Report - hmjardins.com.br/categoria-produto/floricultura/page/4

Report Overview

Submitted URL
hmjardins.com.br/categoria-produto/floricultura/page/4
IP
162.241.2.98
ASN
#19871 NETWORK-SOLUTIONS-HOSTING
Submitted
2024-04-25 14:04:59
Access
public
Website Title
Floricultura | Categorias de produto | HM Jardins - Floricultura e Jardinagem
Final URL
hmjardins.com.br/categoria-produto/floricultura/page/4/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
152

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
assets.pinterest.com	2560	2009-11-26	2012-05-21	2024-04-24	854 B	20 kB	151.101.236.84
maps.googleapis.com	33876	2005-01-25	2019-10-17	2024-04-25	1.8 kB	314 kB	142.250.74.138
www.google.no	25607	2001-02-26	2016-04-05	2024-04-25	580 B	578 B	142.250.74.163
log.pinterest.com	3464	2009-11-26	2014-02-24	2024-04-24	667 B	587 B	151.101.64.84
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-25	488 B	46 kB	142.250.74.106
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-25	1.3 kB	252 kB	142.250.74.168
use.fontawesome.com	942	2012-10-18	2017-01-30	2024-04-24	3.1 kB	576 kB	104.21.27.152
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-25	1.1 kB	100 kB	216.58.207.227
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2024-04-24	875 B	447 B	216.239.32.36
hmjardins.com.br	unknown	unknown	No data	No data	43 kB	1.7 MB	162.241.2.98
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-25	829 B	105 kB	151.101.2.137

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed
2024-04-25	medium	hmjardins.com.br	Sinkholed

ThreatFox

No alerts detected

JavaScript (33)

	URL	Size	First Seen	Last Seen
	connect.facebook.net/pt_BR/sdk.js#xfbml=1&version=v2.5	17 kB	2023-05-05	2024-05-04
Pretty URL connect.facebook.net/pt_BR/sdk.js#xfbml=1&version=v2.5 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:33:37 Last Seen2024-05-04 21:16:06 Times Seen44915 Hash b938e0b835c600209bdaae9d8ccda6d7 d5ee79d277057e05f002a18381722b5eb75d3883 d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b Loading...

	maps.googleapis.com/maps/api/js?key=AIzaSyC2LntcqmQpGjgww-5i8eGuJVD9hky0A4Y&callback=initMap	196 kB	2024-04-25	2024-04-25
Pretty URL maps.googleapis.com/maps/api/js?key=AIzaSyC2LntcqmQpGjgww-5i8eGuJVD9hky0A4Y&callback=initMap IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 16:05:07 Last Seen2024-04-25 16:05:09 Times Seen2 Hash a030da149202f2e4dd29f1995e0a7cac a96ed4bb796f30c1f380785202638af1dfab058c a9e05015259b5d1db82b33061ba262784557a8ce434e77aa0977cdf0c2f0d394 Loading...

	hmjardins.com.br/tok/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	14 kB	2023-05-09	2024-05-04
Pretty URL hmjardins.com.br/tok/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21:05 Last Seen2024-05-04 23:21:11 Times Seen82526 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.8.2	2.1 kB	2023-08-09	2024-05-04
Pretty URL hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.8.2 IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33:46 Last Seen2024-05-04 20:42:30 Times Seen9471 Hash 6d3b3d63df025e97f370c5efab2c96da 78c0c8e7504f9314b2e9fd714bbab530af52f2af 8c0b5e384ae00c512f4bb1ba5e2fe622fab4bfc541c99555df38c19c329d3fe6 Loading...

	hmjardins.com.br/categoria-produto/floricultura/page/4/	257 B	2024-04-25	2024-04-25
Pretty URL hmjardins.com.br/categoria-produto/floricultura/page/4/ IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 16:05:07 Last Seen2024-04-25 16:05:07 Times Seen1 Hash 5e5b117201f0c3e55d06c3ad7be04489 1993c5645898c311868e05b3a529367ba2386036 edcb766aa0ecbf8defa9020de493ec25a3ce6596eef7ec6730ed63dd714ee46e Loading...

	hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.8.2	2.1 kB	2024-04-11	2024-05-04
Pretty URL hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.8.2 IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 07:25:47 Last Seen2024-05-04 21:47:37 Times Seen146 Hash 46747310c4ec46332841f072bbe5719e 8a6e051763612e07e0da6786653aba9b3ff500c3 5c5acf26e6ab72a6913bd3afb3cf5442b00aa9f374c73d9dc6e12c984cfbb66b Loading...

	hmjardins.com.br/tok/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2	19 kB	2024-03-13	2024-05-04
Pretty URL hmjardins.com.br/tok/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-13 16:02:37 Last Seen2024-05-04 23:21:24 Times Seen2828 Hash b976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 Loading...

	assets.pinterest.com/js/pinit.js	361 B	2023-03-07	2024-05-04
Pretty URL assets.pinterest.com/js/pinit.js IP 151.101.236.84 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:44 Last Seen2024-05-04 23:15:17 Times Seen5028 Hash 9e724ccab52ce087d92250b1e06ef0ee 8000043a1fb8735345f8b27c65b85331099aed8d 3faadebc89cdb21d11634a032816f152462d1cb8903eb21d0642501fcad065de Loading...

	assets.pinterest.com/js/pinit_main.js?0.021524578418411267	68 kB	2023-03-07	2024-05-04
Pretty URL assets.pinterest.com/js/pinit_main.js?0.021524578418411267 IP 151.101.236.84 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:44 Last Seen2024-05-04 23:15:17 Times Seen4875 Hash 980b58b2bf6b18e45583fc3d1d05e145 90fd7a45d8ab0672d45ecaa9a4b7f430ffe1d149 20f0315c97ff7007f2e7a94d659e094a7efc01b8306da53987538c1101489e0e Loading...

	code.jquery.com/jquery-1.11.0.min.js	96 kB	2023-03-07	2024-05-04
Pretty URL code.jquery.com/jquery-1.11.0.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:10 Last Seen2024-05-04 18:40:14 Times Seen18696 Hash 8fc25e27d42774aeae6edbc0a18b72aa b66ed708717bf0b4a005a4d0113af8843ef3b8ff b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682 Loading...

	hmjardins.com.br/tok/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	88 kB	2023-11-03	2024-05-04
Pretty URL hmjardins.com.br/tok/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:43 Last Seen2024-05-04 23:21:11 Times Seen44112 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	hmjardins.com.br/categoria-produto/floricultura/page/4/	3.3 kB	2024-04-25	2024-04-25
Pretty URL hmjardins.com.br/categoria-produto/floricultura/page/4/ IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 16:05:07 Last Seen2024-04-25 16:05:07 Times Seen1 Hash 860b973a55d19c56cd8bbe7e75bf424b c2b7ae322c66dfd2383cc2d80d26be78894c60f8 d4363ec68bfca6f2e2c4c2155c244367de0d1356b036bdac1b85c3369bd15e11 Loading...

	hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.8.2	1.7 kB	2024-03-20	2024-05-04
Pretty URL hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.8.2 IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-20 13:06:17 Last Seen2024-05-04 18:33:57 Times Seen402 Hash 691a1e43450e7cda541a3bd6f10fd5db d3a78cb77ccec297c9d32fee99a2a4761f604a8c 8b083f64f2e9e8ac445c730dfce7013cc6449ce155fd1c2f42b60edba4ecb4b1 Loading...

	hmjardins.com.br/categoria-produto/floricultura/page/4/sandbox%20eval%20code	147 B	2023-04-11	2024-05-04
Pretty URL hmjardins.com.br/categoria-produto/floricultura/page/4/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-04 23:26:49 Times Seen344815 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-04
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-04 23:26:48 Times Seen344309 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	maps.googleapis.com/maps-api-v3/api/js/56/8/common.js	262 kB	2024-04-10	2024-04-25
Pretty URL maps.googleapis.com/maps-api-v3/api/js/56/8/common.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-10 20:15:54 Last Seen2024-04-25 21:32:11 Times Seen532 Hash 418ecbb83c2df2a704fdec98cba736bf 0b0535ebe27dfcef7437bc75cf33648c61be3dbe cf0c03bd0efee39705d10989e116ce08d2810c4ed1b578b6451dd26a34beede5 Loading...

	code.jquery.com/jquery-migrate-1.2.1.min.js	7.2 kB	2023-03-07	2024-05-04
Pretty URL code.jquery.com/jquery-migrate-1.2.1.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-04 22:22:26 Times Seen13159 Hash eb05d8d73b5b13d8d84308a4751ece96 743052320809514fb788fe1d3df37fc87ce90452 1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d Loading...

	www.googletagmanager.com/gtag/js?id=UA-4014111-32	202 kB	2024-04-25	2024-04-25
Pretty URL www.googletagmanager.com/gtag/js?id=UA-4014111-32 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 16:05:08 Last Seen2024-04-25 16:05:08 Times Seen2 Hash 39f02e1845c289a037f23f1176c4fde7 adf42b36e77d9dfdb0d0a8f473811d9886d42c5b 133ae855ee1ad374ceccdfd90577360561415752ec4abc2fbcada2b53d5d05bd Loading...

	moz-extension://374908d2-0475-4f5d-b9f6-d1abf756a6ed/lib/shim_messaging_helper.js	1.7 kB	2023-05-05	2024-05-04
Pretty URL moz-extension://374908d2-0475-4f5d-b9f6-d1abf756a6ed/lib/shim_messaging_helper.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:33:37 Last Seen2024-05-04 21:16:07 Times Seen45457 Hash 865f01cbb34eb505834e826380d7dc2e c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e 30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17 Loading...

	hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.8.2	9.6 kB	2023-08-09	2024-05-04
Pretty URL hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.8.2 IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33:46 Last Seen2024-05-04 20:42:30 Times Seen9430 Hash ef56117d1bb5cc41aa6bd127a49c7640 b9c2ed774177fc0fceba5cb58113024b23fe4fb7 d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620 Loading...

	maps.googleapis.com/maps-api-v3/api/js/56/8/util.js	186 kB	2024-04-10	2024-04-25
Pretty URL maps.googleapis.com/maps-api-v3/api/js/56/8/util.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-10 20:15:54 Last Seen2024-04-25 21:32:11 Times Seen530 Hash 6cc4537f5b0fb2554830940d2ef390c1 deae273e7dca2c26ffb13cd11c32280462fc351e c2f957bdab42c74b2dfa9f67e6fb1866edb41034f319d84ca185e5c0f1985f58 Loading...

	hmjardins.com.br/categoria-produto/floricultura/page/4/	274 B	2024-04-25	2024-04-25
Pretty URL hmjardins.com.br/categoria-produto/floricultura/page/4/ IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 16:05:08 Last Seen2024-04-25 16:05:08 Times Seen1 Hash 65d62e21883bc2149bb80d36f13b66e7 9bfc2637e677cddf5d82ea582d521cd3ac860c21 fd0508424d7bab02037d53f7b428817dd2353d8c93b01359dd52f7f1787c1bc2 Loading...

	hmjardins.com.br/categoria-produto/floricultura/page/4/	140 B	2024-04-25	2024-04-25
Pretty URL hmjardins.com.br/categoria-produto/floricultura/page/4/ IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 16:05:08 Last Seen2024-04-25 16:05:08 Times Seen1 Hash b2b1d3b91e4f81402271f89d5bac4ce0 4a31718b82d0612f25484fc47c3f59babc31a9b7 9f5ebdc7432bae37ca7359b940e92d9ba2dd96638b80153acddb1326f8072890 Loading...

	hmjardins.com.br/categoria-produto/floricultura/page/4/	562 B	2024-04-25	2024-04-25
Pretty URL hmjardins.com.br/categoria-produto/floricultura/page/4/ IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 16:05:08 Last Seen2024-04-25 16:05:08 Times Seen1 Hash feb14957553ac7f42937228377885ad7 c8a30ecda5cb4aefd9836756a7065658bd8fbb9d e452b527a948cdfda68e52c577b3e975adc940156d3670ac1be76bf8c1eb8a0e Loading...

	www.googletagmanager.com/gtag/js?id=AW-819486346&l=dataLayer&cx=c	229 kB	2024-04-25	2024-04-25
Pretty URL www.googletagmanager.com/gtag/js?id=AW-819486346&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 16:05:08 Last Seen2024-04-25 16:05:09 Times Seen2 Hash d2fba03e87b272ed6f07923c30e951a9 867b749f1ce094925f784f8d2a886ce14df42c08 bc507a677c32e41d5500bf3a7e2f17f3823761951aced92cf3d54ee01f5c747d Loading...

	hmjardins.com.br/categoria-produto/floricultura/page/4/	377 B	2024-04-25	2024-04-25
Pretty URL hmjardins.com.br/categoria-produto/floricultura/page/4/ IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 16:05:08 Last Seen2024-04-25 16:05:08 Times Seen1 Hash 1f9585c1d5588d186cda042d7a5c6a6b a42130610cc2aec8ff6b7aa347599d884887e32c cc5d53fd0385e039e6266ca936641bb46275344979ca71b57b7090eec0f7465b Loading...

	hmjardins.com.br/categoria-produto/floricultura/page/4/	278 B	2023-03-07	2024-05-03
Pretty URL hmjardins.com.br/categoria-produto/floricultura/page/4/ IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:18:30 Last Seen2024-05-03 19:48:22 Times Seen1261 Hash 5230b597ea743d78597a261af056c288 e3368ae4e12b3d936db53453a34b295a1b0e5b9b 2c938e35d74db4830f55f70bb050135f22f83f6ddfdf39f15f3e05c587a69312 Loading...

	hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.8.2	3.1 kB	2024-01-21	2024-05-04
Pretty URL hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.8.2 IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-21 00:01:31 Last Seen2024-05-04 18:33:58 Times Seen766 Hash e56bc891d47a0687c80dbe086a5b1e90 a9e643e186e62cbb3f0e518f473b8702c2945802 4f0a4e5ff7378b48f06c23a8ff4e52633c828fee56f2495085eeea5c1a7f8aba Loading...

	www.googletagmanager.com/gtag/js?id=G-T6Q7FQ9ZXJ&l=dataLayer&cx=c	272 kB	2024-04-25	2024-04-25
Pretty URL www.googletagmanager.com/gtag/js?id=G-T6Q7FQ9ZXJ&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 16:05:08 Last Seen2024-04-25 16:05:09 Times Seen2 Hash 6c28619f770fbb9da37b7c9877d1d873 5756f0d846ddde83e128ff00941d91368004e142 82efde9eab06fba4f20b777d6fcb201ce8b3fb6d4155b3ed252608f6cb213cf9 Loading...

	hmjardins.com.br/categoria-produto/floricultura/page/4/	506 B	2024-04-25	2024-04-25
Pretty URL hmjardins.com.br/categoria-produto/floricultura/page/4/ IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 16:05:08 Last Seen2024-04-25 16:05:08 Times Seen1 Hash 9f30f3f47b20ea2b8684a6f2145aecf4 b24fd260aed93ab2b1e377cbc14c1347242ff593 71e077521e43dfc96073e07373e5891a40f1fb4619ec89b8e88eb23104206279 Loading...

	hmjardins.com.br/categoria-produto/floricultura/page/4/	152 B	2023-03-07	2024-05-04
Pretty URL hmjardins.com.br/categoria-produto/floricultura/page/4/ IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:09 Last Seen2024-05-04 22:40:53 Times Seen20074 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	hmjardins.com.br/categoria-produto/floricultura/page/4/	665 B	2024-04-25	2024-04-25
Pretty URL hmjardins.com.br/categoria-produto/floricultura/page/4/ IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 16:05:08 Last Seen2024-04-25 16:05:08 Times Seen1 Hash 2ee52560cfc4b5b0194a9a3263a7f8e2 ec5eb863779a01a9c41bda87d82f6624895328c3 3bef68720ae0262d350148021ae476954ce9a85a5c63b393955c56182d733583 Loading...

	hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.8.2	14 kB	2024-01-10	2024-05-04
Pretty URL hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.8.2 IP 162.241.2.98 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-10 00:29:36 Last Seen2024-05-04 21:47:37 Times Seen1744 Hash af44f82a13e50f4ab09a194247ac71bc e1c921fa718e918e70a25cd278a9ff5b8be9c2bf 881f4e9fde0d4d4bdcf1eae9fd2d68378c5203969e6ceedf59b4e29567f238a9 Loading...

HTTP Transactions (99)

URL IP Response Size

hmjardins.com.br/categoria-produto/floricultura/page/4

162.241.2.98

301 Moved Permanently

0 B

URL User Request GET HTTP/2
hmjardins.com.br/categoria-produto/floricultura/page/4
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /categoria-produto/floricultura/page/4 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
x-redirect-by: WordPress
location: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
content-length: 0
content-type: text/html; charset=UTF-8
date: Thu, 25 Apr 2024 14:04:30 GMT
server: Apache
X-Firefox-Spdy: h2

code.jquery.com/jquery-migrate-1.2.1.min.js

151.101.2.137

200 OK

7.2 kB

URL GET HTTP/2
code.jquery.com/jquery-migrate-1.2.1.min.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7085)
Size
7.2 kB (7199 bytes)
Hash
eb05d8d73b5b13d8d84308a4751ece96
743052320809514fb788fe1d3df37fc87ce90452
1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d

HTTP Headers

GET /jquery-migrate-1.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: "28feccc0-1c1f"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 25 Apr 2024 14:04:32 GMT
age: 96916
x-served-by: cache-lga21931-LGA, cache-hel1410026-HEL
x-cache: HIT, HIT
x-cache-hits: 51, 6626
x-timer: S1714053872.136513,VS0,VE0
vary: Accept-Encoding
content-length: 7199
X-Firefox-Spdy: h2

code.jquery.com/jquery-1.11.0.min.js

151.101.2.137

200 OK

96 kB

URL GET HTTP/2
code.jquery.com/jquery-1.11.0.min.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32341)
Size
96 kB (96381 bytes)
Hash
8fc25e27d42774aeae6edbc0a18b72aa
b66ed708717bf0b4a005a4d0113af8843ef3b8ff
b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682

HTTP Headers

GET /jquery-1.11.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: "28feccc0-1787d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 25 Apr 2024 14:04:32 GMT
age: 100920
x-served-by: cache-lga21931-LGA, cache-hel1410026-HEL
x-cache: HIT, HIT
x-cache-hits: 52, 8604
x-timer: S1714053872.137816,VS0,VE0
vary: Accept-Encoding
content-length: 96381
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/slick-1.8.0/slick/slick.css

162.241.2.98

200 OK

569 B

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/slick-1.8.0/slick/slick.css
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
ASCII text
Size
569 B (569 bytes)
Hash
3a6d19325a8c2c215abe1c57a5c29728
e8d8c73f46c99d3812d6051c6f3be3e392e876c3
220520c975ab78ecc7525086d05c2006055e4fe2360b944408c644b9f2269ced

