r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6915
Expires: Sat, 24 Sep 2022 18:16:02 GMT
Date: Sat, 24 Sep 2022 16:20:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 16:14:31 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bhI9CvjQNHTO6Xiqzv4Ll8PTEU81G2rUYPPvFIUqq74LtehIX--s7A==
Age: 376
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 24 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TmHIv7A9JWAux39Ho25TJ3G0TodiQQ5xRz4dV8q9E8vO-dy5DLo0Qg==
age: 42333
X-Firefox-Spdy: h2
sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens
301 Moved Permanently 169 B URL HTTP/1.1 sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens
IP
ASN #51852 Private Layer INC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 0f952b73d3f5586637ea9a5a789d48f4
b29aff4ffa1d4decd77db5160f920e1c6417e5e9
69d11528ee32902d0c47ed215877f0610399536f755db03ed02a77ecedd74751
Analyzer Verdict Alert fortinet Phishing
GET /shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens HTTP/1.1
Host: sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:03 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 16:20:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9a8ab151078a85943c8bbd3658d7d40c
9f951641734c8bcec2cccac9532acac9996fd7fb
7f5551c86a993bb1cc6d06f3109c1048a01e0889c83d2983b67f603e3cd2b628
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F5551C86A993BB1CC6D06F3109C1048A01E0889C83D2983B67F603E3CD2B628"
Last-Modified: Fri, 23 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21587
Expires: Sat, 24 Sep 2022 22:20:35 GMT
Date: Sat, 24 Sep 2022 16:20:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 24 Sep 2022 16:04:17 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sat, 24 Sep 2022 16:52:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GWVY1RLMPYGmRSrxGva22EoSOIQfJElIjlSs853jX3NXuLw078_ruw==
Age: 991
ocsp.digicert.com/
200 OK 471 B IP
Hash a7809de115ea73f8b61f3d20a9978493
01fc65a2b694d7aadd5204d21801e87b2b55b73e
72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5182
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 16:20:48 GMT
Last-Modified: Sat, 24 Sep 2022 14:54:26 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1IN+IBudw3J1EzG3kwNXaw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fPmSF96s9ldI8hThOZ27LrAGt+I=
sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens
301 Moved Permanently 0 B URL HTTP/1.1 sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens
IP
ASN #51852 Private Layer INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens HTTP/1.1
Host: sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:04 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=fap6i77tv5tf4c15rljqhhgcl0; path=/
Upgrade: h2,h2c
Location: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3963
Expires: Sat, 24 Sep 2022 17:26:53 GMT
Date: Sat, 24 Sep 2022 16:20:50 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3963
Expires: Sat, 24 Sep 2022 17:26:53 GMT
Date: Sat, 24 Sep 2022 16:20:50 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3963
Expires: Sat, 24 Sep 2022 17:26:53 GMT
Date: Sat, 24 Sep 2022 16:20:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8d9af95acfc8b9b431eb1e020157f6d
f6f926be6e265a597aaede424f05fcd7c76fcc20
0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:52:36 GMT
age: 66494
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NcnEyVD-vG10pOpPCBMjKGqVw-rstkPIt-oqkIc5urAGE934fxL0VQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 04:12:38 GMT
age: 43692
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lAQOV9_fZ2RFvhRKMtDOeRTWJc-Jo1u-DrtJshcQuCSOUXVbNMjhaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:56:56 GMT
age: 66234
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg
200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1087dcce202bbbc8c84196bd2050662
670d89082f8da643e1196b11fb64bf71707f0e8d
f6a7b6e07177431d7845e2f2b7b1b3b76088671db32aeef580a72e9bd3ddae00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8354
x-amzn-requestid: 3ec3470c-2268-4102-af88-27dcfed76bfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPCGOcoAMF2xQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-481aa98b413690636fc3a2f0;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dXqPCGTGK8gW86McTltPuNYKXQgUuSqcL_XbyRQitinH5LsUscmU2w==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:47:49 GMT
age: 66781
etag: "670d89082f8da643e1196b11fb64bf71707f0e8d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a4b36e1bf29c9c82f069cdd3c50874c
d2180d40ceb16924a87a41aad90dedb0bb912085
aab96d28ea8e21e6d37449eba400cac45acced1825ebdb27853d17ae4f993b00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7963
