| boldloft.shop/ | 172.67.157.110 | | 0 B |
IP172.67.157.110:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 09 May 2024 03:06:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
X-Redirect-By: WordPress
Location: https://www.boldloft.shop/
Cache-Control: max-age=0
Expires: Thu, 09 May 2024 03:06:16 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L7CrVsFLClbKhGKfJulVSxyZY0dPX8BZAqOU7h9phiIOo3368Vg0fmQ2J5%2Bm0QAeGE583l3E9hkA7nDw8jSmbCdidHstEmej7KpGs1b6zMqfB%2FYKQHqWV4lkD%2F9WJyOj"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880e78fb3bcf56cc-OSL
alt-svc: h2=":443"; ma=60
|
|
| sw-themes.com/porto_dummy/wp-content/uploads/images/shop_payment_logo.png | 188.114.96.1 | | 1.6 kB |
URL sw-themes.com/porto_dummy/wp-content/uploads/images/shop_payment_logo.png IP188.114.96.1:0
File typePNG image data, 240 x 32, 8-bit colormap, non-interlaced Hash3084214edcd42575abb8f85b339a273b aeb0c655b5ca1e557f9e1b2f928f4eb1e1efd511 1368c2b3f5f7332592f321051c5b39bc794eaa0e584157d7926781c7d1e83579
GET /porto_dummy/wp-content/uploads/images/shop_payment_logo.png HTTP/1.1
Host: sw-themes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 09 May 2024 03:06:34 GMT
content-type: image/png
content-length: 1616
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 02 Feb 2023 05:38:50 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 163
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TGbK4Mc6bHwfNuyXPGLibFbaqqvgx913%2FUGBzWXAZPS35NAR5gKzxUo51TcDHgKw%2F2DncHgcTXnGWel4zjJdnwNnsYLM3ybHFWy5NlKO6%2BMswucDo4ahPerekj%2BEH9gW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e796dcd78b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.5.3 | 142.250.74.106 | 200 OK | 2.1 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.5.3 IP142.250.74.106:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash56a14ecc98ed16cb81238a0dd36d47af 3b6835ab7a5d283a1be3b35f9257c92dbe1d556e 8da9c9992a8330b69c66c4df3a7a17ce4ada66e5d66cc9de768e22680071a96d
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.5.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 May 2024 03:06:34 GMT
date: Thu, 09 May 2024 03:06:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/style.css?ver=1714042183 | 104.21.82.119 | | 28 B |
URL www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/style.css?ver=1714042183 IP104.21.82.119:0
File typeASCII text, with no line terminators Hash0320c07ca5fb49adf34c5361f29f3582 92445afbe317486d33d94a8b9f5cbb3e319fc727 4c1f9850e1c7c253ac387218e478215265546c83f35b8f3fa8d1163d9b4b8bcc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/style.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
content-length: 28
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: "662a3547-1c"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hu3TzQ6TmV5VzSlk6763mDGPrvdilbnqI14Kkicj1rb6wJyKpGu3upPzuYhO6lYiPcDDoI9a9LBrwsbYcOmX%2By%2FcKLUIqF9r5SJ%2F%2F4btsSDHImyD0UFzhfTB0c7%2Fn1R5Ry97Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e796cfd45b518-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/uploads/1714/52/cast-pendant-lamp-ceiling_0-300x300.png | 104.21.82.119 | | 6.5 kB |
URL www.boldloft.shop/wp-content/uploads/1714/52/cast-pendant-lamp-ceiling_0-300x300.png IP104.21.82.119:0
File typePNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Hashca8645a4e97f0408eefbc35bbbb82243 a02c6a442df9796ac199f7020042e108746837cf 38ce471752a212dcf0a9d663d5a52db6a290a35f2f9c62bc1e29fb8db84edf27
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1714/52/cast-pendant-lamp-ceiling_0-300x300.png HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: image/png
content-length: 6479
last-modified: Fri, 26 Apr 2024 17:26:24 GMT
etag: "662be3c0-194f"
expires: Sat, 08 Jun 2024 03:06:34 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7Di9il7vBpt3g0Sh4U4T7Bf0NhGE%2BO8EpMoNVR4QC5L8S16PdKAXzL0TObAohNepNFcatPjcCu4zsM1Bj2RVGbHwtD3jqWVCU1NDSCKCYsjjPiGxNfVuSdCfeZeYvxjj6dSOUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e796d1d5db518-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/uploads/1714/52/sticotti-bookshelf-kit-e-shelving_0-300x300.jpg | 104.21.82.119 | 200 OK | 12 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/uploads/1714/52/sticotti-bookshelf-kit-e-shelving_0-300x300.jpg IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 300x300, components 3 Hashc14b406a2ec1069a12b6055e0f9394bd 83ba116bd213a57cad4e01e4348c65fd584233ee ecaa727efec21695c292b4db7fc54eaa936338d4479fccc82bdf6781d6dc5d74
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1714/52/sticotti-bookshelf-kit-e-shelving_0-300x300.jpg HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: image/jpeg
content-length: 11995
last-modified: Fri, 26 Apr 2024 17:22:58 GMT
etag: "662be2f2-2edb"
expires: Sat, 08 Jun 2024 03:06:34 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zqfWhj5eLGUhDFXo2ONIIYLDXb5cKIazLJV7p6SpD3WV%2BVFSS5QkXeUnkf5960G8eN%2FoPzOfcD%2FKlIBY3VIPQSHWI24mcLtQzoU0WeaYChGxcDdwd1DZ%2FqioplwMxHfT%2BHR2hQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e796d1d5fb518-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/uploads/1714/43/bola-halo-pendant-lamp-more-options-classic-futurism_1-85x85.jpg | 104.21.82.119 | 200 OK | 1.6 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/uploads/1714/43/bola-halo-pendant-lamp-more-options-classic-futurism_1-85x85.jpg IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2, hostcomputer=imagery4], baseline, precision 8, 85x85, components 3 Hashc41dfde01bcf2a6a349b4355e53d0488 801de3e063e14daa2f25db7310e90ee6e4c0c94a 4ee7961c141ba7585f2f465908a7528092ba4acdc5abc3845bc274bd7f35f32c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1714/43/bola-halo-pendant-lamp-more-options-classic-futurism_1-85x85.jpg HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: image/jpeg