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/slick-1.8.0/slick/slick.css HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Sep 2018 13:00:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 569
content-type: text/css
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/slick-1.8.0/slick/slick-theme.css

162.241.2.98

200 OK

1.1 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/slick-1.8.0/slick/slick-theme.css
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
Unicode text, UTF-8 text
Size
1.1 kB (1066 bytes)
Hash
f9faba678c4d6dcfdde69e5b11b37a2e
81a434f94f2b1124f3232bb86f2944f82fb23ac0
7adaf08052c6a6a0f8a0d0055b4f191fd07389fe41c972b69573472b2ecb406a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/slick-1.8.0/slick/slick-theme.css HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Sep 2018 13:00:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1066
content-type: text/css
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/fonts/font-hm/css/animation.css

162.241.2.98

200 OK

232 B

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/fonts/font-hm/css/animation.css
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
ASCII text
Size
232 B (232 bytes)
Hash
5efb6f925470166045ba28c25131f79a
181bbc89ec978981bf0ef8c7239710ae5b3ad6a1
c5221cfe37e6f0b011346164e7b3378c106807dc0d42fc0887440ab36c09e205

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/fonts/font-hm/css/animation.css HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 232
content-type: text/css
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/categoria-produto/floricultura/page/4/

162.241.2.98

200 OK

85 kB

URL User Request GET HTTP/2
hmjardins.com.br/categoria-produto/floricultura/page/4/
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9462)
Size
85 kB (85001 bytes)
Hash
5e560053b8e0aa3653a1dc7b3049c422
ea37ed47c0841fb060c8163b7e35380ae1f1fbdf
fb0c64b0bd517d5db2aab065db99914bb400c5cd2745624dcfcf0c71059f823f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /categoria-produto/floricultura/page/4/ HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
link: <https://hmjardins.com.br/wp-json/>; rel="https://api.w.org/", <https://hmjardins.com.br/wp-json/wp/v2/product_cat/2513>; rel="alternate"; type="application/json"
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Thu, 25 Apr 2024 14:04:31 GMT
server: Apache
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-4014111-32

142.250.74.168

200 OK

73 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-4014111-32
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
73 kB (73231 bytes)
Hash
39f02e1845c289a037f23f1176c4fde7
adf42b36e77d9dfdb0d0a8f473811d9886d42c5b
133ae855ee1ad374ceccdfd90577360561415752ec4abc2fbcada2b53d5d05bd

HTTP Headers

GET /gtag/js?id=UA-4014111-32 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 14:04:32 GMT
expires: Thu, 25 Apr 2024 14:04:32 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73231
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/jquery-ui/jquery-ui.css

162.241.2.98

200 OK

9.7 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/jquery-ui/jquery-ui.css
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
ASCII text, with very long lines (2363)
Size
9.7 kB (9657 bytes)
Hash
c7f65389669e2a37005eeb5214d3ce58
23c7264235fa6b95cc779ddb7a5cf425c8cc6933
05ebf5335e644527e4787d7ec4ca4ab104d5da6b471f852afcef172fef5b0993

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/jquery-ui/jquery-ui.css HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:00:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9657
content-type: text/css
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/valida_cpf_cnpj.js

162.241.2.98

200 OK

5.1 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/valida_cpf_cnpj.js
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JavaScript source, ASCII text, with very long lines (9113)
Size
5.1 kB (5130 bytes)
Hash
477e8dec755db561fcdf4663c854209c
18d3964f47333eab0714fb1a500cbf2268ed0593
11bc5feb2ce86dcca2149c42561a16b91146596d1cee7f88402b458a713c3bd9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/valida_cpf_cnpj.js HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:00:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5130
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/j-mask.min.js

162.241.2.98

200 OK

6.8 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/j-mask.min.js
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JavaScript source, ASCII text, with very long lines (9112)
Size
6.8 kB (6771 bytes)
Hash
9cbff8dee7454d2fdfb8f47553b64c8b
4086bbe33e659944d6a0ad13cfc300b1a2e77f73
6e390a6344f1c83e27f21feae858a5973f4670f4fb41780d8a4bbd85f573fe92

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/j-mask.min.js HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 22 Aug 2018 14:32:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6771
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/wp-svg-icons/custom-pack/style.css?ver=6.5.2

162.241.2.98

200 OK

480 B

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/wp-svg-icons/custom-pack/style.css?ver=6.5.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
ASCII text
Size
480 B (480 bytes)
Hash
81d3ecc3a09044ea9e61e018b9ba2ec5
77694edc4c7dfb5884281a8358989626bb4d4f5d
35f80c1f4480f24c1c1af4ca44e1ffa817c43621d191d5dd0e315d7da5e28809

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/wp-svg-icons/custom-pack/style.css?ver=6.5.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 16 Sep 2015 19:56:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 480
content-type: text/css
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/imagem-marca.png

162.241.2.98

200 OK

8.8 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/imagem-marca.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 295 x 125, 8-bit/color RGBA, non-interlaced
Size
8.8 kB (8752 bytes)
Hash
446a74ee4e3bdf8df501c805b3058654
b1a6d0870fe188d91b26479ce133ca776a25ab92
47aef568e71b0231437199a85fee4ae06d86578ff12f97ca320fe315fb3f374e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/imagem-marca.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 22 Jul 2020 14:05:29 GMT
accept-ranges: bytes
content-length: 8752
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/felicidade-300x300.jpg

162.241.2.98

200 OK

9.7 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/felicidade-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google, copyright=Copyright 2009], baseline, precision 8, 300x300, components 3
Size
9.7 kB (9727 bytes)
Hash
24caaf7e621ed22217fedceb157710b8
777429d9a1c7630fd925ad858953f4f2af794d8c
fd5e174c5cc0defee7d148087d3ffc2dea957d76e95e04bfa48606b8c48198a2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/felicidade-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 05:09:55 GMT
accept-ranges: bytes
content-length: 9727
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/plugins/svg-vector-icon-plugin/admin/css/wordpress-svg-icon-plugin-style.min.css?ver=6.5.2

162.241.2.98

200 OK

6.3 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/plugins/svg-vector-icon-plugin/admin/css/wordpress-svg-icon-plugin-style.min.css?ver=6.5.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
ASCII text, with very long lines (31938), with CRLF line terminators
Size
6.3 kB (6289 bytes)
Hash
b21b6b0b6ab243413374d8f8e464160a
9b14d1732db5b4f3387215146dca6fac22393b1d
dc961608c08d46f61c2128879161f64ce176ea2917e70677687aba66992a5652

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/plugins/svg-vector-icon-plugin/admin/css/wordpress-svg-icon-plugin-style.min.css?ver=6.5.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 22 May 2020 12:27:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6289
content-type: text/css
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/client/blocks/wc-blocks.css?ver=wc-8.8.2

162.241.2.98

200 OK

3.3 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/client/blocks/wc-blocks.css?ver=wc-8.8.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
Unicode text, UTF-8 text, with very long lines (9186)
Size
3.3 kB (3254 bytes)
Hash
2408ade926b71fe4f88ffb508f01adbd
185c156e0e01adfed7eba804eaa956965cf2dc9e
9e8a3a012ab500ce90d9ad5c0fbeca46eaaa80780b944466a1c9a05ebf2e61f3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/plugins/woocommerce/assets/client/blocks/wc-blocks.css?ver=wc-8.8.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Apr 2024 17:27:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3254
content-type: text/css
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/woocommerce-placeholder-300x300.png

162.241.2.98

200 OK

12 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/woocommerce-placeholder-300x300.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Size
12 kB (11913 bytes)
Hash
c1e6eaac9d0dc7d1ee6a5073d350cd2f
1b914ee0c9a5cd7f8239acc8cca2be6c4d7ba74d
6df9be4d23da18b3eb5b0c75f324f86600cf8b2b4ef5a2ded4810a3fb7dc6a84

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/woocommerce-placeholder-300x300.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 01:12:39 GMT
accept-ranges: bytes
content-length: 11913
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/flores-azaleia-300x300.jpg

162.241.2.98

200 OK

18 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/flores-azaleia-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, manufacturer=Canon, model=Canon EOS 550D], baseline, precision 8, 300x300, components 3
Size
18 kB (18161 bytes)
Hash
b1c50dba613d07d0d931332b352d2d44
21d8ee8b0eaedb0fb40844fab5cd9d6ae7f56148
13719bb52163d649911be356fe2bd5f9f3f2165f6c8be62ddbac0539d94f3a22

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/flores-azaleia-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 05:02:49 GMT
accept-ranges: bytes
content-length: 18161
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/arnica-por-taylor-ann-300x300.jpg

162.241.2.98

200 OK

29 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/arnica-por-taylor-ann-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x300, components 3
Size
29 kB (29082 bytes)
Hash
adc5738a86f396aa2ec5ba93eb5a4f16
4f2f1a44c5224d363c07e7de3340a2fbd83ee941
b12704198c56e927ed70ea4089e067d4e6eda6b1692960617fbdfab69da8fd32

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/arnica-por-taylor-ann-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 05:10:43 GMT
accept-ranges: bytes
content-length: 29082
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/aspargo-300x300.jpg

162.241.2.98

200 OK

24 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/aspargo-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 300x300, components 3
Size
24 kB (24400 bytes)
Hash
d6898fd3274093443d43b8bcdf7b461d
9ef8ecfe4d88a6c1f6ff4b9ce6ef8a4b59f5b19e
9ed0df02194201701450ce5e4bdba1f4332cfa6a5cc81d0286573a576e69bc5f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/aspargo-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 05:09:50 GMT
accept-ranges: bytes
content-length: 24400
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/arruda-por-joao-paulo-correa-de-carvalho-300x300.jpg