x-amzn-requestid: cadfa4ff-473d-4927-bdf6-3aad64cddf18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQbHTCIAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2735-41d711e5210099aa6273dd86;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: g0NS7XamCzSMKmm1-mLnWLwUuBoJczvwSmTb0c_7klsY78wbrg4bRw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:02 GMT
age: 66228
etag: "d2180d40ceb16924a87a41aad90dedb0bb912085"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55d224ac83a417772c98bc5080fb6689
a30f9044330824e70dde0dcc785890d981e6fdf5
b2ea4dea200109019a65834b98e31e8fac718a199513810a2819858be2b4470a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9935
x-amzn-requestid: 9eb8463d-172a-40a2-8eed-3c97b1260afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQ5FARoAMFXQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2738-3709a2f22ecc033532223b26;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:38:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e5eETCL5yFnoG4HPx0Qv8hjGnlXx5vOL4syMx9uato8nuIHkSvMezg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:53:50 GMT
age: 66420
etag: "a30f9044330824e70dde0dcc785890d981e6fdf5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
200 OK 89 kB URL HTTP/1.1 www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
IP
ASN #51852 Private Layer INC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11568), with CRLF, LF line terminators
Hash 9f2fd71e77d55bb4e9dfb943394be50f
95b80b1a93b2fc9f1d1eaabb6002555452e29ebd
9d78d64084c72dff904a4da0cdbdbcaac59535377cd5f59d6e9d1863c368b003
Analyzer Verdict Alert fortinet Phishing
GET /shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/ HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Link: <https://www.sfreegames.com/wp-json/>; rel="https://api.w.org/", <https://www.sfreegames.com/?p=405505>; rel=shortlink
Set-Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7; path=/
Upgrade: h2,h2c
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 16:20:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.sfreegames.com/wp-content/plugins/fma-product-custom-options/front/css/fmepco_front_style.css?ver=4.7.24
200 OK 1.2 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/fma-product-custom-options/front/css/fmepco_front_style.css?ver=4.7.24
IP
ASN #51852 Private Layer INC
Hash 819be97c3bb3de9978da74b3f2a14cfd
a901fcccb749f3797d4700afdb6bbec19b0b2199
12ad57a8f41b41e94cab57ccc2c0e711f7b910ecd14b242e5394e4190ddbd190
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fma-product-custom-options/front/css/fmepco_front_style.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:07 GMT
Content-Type: text/css
Content-Length: 1215
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "4bf-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/contact-form-7/includes/css/customer.css?ver=4.7.24
200 OK 2.0 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/contact-form-7/includes/css/customer.css?ver=4.7.24
IP
ASN #51852 Private Layer INC
File type ASCII text, with CRLF line terminators
Hash ccfd24f34821aef516b2384b17454b0c
d5c7b051eadb94954553d4b47e94b7223eb59931
d6fa0cd228e09bd9fafa31fcd463255f805fb56b67a8639f4fe4a53f5596aba7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/customer.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:07 GMT
Content-Type: text/css
Content-Length: 1978
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 19 Jul 2022 18:25:44 GMT
ETag: "7ba-5e42c9cdb5bcb"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.6.1
200 OK 1.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.6.1
IP
ASN #51852 Private Layer INC
Hash 9590730da0226be2ac52f7327452fa0d
5e23594192de8bb9f960a42be744ca6079c7d4c0
9ecdf64c96e3c913936ab8edf8af595d6316488bbb8851745c2d2d005fecc037
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.6.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:07 GMT
Content-Type: text/css
Content-Length: 1584
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 19 Jul 2022 18:25:44 GMT
ETag: "630-5e42c9cdb5bcb"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.css?ver=3.1.2
200 OK 4.1 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.css?ver=3.1.2
IP
ASN #51852 Private Layer INC
Hash 21069a15e0be0ff9e3df58236d997f49
70a6d33cd9151fe0e7a41edd040e68e96de6beea
13bede07c601a50cb60113d07aaf2c95e8312d5afec726d01d60b04df7bf2b40
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.css?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:07 GMT
Content-Type: text/css
Content-Length: 4067
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "fe3-5d834aa807e80"