content-length: 1584
last-modified: Fri, 26 Apr 2024 14:55:52 GMT
etag: "662bc078-630"
expires: Sat, 08 Jun 2024 03:06:34 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5g%2F3Cv5sI8%2BSBOZaY6XsRse5y6jDBlYZbkljcoLVFO11bvoLXytOqjvFFTTJd4lXFdSMkONAfEPz7mRpIWQvHDdK%2FNXtHVCOnh5XlMT%2BC2HeNtdFdzjTL2VPoP%2BKKghqtjjD%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e796d6dc3b518-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/uploads/1714/43/bola-halo-pendant-lamp-more-options-classic-futurism_0-85x85.jpg | 104.21.82.119 | | 1.4 kB |
URL www.boldloft.shop/wp-content/uploads/1714/43/bola-halo-pendant-lamp-more-options-classic-futurism_0-85x85.jpg IP104.21.82.119:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2, hostcomputer=imagery4], baseline, precision 8, 85x85, components 3 Hashf2ca3b591da1c3958274a3167cf57aaf bae7720d5613efc79122ce99709f63d48d4076f0 5064032a20165137c1d2cb062d4a42c2cb2c1055df7838b02f555628d0dfdc31
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1714/43/bola-halo-pendant-lamp-more-options-classic-futurism_0-85x85.jpg HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: image/jpeg
content-length: 1401
last-modified: Fri, 26 Apr 2024 14:55:52 GMT
etag: "662bc078-579"
expires: Sat, 08 Jun 2024 03:06:35 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6pBaItS1fNKchK1X%2FtWmA30LlUWeg%2BmR5YzuRpy6CSggbFPryRWnDzxwUduwCchk3H3rbavumpx%2B2V47SyXJHbj6nXQlN9jA7FRu3bshhr%2FdMn6apdLOHTLK22pTkTHyxO65VQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e796d6db7b518-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/uploads/1714/48/oblique-bench-more-options-kids_0-85x85.jpg | 104.21.82.119 | | 1.4 kB |
URL www.boldloft.shop/wp-content/uploads/1714/48/oblique-bench-more-options-kids_0-85x85.jpg IP104.21.82.119:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 85x85, components 1 Hashf9c680d0669e4c6090cae6f05abd2e9b b1941d0716f397907fb68be03cf5c73b996efe30 28a5830fb764881e266681f81c61a74477362ac82c96b3ffe4fb2be73425caa9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1714/48/oblique-bench-more-options-kids_0-85x85.jpg HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: image/jpeg
content-length: 1394
last-modified: Fri, 26 Apr 2024 16:21:37 GMT
etag: "662bd491-572"
expires: Sat, 08 Jun 2024 03:06:34 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XqKGc1OwvBoY3CJVJknV21HMcM3LxnvhhE5lF2pQray%2FtyEhFxcHzTSErtg2uHlN5UoHPEAFKf1Vo7hZQeza9SUdIDbMamh%2FteYf1H3hNCbLV67sfR0hMv4ulsIL%2FvT3PKrQ5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e796d7ddeb518-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/uploads/1714/50/verso-baskets-set-2-more-options-gifts-under-100_1-85x85.jpg | 104.21.82.119 | 200 OK | 2.7 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/uploads/1714/50/verso-baskets-set-2-more-options-gifts-under-100_1-85x85.jpg IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 85x85, components 3 Hashb531f86b0907295d484a215535f4c299 1fbdd52878d10e1b7ce66275e29d70a03fd2f94f da08526283360539e125d5fc45441fc03b6b01b24b3911e8f4c1eba1f55086bf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1714/50/verso-baskets-set-2-more-options-gifts-under-100_1-85x85.jpg HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: image/jpeg
content-length: 2666
last-modified: Fri, 26 Apr 2024 16:51:48 GMT
etag: "662bdba4-a6a"
expires: Sat, 08 Jun 2024 03:06:35 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3N5nwUSYB9MtTH5%2BenPbz2bpd13frhTViQ2YFf4yxzNNwIZp9p3U5N%2BeIdo4evYMTMMI9h1rc2bBo%2Fs6%2FvFUF0cvXuSvJD4l0SEH3usD7t9f30sqIIj9nTfr6hMCY1YQIA9oHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e796d7dd9b518-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/uploads/1714/52/sticotti-bookshelf-kit-e-shelving_1-300x300.jpg | 104.21.82.119 | | 13 kB |
URL www.boldloft.shop/wp-content/uploads/1714/52/sticotti-bookshelf-kit-e-shelving_1-300x300.jpg IP104.21.82.119:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 5x5, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 300x300, components 3 Hash54a801dbfeaccee97070542107544fe4 c1c5af558b8b5605d4c3c8ad42d81323e5ebc950 4f006aa18da92ea4b91b78fd7e1286540e1c39a3b7d3f882381b1622c4899f1e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1714/52/sticotti-bookshelf-kit-e-shelving_1-300x300.jpg HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: image/jpeg
content-length: 13384
last-modified: Fri, 26 Apr 2024 17:23:04 GMT
etag: "662be2f8-3448"
expires: Sat, 08 Jun 2024 03:06:35 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=82Zj92jIw7%2BmqWq4zEi8xMRTjv62aKub1uI2DBouEDUl7Spe1DNt0oofnhG2Kb4qatxZx38P4h3uD7jQbZAhNyW3DoDEIwzjJabxV9qeRLTCpi01mfhlovsfpNcq8cAvLJACog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e796d6db3b518-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/uploads/1714/50/verso-baskets-set-2-more-options-gifts-under-100_0-85x85.png | 104.21.82.119 | 200 OK | 4.8 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/uploads/1714/50/verso-baskets-set-2-more-options-gifts-under-100_0-85x85.png IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typePNG image data, 85 x 85, 8-bit/color RGBA, non-interlaced Hashd088a74f72023d3201277920352d8359 6ed7be9b4f5ec8ca6b532007434f7db6b2ce6a02 e2b1d2e9a71cc05edbc09d9e6e6469a463462b9fc160012ccaca3f63f07b1c37
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1714/50/verso-baskets-set-2-more-options-gifts-under-100_0-85x85.png HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: image/png