162.241.2.98

200 OK

32 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/arruda-por-joao-paulo-correa-de-carvalho-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x300, components 3
Size
32 kB (32499 bytes)
Hash
cac8dc3f8f605d0e3471a242289dd711
074e2ec506f145a7c79b95ad95845972052dff2b
03c21e73d6655105ca96896ea3ef5884ec4861787d4e18a662bf21efafe0b287

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/arruda-por-joao-paulo-correa-de-carvalho-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 05:10:43 GMT
accept-ranges: bytes
content-length: 32499
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/Avenca-Americana-300x300.jpg

162.241.2.98

200 OK

32 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/Avenca-Americana-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=Adiantum raddianum��], baseline, precision 8, 300x300, components 3
Size
32 kB (32198 bytes)
Hash
854194a7114de80fb31f5ffac95ac66d
9418f74493f91106b2d0f8867f288c800b6abe16
37746774e62d2a475393e8bb554540a0e2ddc52e880e0d4971a8b0cdc2a96b08

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/Avenca-Americana-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 01:13:53 GMT
accept-ranges: bytes
content-length: 32198
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2016/06/arvore-felicidade-fortuna-300x300.jpg

162.241.2.98

200 OK

17 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2016/06/arvore-felicidade-fortuna-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x300, components 3
Size
17 kB (16657 bytes)
Hash
f19de9f9a740b25c91c3863902d9ff22
156f6c8868c365a054e18c1bca1e7d038b3ee6db
37b1901f27e071b98790b13de887d6cf2d57ae81f632ec476442bbd8ea9a9f12

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2016/06/arvore-felicidade-fortuna-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 05:07:11 GMT
accept-ranges: bytes
content-length: 16657
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/babosa-300x300.jpg

162.241.2.98

200 OK

21 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/babosa-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x300, components 3
Size
21 kB (21133 bytes)
Hash
775bb4046c2b7e095b7357c00dee340b
b085ce7cd3a2e2500605f1c7e3e768c4234c5189
e20d443dbf3cebdd17ee69ae835103322a012e4661f10ca6546d91b2c016b320

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/babosa-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 04:54:58 GMT
accept-ranges: bytes
content-length: 21133
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.8.2

162.241.2.98

200 OK

5.3 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.8.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JavaScript source, ASCII text, with very long lines (14500), with no line terminators
Size
5.3 kB (5348 bytes)
Hash
af44f82a13e50f4ab09a194247ac71bc
e1c921fa718e918e70a25cd278a9ff5b8be9c2bf
881f4e9fde0d4d4bdcf1eae9fd2d68378c5203969e6ceedf59b4e29567f238a9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.8.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Apr 2024 17:27:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5348
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.8.2

162.241.2.98

200 OK

4.0 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.8.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JavaScript source, ASCII text, with very long lines (9242)
Size
4.0 kB (4014 bytes)
Hash
ef56117d1bb5cc41aa6bd127a49c7640
b9c2ed774177fc0fceba5cb58113024b23fe4fb7
d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.8.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Apr 2024 17:27:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4014
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=8.8.2

162.241.2.98

200 OK

14 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=8.8.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
14 kB (14143 bytes)
Hash
815efd1e8d5e016bb76fcb28f4436ed1
0555e83627235b7d49f5847befa680585e00c424
bcb8076dbcbcfa824b991e53a484d05b604cfe21c39b683fe0f44b671e5ac83f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=8.8.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Apr 2024 17:27:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14143
content-type: text/css
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.8.2

162.241.2.98

200 OK

850 B

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.8.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JavaScript source, ASCII text, with very long lines (1690)
Size
850 B (850 bytes)
Hash
691a1e43450e7cda541a3bd6f10fd5db
d3a78cb77ccec297c9d32fee99a2a4761f604a8c
8b083f64f2e9e8ac445c730dfce7013cc6449ce155fd1c2f42b60edba4ecb4b1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.8.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Apr 2024 17:27:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 850
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.8.2

162.241.2.98

200 OK

1.0 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.8.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JavaScript source, ASCII text, with very long lines (2094), with no line terminators
Size
1.0 kB (1047 bytes)
Hash
46747310c4ec46332841f072bbe5719e
8a6e051763612e07e0da6786653aba9b3ff500c3
5c5acf26e6ab72a6913bd3afb3cf5442b00aa9f374c73d9dc6e12c984cfbb66b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.8.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Apr 2024 17:27:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1047
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.8.2

162.241.2.98

200 OK

1.2 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.8.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JavaScript source, ASCII text, with very long lines (3058), with no line terminators
Size
1.2 kB (1216 bytes)
Hash
e56bc891d47a0687c80dbe086a5b1e90
a9e643e186e62cbb3f0e518f473b8702c2945802
4f0a4e5ff7378b48f06c23a8ff4e52633c828fee56f2495085eeea5c1a7f8aba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.8.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Apr 2024 17:27:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1216
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.8.2

162.241.2.98

200 OK

800 B

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.8.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JavaScript source, ASCII text, with very long lines (2139), with no line terminators
Size
800 B (800 bytes)
Hash
6d3b3d63df025e97f370c5efab2c96da
78c0c8e7504f9314b2e9fd714bbab530af52f2af
8c0b5e384ae00c512f4bb1ba5e2fe622fab4bfc541c99555df38c19c329d3fe6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.8.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Apr 2024 17:27:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 800
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/js/main.js?v=4.0.0

162.241.2.98

200 OK

6.9 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/js/main.js?v=4.0.0
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (9113)
Size
6.9 kB (6902 bytes)
Hash
abb9aa4985c541870a20fa9102ca0628
3843dacffeff27c8fa28a58b828c6f1a666a774f
38ef92acbeb9b3c446cb7b31d29f65ce32a53a8723e9e7c7b5d8a014b05e9eec

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/js/main.js?v=4.0.0 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 16 Nov 2021 18:19:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6902
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

162.241.2.98

200 OK

5.4 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
5.4 kB (5422 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 03 Apr 2024 08:37:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5422
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/logo-footer.png

162.241.2.98

200 OK

4.6 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/logo-footer.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 296 x 126, 8-bit/color RGBA, non-interlaced
Size
4.6 kB (4614 bytes)
Hash
ca2017de75d5e856f48c98b5fec1aa10
4a7e8412d4753fc1000186f0937a42f73ff3de5b
63a01e3493be100d12956e776225a95c043f970df69c5f1e2d7b0c9f0e5b4725

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/logo-footer.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 04 Jun 2020 15:05:10 GMT
accept-ranges: bytes
content-length: 4614
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=8.8.2

162.241.2.98

200 OK

3.1 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=8.8.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
ASCII text, with very long lines (17688), with no line terminators
Size
3.1 kB (3110 bytes)
Hash
279a41fe094a1c0ff59f6d84dc6ec0d2
8da5b79f8c3f9463a3ebbe2b021ce430f2386ee8
f3025cb2afeb54d4dcb1ca02606b0e2e48639ee78a9d55ef4e9a80767351e118

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=8.8.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Apr 2024 17:27:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3110
content-type: text/css
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/azulzinha-300x300.jpg

162.241.2.98

200 OK

14 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/azulzinha-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x300, components 3
Size
14 kB (14054 bytes)
Hash
22677042231f61f529805c21350c94cb
eee15db99c1575b01d8ea0ad71354cba85823060
d14454283b70b38b52e4092f22562782cfb8526f62bd1372cceacb28c2855460

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/azulzinha-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 05:09:50 GMT
accept-ranges: bytes
content-length: 14054
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/asplenio.jpg

162.241.2.98

200 OK

12 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/asplenio.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 236x189, components 3
Size
12 kB (12082 bytes)
Hash
8af0f5829cf71130f06ff6c036f2a3d4
047a4bf50c71fe645e9074341f27ac917b0ddc38
e923d4d3a0e5f66dfd0c96e202d5f7259a3b99700aa334f7852ee43b59d12fb7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/asplenio.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 05 Jul 2016 17:36:28 GMT
accept-ranges: bytes
content-length: 12082
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/tok-footer.png

162.241.2.98

200 OK

1.0 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/tok-footer.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
Size
1.0 kB (1001 bytes)
Hash
16855642c54e23eb5dd3b99e1e5e46af
53909b50870cf366d905d4ca27a2fa6083972d78
1d1dc9943bfb2acbff21ffe38b00d17bef6d6d53087a399cabea7bfd3da90949

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/tok-footer.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:00:52 GMT
accept-ranges: bytes
content-length: 1001
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/Avenca-Japonesa-300x300.jpg

162.241.2.98

200 OK

30 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/Avenca-Japonesa-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9, manufacturer=SONY, model=DSC-P41, xresolution=136, yresolution=144, resolutionunit=2, software=Microsoft Windows Photo Gallery 6.0.6001.18000, datetime=2010:01:18 13:03:11], baseline, precision 8, 300x300, components 3
Size
30 kB (29840 bytes)
Hash
2f170e3ae749d3c0c119fbdce8e38a46
24cfa4555ff17dcbfa6188d578b811ba98e93147
9a7701e7ac0d5f4efd84aa7854bab58449c7f1b1bcbbe09be00231156a4ff1ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/Avenca-Japonesa-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 01:14:51 GMT
accept-ranges: bytes
content-length: 29840
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/fortuna.jpg