Accept-Ranges: bytes
fonts.googleapis.com/css?family=Open%20Sans:300,300i,400,400i&subset=latin,latin-ext
200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Open%20Sans:300,300i,400,400i&subset=latin,latin-ext
IP
Hash 1984a8ec2e742fd5d9d381ae246f09cf
e3904e0198c5684e4caa2ea3f6a339d08dd0a605
66ddb4b82993bfef50abae5b972206bbd3669d7848932652170f3454a784fa7e
GET /css?family=Open%20Sans:300,300i,400,400i&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Sep 2022 16:20:51 GMT
date: Sat, 24 Sep 2022 16:20:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.css?ver=3.1.2
200 OK 12 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.css?ver=3.1.2
IP
ASN #51852 Private Layer INC
Hash 224041dc24512028718c3efea2b18e29
3efe71eeb68ed48a7ef960d2d422cc5efc53ce4e
735fb4e074e0473513fdfe9d2a077a1250246e89cd15cb44f36e46d303c45fab
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.css?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:07 GMT
Content-Type: text/css
Content-Length: 11621
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "2d65-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.1
200 OK 37 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.1
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (36280)
Hash efc782921fbf98d5b9171986b75b8e17
8ad5288b036760ee15497b7da944b87dc2f13c3d
e138899229875456f4ac96ef16c7a58dadd9f81d65a6e5c0f34b636c6e2f5c26
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:07 GMT
Content-Type: text/css
Content-Length: 36641
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "8f21-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.2
200 OK 9.2 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.2
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (9152), with no line terminators
Hash 2151f6abfde142cc09ec939cfcabbf1c
db949218a3c168ea57d4fe9b4196db26140181a8
5fcc39111ad0815edcaaa3b1e2364e362c1c43f8fc588a0a6548ee947713e312
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:07 GMT
Content-Type: text/css
Content-Length: 9152
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "23c0-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
200 OK 3.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP
ASN #51852 Private Layer INC
Hash d057d17357d72e1a642ef5e2d114449e
eff1b037a96fe2efb4247939938ac8fb09c8b3db
875614250bc202cfce4176b3abc9bbc5ae9932c76e83145e1247928d295cd694
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:08 GMT
Content-Type: text/css
Content-Length: 3572
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "df4-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.1.2
200 OK 16 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.1.2
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (15972), with no line terminators
Hash 5a7c579e7838d4039ca4b36bdefa19f3
77a92705b477428b5eadda914e5aa23ac20e4bcf
82bb17819368e12db3c5fc1d9b8152ae99df078cd1a9a3db048680105119a2b1
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:07 GMT
Content-Type: text/css
Content-Length: 15972
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "3e64-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=2.2.1
200 OK 14 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=2.2.1
IP
ASN #51852 Private Layer INC
Hash 8fc21b09439da08182d9a8d6dcf89192
a2fcea51f5239e6f2ba776f393057f08b6567f01
690746866a4d8845f80c3ad9162dfbc787e56834f12018d47b14b95e318e3838
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=2.2.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:08 GMT
Content-Type: text/css
Content-Length: 14151
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "3747-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.1.2
200 OK 59 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.1.2
IP
ASN #51852 Private Layer INC
File type Unicode text, UTF-8 text, with very long lines (59112), with no line terminators
Hash ca89d73bc9d775f867c6ab412d9c27ac
2aa8d7a9566ab9bb58a27c971626050891b9abd6
8fde49c131a9b1086d07bea676e3c9f7428c17bc23b635c3f706bb8a6d1e4dd5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:07 GMT
Content-Type: text/css
Content-Length: 59122
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "e6f2-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/slick/css/slick.min.css?ver=4.7.24
200 OK 1.3 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/slick/css/slick.min.css?ver=4.7.24
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (1297), with no line terminators
Hash 95693ccf6689c9751f16b3cce296f766
f49316134b8dd1cd53c924524b2a0d9eb1842c88
