139.99.139.228:0
File type PNG image data, 570 x 309, 8-bit/color RGBA, non-interlaced\012- data
Size 191 kB (191432 bytes)
Hash 3e01dc95ba9f073dbf799285ea9e9419
f52a96713769bfe921b46863af509529b48f33f7
428e0d91e5fe3d938881b1a03620ada5625d0664e3bcbe5bb4e33d5b65f1fb35
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/03/1.png HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Sat, 27 Mar 2021 05:09:42 GMT
Accept-Ranges: bytes
Content-Length: 191432
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png
freshfoods.co.zw/wp-content/uploads/2021/03/s-l300.jpg
139.99.139.228200 OK 6.8 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/uploads/2021/03/s-l300.jpg
IP 139.99.139.228:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 300x300, components 3\012- data
Hash dc0b35b794f23d5a6013dc9a06abba1f
39b8e802438a24944620b789e02e183e074424fe
d3dd3aa1d27dfe7ef55e51d0327942c1548fb7f970ad21484e010f2cb495954c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/03/s-l300.jpg HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Wed, 31 Mar 2021 06:06:17 GMT
Accept-Ranges: bytes
Content-Length: 6800
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
freshfoods.co.zw/wp-content/uploads/2021/03/120044-300x300.jpg
139.99.139.228200 OK 11 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/uploads/2021/03/120044-300x300.jpg
IP 139.99.139.228:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 95955c0422ed7d4f5f624ad3080d95a9
143906af4da8ec7057045fccb645c25c6e6c8890
80ba965d1e3b9d99fd7ad940dad69b7778dcccc66248c9d2965fb67618504949
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/03/120044-300x300.jpg HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Wed, 31 Mar 2021 06:09:00 GMT
Accept-Ranges: bytes
Content-Length: 11400
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
freshfoods.co.zw/wp-content/uploads/2018/04/2-260x260-1.jpg
139.99.139.228200 OK 4.5 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/uploads/2018/04/2-260x260-1.jpg
IP 139.99.139.228:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 260x260, components 3\012- data
Hash 682e1e2ff527a410381ebb114ce763dc
e6733599e0a15d4ac4be272f4fd0ca279ee13f83
a2c5d0d82d5d5e85d5a5e7872bd4d4dc7ed960100a90c6fb0644bc9ac7f23e20
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2018/04/2-260x260-1.jpg HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Fri, 26 Mar 2021 22:37:09 GMT
Accept-Ranges: bytes
Content-Length: 4484
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
freshfoods.co.zw/?wc-ajax=get_refreshed_fragments
139.99.139.228200 OK 986 B URL HTTP/1.1 freshfoods.co.zw/?wc-ajax=get_refreshed_fragments
IP 139.99.139.228:0
File type JSON data\012- HTML document, ASCII text, with very long lines (986), with no line terminators
Hash f1798267c28b7b8998a68635c597f083
6047801bf1222f6b46e3bed05338861a4d44a3b8
842de51ab35a206b1addd03b558e7878069026c1f92fa2ad388f241b4c2f8704
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://freshfoods.co.zw
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Access-Control-Allow-Origin: https://freshfoods.co.zw
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
freshfoods.co.zw/wp-content/uploads/2021/03/Blueberry_2000x-300x300.jpg
139.99.139.228200 OK 12 kB URL HTTP/1.1 freshfoods.co.zw/wp-content/uploads/2021/03/Blueberry_2000x-300x300.jpg
IP 139.99.139.228:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash de210f06e5536988dee98009371d01c4
4ef4f49a204be7605defaada9554ef431dbdccb1
0a70086da254473f57edb4345cc7374434a8b92dc1449331ff75b717b9218d0f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/03/Blueberry_2000x-300x300.jpg HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Wed, 31 Mar 2021 06:12:33 GMT
Accept-Ranges: bytes
Content-Length: 12266
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg
freshfoods.co.zw/wp-content/themes/naturecircle/css/theme1.css?ver=1.0.0
139.99.139.228200 OK 0 B URL HTTP/1.1 freshfoods.co.zw/wp-content/themes/naturecircle/css/theme1.css?ver=1.0.0
IP 139.99.139.228:0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/naturecircle/css/theme1.css?ver=1.0.0 HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:21 GMT
Server: Apache
Last-Modified: Tue, 25 Oct 2022 03:45:18 GMT
Accept-Ranges: bytes
Content-Length: 331529
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
freshfoods.co.zw/wp-content/uploads/2021/03/reed-avocado-300x300-1.png
139.99.139.228200 OK 0 B URL HTTP/1.1 freshfoods.co.zw/wp-content/uploads/2021/03/reed-avocado-300x300-1.png
IP 139.99.139.228:0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/03/reed-avocado-300x300-1.png HTTP/1.1
Host: freshfoods.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshfoods.co.zw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 25 Oct 2022 03:45:24 GMT
Server: Apache
Last-Modified: Sat, 27 Mar 2021 04:16:11 GMT
Accept-Ranges: bytes
Content-Length: 188224
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png