162.241.2.98

200 OK

28 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/fortuna.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x225, components 3
Size
28 kB (28225 bytes)
Hash
4206bfc14943ac73c02c972a75413d72
67759c9031a290215852119bfc1e3e7916301533
e3f132a361f1ab752a9d95ef031b08e8d28e69590da6b6a25878ec8d34a8fae1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/fortuna.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 09 Jun 2016 17:29:50 GMT
accept-ranges: bytes
content-length: 28225
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2016/06/azaleia-an%C3%A3-300x300.jpg

162.241.2.98

200 OK

23 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2016/06/azaleia-an%C3%A3-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x300, components 3
Size
23 kB (22751 bytes)
Hash
6912bcda8c89f84968cb15b2e5a3b9de
e064c2157ad7dc0ee59e4de9707dce8ab4400bf4
f6b379a1bc5ac7cffd9eff39096e390cc3061d8b6621be490b5a7cdd19de90c7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2016/06/azaleia-an%C3%A3-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 05:09:53 GMT
accept-ranges: bytes
content-length: 22751
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/aster-via-jacinta-lluch-valero-300x300.jpg

162.241.2.98

200 OK

33 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/aster-via-jacinta-lluch-valero-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 180x180, segment length 16, baseline, precision 8, 300x300, components 3
Size
33 kB (32979 bytes)
Hash
1a82a29342f9c943a1b14d8e1e3251c8
5d076bf58f88101eb47977ce56efe891c3f9fed4
40c9fd093e25eb74fa6a3affeb87cacc3dd919ebcd370dcdd37f27ba55878b00

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/aster-via-jacinta-lluch-valero-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 05:10:42 GMT
accept-ranges: bytes
content-length: 32979
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2015/06/avenca-por-jaci-xiii-300x300.jpg

162.241.2.98

200 OK

38 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2015/06/avenca-por-jaci-xiii-300x300.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, comment: "cmp3.10.3.2Lq4 0xa362b87a", baseline, precision 8, 300x300, components 3
Size
38 kB (37685 bytes)
Hash
4378c3fb5b426ff8e6d4f8eecbc6d1f7
f4f25af0c2b3f5449b3510f6d034d198c53757b4
3d8b3610685b0f18492325704fae89104e2e2801f008208683a3ab12da976795

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2015/06/avenca-por-jaci-xiii-300x300.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 05:10:41 GMT
accept-ranges: bytes
content-length: 37685
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=8.8.2

162.241.2.98

200 OK

1.3 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=8.8.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
ASCII text, with very long lines (7043), with no line terminators
Size
1.3 kB (1299 bytes)
Hash
29ed0396622780590223cd919f310dd7
037c8e8f9e571f763c222c8517ac5ca84018bc5e
401373c6cddfc333e45314482184906a357ae96d1fccd5ef6c40d8b7656e7349

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=8.8.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Apr 2024 17:27:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1299
content-type: text/css
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/jquery.js

162.241.2.98

200 OK

214 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/jquery.js
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
gzip compressed data, from Unix
Size
214 kB (213847 bytes)
Hash
6e692c8f24f351135b6263696f9d4ab5
7302f4f23210f147c5fed489ec9c1d16d17887e6
17f426f6e5579f5299786c6d908f1571f0d5d404616b77876bee782fe5465ccc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/jquery.js HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:00:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/menu-after.png

162.241.2.98

200 OK

925 B

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/menu-after.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 128 x 133, 8-bit/color RGBA, non-interlaced
Size
925 B (925 bytes)
Hash
e9ab4eca1acbbda1eb3cc06762ab84dd
34861072f66f6e8fac2504a483ee2503320e5f5e
408a10b2ad49a7e763bc00c00a179961366136bd4b11131342a4f90b2289cb0a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/menu-after.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:00:52 GMT
accept-ranges: bytes
content-length: 925
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/before-sub-menu.png

162.241.2.98

200 OK

226 B

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/before-sub-menu.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 17 x 7, 8-bit/color RGBA, non-interlaced
Size
226 B (226 bytes)
Hash
e992f8bbf52c35cfac23ba08eb3268f4
699f8011be32f389f0783a60dad00b8f2d9d4927
ce55ef58fbe3a7d4683038cfbd100ae9fb16ad5435ea2042e01b5576ddd5c830

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/before-sub-menu.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:00:46 GMT
accept-ranges: bytes
content-length: 226
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/slick-1.8.0/slick/slick.min.js

162.241.2.98

200 OK

20 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/slick-1.8.0/slick/slick.min.js
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
gzip compressed data, from Unix
Size
20 kB (20497 bytes)
Hash
6aecf766f7afb9669865a1187e2b89ad
5c783bd1e1c662d985a1fc81961531b4158436e4
ee2431a2d096c8172e4e9d86caae9d21a905f530c002034b2980151f13ce4003

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/slick-1.8.0/slick/slick.min.js HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Sep 2018 13:00:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/arbusto.png

162.241.2.98

200 OK

1.5 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/arbusto.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1532 bytes)
Hash
fb4f0d4d14e7d327298112528cf8e716
7831790dd0bea38e51cb1a061aeadc0492b13ed3
69cc077d917a009875892c921b1f57b2e515d5edc48e3935465ee5eb1c2128fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/arbusto.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:12 GMT
accept-ranges: bytes
content-length: 1532
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/arvore.png

162.241.2.98

200 OK

1.3 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/arvore.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1339 bytes)
Hash
e81f7638988f5e0d9034880ee62a940f
b1d29ffafefd3001cf6db7601353f44be33c286f
5fe891da5ca2912f88d0894f7d342986ba93e770e9573cabd5578de884f595f9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/arvore.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:12 GMT
accept-ranges: bytes
content-length: 1339
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/arranjo.png

162.241.2.98

200 OK

1.8 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/arranjo.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1755 bytes)
Hash
249da4b06e4e06ae8c1502c005d2ba8c
bb8f7fff4548b736fb1c874a1352762432f4c6dd
ec52cc4c8cd3ebd57129c0309b6bcbfca3c3e9d680d836cee78737471df40986

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/arranjo.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:12 GMT
accept-ranges: bytes
content-length: 1755
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/cactos.png

162.241.2.98

200 OK

1.5 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/cactos.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1502 bytes)
Hash
4b74b834cbefe50f307cf282a876213b
1140c2fd9ad494b5c798db9ee1b5e9ef828d3521
3d7a5101c09a918fc6b92438df0125a2378d6ac82ea8009eccffb1781e2466ab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/cactos.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:12 GMT
accept-ranges: bytes
content-length: 1502
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/decoracao.png

162.241.2.98

200 OK

1.6 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/decoracao.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 15 x 20, 8-bit/color RGBA, non-interlaced
Size
1.6 kB (1567 bytes)
Hash
6e2ab975dcbe97b0725e8a092a6eeb20
c8e935b1502b441dc8b550a30ac5065d83677109
7c4fd5efdc3208d2eefb9693ac8096d390cf0741fe0bc50c89e52d4623fee273

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/decoracao.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:12 GMT
accept-ranges: bytes
content-length: 1567
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/ervas.png

162.241.2.98

200 OK

1.7 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/ervas.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
1.7 kB (1660 bytes)
Hash
60613cabcf8922fe665f93a021faab38
5c98fd2363e32b9c79920cdb66bc41e1fa5f6c74
ed302448da8d10cb929ed3c80580769677f4a334ff3070a6c6dab8245879da9b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/ervas.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:12 GMT
accept-ranges: bytes
content-length: 1660
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/florifera.png

162.241.2.98

200 OK

1.6 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/florifera.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
1.6 kB (1624 bytes)
Hash
e6c2e75e20864f0f40f1c5d8c71b3432
6865b0c94fb05ef8b08ef81d74c9e4e15ccdb276
51f75944cf49346eb12f9028ef48ebc33106bb31199c9d4dbfad2954a278390f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/florifera.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:12 GMT
accept-ranges: bytes
content-length: 1624
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/palmeiras.png

162.241.2.98

200 OK

1.7 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/palmeiras.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
1.7 kB (1715 bytes)
Hash
79329b5b9f20859963bb6fcb36d1757a
d480dccee25b9d88142e1b170d18842059acfcad
b298dbf675ad57ba723e1ac21f68904d990e8d0af4ad0e6859cc6868636ff526

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/palmeiras.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:14 GMT
accept-ranges: bytes
content-length: 1715
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/planta.png

162.241.2.98

200 OK

1.4 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/planta.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 21 x 20, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1376 bytes)
Hash
456d533dc9a394594a6a5f4219d266ca
923d5e13a5faf8eb0ee43535207a4bec2118cf36
f487a6e521775098eb480959d5d1a0673783a99ac385c45da5a7073f45a73bdf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/planta.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:14 GMT
accept-ranges: bytes
content-length: 1376
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/title-after.png

162.241.2.98

200 OK

536 B

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/title-after.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 31 x 19, 8-bit/color RGBA, non-interlaced
Size
536 B (536 bytes)
Hash
dbdac841b92c2cf6330eb7caad8b857a
46c3d645ac2f66a53c92b535b5458800abedfd0f
61d758239a381fedae9abdc979ea76700571ef9f8abfb354c840913fd5b11d08

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/title-after.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 15 Jul 2020 13:31:41 GMT
accept-ranges: bytes
content-length: 536
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/vasos.png

162.241.2.98

200 OK

1.3 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/vasos.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 15 x 20, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1269 bytes)
Hash
55ac5a5e0406c7f005bebac6cb056f6c
5c2da3ceffeb51949afab85655634372a4800fd9
e90b6d5ca2340379b121b86ab180fcc135c757131c97325677b908da7d25887f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/vasos.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:16 GMT
accept-ranges: bytes
content-length: 1269
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/suculenta.png