21b589bbc25d38fbf4c8168b0801ce4cf9d0aa1d372ae1ac773574aaeb10c08d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/minimal-blog/assets/lib/slick/css/slick.min.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:08 GMT
Content-Type: text/css
Content-Length: 1297
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "511-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-includes/css/dashicons.min.css?ver=4.7.24
200 OK 46 kB URL HTTP/1.1 www.sfreegames.com/wp-includes/css/dashicons.min.css?ver=4.7.24
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (46364), with no line terminators
Hash cf3c0e8f26fe2025a0f22138ffe30d53
48303b67f6e472663b304f9aeef59f977199f492
5c68cf1f0dca577bf260a647a1e73410fae9b838e3da448412df4b142e4fc123
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:07 GMT
Content-Type: text/css
Content-Length: 46364
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "b51c-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.min.css?ver=4.7.0
200 OK 31 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.min.css?ver=4.7.0
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:08 GMT
Content-Type: text/css
Content-Length: 31000
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "7918-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/magnific-popup/magnific-popup.css?ver=4.7.24
200 OK 7.0 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/magnific-popup/magnific-popup.css?ver=4.7.24
IP
ASN #51852 Private Layer INC
Hash 30b593b71d7672658f89bfea0ab360c9
d6963db6faa9294387bb3175813a61bc3f859437
45d1f5f6cf913746c45dd697b1a8f3b719c02d8b3f678dc7fc2766d54e1aaf6e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/minimal-blog/assets/lib/magnific-popup/magnific-popup.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:08 GMT
Content-Type: text/css
Content-Length: 6951
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "1b27-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/line-awesome/css/line-awesome.min.css?ver=4.7.24
200 OK 28 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/line-awesome/css/line-awesome.min.css?ver=4.7.24
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (27557)
Hash 4334c8c70998d81bde3e6765828811a6
de27d3920885be830eba8b77ff1c3b320afc5b98
1e8638f605575bd335d49efa95e165adf7ef06dda8e367661ac2517a0a3a96b4
GET /wp-content/themes/minimal-blog/assets/lib/line-awesome/css/line-awesome.min.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:08 GMT
Content-Type: text/css
Content-Length: 28101
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "6dc5-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/newsletter/subscription/style.css?ver=4.8.0
200 OK 5.1 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/newsletter/subscription/style.css?ver=4.8.0
IP
ASN #51852 Private Layer INC
Hash ac0fe8eb25f685da6bda20741d7371c7
e3da306718444c47ef7e41074c28c4dea31849b9
1ff78109bc845740a48c5d586f90f652707914ed5ac44d9a20f0bc3694e12747
GET /wp-content/plugins/newsletter/subscription/style.css?ver=4.8.0 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:08 GMT
Content-Type: text/css
Content-Length: 5054
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "13be-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/fma-product-custom-options/front/js/accounting.min.js?ver=4.7.24
200 OK 3.2 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/fma-product-custom-options/front/js/accounting.min.js?ver=4.7.24
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (3019)
Hash b34ee54abcdda3f94566ea5e7312fdbc
4230cb168bd0bc6f831da5ac89517c865e0bda96
de4945bf8c32247c3570f1945b4af05f3efb440b46c93c18d2f428ae9162c8ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fma-product-custom-options/front/js/accounting.min.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:09 GMT
Content-Type: application/javascript
Content-Length: 3151
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "c4f-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/style.css?ver=4.7.24
200 OK 47 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/style.css?ver=4.7.24
IP
ASN #51852 Private Layer INC
Hash 68e540f37576b76be18a90b89e223f36
3bae4438dd0aaf56a1f82a91e8e8ebe22b4156ac
cd10561a36bcf72179efee535a974cf2eef0184c9342b031372a74b260817bac
GET /wp-content/themes/minimal-blog/style.css?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:08 GMT
Content-Type: text/css
Content-Length: 46983
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "b787-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
200 OK 10 kB URL HTTP/1.1 www.sfreegames.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:09 GMT
Content-Type: application/javascript
Content-Length: 10056