content-length: 4784
last-modified: Fri, 26 Apr 2024 16:51:41 GMT
etag: "662bdb9d-12b0"
expires: Sat, 08 Jun 2024 03:06:35 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PJzBoqOXyidGsIpNEEfl63tAMGsTgNnuxrTZbMnmtI084pRjjLv053jNROHaEwRnd3zPXOSubz81nzF2CU%2FjoTCKPpLBIAe48ydq%2BiB17nepkqV5WAH815yDR%2Fa5Yp%2F04hOLKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e796d6dc6b518-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/uploads/1714/48/oblique-bench-more-options-kids_1-85x85.jpg | 104.21.82.119 | | 3.1 kB |
URL www.boldloft.shop/wp-content/uploads/1714/48/oblique-bench-more-options-kids_1-85x85.jpg IP104.21.82.119:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 85x85, components 3 Hashf09ffb74deb66583d9619ab8d15ff203 479591b288ee470c6c1d5f2b5df80e764c6b3596 3cf3c7ba1dd2570606d73e8a356ec58519a0852d7aa24d850eec2171453dac9b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1714/48/oblique-bench-more-options-kids_1-85x85.jpg HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: image/jpeg
content-length: 3070
last-modified: Fri, 26 Apr 2024 16:21:38 GMT
etag: "662bd492-bfe"
expires: Sat, 08 Jun 2024 03:06:35 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VnKTtdk424vFQnkIN9PhTa6lhThbQIjmBgPHiF84ilqoMq3xeM%2B2UzIJtELxyMEPY3WkWkSkmG0xNqbm4cUJ7H04%2F7eS%2F5VxSG9HTuEyxjOw9pFgnFZO2h%2FaPY%2BqBScOtgL%2BCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e796d7de5b518-OSL
alt-svc: h3=":443"; ma=86400
|
|
| collect-v6.51.la/v6/collect?dt=4 | 163.181.154.138 | | 0 B |
URL collect-v6.51.la/v6/collect?dt=4 IP163.181.154.138:0 ASN#24429 Zhejiang Taobao Network Co.,Ltd
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 262
Origin: https://www.boldloft.shop
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Thu, 09 May 2024 03:06:36 GMT
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: https://www.boldloft.shop
Access-Control-Allow-Credentials: true
Ali-Swift-Global-Savetime: 1715223996
Via: cache12.l2de2[183,183,403-0,M], cache12.l2de2[184,0], ens-cache26.gb4[200,199,403-1280,M], ens-cache26.gb4[202,0]
Cache-Control: no-cache
Age: 0
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-Error: orig response 4XX error
X-Swift-SaveTime: Thu, 09 May 2024 03:06:36 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: a3b59aae17152239965117676e
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/css/plugins.css?ver=1714042183 | 104.21.82.119 | 200 OK | 35 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/css/plugins.css?ver=1714042183 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash566e14f41292222eb21ca930bdde0944 e1178bc5094fbbc230fa936585e56698e26f994d 9761e8c96dbeb69a73cbdc73493e44d37e55bb7ce5579c539be854e99f8eb307
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/css/plugins.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-1c24a"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ph9xUwJyPc%2FYmbt4N8mIdrS8v16DEzN8he54ytyBHgPkzdjBbT%2BBqiUCYPYmN4zxHZHOOoojNfV2mOba0N87QTbjP4Q%2FYuiNXgURrYX0Mjla%2BaRm4T%2BhHv%2BocnBwQIM4ts490w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796ccd1ab518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=1714042183 | 104.21.82.119 | 200 OK | 12 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=1714042183 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeASCII text, with very long lines (16223), with no line terminators Hash6da6c8d78c46089d6b215f2a52cedcc2 b6f6662b150780633f4adcf48a81e045b02e0e8a fde233fecd445e0ebc6ac433b417171ca3612c9d7bd8a6ab16c87807f56aaf6b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-3f5f"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vhPkZY7jCr%2FjV3YGeXJ7TYl%2BkfQhGVc8wGAcJf9nAkvlKDqgne%2FhBG2gFZs9VI%2Fg0670OsIatR1UnjAD5r0KiOIhDanXTcxN9T0YXuCDRbcZv%2Fli%2FQxfPdzLjjdbCgTEEopEwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796cbd14b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme_shop.css?ver=1714042183 | 104.21.82.119 | 200 OK | 36 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme_shop.css?ver=1714042183 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hasha2be8aff80c20adf839c0d565135430f b15d2e7a719223b070c5970bc92d28f8a914cb20 cb63cef0943a3e07afde4bdf8cee3d9e0fcac13d42e05aec6dce109c0ec23eec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/css/theme_shop.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-24588"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sJQCzMUWC8PiZBvom2VO7W%2BEvHNQg1z26WFvWQ3R5yGFGKku3eCk5mpFyoaUgxFVhcHFK5uLjTyL8IcvWE%2F2qBno6D4kwUD8rO7qwilx0tNa%2BYqfKG1oiLuX9ddLP%2BCAJBzkmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796ccd1eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 104.21.82.119 | 200 OK | 36 kB |
URL GET HTTP/3www.boldloft.shop/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:44 GMT
etag: W/"662a3548-15601"
expires: Thu, 09 May 2024 15:06:35 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FRhQKdtivwCXTahOQ7pMy%2FoaXe3kbqex9l1LGGCl0HfpwMfMGnzsfJBGh7RsCdrO31YmuETSGDOWgldiZ3%2BNzobLB2oWRDnM0IRtWHYBfCMygHkV0ExqYg%2FTE33ZmVwN94SQMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796d0d50b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1714042183 | 104.21.82.119 | | 6.3 kB |
URL www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1714042183 IP104.21.82.119:0
File typeASCII text, with very long lines (2342), with no line terminators Hash1a1cb56f002e6194505129baa93f9825 227859a55318c09980a847518d52dfd689ba43d7 88f21490128244f54a38864c301f0c9be49f323f6da36c5f5a6bd02175647ada
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-926"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BRkcPGK8HkMxyKy2dnryj2Woih9n0Ncb6xeVklwKCxNft2EEltXql89Som9B78dWE1mJP0orBVy%2BDRP%2FeS3EROanyuuWwP3JjkTocur4Cl2EpHXOldlpoGrlQbSDUjU6DusOwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796cad0eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/themes/porto-child/style.css?ver=6.5.3 | 104.21.82.119 | 200 OK | 9.2 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/themes/porto-child/style.css?ver=6.5.3 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeASCII text, with very long lines (400), with CRLF, LF line terminators Hash58edb82abd16eb13753d3c02a207f88e 8cb2ff16da34ad573b9e933e51473756eaaae116 cd2469bf640dc92487bc681794f3a53358863da2586874529e7f7145c21e1208
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto-child/style.css?ver=6.5.3 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
last-modified: Thu, 25 Apr 2024 10:49:44 GMT
etag: W/"662a3548-312"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QZJ2t4ZO1HwkmZLyONbvnp1HjDQaiYazGL7rLtCTj%2FSnXajNefkEl0cC9rdS3chJ1WA9KwERxm4YbXdZJBhiLNFey3N58SP3brsPlxl4btxhtn0b0%2Bay6sKfZSQkxlXSJ9CVcg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e796d0d49b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/uploads/1714/54/curvature-hook-more-options-kitchen-dining_1-300x300.jpg | 104.21.82.119 | | 7.9 kB |
URL www.boldloft.shop/wp-content/uploads/1714/54/curvature-hook-more-options-kitchen-dining_1-300x300.jpg IP104.21.82.119:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 300x300, components 3 Hashbcc8ea03b15f27ac8c30af7c931d31f6 ce82bf45d0ded64979c27f47b3679417524f3c5a da9dc4953b1455a6a1d2702a8c7c7b09f0b72031addbeef4a968a2cc6e6addb7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1714/54/curvature-hook-more-options-kitchen-dining_1-300x300.jpg HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%2267a7f8fd-61d4-502e-8a6f-cc8db30d7056%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715225795989%2C%20%22ct%22%3A%201715223995989%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=8fbb6b64-2a6b-5ca7-bf92-14f0e0254664; __51vuft__KHkbEi6sh2jJsBBW=1715223995993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:36 GMT
content-type: image/jpeg
content-length: 7913
last-modified: Fri, 26 Apr 2024 17:53:37 GMT
etag: "662bea21-1ee9"
expires: Sat, 08 Jun 2024 03:06:36 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4b1OKZQKMMziV4CcRCLYglT8mJyfhbqII6xZh0bPC5ih%2BQonY6MfnhNoyz%2Bv%2FFTJTm22Qb4k9lpWnru%2B1%2BX7H%2BTm4M7xkky1q9xHsJq1%2FahkXCDVVrVoeQyfPzkiWG4GZht2MQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e7978aba7b518-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1714042183 | 104.21.82.119 | | 26 kB |
URL www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1714042183 IP104.21.82.119:0
File typeASCII text, with very long lines (10351), with no line terminators Hashb4eefed94a4409b1b967c1d9f3f24ca7 dfbb92b5f3daa0dc92bbecdfd48552503c7da728 aaa023fab455c76dbff35378941f3387e1ed67389d820c57cf2d1cd92c72b952
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-286f"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=11enSrelfo5q8moPpUtLWaldis7AUT9RBfdJcxW0EQp1%2F%2B4p0HZ9cQoLyBAzQ6oJrTR0srsKJI3d5dPauxUyo6Q2w4YJwlbWrPa9ZhuZDsPal7qt3Fe2qKodBMLFpcVgNe9Ieg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796c9d02b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-includes/js/imagesloaded.min.js?ver=5.0.0 | 104.21.82.119 | | 14 kB |
URL www.boldloft.shop/wp-includes/js/imagesloaded.min.js?ver=5.0.0 IP104.21.82.119:0
File typeJavaScript source, ASCII text, with very long lines (4358) Hash6823120876c9afc8929418c9a6f8e343 90b0adb37d70ffec5f9189c36bb0027c310c9502 b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:44 GMT
etag: W/"662a3548-1590"
expires: Thu, 09 May 2024 15:06:35 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MnYJFbJjXrs24aE5d%2FomU4o90xEiEZ5xhZsIECOr02JKnOcap2hUnQXSFnGZ44gF2v1ouET2qsOs1jjs%2BWnlc0iH%2BLMpsZ%2BqjvfvyM51Kvg6YMIjPuRsryLPdbwYD4gRSxWyRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796d8dfcb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/uploads/porto_styles/shortcodes.css?ver=1714042183 | 104.21.82.119 | | 38 kB |
URL www.boldloft.shop/wp-content/cache/min/1/wp-content/uploads/porto_styles/shortcodes.css?ver=1714042183 IP104.21.82.119:0
File typeUnicode text, UTF-8 text, with very long lines (65522), with no line terminators Hashc1338fc2ca1e92d29b01cc04b3c61987 77ae92b8e64bf76e0bdee74b828672e20ac18f0f 62b06add1db87a865dc95561de1b10f8596d20ec584b946bea17f2d60a1c7e8d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/uploads/porto_styles/shortcodes.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-22a2e"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vlcKzRbLy87r105TlEkAbU%2Fs3DWIY%2FNDTiUlsVcdYnKAKimlftfcKfnNZScu0fQaC%2BJ0md3mSrtUwm%2FNaYIMVQUZH2ee20X1plv3YP5o88FHdPeoJULhkqXL3j0L67%2BelVamRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796ccd1db518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=1714042183 | 104.21.82.119 | 200 OK | 80 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=1714042183 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeASCII text, with very long lines (9798), with no line terminators Hashdb3d2e50db5e80751aaea02d3560658c e3b464f167f35cba900b4961dc5942618fdacabf 1cd99c038807445186f081e47f44964dece8c73a577178c2ab87854a6bebe580
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-2646"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7l5w1RCjdiaOtQacxfbX283uDn44CQYvgn9ob53Dr3b%2FDnq8ESTzEdS86JDs6b8L4OdXK%2BzGL5%2F7jQQ1iH2PGsmlaXdadh00nRRBfpOEps5OeESU2lBS0Y%2FyG2v%2FB5BTdmkrgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796cad09b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/uploads/elementor/css/post-143.css?ver=1712686664 | 104.21.82.119 | 200 OK | 13 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/uploads/elementor/css/post-143.css?ver=1712686664 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeASCII text, with very long lines (6724), with no line terminators Hashd7ff6d2def3d002c85c151d70c421c2b ec127450fb3dce2b8e0fd79b014fb9d79b109275 73240e648a737b03b39c40f7f36c4f513899b0316e8b2a400fb7a91b2e8597ff
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/post-143.css?ver=1712686664 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:34 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:44 GMT
etag: W/"662a3548-1a44"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v6Q%2Foy2dkjGMn%2FUdU61bravCSpsmHaxi2QNmUpk0BcY4qzrArLxhXwYa59gC1inHbOLOjqnTL2IdHIZyUbvZyWGCsFkRriBXHKLiQcx0RLGL2AwuiX79%2B6nx%2F8RgmK3GySOm4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796cfd3eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme/shop/login-style/account-login.css?ver=1714042183 | 104.21.82.119 | | 6.5 kB |
URL www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme/shop/login-style/account-login.css?ver=1714042183 IP104.21.82.119:0
File typeASCII text, with very long lines (2499), with no line terminators Hash7110e48b7676742956f2cad7c345ea8e 9b6eef0af7babed5f3de409f4dc79691ed2c1be3 6bdbee68884f5749f4593f80dfd35b3a3a3c8d453ed386e2109382f989d07ffb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/css/theme/shop/login-style/account-login.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-9c3"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0D%2ByQqH80yS37ub4DlFCC%2FMKLcxrWOM6sTZyDcAaVLzfyxrmTknWSPg8oMqB%2BVVZYPwdkMIAGSO2GpC5FAgU%2B9AXvg24T8M3ohVokecYSbKG6kRHMbb5bHPI0eRb1RxeCDYicw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796ced2fb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.1.1 | 104.21.82.119 | 200 OK | 9.5 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.1.1 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeJavaScript source, ASCII text, with very long lines (1679) Hash53e07784d8fab2f50b99ff9868124992 d8739feb2845a3fa4a8c085aeabc4eb0e6945590 1533d5bc82424a9a3ac37a7fe543925909d25715d16938b9e02c728c86fd86e8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.1.1 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-735"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G013edhtrFHq%2BLIC56nwC19FXv%2BG%2F6vbUp2uZTe8vcZrKfMNQLIlCFYcXhEZnCmCAjgn8Ma4YnoC1Y%2F8dRSYxmhfR8cTHiwrZqlBkZhYrrUvgkr9B2w%2Fx7SHaSjHsORpLT3Ohw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796d8df0b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/uploads/porto_styles/dynamic_style.css?ver=1714042183 | 104.21.82.119 | | 18 kB |
URL www.boldloft.shop/wp-content/cache/min/1/wp-content/uploads/porto_styles/dynamic_style.css?ver=1714042183 IP104.21.82.119:0
File typeASCII text, with very long lines (50108), with no line terminators Hash8e8752d4b458e341e51096f009f1b69b e194c69f6ee4fa7bed977980c75e5ea9f2cb95d4 c6b0be2564fcde7bca0e7bc93fe336421e7bc4cad4ffb5080ce13a79a95846dd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/uploads/porto_styles/dynamic_style.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-c3bc"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mzrRaWweWK33UMdaFEk5gPZEpnbqtkjjeIP4gP4ZUpBz2qrhf3g8FQqgpkeBwCzCnBCj4wNwnwUIx0u51as0QBK2o1qdqnZVsqokAtGPIAu5Tu9q3LhcDxBKC2Nv%2Bob5lNR7qw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796cdd25b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/porto-functionality/builders/assets/type-builder.css?ver=1714042183 | 104.21.82.119 | | 12 kB |
URL www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/porto-functionality/builders/assets/type-builder.css?ver=1714042183 IP104.21.82.119:0
File typeASCII text, with very long lines (8777), with no line terminators Hashc9a4cf4fcb7f846c8db9578e9bb2309d a8e6b54294aa61396f6315b86ebc9b9288d89904 6cd6416ac9a07f3afbcceabd13bfb55787d5ce1691300d1fee0465b314c332a7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/porto-functionality/builders/assets/type-builder.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-2249"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=31rVsOvbLl3kHRL2GLV7OwOqwJ%2FVlieQARzRdzWvf9hDxeTXOM%2FrUoTAmOHnwj5SRY6LoMAOWZ4urNSZPRvaiheZ%2Fb3q3YAvnPFjsX1qNNr4uu67d%2FGntu9PQd0wWeT1dHraOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796cdd27b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0 | 104.21.82.119 | | 13 kB |
URL www.boldloft.shop/wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0 IP104.21.82.119:0
File typeJavaScript source, ASCII text, with very long lines (20113), with CRLF line terminators Hash9f55a34716e844184babd2dbeb441011 d6d2df510c0dc74ca24327ac48686d590451d8b4 c8eac9a3262dd857cc52d05a4fc4f1e4da96691e546d837a6ecf0a2c260d4bc6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:44 GMT
etag: W/"662a3548-4f15"
expires: Thu, 09 May 2024 15:06:35 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fexUX2Bd%2BC15vgkqC1WYq5ousDiGNBzPghvSCoPLl7a4RYM9IxxzxqY0KfuxXQ7kspEEQtwRp7LcsB55xO2oDaLPzWvX4VgEwQpjBCX8sY0JuQIdeoMnl1IJaM8EWVoiK3LN1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796d9e00b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=1714042183 | 104.21.82.119 | | 59 kB |
URL www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=1714042183 IP104.21.82.119:0