162.241.2.98

200 OK

1.4 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/suculenta.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 16 x 20, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1423 bytes)
Hash
c85b673be48f577ca23ca5f481e8031a
14cf2f7b3952eb923d8532c9c5f5833997ddbe52
d50c65a786f8c1b889462ab6c606c9d80a69a78a918e6500ab0274ac912aa77a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/suculenta.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:14 GMT
accept-ranges: bytes
content-length: 1423
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/frutifera.png

162.241.2.98

200 OK

1.5 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/frutifera.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1532 bytes)
Hash
c306df6b0c1be39ac9a057ec4f137bbd
6b3960852b24649696b727a76ca39d5e2e8deb1f
e4d79eb15146eb1b8afde2df818381f4d1f1438c1db9b5f349a95851955dfc46

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/frutifera.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:14 GMT
accept-ranges: bytes
content-length: 1532
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/grama.png

162.241.2.98

200 OK

525 B

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/grama.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
525 B (525 bytes)
Hash
abb0ddda62197c28579e36a6b0c009fd
a8f0e39349d1d808633f7784d3fbd8c924caffed
fa97a230dae269efd7f6ab89287defd5e47899b86769c0f477d01077423d759e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/grama.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 16 Aug 2018 12:36:28 GMT
accept-ranges: bytes
content-length: 525
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/button-plus-menu.png

162.241.2.98

200 OK

579 B

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/button-plus-menu.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 32 x 20, 8-bit gray+alpha, non-interlaced
Size
579 B (579 bytes)
Hash
904c6f8ac95a131cde9fbad4c85cd0be
30939710a66ad25f838e4cb789c02ce213b2018c
4f8f5b3b44863f4a563b37c2d4be1049b14b9e4e931bf7ed7f6746033fd4f0b0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/button-plus-menu.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:00:46 GMT
accept-ranges: bytes
content-length: 579
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/search-button.png

162.241.2.98

200 OK

1.3 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/search-button.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1263 bytes)
Hash
c711aeebaae933a11fb72ad8c0026900
ca6ffd004de52d7bd5b9f8bbde952d86b8313bf5
2a6d7ccc8c1bdc2da745559902729fa152451505a57a98c50b32ed9d1f170eca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/search-button.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:00:52 GMT
accept-ranges: bytes
content-length: 1263
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/background-madeira-light.jpg

162.241.2.98

200 OK

44 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/background-madeira-light.jpg
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 1904x212, components 3
Size
44 kB (43746 bytes)
Hash
434c2a04c8405632b5ab040016ad85bf
0eb871f67d0515720984599aebe9b3b6ab87f1ff
fe87e8a63eb197f2cc36bc6084bea93c94d5bb560edbc5ac64ad3a884624423b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/background-madeira-light.jpg HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 14 Jul 2020 15:03:46 GMT
accept-ranges: bytes
content-length: 43746
content-type: image/jpeg
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/pedras.png

162.241.2.98

200 OK

1.7 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/pedras.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
1.7 kB (1703 bytes)
Hash
9dba63f9914721414408c18e1e65fc83
ebc6ab0145fda28073879570fb5bf9deeb56d4d3
51a2d1ec73c0d8a7eb75f6cf08640b8132ac4442b611d03bc304ee795f8fcb35

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/pedras.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:14 GMT
accept-ranges: bytes
content-length: 1703
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/jquery-ui/jquery-ui.js

162.241.2.98

200 OK

214 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/jquery-ui/jquery-ui.js
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
gzip compressed data, from Unix
Size
214 kB (213798 bytes)
Hash
3611e2e4d9c441c8db966b36b523be44
32deaf9c1c5c71716e788a2b1d91f6742cd8171d
eff822d81c3e22f9568cd470cc71bfcd6ccd6c478d61cb545bdbbc19ea3d50ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/jquery-ui/jquery-ui.js HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:00:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/fonts/amaticsc-regular-webfont.woff2

162.241.2.98

200 OK

40 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/fonts/amaticsc-regular-webfont.woff2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 39912, version 1.0
Size
40 kB (39912 bytes)
Hash
1077ae7e3d1a5de81fe0ad90e80e4742
974aa7d972055fd3a1915b46b067c2598f599219
4c25aea35cf6115391195a93665ba333f762bde0bbee00b72f6a4efb22d8974a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/fonts/amaticsc-regular-webfont.woff2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 19 May 2023 12:12:32 GMT
accept-ranges: bytes
content-length: 39912
content-type: font/woff2
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/bxslider.js

162.241.2.98

200 OK

32 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/bxslider.js
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
gzip compressed data, from Unix
Size
32 kB (31621 bytes)
Hash
17bf577d982c277115d553b561eab0ec
48e6243bfe79a2a2e4d836d1c37f32e8ef933374
91546cbd16d073c6cdfd5f88f67126ee720842f2b18289763074324bf5f1cf30

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/bxslider.js HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:00:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/plugins/svg-vector-icon-plugin/admin/css/icon-font/wp-svg-plugin-icon-set1.woff

162.241.2.98

200 OK

103 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/plugins/svg-vector-icon-plugin/admin/css/icon-font/wp-svg-plugin-icon-set1.woff
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
Web Open Font Format, CFF, length 103056, version 1.0
Size
103 kB (103056 bytes)
Hash
e67e331e0e3a2c4aae69cf3f48967c7e
23e4466c13b13f8e2dad0b50e81f392664efddf3
864c68610ba0c41b5585b830852ad4bd587afd25caaa2ebfb9fa9539300c2935

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/plugins/svg-vector-icon-plugin/admin/css/icon-font/wp-svg-plugin-icon-set1.woff HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/plugins/svg-vector-icon-plugin/admin/css/wordpress-svg-icon-plugin-style.min.css?ver=6.5.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 22 May 2020 12:27:22 GMT
accept-ranges: bytes
content-length: 103056
content-type: font/woff
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hmjardins.com.br
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:35:00 GMT
expires: Fri, 25 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 41373
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

216.58.207.227

200 OK

50 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50296, version 1.0
Size
50 kB (50296 bytes)
Hash
b02ab8b0d683a0457568340dba20309e
e18c3b8737970d37be1bb85b0f588303a89e63bb
0d8601a776b7dc777cd23bc42392d05a43df0d6402328e8913b58811083b513d

HTTP Headers

GET /s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hmjardins.com.br
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50296
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:48:38 GMT
expires: Fri, 25 Apr 2025 02:48:38 GMT
cache-control: public, max-age=31536000
age: 40555
last-modified: Thu, 14 Dec 2023 02:10:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-T6Q7FQ9ZXJ&l=dataLayer&cx=c

142.250.74.168

200 OK

94 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-T6Q7FQ9ZXJ&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (7711)
Size
94 kB (94498 bytes)
Hash
6c28619f770fbb9da37b7c9877d1d873
5756f0d846ddde83e128ff00941d91368004e142
82efde9eab06fba4f20b777d6fcb201ce8b3fb6d4155b3ed252608f6cb213cf9

HTTP Headers

GET /gtag/js?id=G-T6Q7FQ9ZXJ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 14:04:33 GMT
expires: Thu, 25 Apr 2024 14:04:33 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94498
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

use.fontawesome.com/releases/v6.4.0/css/all.css

104.21.27.152

200 OK

131 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.0/css/all.css
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (52276)
Size
131 kB (131177 bytes)
Hash
ded1c367363e8b20bdc6a19b8350a737
8c06d82739d14b094ff6d9036021a252bd1d985d
1edb1725a9ea8ca4dcf2f5508cee183218aa1685e47c1b23056717f754f58ebf

HTTP Headers

GET /releases/v6.4.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hmjardins.com.br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:04:32 GMT
content-type: text/css
access-control-allow-origin: *
etag: W/"ded1c367363e8b20bdc6a19b8350a737"
last-modified: Fri, 22 Sep 2023 01:46:27 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jpocqOxTTuaAyBvpbkoM9i62mH2Oi8O%2BfZFTBvI4JiKfmPSVm%2Bd5uCHjRYDYnGEPenLENMahrvicdQdhocvYTtGAPATkx2sQIEYhI%2BzUnbdGZ2HB1P0pVTBD%2BlJgqP9aXcwkRN22"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879ee1fcdf07b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v6.4.0/webfonts/fa-v4compatibility.woff2

104.21.27.152

200 OK

4.6 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.0/webfonts/fa-v4compatibility.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 4564, version 772.256
Size
4.6 kB (4564 bytes)
Hash
4bc58bc16bb05a05d3a47a4f7e143b75
8f80d0bbe995f7fe92320fdaec10cd5ccd710a51
694a17c3d9d6c05f8aac63c544615552a4b220e9a4de863d87341a6bcfc1bc8d

HTTP Headers

GET /releases/v6.4.0/webfonts/fa-v4compatibility.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hmjardins.com.br
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:04:33 GMT
content-type: font/woff2
content-length: 4564
access-control-allow-origin: *
etag: "4bc58bc16bb05a05d3a47a4f7e143b75"
last-modified: Fri, 22 Sep 2023 01:46:32 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L2ATO60%2Fn2T%2BgNZX4qGow6m8Iqnv7aA5PY0sTN44uLxtmUoMvKHioRIi%2FMnh%2F3p7vnxX7RYhE3ZYahNvzOnu1Opsm81HUz%2B2TofH6QuBjCSF5kFbil3V8hlvaVpt0sdR9XuDdjEb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879ee201bc48b4ed-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-819486346&l=dataLayer&cx=c