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "2748-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/utils.js?ver=4.7.24
200 OK 9.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/utils.js?ver=4.7.24
IP
ASN #51852 Private Layer INC
File type ASCII text, with CRLF line terminators
Hash 451f87941e1e7dde1bf245423cace1cf
6a4c165db38910e2b7ec96e204390d52a7cdac74
5efb21ad47be382c6407f4ff07ecc12d06cb6bea9435c8eef9ba8dfe825e4254
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/utils.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:09 GMT
Content-Type: application/javascript
Content-Length: 9574
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 19 Jul 2022 18:25:44 GMT
ETag: "2566-5e42c9cdb6f53"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/customer.js?ver=4.7.24
200 OK 5.8 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/customer.js?ver=4.7.24
IP
ASN #51852 Private Layer INC
File type ASCII text, with CRLF line terminators
Hash 465fb7f40ac264a0af017f88bacf94de
9467dbbfcbf026a3b667a677e78fa1cdefb6729e
6cd7400679c792d7385c4f8a04405f0a9551c7a6beeaf362ad83eac8654c2b72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/customer.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:09 GMT
Content-Type: application/javascript
Content-Length: 5814
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 19 Jul 2022 18:25:44 GMT
ETag: "16b6-5e42c9cdb5fb3"
Accept-Ranges: bytes
www.sfreegames.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
200 OK 97 kB URL HTTP/1.1 www.sfreegames.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (31997)
Hash dc5ba5044fccc0297be7b262ce669a7c
f137ff98ae379e35b0702967d3b6866a0a40e3be
cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:09 GMT
Content-Type: application/javascript
Content-Length: 96874
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "17a6a-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woo-exchange-rate/assets/js/woo-exchange-rate.js?ver=4.7.24
200 OK 851 B URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woo-exchange-rate/assets/js/woo-exchange-rate.js?ver=4.7.24
IP
ASN #51852 Private Layer INC
File type ASCII text, with CRLF line terminators
Hash 26ef7a3777dfd4211b347e31d89fa330
975fa224e15a7ee65e24c8ac4ccf39752e826cf6
2a36c9d7f0f4acdc2f0f147bf7fde346c8a3c5780a5e46c1e8a1e16b1d3b818b
GET /wp-content/plugins/woo-exchange-rate/assets/js/woo-exchange-rate.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:09 GMT
Content-Type: application/javascript
Content-Length: 851
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "353-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.1.2
200 OK 2.1 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.1.2
IP
ASN #51852 Private Layer INC
File type HTML document, ASCII text, with very long lines (2084), with no line terminators
Hash 4eb91ab2e0700e25ede6519f0123dc8a
cdedf5f767b46fad27df60237c157b9827ccff66
46fb5d05de7e8413a56fa7c0127cb314e3a34e5628a84d20ab75babd78995148
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:09 GMT
Content-Type: application/javascript
Content-Length: 2084
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "824-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=4.12
200 OK 895 B URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=4.12
IP
ASN #51852 Private Layer INC
Hash 902b7ca09549975e55e136fb0026df9a
ae9b808c87bbbf57b9f3132c41effaaa12af03ff
2685c1caf9a3e6616da70c63212ff6d6a6747e4929edf55832ebd18ef7a43ccf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=4.12 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:09 GMT
Content-Type: application/javascript
Content-Length: 895
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "37f-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.3.1
200 OK 62 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.3.1
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (32020)
Hash 6779837652f083fd475527efe6ee65eb
443c12d17d25cf0b30838fb5af7418e45e2225b7
8504ca677f8718d753fe1c169f50d2be94444a70b6ec5d7ec014baa9c0ec78f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.3.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:09 GMT
Content-Type: application/javascript
Content-Length: 62384
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "f3b0-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
200 OK 15 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (14900)
Hash f448c593c242d134e9733a84c7a4d26c
374aa1f8db17575b0e35eabc46ad82062e09106c
c90f0e501d2948fbc2b61bffd654fa4ab64741fd48923782419eeb14d3816fb8
GET /wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:10 GMT
Content-Type: application/javascript
Content-Length: 15248
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 19 Jul 2022 18:25:44 GMT
ETag: "3b90-5e42c9cdb6b6b"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.6.1
200 OK 12 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.6.1
IP
ASN #51852 Private Layer INC
Hash 4d8fba06685817936abd67e760880dbe
ab16960316e6cfa45f903f9de67851c267bdcff8
4b5c67e6e2d47eda439a810c756e06378b686c31efafcf26ef9589fa238b735d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.6.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:10 GMT
Content-Type: application/javascript
Content-Length: 12193
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Tue, 19 Jul 2022 18:25:44 GMT
ETag: "2fa1-5e42c9cdb6f53"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.15
200 OK 2.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.15
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (2502)
Hash 7c4b11fd9dea3b04b09548f4cc40c826
c2dbdd487d2263e2e74a82806338e19eaf892601
b74869c8bf51bb878fa9bce4f459fd53feb8b5c230cb5795f9b835fcd0ae29d8
GET /wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.15 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:10 GMT
Content-Type: application/javascript
Content-Length: 2568
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "a08-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.3.1
200 OK 107 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.3.1
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (27184)
Size 107 kB (107382 bytes)
Hash 1158097b9314f162e65b1025acd0bd64
a2073c06936eecd650766de92557ff097a3de75b
8fc173f0fbed3772b148991357c3359b9e1a1e67e807d1edfa9ef8ed0050f701
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.3.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:09 GMT
Content-Type: application/javascript
Content-Length: 107382
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "1a376-5d834aa807e80"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 16:20:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 16:20:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 16:20:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sfreegames.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 18:59:14 GMT
expires: Tue, 19 Sep 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 422500
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sfreegames.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 08:31:01 GMT
expires: Wed, 20 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 373793
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 16:20:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1
200 OK 9.9 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1
IP
ASN #51852 Private Layer INC
File type HTML document, ASCII text, with very long lines (9742)
Hash 43f17965d7a09624752f715c495d87b6
5b8dd8650ad58dd4cad0147f9dc6a91acd11afab
ad83333d5ac5200fae8aad7b56d3e7d77553a12aa5bacb916e098f539457b57b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:10 GMT
Content-Type: application/javascript
Content-Length: 9853
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "267d-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=4.12
200 OK 22 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=4.12
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (21539)
Hash 9ec3c315b67f434aabc4da58eabc6c3a
51b3a7d882f438d53dc69ca5289e92254160c09a
0c853c2cc205bafe5d893017b6a03a2acf0f04a11b85f80605514cf0ae540fe6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=4.12 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:10 GMT
Content-Type: application/javascript
Content-Length: 21638
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "5486-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=3.1.2
200 OK 5.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=3.1.2
IP
ASN #51852 Private Layer INC
File type Unicode text, UTF-8 text, with very long lines (5629), with no line terminators
Hash ac9ab830526a7caec85bff774ed595c6
6f433a47e2f0f67df27c2cfd94f0c2e715f03297
fe63a619ea4f8d7d9a6b0aa92e58ca45d53ffb8b615aaf59b147b29669cac8f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:10 GMT
Content-Type: application/javascript
Content-Length: 5632
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "1600-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1
200 OK 32 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (31466)
Hash 32dd3ac8dedae8ed78783aab7c4e4b28
4ffa72d4bf9fa7975a27afe7c2ced38c9e9aece3
f364177179e1e87538b04335cfdc42bbd96e1408658c9752ba08e01651279c9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:10 GMT
Content-Type: application/javascript
Content-Length: 31567
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "7b4f-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
200 OK 9.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (9172)
Hash 81b2be18696c4dfe620f7b6d0d75a566
0c3cd7bdf58a65b07e17be39cfe4e386571bb4bd
120aaf6681ca6d34a40c559779f0a0038582a79fce1b868ff901c94d27c89c72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:10 GMT
Content-Type: application/javascript
Content-Length: 9566
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "255e-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
200 OK 1.8 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (1680)
Hash 943f6eb962c25bd965e0f0e5a284fcd0
b050a98ebaef01d7597bf8c1acb995c0ef3bcbd9
50de09b0bb8d0ac656aa9b3a1e4ef58a3f2d1abd734cad68b0e12191e9d215ea
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:10 GMT
Content-Type: application/javascript
Content-Length: 1846
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "736-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.1.2
200 OK 562 B URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.1.2
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (562), with no line terminators
Hash 765234021a972dcbdd5ef011a4870b28
49c7cef1785f857aaca8d1757ac7aa26041c635d
c6361a648d15fdf9cad312750da2568bd07a34a58e2ee1e1cf6b50d878e11a08
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:11 GMT
Content-Type: application/javascript
Content-Length: 562
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "232-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.js?ver=2.2.1
200 OK 10 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.js?ver=2.2.1
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (570)
Hash 4753cc4b12116f9a03f46b891fc0a192
07b3af150f5aa0b09d4be856e3f3392cc9be4ec7
7292075e2213b37f6757c047a3c6a8be7e2ed25bed7d8c038aa292665180a473
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.js?ver=2.2.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:11 GMT
Content-Type: application/javascript
Content-Length: 10066
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "2752-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
200 OK 22 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (21592), with no line terminators
Hash e2335332e53dd86db3fb0c9fc25457af
9c2a6a68bbc2276abab96358fe2a54b014982cb9
d80483c2fe131fd9d01d51b0378e0c3e2a7571e91f4f0fbd37de6276a1b464d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:11 GMT
Content-Type: application/javascript
Content-Length: 21592
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "5458-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
200 OK 16 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (15658)
Hash abcac4975c248d31ee7f58af56e357a4
f9e3c45b908a633aa76d27804e183030fe311ae7
fdfbb661e5d5f32edf12ea356c0e6d457c96cc209d6601b310cc277bb950e8b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:11 GMT
Content-Type: application/javascript
Content-Length: 15736
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "3d78-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/js/navigation.js?ver=20151215
200 OK 2.9 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/js/navigation.js?ver=20151215
IP
ASN #51852 Private Layer INC
Hash 52d54b46e3bfd72a39bdac78295646bf
5a60a7621e25a2f4ec8813bb1cc3c40cdbf30384
6a7eefae915f04444bc5763bb2cfa18832ce09eaf003bd31dcbf36da4e4f6923
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/minimal-blog/assets/js/navigation.js?ver=20151215 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:11 GMT
Content-Type: application/javascript
Content-Length: 2907
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "b5b-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/js/skip-link-focus-fix.js?ver=20151215
200 OK 880 B URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/js/skip-link-focus-fix.js?ver=20151215
IP
ASN #51852 Private Layer INC
Hash 381a9581291af74e622863b9ae1436bd
f35f2272e27f51dcfaa0a78f7595bce348b62b9c
c9104efada1e3f4b091183121a645b8298608c10a5b16bc3b1cbcb409b4f2777
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/minimal-blog/assets/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:11 GMT
Content-Type: application/javascript
Content-Length: 880
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "370-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.1.2
200 OK 2.6 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.1.2
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (2569), with no line terminators
Hash 644c3d9618f705d98beccfe07802b0ea
10dfb4b21e028e4f2f861d65e6e25c7612af982a
ab57cd5b3fb673848d2225db8defde2f543b98bf173dec41b995dc61a9b6cf0f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.1.2 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:11 GMT
Content-Type: application/javascript
Content-Length: 2569
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "a09-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/js/main.js?ver=4.7.24
200 OK 2.7 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/js/main.js?ver=4.7.24
IP
ASN #51852 Private Layer INC
Hash 06843a36615750c46679d58cdbafde21
528ec553d50de8ae6b8a8c36356a7432c299e994
7859b8f61b9a1e270dbba8382b8bfe5e4adcded8e2a2df16c71db5aa3c674bf6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/minimal-blog/assets/js/main.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:11 GMT
Content-Type: application/javascript
Content-Length: 2706
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "a92-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-includes/js/comment-reply.min.js?ver=4.7.24
200 OK 1.1 kB URL HTTP/1.1 www.sfreegames.com/wp-includes/js/comment-reply.min.js?ver=4.7.24
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (1076), with no line terminators
Hash 9ef21a469fc37e845d6303fcfea70897
a86ec94ec7bee9227bcdf8d6374cabe82ae43e49
6b2e2d56e7b0e80d919bc65dd94f8cd95e57ad9298fc4fecc005301ea8339c9f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/comment-reply.min.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:11 GMT
Content-Type: application/javascript
Content-Length: 1076
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "434-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/magnific-popup/jquery.magnific-popup.min.js?ver=4.7.24
200 OK 20 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/magnific-popup/jquery.magnific-popup.min.js?ver=4.7.24
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (20087)
Hash ba6cf724c8bb1cf5b084e79ff230626e
f455c5f153f872e52265f87a644ff89fe14a6fb6
3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4
GET /wp-content/themes/minimal-blog/assets/lib/magnific-popup/jquery.magnific-popup.min.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:11 GMT
Content-Type: application/javascript
Content-Length: 20216
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "4ef8-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/slick/js/slick.min.js?ver=4.7.24
200 OK 42 kB URL HTTP/1.1 www.sfreegames.com/wp-content/themes/minimal-blog/assets/lib/slick/js/slick.min.js?ver=4.7.24
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (32076)
Hash b53bdfc29e18f4d493d775a8023fbdc8
e9fcbcc4fa70cba093b81d982a1b78509414cef7
e02af7df9a190d88380e2dcec2050ecaa493ae2d23526dbeec67f6907df3a752
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/minimal-blog/assets/lib/slick/js/slick.min.js?ver=4.7.24 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:11 GMT
Content-Type: application/javascript
Content-Length: 41953
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "a3e1-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-content/plugins/newsletter/subscription/validate.js?ver=4.8.0
200 OK 1.1 kB URL HTTP/1.1 www.sfreegames.com/wp-content/plugins/newsletter/subscription/validate.js?ver=4.8.0
IP
ASN #51852 Private Layer INC
Hash b562667fe2faa8b03924bed00a98d7ec
7f74851b9c5930f284e0f25fcf760d9a066e73c9
717c288dc6b91d3c1774be2fcf06f0eccd923966e3df65bef32b78e26cc18b75
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/newsletter/subscription/validate.js?ver=4.8.0 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:12 GMT
Content-Type: application/javascript
Content-Length: 1089
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "441-5d834aa807e80"
Accept-Ranges: bytes
www.sfreegames.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1
200 OK 1.1 kB URL HTTP/1.1 www.sfreegames.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1
IP
ASN #51852 Private Layer INC
File type ASCII text, with very long lines (1087), with no line terminators
Hash 3dc5811cb7bb6e67b9054c8c39f9f4c9
ced11144eb84a14db2b3b0ab92998128c5e88204
124f0860b7201dc2fa46889b30ac0e4269e84ac2e71c33dc025ed14ed15bd8f0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/hoverIntent.min.js?ver=1.8.1 HTTP/1.1
Host: www.sfreegames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfreegames.com/shop/dresses-maxi-dress-salwy-black-ana-alcazar-womens/
Cookie: PHPSESSID=gh00d2q2n3itgj19j2id3a4ni7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 16:21:12 GMT
Content-Type: application/javascript
Content-Length: 1087
Connection: keep-alive
Upgrade: h2,h2c
Last-Modified: Thu, 17 Feb 2022 10:59:54 GMT
ETag: "43f-5d834aa807e80"
Accept-Ranges: bytes
179.43.159.134
34.117.237.239
23.36.76.226
93.184.220.29