File typeASCII text, with very long lines (29595), with no line terminators Hash2dbdafd85a7037c6e6baa9683b2df642 6f5e128535075df09b43ed5c9cd85a4b1a0f4ceb ea2d00f4413b9ea5b23ee8e66e5b848c73de05da2af8efce8f8cc649722115ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-739b"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3ZCNcC%2BlmJ1RqlsyzBgE3%2BHsqo9gl342Ioo3sOww4TTZsaBKDTbAULtAHqZnmMaoWPcegvHaAbSgUJonS5OsdnrL1TX1d%2BaKJ1z3mbmVu4awQMXspprzYpkIbE3fYKzMFCgZjQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796cad0bb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1714042183 | 104.21.82.119 | | 84 kB |
URL www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1714042183 IP104.21.82.119:0
File typeASCII text, with very long lines (19883) Hashdbb092855d59598c20acf0729eda1273 b794b6a6ace8d8c0ec9bd4c9ea87d4b4c0868cfa 054d4eba2270037bdce228b46620018244a9f2fcf20b7eb23df59806e1eb1c93
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-4dd9"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zOxoTWeQyVesNeif6DzKf1u3IPvAEDt1j0Z7Kmu6fWh3sfmZrt3ozYpXPafUBPM9Ers5RJJjhJrIuYhENuHe3HS7BuG2ILcIp8ilQA%2F4JQAY1fwSY0uddHgX1sdXy8zA8sSmeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796cad10b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 | 104.21.82.119 | 200 OK | 70 kB |
URL GET HTTP/3www.boldloft.shop/wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeASCII text, with very long lines (59701) Hash51a8390b47aa0582cf2d9c96c5addee2 b16a640874025d085c38119a1a02a3460f83f2de 98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:44 GMT
etag: W/"662a3548-1bae5"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rJtwAvQVrdNQzHdtvYlQKdx2CUPfdu9UjcCf7uc4tln5%2BJmDQCkl%2BrdCdOuC07hHvCaw%2BrtGGIuuSQTu1MXYBzzeRjl2wEcbPHOaVlfWNPb7Ih%2BdkaCLA3crG9nlp8he8Hd4Vg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796c9d01b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/uploads/1714/52/myles-credenza-credenzas_1-300x300.jpg | 104.21.82.119 | | 27 kB |
URL www.boldloft.shop/wp-content/uploads/1714/52/myles-credenza-credenzas_1-300x300.jpg IP104.21.82.119:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, hostcomputer=imagery4], baseline, precision 8, 300x300, components 3 Hash09b1155fe10f2e8603c3c6999bad9c1d 26c0c17785b49e30df467143014996603008eefe 72dda5b8f14121e2f405a482ad5b3405096959160178f952a2c68905e6946819
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/1714/52/myles-credenza-credenzas_1-300x300.jpg HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%2267a7f8fd-61d4-502e-8a6f-cc8db30d7056%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715225795989%2C%20%22ct%22%3A%201715223995989%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=8fbb6b64-2a6b-5ca7-bf92-14f0e0254664; __51vuft__KHkbEi6sh2jJsBBW=1715223995993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:37 GMT
content-type: image/jpeg
content-length: 27305
last-modified: Fri, 26 Apr 2024 17:24:42 GMT
etag: "662be35a-6aa9"
expires: Sat, 08 Jun 2024 03:06:36 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rn2h8FsYvhJH6VVA2epwLyAJVU%2FxpTb5JKJbxdQ4E3%2BCBXoSEHsTj4wca%2FZlt6G6%2FKFAPbD%2BrGGapKoJ4AV6mBByLnTMm4CHwCJzVQSGKagy9N2tARVoe2A6WjoWHROUdwU7XQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e79788b95b518-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 | 216.58.207.227 | | 8.0 kB |
URL fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 8000, version 1.0 Hash72993dddf88a63e8f226656f7de88e57 179f97ec0275f09603a8db94d4380eb584d81cd5 f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.boldloft.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 15:13:04 GMT
expires: Fri, 02 May 2025 15:13:04 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:59 GMT
content-type: font/woff2
age: 561213
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| boldloft.shop/ | 104.21.82.119 | | 472 B |
IP104.21.82.119:0
Hash13316b3f9ab3d2b71bf1a041236f97b3 b371dc729e1154473760829895099229726fe35c 1d7fd75f7da8eb6f62c08ff5bd26a70e111a635ac7d292392732156a002bde0d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 09 May 2024 03:06:14 GMT
content-type: text/html; charset=UTF-8
location: https://www.boldloft.shop/
x-powered-by: PHP/7.4.33
x-redirect-by: WordPress
cache-control: max-age=0
expires: Thu, 09 May 2024 03:06:13 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wih2cjs%2FLXC%2FEd6FKskW7SxLvQ9xn4CS6WTmUFsfKeJ9NtYVCnbx%2BX7wkZLKM40TiTSH9vBf7QItwWCB%2FfnVkLpqEl5socMRKXDnggtU%2B7GcqHtrJoo%2F4IXxLNRpfSmj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e78e8cdd6b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 | 216.58.207.227 | | 7.9 kB |
URL fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.boldloft.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 19:57:12 GMT
expires: Fri, 02 May 2025 19:57:12 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 544165
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 | 216.58.207.227 | | 7.8 kB |
URL fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 7824, version 1.0 Hashaf4d371a10271dafeb343f1eace762bc 6d11d743bc3cfb169d70bc86450f18351dc1a905 60bf0aba6526436f3930c58c12047687fbb6bff4dd180cce4613458ed3439ea2
GET /s/poppins/v21/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.boldloft.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 06:27:59 GMT
expires: Sat, 03 May 2025 06:27:59 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:57 GMT
content-type: font/woff2
age: 506318
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 | 216.58.207.227 | | 7.7 kB |
URL fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 7748, version 1.0 Hasha09f2fccfee35b7247b08a1a266f0328 0da2d17e738f46d2a09e6fb7969da451719a9820 cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.boldloft.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 03:25:26 GMT
expires: Wed, 07 May 2025 03:25:26 GMT
cache-control: public, max-age=31536000
age: 171671
last-modified: Fri, 22 Mar 2024 00:01:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 | 216.58.207.227 | | 7.8 kB |
URL fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 7816, version 1.0 Hash25b0e113ca7cce3770d542736db26368 cb726212d5d525021752a1d8470a0fb593e0c49e 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.boldloft.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:53:08 GMT
expires: Fri, 09 May 2025 01:53:08 GMT
cache-control: public, max-age=31536000
age: 4409
last-modified: Fri, 22 Mar 2024 00:00:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=1714042183 | 104.21.82.119 | 200 OK | 11 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=1714042183 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeJavaScript source, ASCII text, with very long lines (10769), with no line terminators Hash73e40bc1184958ee16a59cbed591cb08 5fb9f64da55396f6b92e0f8dc5e24d1a174de576 f271360c544394f70c29284d881571e3b69ee6fa4a3a41d81c5a3d074cbeff4f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-2a11"
expires: Thu, 09 May 2024 15:06:35 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mH0QY82oUOhQD%2BuMRMgiII3vkdfsuO9GwpHQm3dwn1soKTD%2B4%2F10iN%2F1Mh2CeSwslgpQSsUj1DqfmFSn0c76Sp4C2eeEURAwcMAS5qZTg74Qf7hewPZcccJ746GrhvNj17hGzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796d7debb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.8.1.1 | 104.21.82.119 | 200 OK | 1.4 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.8.1.1 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeJavaScript source, ASCII text, with very long lines (1479), with no line terminators Hashf52f4f105760b97c65a34d5d08d6cd55 ec635d27940f2fb8d11f99cc4e945cc7fb2b06c6 03379c07a2783f0340be898f58fb74ecdaf2e45f40701313e92bc980b2865a0c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.8.1.1 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-586"
expires: Thu, 09 May 2024 15:06:35 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wmr%2BtX4MKyXCfU%2F%2F8lwrMvoH6HurUZF1crCW1nRvvbnCGEC0rsR3p4m9ox58sk79Q8WMiNn0STdPlO8GBUCG94jYguH1XxTvEgZQqOH%2BvjI4PFZqA39U9zZxL5xdJJo7yyKk8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796d8df8b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4 | 104.21.82.119 | 200 OK | 116 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
Size116 kB (115888 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:44 GMT
etag: W/"662a3548-1c4b0"
expires: Thu, 09 May 2024 15:06:35 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FOy4EZ%2B0s7q5iA%2Bj29KYjry4LgauKv%2F9lt0Hw9ebreBcEidlw%2BbZ1xqjMRS%2B1tt%2Fy3mPgQbc6eDSvdoE2l3RBaauN6kN3r%2B73Bieypi1QjWDU9IakdCIUBkBROiT2fwGLFf7dA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796d8df9b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.5 | 104.21.82.119 | 200 OK | 59 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.5 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.5 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-e5ec"
expires: Thu, 09 May 2024 15:06:35 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OqKvqt6YTdEnjwpK47cm8VIRBc6%2FlkXdLq44r5Ee18UMUJ1ijKX8%2By4vkpohtpXbdnxdizhgkDNMBt1CEwp7PaO35KLXZ%2Br7W4Vmgf7iu2qK0lPfQ0UlCURIpEXdsXq%2FV7NX6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796dae16b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/themes/porto/fonts/porto-font/porto.woff2 | 0.0.0.0 | | 0 B |
URL GET www.boldloft.shop/wp-content/themes/porto/fonts/porto-font/porto.woff2 IP0.0.0.0:0
Requested byhttps://www.boldloft.shop/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/fonts/porto-font/porto.woff2 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/css/plugins.css?ver=1714042183
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%2267a7f8fd-61d4-502e-8a6f-cc8db30d7056%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715225795989%2C%20%22ct%22%3A%201715223995989%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=8fbb6b64-2a6b-5ca7-bf92-14f0e0254664; __51vuft__KHkbEi6sh2jJsBBW=1715223995993
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| www.boldloft.shop/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.1.1 | 104.21.82.119 | 200 OK | 14 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.1.1 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeJavaScript source, ASCII text, with very long lines (13786), with no line terminators Hashc3825b9d2bb7e067a90db543db343f68 7ef77fddc64dd62688f242c7ae9ce4e9516b1eaa 70bb06a0005a4c1776d94eb9216dfb3841a5722ae2ed0c930664378b7d5c9504
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.1.1 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-35da"
expires: Thu, 09 May 2024 15:06:35 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0EfW9n6qIEzQPQ29ktWUYQo3XMk06jjeRn31w0cDSbUAllbj1WDlBVRwT3Ne6MNW0gWtArF%2BLBn%2FPWDcAKR3jJG5bUsLC30HDMFBGQmHZMBZoB%2Fz5botYNnjyuEnFry44413ow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796dae0fb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 | 104.21.82.119 | 200 OK | 12 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeJavaScript source, ASCII text, with very long lines (12198), with no line terminators Hash3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-2fa6"
expires: Thu, 09 May 2024 15:06:35 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lS1LZvGIt7zM65vzJZUTA65QxHv%2FfNddUqT3D6%2F4cHFAP1JXI2tPRoxRy6qGvGgiCRZ5zNR%2Fq6E3xdYXVuP%2BzOJLaFcl1wdN%2FE%2B0HJyVkHvz8diem1sSJYchTdlEB4f9XIZQNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796dbe1fb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/js/woocommerce-theme.js?ver=1714042183 | 104.21.82.119 | 200 OK | 97 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/js/woocommerce-theme.js?ver=1714042183 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeJavaScript source, ASCII text, with very long lines (1948) Hash5824087692f0d34e066728dac5f6e0c8 cbc89937bfa644b43af6964de6c1b1d26f0c1afc 2a8d45352e974b9e3d9161bf7be128488ae3422ec72755b3fcf5a784ce93e6d8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/js/woocommerce-theme.js?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-17c37"
expires: Thu, 09 May 2024 15:06:35 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HbgkbDs1NqRgWYv%2FvISw93WTOvCOd9s%2B2BWS41Yrkx2Bd7tLo2RFf4%2FEGNFBL%2Bf0ODYjFnTM6zRiGVkV249WbRqxAVEK%2FA8EIJm2uBo4sghztp%2BgHRsKoztqEUbg6SSudI5RNg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796d9e06b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.5 | 104.21.82.119 | 200 OK | 5.0 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.5 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeJavaScript source, ASCII text, with very long lines (5094), with no line terminators Hashe205d860dd27e4149619db10ab40fb96 02a4a3353cece3c7a70989d2306f67155100f8c3 ef87c72ae9210b1b1dbee55df7ee3529ec57a01e638b6ee5e6a820a51ba04365
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.5 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-1385"
expires: Thu, 09 May 2024 15:06:35 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E%2FpdNyB0a3HB6rOXLpNosi6JeYVH7%2BAny%2BtfwgJt9MUIEOIB%2BzEloX8N3CtOZYiuiTAmY2eGjMbB%2FpRLO4lilZ6ExLkEpWyqXNZtm991MuZYtF3fJkzy7iO%2FM4tRtVwvCFGKVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796dae10b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/plugins/51la/js-sdk-event.min.js?u=KHkbEi6sh2jJsBBW | 0.0.0.0 | | 0 B |
URL GET www.boldloft.shop/wp-content/plugins/51la/js-sdk-event.min.js?u=KHkbEi6sh2jJsBBW IP0.0.0.0:0
Requested byhttps://www.boldloft.shop/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/51la/js-sdk-event.min.js?u=KHkbEi6sh2jJsBBW HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%2267a7f8fd-61d4-502e-8a6f-cc8db30d7056%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715225795989%2C%20%22ct%22%3A%201715223995989%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=8fbb6b64-2a6b-5ca7-bf92-14f0e0254664; __51vuft__KHkbEi6sh2jJsBBW=1715223995993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| www.boldloft.shop/wp-content/themes/porto/images/flags.png | 0.0.0.0 | | 0 B |
URL GET www.boldloft.shop/wp-content/themes/porto/images/flags.png IP0.0.0.0:0
Requested byhttps://www.boldloft.shop/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/porto/images/flags.png HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/css/theme.css?ver=1714042183
Cookie: __vtins__KHkbEi6sh2jJsBBW=%7B%22sid%22%3A%20%2267a7f8fd-61d4-502e-8a6f-cc8db30d7056%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201715225795989%2C%20%22ct%22%3A%201715223995989%7D; __51uvsct__KHkbEi6sh2jJsBBW=1; __51vcke__KHkbEi6sh2jJsBBW=8fbb6b64-2a6b-5ca7-bf92-14f0e0254664; __51vuft__KHkbEi6sh2jJsBBW=1715223995993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| www.boldloft.shop/wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1712686238 | 104.21.82.119 | 200 OK | 117 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1712686238 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size117 kB (117372 bytes) Hashdbd516ad415847ec7381afef5f2e60c5 ad5cc2f9cd04bdb35562eeda53e99f4a82422c05 4e9f6ef440ba0c7d8c48806facbf3c8d4064c04692aea4c663e1584ce9489afb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1712686238 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:44 GMT
etag: W/"662a3548-1ca7c"
expires: Thu, 09 May 2024 15:06:34 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zibg835M1fjKWs8pjQkXGpko3bh0iU4rlkS9GtQ6cDxAxniyy8nREG4rGFgWX7cid79sP0msWoOvlZTJrbqiqd8kyPXgKYEr2bCq3Zw6ksZNqXg2HBlcYBdjwzFXezv7ZK7Frw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796cbd13b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/js/theme-async.js?ver=1714042183 | 104.21.82.119 | 200 OK | 84 kB |
URL GET HTTP/3www.boldloft.shop/wp-content/cache/min/1/wp-content/themes/porto/js/theme-async.js?ver=1714042183 IP104.21.82.119:443
Requested byhttps://www.boldloft.shop/ CertificateIssuerGoogle Trust Services LLC Subjectboldloft.shop Fingerprint7C:1A:CC:7E:DA:27:AF:09:ED:B6:0C:50:54:5D:7D:F0:EF:C9:9E:4A ValidityWed, 24 Apr 2024 09:32:09 GMT - Tue, 23 Jul 2024 09:32:08 GMT
File typeJavaScript source, ASCII text, with very long lines (2091) Hash59bd7259dbe0f83a7b57ce24da966bf6 fe632ea01a6cbd96220b41707c51dc726a2ae65b 2fea1a3de8fcbd970a05b96d5a0933f9f5c9cac7b4f6a45bdec4d6bf7c9ba650
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/cache/min/1/wp-content/themes/porto/js/theme-async.js?ver=1714042183 HTTP/1.1
Host: www.boldloft.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.boldloft.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 03:06:35 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Apr 2024 10:49:43 GMT
etag: W/"662a3547-149b9"
expires: Thu, 09 May 2024 15:06:35 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aVS4ltQOulmye7r54nr0%2B5nGtVs1Z%2FwIqizfvxnUeTHtavFeQDilRytQl9btY0TX26xMJ7poq1SKLwKcRJ7GS6WWmh1UljnMwS9Ypp%2FIR%2BsR9IHxf5rOPpy0dwtzgrIoajn9yw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e796d9e05b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|