142.250.74.168

200 OK

82 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=AW-819486346&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
82 kB (82064 bytes)
Hash
d2fba03e87b272ed6f07923c30e951a9
867b749f1ce094925f784f8d2a886ce14df42c08
bc507a677c32e41d5500bf3a7e2f17f3823761951aced92cf3d54ee01f5c747d

HTTP Headers

GET /gtag/js?id=AW-819486346&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 14:04:33 GMT
expires: Thu, 25 Apr 2024 14:04:33 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 82064
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

hmjardins.com.br/tok/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2

162.241.2.98

200 OK

5.4 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JavaScript source, ASCII text, with very long lines (15752)
Size
5.4 kB (5365 bytes)
Hash
b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-04-25%2014%3A04%3A32%7C%7C%7Cep%3Dhttps%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-04-25%2014%3A04%3A32%7C%7C%7Cep%3Dhttps%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 03 Apr 2024 08:37:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5365
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:33 GMT
server: Apache
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v6.4.0/webfonts/fa-solid-900.woff2

104.21.27.152

200 OK

150 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.0/webfonts/fa-solid-900.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 150124, version 772.256
Size
150 kB (150124 bytes)
Hash
c64278386c2bbb5e293e11b94ca2f6d1
6b99aa650bd12a36caa14e0127435d8f4cd3ba73
7152a6933ee3d690ec2af3d09da9d701723d16aa3410a6d80f28ff8866f3b880

HTTP Headers

GET /releases/v6.4.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hmjardins.com.br
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:04:33 GMT
content-type: font/woff2
content-length: 150124
access-control-allow-origin: *
etag: "c64278386c2bbb5e293e11b94ca2f6d1"
last-modified: Fri, 22 Sep 2023 01:46:31 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L5SXABWAWbud%2FKrQXnSnZSEX8gM%2BICVbJFEgft3b5dhOvOns2d%2Frztsg9rvnFQuR%2BAgZ7K3yrlOoi3SLcvOnlNFEymBLJfZc6V4Sk1gPkGALYieIFzhaoxRxuM4dqGzd28m6Yhl1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879ee201ac2db4ed-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

assets.pinterest.com/js/pinit.js

151.101.236.84

200 OK

203 B

URL GET HTTP/2
assets.pinterest.com/js/pinit.js
IP
151.101.236.84:443
ASN
#54113 FASTLY

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerDigiCert Inc
Subject*.pinterest.com
Fingerprint4D:02:6D:A8:DF:FA:2E:1C:D3:43:46:EF:CF:92:F1:7A:41:8F:BA:0B
ValidityMon, 31 Jul 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (361), with no line terminators
Size
203 B (203 bytes)
Hash
9e724ccab52ce087d92250b1e06ef0ee
8000043a1fb8735345f8b27c65b85331099aed8d
3faadebc89cdb21d11634a032816f152462d1cb8903eb21d0642501fcad065de

HTTP Headers

GET /js/pinit.js HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
etag: "62d32c28f14783b94192cd8d35bc010d"
content-encoding: br
content-type: application/javascript; charset=utf-8
x-cdn: fastly
alt-svc: h3=":443";ma=600
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Accept-Encoding, Origin
cache-control: max-age=300
date: Thu, 25 Apr 2024 14:04:33 GMT
content-length: 203
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v6.4.0/webfonts/fa-brands-400.woff2

104.21.27.152

200 OK

108 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.0/webfonts/fa-brands-400.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 108020, version 772.256
Size
108 kB (108020 bytes)
Hash
8b0ddedbb27cbc9971c8667caa8a0cc1
4350f9ba93384634faf35f41c503c99c767f1069
748332090c4b8e20f95d0ff59f0be20fa9c889359d3b36d4b886d73376054207

HTTP Headers

GET /releases/v6.4.0/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hmjardins.com.br
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:04:33 GMT
content-type: font/woff2
content-length: 108020
access-control-allow-origin: *
etag: "8b0ddedbb27cbc9971c8667caa8a0cc1"
last-modified: Fri, 22 Sep 2023 01:46:31 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 0
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xakrN%2FS3b4Wz1jPaWzh1VfysNj%2FNPcWzME1K3G4snGK3YnzCkehMvXevWTUmIJeJuHLw9suyVfErSaCNJpWRk0RzjuDu0RKDRd1pAbtVCqWJpkOhEpwmB4OxmW6FTN35qSwRZVs%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879ee201ac2ab4ed-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true

142.250.74.138

200 OK

23 B

URL GET HTTP/3
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JSON text data
Size
23 B (23 bytes)
Hash
8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356

HTTP Headers

GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hmjardins.com.br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 25 Apr 2024 14:04:33 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://hmjardins.com.br
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T6Q7FQ9ZXJ&cid=829605165.1714053873&gtm=45je44o0v9136411285za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=900098274

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T6Q7FQ9ZXJ&cid=829605165.1714053873&gtm=45je44o0v9136411285za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=900098274
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D
ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T6Q7FQ9ZXJ&cid=829605165.1714053873&gtm=45je44o0v9136411285za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=900098274 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 25 Apr 2024 14:04:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2020/07/cropped-site-hm-32x32.png

162.241.2.98

200 OK

977 B

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2020/07/cropped-site-hm-32x32.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Size
977 B (977 bytes)
Hash
9315fb876c9f9316938805ae5de40db1
73ab5303fe49614e94eb04f85c58055ee4561b48
70efd448d2e479541308a108fe84a5ade07a27aeb7f643b25c6adbd481348872

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2020/07/cropped-site-hm-32x32.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-04-25%2014%3A04%3A32%7C%7C%7Cep%3Dhttps%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-04-25%2014%3A04%3A32%7C%7C%7Cep%3Dhttps%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F; _ga_T6Q7FQ9ZXJ=GS1.1.1714053873.1.0.1714053873.60.0.0; _ga=GA1.1.829605165.1714053873; _gcl_au=1.1.301733104.1714053873
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 17 Jul 2020 13:25:47 GMT
accept-ranges: bytes
content-length: 977
content-type: image/png
date: Thu, 25 Apr 2024 14:04:33 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/uploads/2020/07/cropped-site-hm-192x192.png

162.241.2.98

200 OK

3.5 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/uploads/2020/07/cropped-site-hm-192x192.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 192 x 192, 8-bit colormap, non-interlaced
Size
3.5 kB (3534 bytes)
Hash
12ce8e7a7d1bfba69f77e6a68311a861
7e27fc9e9247b532fe73278a92df3b2dcca9235f
f0a73be439ed652892ea70f86166da9440e05b1b2278c08e683b4101000e695d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/uploads/2020/07/cropped-site-hm-192x192.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-04-25%2014%3A04%3A32%7C%7C%7Cep%3Dhttps%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-04-25%2014%3A04%3A32%7C%7C%7Cep%3Dhttps%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F; _ga_T6Q7FQ9ZXJ=GS1.1.1714053873.1.0.1714053873.60.0.0; _ga=GA1.1.829605165.1714053873; _gcl_au=1.1.301733104.1714053873
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 17 Jul 2020 13:25:47 GMT
accept-ranges: bytes
content-length: 3534
content-type: image/png
date: Thu, 25 Apr 2024 14:04:33 GMT
server: Apache
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v6.4.0/webfonts/fa-solid-900.woff2

104.21.27.152

200 OK

150 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.0/webfonts/fa-solid-900.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 150124, version 772.256
Size
150 kB (150124 bytes)
Hash
c64278386c2bbb5e293e11b94ca2f6d1
6b99aa650bd12a36caa14e0127435d8f4cd3ba73
7152a6933ee3d690ec2af3d09da9d701723d16aa3410a6d80f28ff8866f3b880

HTTP Headers

GET /releases/v6.4.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hmjardins.com.br
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:04:33 GMT
content-type: font/woff2
content-length: 150124
access-control-allow-origin: *
etag: "c64278386c2bbb5e293e11b94ca2f6d1"
last-modified: Fri, 22 Sep 2023 01:46:31 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 0
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ezdkn7fwMIIwdrqjBSspX%2BRF85vMV%2BRelz9wOF91AKgKNrmQXYV9dLKHIps2gpQ886an3K1clrAd5vkrXiGczpsjVpznvkOltwb1QmdaPf15mIxpZaaYS683DynIhcyRspynMGUk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879ee205b814b4ed-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

assets.pinterest.com/js/pinit_main.js?0.021524578418411267

151.101.236.84

200 OK

19 kB

URL GET HTTP/3
assets.pinterest.com/js/pinit_main.js?0.021524578418411267
IP
151.101.236.84:443
ASN
#54113 FASTLY

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerDigiCert Inc
Subject*.pinterest.com
Fingerprint4D:02:6D:A8:DF:FA:2E:1C:D3:43:46:EF:CF:92:F1:7A:41:8F:BA:0B
ValidityMon, 31 Jul 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (32016)
Size
19 kB (18679 bytes)
Hash
980b58b2bf6b18e45583fc3d1d05e145
90fd7a45d8ab0672d45ecaa9a4b7f430ffe1d149
20f0315c97ff7007f2e7a94d659e094a7efc01b8306da53987538c1101489e0e

HTTP Headers

GET /js/pinit_main.js?0.021524578418411267 HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 18679
etag: "3725764cf05d1a0938de73d398772331"
content-encoding: br
content-type: application/javascript; charset=utf-8
x-cdn: fastly
alt-svc: h3=":443";ma=600
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Accept-Encoding, Origin
cache-control: max-age=300
date: Thu, 25 Apr 2024 14:04:33 GMT

region1.analytics.google.com/g/collect?v=2&tid=G-T6Q7FQ9ZXJ&gtm=45je44o0v9136411285za200&_p=1714053872727&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=829605165.1714053873&ul=en-us&sr=1280x1024&ir=1&pscdl=noapi&_eu=EAAI&_s=1&sid=1714053873&sct=1&seg=0&dl=https%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F&dt=Floricultura%20%7C%20Categorias%20de%20produto%20%7C%20HM%20Jardins%20-%20Floricultura%20e%20Jardinagem&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=3071

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-T6Q7FQ9ZXJ&gtm=45je44o0v9136411285za200&_p=1714053872727&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=829605165.1714053873&ul=en-us&sr=1280x1024&ir=1&pscdl=noapi&_eu=EAAI&_s=1&sid=1714053873&sct=1&seg=0&dl=https%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F&dt=Floricultura%20%7C%20Categorias%20de%20produto%20%7C%20HM%20Jardins%20-%20Floricultura%20e%20Jardinagem&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=3071
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-T6Q7FQ9ZXJ&gtm=45je44o0v9136411285za200&_p=1714053872727&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=829605165.1714053873&ul=en-us&sr=1280x1024&ir=1&pscdl=noapi&_eu=EAAI&_s=1&sid=1714053873&sct=1&seg=0&dl=https%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F&dt=Floricultura%20%7C%20Categorias%20de%20produto%20%7C%20HM%20Jardins%20-%20Floricultura%20e%20Jardinagem&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=3071 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hmjardins.com.br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://hmjardins.com.br
date: Thu, 25 Apr 2024 14:04:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

log.pinterest.com/?type=pidget&guid=wfJPgR4XwSgE&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0&section_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F

151.101.64.84

400 Bad Request

0 B

URL GET HTTP/2
log.pinterest.com/?type=pidget&guid=wfJPgR4XwSgE&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0&section_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F
IP
151.101.64.84:443
ASN
#54113 FASTLY

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerDigiCert Inc
Subject*.pinterest.com
Fingerprint4D:02:6D:A8:DF:FA:2E:1C:D3:43:46:EF:CF:92:F1:7A:41:8F:BA:0B
ValidityMon, 31 Jul 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?type=pidget&guid=wfJPgR4XwSgE&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0&section_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fhmjardins.com.br%2Fcategoria-produto%2Ffloricultura%2Fpage%2F4%2F HTTP/1.1
Host: log.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 400 Bad Request
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-envoy-upstream-service-time: 2
server: envoy
x-pinterest-rid: 1728838594018848
accept-ranges: bytes
date: Thu, 25 Apr 2024 14:04:34 GMT
via: 1.1 varnish
x-served-by: cache-hel1410022-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714053875.664262,VS0,VE51
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
alt-svc: h3=":443";ma=600
content-length: 0
X-Firefox-Spdy: h2

maps.googleapis.com/maps-api-v3/api/js/56/8/common.js

142.250.74.138

200 OK

57 kB

URL GET HTTP/3
maps.googleapis.com/maps-api-v3/api/js/56/8/common.js
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (6747)
Size
57 kB (57388 bytes)
Hash
418ecbb83c2df2a704fdec98cba736bf
0b0535ebe27dfcef7437bc75cf33648c61be3dbe
cf0c03bd0efee39705d10989e116ce08d2810c4ed1b578b6451dd26a34beede5

HTTP Headers

GET /maps-api-v3/api/js/56/8/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 57388
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 17:31:06 GMT
expires: Thu, 24 Apr 2025 17:31:06 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 17:51:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 74011
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

maps.googleapis.com/maps-api-v3/api/js/56/8/util.js

142.250.74.138

200 OK

57 kB

URL GET HTTP/3
maps.googleapis.com/maps-api-v3/api/js/56/8/util.js
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (562)
Size
57 kB (57059 bytes)
Hash
6cc4537f5b0fb2554830940d2ef390c1
deae273e7dca2c26ffb13cd11c32280462fc351e
c2f957bdab42c74b2dfa9f67e6fb1866edb41034f319d84ca185e5c0f1985f58

HTTP Headers

GET /maps-api-v3/api/js/56/8/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 57059
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 17:31:06 GMT
expires: Thu, 24 Apr 2025 17:31:06 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 17:51:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 74011
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

hmjardins.com.br/tok/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2

162.241.2.98

200 OK

113 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type

Size
113 kB (113381 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 03 Apr 2024 08:37:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/icons/acessorio.png

162.241.2.98

200 OK

1.5 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/icons/acessorio.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1517 bytes)
Hash
c2c4e42e4a37ad2cf708df126f85e59d
ff2c5770b9ade5a39b220a620c3aa8bf31a87ed3
5c84866c5ba5adec418cd4547b477e7a37af67eb6a02018f98f86b67b683e885

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/icons/acessorio.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:12 GMT
accept-ranges: bytes
content-length: 1517
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,400,300,600,700

142.250.74.106

200 OK

45 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,400,300,600,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (1572)
Size
45 kB (44892 bytes)
Hash
b2a30e7fae6b666d9bff3b564c508b28
4ef333daf99ebca2e7d459a417b8dedabf493250
0992346cd54b2d0228f8b81ea065466976fc86c0132deb7af95e2264920575ba

HTTP Headers

GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,400,300,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 14:04:32 GMT
date: Thu, 25 Apr 2024 14:04:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v6.4.0/css/v4-shims.css

104.21.27.152

200 OK

28 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.0/css/v4-shims.css
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (27374)
Size
28 kB (27593 bytes)
Hash
0e111e42b92aa32f0847263dfaadbc6a
d13d794aa86d8b3f1221eb19af6c7030c88f7022
d3037f42050da6c98f31f801c26a5fe3df7327240ce40314b805e5e25b052ea2

HTTP Headers

GET /releases/v6.4.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hmjardins.com.br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:04:32 GMT
content-type: text/css
access-control-allow-origin: *
etag: W/"0e111e42b92aa32f0847263dfaadbc6a"
last-modified: Fri, 22 Sep 2023 01:46:28 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JV8783c2gvAo3Pi47igaI98x66qPbklJNoewhJqPTGH8MZKpfzNHrr25DG0X41OVRpAuj62K2RUjyeAokLLRCXaEydrQotvQh6Z8GlFhVFhw4YhnWfSq%2FxpR52a%2BRjVfPsSoN9zK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879ee1fcdf04b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/fonts/globus/globus-webfont.woff2

162.241.2.98

200 OK

7.0 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/fonts/globus/globus-webfont.woff2
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 6964, version 1.0
Size
7.0 kB (6964 bytes)
Hash
603b57341170480c488aa9da9c2a0d9a
003d1dfb8a9f2ce43f6657963de4058caee0b528
e6b6f13870012fd8968470b72a58467e8f80885882c62bbc64ab63ba87918ee7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/fonts/globus/globus-webfont.woff2 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:01:12 GMT
accept-ranges: bytes
content-length: 6964
content-type: font/woff2
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

162.241.2.98

200 OK

88 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 03 Apr 2024 08:37:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10

162.241.2.98

200 OK

76 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type

Size
76 kB (75895 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/style.css?v=6.9.10 HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 19 May 2023 13:10:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

maps.googleapis.com/maps/api/js?key=AIzaSyC2LntcqmQpGjgww-5i8eGuJVD9hky0A4Y&callback=initMap

142.250.74.138

200 OK

196 kB

URL GET HTTP/2
maps.googleapis.com/maps/api/js?key=AIzaSyC2LntcqmQpGjgww-5i8eGuJVD9hky0A4Y&callback=initMap
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (10158)
Size
196 kB (196455 bytes)
Hash
a030da149202f2e4dd29f1995e0a7cac
a96ed4bb796f30c1f380785202638af1dfab058c
a9e05015259b5d1db82b33061ba262784557a8ce434e77aa0977cdf0c2f0d394

HTTP Headers

GET /maps/api/js?key=AIzaSyC2LntcqmQpGjgww-5i8eGuJVD9hky0A4Y&callback=initMap HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-type: text/javascript; charset=UTF-8
vary: Accept-Language, Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 25 Apr 2024 14:04:32 GMT
server: scaffolding on HTTPServer2
content-length: 65928
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

hmjardins.com.br/tok/wp-content/themes/hm/images/background-light.png

162.241.2.98

200 OK

172 kB

URL GET HTTP/2
hmjardins.com.br/tok/wp-content/themes/hm/images/background-light.png
IP
162.241.2.98:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://hmjardins.com.br/categoria-produto/floricultura/page/4/
Certificate
IssuerLet's Encrypt
Subject*.hmjardins.com.br
FingerprintC8:ED:62:A9:30:D3:60:DC:52:35:E1:C7:99:81:C6:B4:33:4E:99:D1
ValidityTue, 02 Apr 2024 08:08:18 GMT - Mon, 01 Jul 2024 08:08:17 GMT

File type
PNG image data, 1280 x 844, 8-bit/color RGBA, non-interlaced
Size
172 kB (172254 bytes)
Hash
dc8859a4c4fc665446d377c94261e7c0
07eb60c69e7bbff98a7a6286ea0c4c7aa8c0fa36
354609a93cd68abee5ba0fbd2c2c519f1e66f03892a9487bb823acd92f2656cb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tok/wp-content/themes/hm/images/background-light.png HTTP/1.1
Host: hmjardins.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hmjardins.com.br/tok/wp-content/themes/hm/style.css?v=6.9.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 04 Jul 2017 20:00:52 GMT
accept-ranges: bytes
content-length: 172254
content-type: image/png
date: Thu, 25 Apr 2024 14:04:32 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (33)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML