r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15155
Expires: Tue, 29 Nov 2022 15:22:44 GMT
Date: Tue, 29 Nov 2022 11:10:09 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5293
Cache-Control: max-age=89365
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:10:09 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:59:34 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 10:17:53 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3136
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17537
Expires: Tue, 29 Nov 2022 16:02:26 GMT
Date: Tue, 29 Nov 2022 11:10:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: H3/CRAOJ0iFEoG6woyNaUtV+z9FhilFkKiI/pSQsq0xfMDHvih8Iox+dklWzAZCdUn80R/Sa4os=
x-amz-request-id: A1M7G67RYWSGR6YA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 10:45:25 GMT
age: 1484
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:10:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
farmedica.com.br/%5C
162.241.183.132301 Moved Permanently 0 B IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /%5C HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 11:10:02 GMT
Server: Apache
X-UA-Compatible: IE=edge
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://farmedica.com.br/%5C
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 11:08:56 GMT
cache-control: public,max-age=3600
age: 74
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 303
Cache-Control: max-age=165701
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:10:10 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 09:11:51 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.38.198.114101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.198.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: w8Hbg58EczBRvHNhxpiXmA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: G/IVmzSUzQJQ1XsaBmcQRGXTesA=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:10:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:10:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
farmedica.com.br/%5C
162.241.183.132404 Not Found 104 kB IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17291), with CRLF, LF line terminators
Size 104 kB (103825 bytes)
Hash f643ae85b0526a5466a4c578ecd21dfa
c847061b86198e3e022e7dee41fbe22d63589c14
d146a2d8a22b1731d0a410421bea7e57971c02b7389aee18ccfbcff937c364a5
GET /%5C HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 11:10:03 GMT
Server: Apache
X-UA-Compatible: IE=edge
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://farmedica.com.br/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
farmedica.com.br/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
162.241.183.132200 OK 11 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10927), with no line terminators
Hash 848b3d98a919b181ad03d17478e97b80
e05bd451823b6d37654fa624f3becde80dddd939
fe41a7936fba4a26a21face5fbb35961e74b9b11eb9e78fa26560f6986be6ed8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 10927
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-content/themes/oceanwp/assets/css/woo/woo-mini-cart.min.css?ver=6.0.3
162.241.183.132200 OK 5.9 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/css/woo/woo-mini-cart.min.css?ver=6.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5867)
Hash e8b4273c74a4795751c8bcdf626f88bc
354f94154e4509983bedd600d1f942807b75c2a6
bc8c2d845403cece46366e5648a1d5e9086e4e2fa8a451c9a3596fb19aaf1095
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/css/woo/woo-mini-cart.min.css?ver=6.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 5868
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.9.0
162.241.183.132200 OK 4.9 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.9.0
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4933), with no line terminators
Hash e372df47bd19e1563b557d7bdb817188
4efdf4050a78bdbd88aa255955b7423105895dd0
4b7693154069c53a16468d09d89c9eba5da6c0dfc69cf4d7eb675e32ba663361
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.9.0 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:02:36 GMT
Accept-Ranges: bytes
Content-Length: 4933
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-content/themes/oceanwp/assets/css/third/hamburgers/hamburgers.min.css?ver=3.2.1
162.241.183.132200 OK 914 B URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/css/third/hamburgers/hamburgers.min.css?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (793)
Hash f54925f63ed8e94c4f8818ba531dd601
961271122dd959e5d31090b97234fee8be29cc3e
c05906867179a72b06e3a0694e1a0a1920211f7aff3ad4af48f0d70d3e0d21b0
GET /wp-content/themes/oceanwp/assets/css/third/hamburgers/hamburgers.min.css?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 914
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-content/themes/oceanwp/assets/css/third/hamburgers/types/collapse.css?ver=3.2.1
162.241.183.132200 OK 2.1 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/css/third/hamburgers/types/collapse.css?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash faab5b058e9adca1430c30ca8d9d8bbb
ab3aaaee390b56cca0471cea9a71f1132ae3f54d
ba2c4268259efa14ed7758905107b331cf9be861e8df015132ba318cf45c94f8
GET /wp-content/themes/oceanwp/assets/css/third/hamburgers/types/collapse.css?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 2143
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2597
Expires: Tue, 29 Nov 2022 11:53:28 GMT
Date: Tue, 29 Nov 2022 11:10:11 GMT
Connection: keep-alive
farmedica.com.br/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.2.1
162.241.183.132200 OK 177 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65531), with no line terminators
Size 177 kB (176990 bytes)
Hash 07a21caa86148b2dbb58699724a85b75
2478e8edade907650a0811a51552f81358aa67dc
5406c62b3fd17c5db0db3648637b7150f7a989ea8a36971ad78aa5cd295d8929
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 176990
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b7d3821d0bd11c196724846a7b9fe22
5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c
b4f820555c4daf6e112c1a395bc57e22f0ef8e2e4299a0ffbb54e0bf18c87f47
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8578
x-amzn-requestid: 4f948bb9-74db-4a5d-927d-a6b893735531
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFxnWHq-IAMF4LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efc95-2f9e98ca2dad65a80e2195c2;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: X2x9_hXC0JvEktFODEMuasu3QDg4ChtTLKJOmDVasT7IIsKlxkwXCQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:24:31 GMT
age: 24340
etag: "5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UmhWm03jrsV8dFagrzIA0E-8eL8dykoO5kw3cYOBd172dCGqNdAX-Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:05:38 GMT
age: 25473
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e7d3e11e78242383e452adb9299016
035a1b4a2a7889787532ec2637d5c21e06daf672
990f18423bafc9cc3daaa1bd1290313b6cb3d3a391f642d01fd6797ad4fc9ca8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 3004
x-amzn-requestid: 1e6e228a-fb73-4ed3-881b-6b0e5c8297c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrFRXoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-45059338501b45d943d7e08c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rb-NFzuOBQEOMHfs7L68ZBeBH_JMqKYfJhxWs4eNYq35L8duYylQdg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 02:07:34 GMT
age: 32557
etag: "035a1b4a2a7889787532ec2637d5c21e06daf672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2597
Expires: Tue, 29 Nov 2022 11:53:28 GMT
Date: Tue, 29 Nov 2022 11:10:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:52:21 GMT
age: 22670
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4058fd62595d15c58b3d3266de9865a
d0dff35eb78f129b5da407043037bcf9c27e55c0
ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4871
x-amzn-requestid: e2dfa7b8-ded7-4104-a913-1b84746a3c6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLDUUEy_oAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638118e8-0b229e0f60ff019d26800dd9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 19:35:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9BUuT9WFwAQMnl8JiTDKo-zHgDL0AdjAAAIh0Mx405zbGwhvRouebQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 12:30:42 GMT
age: 81569
etag: "d0dff35eb78f129b5da407043037bcf9c27e55c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2597
Expires: Tue, 29 Nov 2022 11:53:28 GMT
Date: Tue, 29 Nov 2022 11:10:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2597
Expires: Tue, 29 Nov 2022 11:53:28 GMT
Date: Tue, 29 Nov 2022 11:10:11 GMT
Connection: keep-alive
farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
162.241.183.132200 OK 59 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59158)
Hash b227b1617a1763c8bc056772f05482b4
c508528feb9fd540454f838653cd4863b290df2e
af1e6edc875a382b338bb25bd7c5c3f474a7f1b36212002a5896dd06f2186325
GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 59344
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:01:17 GMT
age: 29334
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash e6007fd61c6f5f69fe3be59b8ec04536
ec6370d1c959f059d561ca52a69d62859d8138dc
36174ef074adbf86baceb6e792022eb51e27410a1ae8d4eb3b583999b8da20c5
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 29 Nov 2022 11:10:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 20:08:19 GMT
Expires: Tue, 29 Nov 2022 20:08:19 GMT
ETag: "ec6370d1c959f059d561ca52a69d62859d8138dc"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
farmedica.com.br/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css?ver=6.0.3
162.241.183.132200 OK 2.0 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css?ver=6.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2034), with no line terminators
Hash 0f307d740d4245af4d5a21a4e3a54f64
f1d30ed075799319e04139592cd37fa8ded4df09
04866acb939ad09defe832c7cc73ee7aba1a09b90a5f84c6b7936aa41d7c1167
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css?ver=6.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 2034
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
162.241.183.132200 OK 89 kB URL HTTP/1.1 farmedica.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2022 06:52:03 GMT
Accept-Ranges: bytes
Content-Length: 88932
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-content/plugins/wp-whatsapp-chat/assets/frontend/css/frontend.css?ver=5.0.2
162.241.183.132200 OK 30 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/wp-whatsapp-chat/assets/frontend/css/frontend.css?ver=5.0.2
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30427), with CRLF line terminators
Hash 5954a4d2c815f5ab99c41aa5022f96ca
a6d35ff1be0173c66429204bebcd5a49aaa8ddc4
44da755637dbb60399c35c097c7fb53b9d55672269c40433fe7e2c4dc32ade84
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-whatsapp-chat/assets/frontend/css/frontend.css?ver=5.0.2 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:01:15 GMT
Accept-Ranges: bytes
Content-Length: 30429
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
code.jivosite.com/widget/QQFRqKaqfi
92.223.126.57200 OK 5.9 kB URL HTTP/2 code.jivosite.com/widget/QQFRqKaqfi
IP 92.223.126.57:0
ASN #199524 G-Core Labs S.A.
File type ASCII text, with very long lines (17132), with no line terminators
Hash 1d96c1773a5a3818343907e7d3e7a695
851edb19d12b9620ce72468d5b9a85cd6f0b5805
768f3ef3243416f20b3ca1ec38c1ee00b1cbcca90c7ab21266f77d89b8182c28
GET /widget/QQFRqKaqfi HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:10:11 GMT
content-type: application/javascript
content-length: 5938
access-control-allow-origin: *
cache-control: max-age=7200
content-encoding: br
etag: "63848200-1732"
expires: Tue, 29 Nov 2022 13:10:11 GMT
last-modified: Mon, 28 Nov 2022 09:40:16 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: MISS
x-id: am3-up-gc95
accept-ranges: bytes
X-Firefox-Spdy: h2
farmedica.com.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.9.0
162.241.183.132200 OK 210 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.9.0
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size 210 kB (209831 bytes)
Hash 9ed8fcb16418ff477a6c93fe33f86563
47be642692139a2ce63cf655cba31767cb7e8074
3f7c8f55c3c421a6f14efb39bf07abb73d1d244f194e133a2453913330e38819
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.9.0 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:02:36 GMT
Accept-Ranges: bytes
Content-Length: 209831
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-content/themes/oceanwp/assets/css/woo/woo-quick-view.min.css?ver=6.0.3
162.241.183.132200 OK 5.3 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/css/woo/woo-quick-view.min.css?ver=6.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5281)
Hash 449f36664947daaa7d35e5c85a13b6c8
096aa14e34de77563067d40032e8a70a1192bde0
15ad52d06c70c120d12ed3c9e5383a84f58e3d2174b9f50dc643c5f41abe31de
GET /wp-content/themes/oceanwp/assets/css/woo/woo-quick-view.min.css?ver=6.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 5282
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-content/plugins/ocean-modal-window/assets/css/style.min.css?ver=6.0.3
162.241.183.132200 OK 1.3 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/ocean-modal-window/assets/css/style.min.css?ver=6.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1280)
Hash 51ab2430d38175fde87cc6306f0c3bea
a15385e937b166b91de662e8b5c8c5b7d030950a
7a7afb9427b0db47a587c7275586b62b0a818e86d3263cbf4770fe21393e8dc1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ocean-modal-window/assets/css/style.min.css?ver=6.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:01:10 GMT
Accept-Ranges: bytes
Content-Length: 1281
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.0.3
162.241.183.132200 OK 52 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (51727)
Hash 474f40a4bec1a7711b5c3dfc179c0cf9
03fb73a485c17388809e88bc4849bb9ada6b0965
bb4075ccd8d1fef95defee87af13405534d082875cb913f1d1ff9c8db3d4727b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:01:09 GMT
Accept-Ranges: bytes
Content-Length: 51728
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-content/themes/oceanwp/assets/css/third/perfect-scrollbar.css?ver=1.5.0
162.241.183.132200 OK 2.6 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/css/third/perfect-scrollbar.css?ver=1.5.0
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type troff or preprocessor input, ASCII text
Hash 6f36b1309fbbde634a5d54dd1734274a
a94e730430930b2e048352996ff44bf28647669d
7b6508c9e8e04de8ebfec5de2ce1c4303bc46a0a279283eff7e248c1c900a91b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/css/third/perfect-scrollbar.css?ver=1.5.0 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 2598
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-content/plugins/ocean-product-sharing/assets/css/style.min.css?ver=6.0.3
162.241.183.132200 OK 3.2 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/ocean-product-sharing/assets/css/style.min.css?ver=6.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3151)
Hash 29afbdabe6138c122f1b5301cbef8e36
db8477a2e24de6507669a3c6f72e5147836557d4
b02d6c171640b0fc470dfce3c58455798c244a6ce8f8385dd519e82604c27343
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ocean-product-sharing/assets/css/style.min.css?ver=6.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:01:11 GMT
Accept-Ranges: bytes
Content-Length: 3152
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-content/plugins/ocean-social-sharing/assets/css/style.min.css?ver=6.0.3
162.241.183.132200 OK 6.1 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/ocean-social-sharing/assets/css/style.min.css?ver=6.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6086)
Hash 408437572cd0663f29a7a406b8bb4b13
1d1df1c13ee2b87d84c514114215f98445ad5e23
8a317bb78c9edd1387d28380a9239bef83ec39f3fd08b9b84620054cf55c94cb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ocean-social-sharing/assets/css/style.min.css?ver=6.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:01:12 GMT
Accept-Ranges: bytes
Content-Length: 6087
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.241.183.132200 OK 11 kB URL HTTP/1.1 farmedica.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 08:06:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/css/woo/woocommerce.min.css?ver=6.0.3
162.241.183.132200 OK 98 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/css/woo/woocommerce.min.css?ver=6.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65436)
Hash 84ae0d973da014b7866d4b633dc7bc6e
ea94b411a37d7dfb4fdfd6783519e48bcf5232d1
7d1933c10af4b6aa5c5c13c1b1de2f1abd80782211275a1704377e4eaf70a72f
GET /wp-content/themes/oceanwp/assets/css/woo/woocommerce.min.css?ver=6.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:04 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 97820
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
farmedica.com.br/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.3.1
162.241.183.132200 OK 9.5 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.3.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9139)
Hash 87c54edf7dad7dfdfde015f6eee45ff1
96ec1a06ea3093c47e1e2fc4444ada7f4456135d
ef22199864042b8ceeee3729f3254c140df7217364045737ca3aadf8434fb3da
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.3.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:02:36 GMT
Accept-Ranges: bytes
Content-Length: 9533
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.3.1
162.241.183.132200 OK 3.0 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.3.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 8bc2109ef48cabf7a26b73d7c3536c5f
0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b
8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.3.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:02:36 GMT
Accept-Ranges: bytes
Content-Length: 3037
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.3.1
162.241.183.132200 OK 1.8 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.3.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.3.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:02:36 GMT
Accept-Ranges: bytes
Content-Length: 1834
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.3.1
162.241.183.132200 OK 2.1 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.3.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.3.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:02:36 GMT
Accept-Ranges: bytes
Content-Length: 2139
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-includes/js/imagesloaded.min.js?ver=4.1.4
162.241.183.132200 OK 5.6 kB URL HTTP/1.1 farmedica.com.br/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Sat, 13 Jun 2020 18:53:26 GMT
Accept-Ranges: bytes
Content-Length: 5629
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.3.1
162.241.183.132200 OK 2.9 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.3.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2938), with no line terminators
Hash 0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.3.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:02:36 GMT
Accept-Ranges: bytes
Content-Length: 2938
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.2.1
162.241.183.132200 OK 18 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (17906), with no line terminators
Hash 1d515fee63a442f668519a3b0244fd4c
f5bb0f03a9162bd4581818bcae289dab6d786edd
5b92b9c2c4875b734ae97a95dedc1e77b549ba8d807be0a2082af47dc945474b
GET /wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 17906
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.2.1
162.241.183.132200 OK 13 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13223), with no line terminators
Hash e25fc788d9605cbe22629447f090b6ec
a34a36ed20e1951afee21fbc68a6c80ec6837afe
f9bb59cb69e7fcee92d926f9487a711b1d56684ac9fd7d35f5c818ce9ac44ed6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 13223
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
162.241.183.132200 OK 90 kB URL HTTP/1.1 farmedica.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.2.1
162.241.183.132200 OK 7.5 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7540), with no line terminators
Hash c7fa7b324baead665d76a2ffeab04152
a955c9646a728f8250f30e13772d129a3e0e2877
ca63a56d305249eb4cddeec8a6501010e206e110445f46572be1f2d56a1785fd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 7540
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.2.1
162.241.183.132200 OK 20 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (20087)
Hash ba6cf724c8bb1cf5b084e79ff230626e
f455c5f153f872e52265f87a644ff89fe14a6fb6
3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 20216
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.2.1
162.241.183.132200 OK 4.1 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4111), with no line terminators
Hash 71c31400a12073b7c576c903dcd8cea5
2f048a9ca8727b169e761033b80209f53ffbf9f4
6678f5308a4fd9620f440c3e6433920f9a09a9d6465a13888d9638aa23d70191
GET /wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 4111
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.2.1
162.241.183.132200 OK 58 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21914)
Hash 0a54e842e3e395e6b9fcf6893283a105
e96d27e9c036db495b6fe00cfc8a0371d7aadd74
472c7748607b5b76986bb54ffe3fe79ea954f61705aabd2a0fa80d13b2eee46b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 57513
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.2.1
162.241.183.132200 OK 2.0 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2002), with no line terminators
Hash 3f249575b37232d51921e82536004592
5799b78581ed5968346cade85389b82b2d6a304d
b817c9b9bb557b34222c4598548f3569a7c8f2bb30b796a6c92d47dd740e4271
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 2002
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.2.1
162.241.183.132200 OK 11 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11314), with no line terminators
Hash 516bdc909b4065c3003bf2387e7669cf
14e20fb1f8b440d54344520d99e55e2639ad343c
6ef306f7dcc94d3d92ac0aaf81c5c1119910d42c7a77af474638e86aa97363b1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 11314
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.2.1
162.241.183.132200 OK 8.1 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8125), with no line terminators
Hash a8e59c09fc508e4c9af41d84c78ba060
c759ba48d7145cee1f7dd848846816743ee416f7
6d9ae95d9fdfc0ae57094ec0c574db50f52a3f861427b2f413dbef56156515db
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 8125
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Lato%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100i%2C200i%2C300i%2C400i%2C500i%2C600i%2C700i%2C800i%2C900i&subset=latin&display=swap&ver=6.0.3
142.250.74.10200 OK 5.7 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100i%2C200i%2C300i%2C400i%2C500i%2C600i%2C700i%2C800i%2C900i&subset=latin&display=swap&ver=6.0.3
IP 142.250.74.10:0
Hash bfaf56034d263ef6f32d0a12a92eea2b
a517d8e9a8236733e3c3bd7901b464736d1ccb6d
baef9928cac2ed9839ebb6e0ea25f969d4985c54ea800d0e90b708d6fbce05d3
GET /css?family=Lato%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100i%2C200i%2C300i%2C400i%2C500i%2C600i%2C700i%2C800i%2C900i&subset=latin&display=swap&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 11:10:11 GMT
date: Tue, 29 Nov 2022 11:10:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
farmedica.com.br/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-custom-features.min.js?ver=3.2.1
162.241.183.132200 OK 26 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-custom-features.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (26129), with no line terminators
Hash 00f2c4188850f58e9ebc6735e650da0e
ad488ed0b71be81ba35f9270ba4dfd6f4a1ff7ef
ce193fa693c5dc630106b5e5b15de5771b42327602a1dfd911453b55baa7c59e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-custom-features.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 26129
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:10:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://farmedica.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:10:21 GMT
expires: Wed, 22 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 583191
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
farmedica.com.br/wp-content/plugins/ocean-extra/includes/widgets/js/share.min.js?ver=6.0.3
162.241.183.132200 OK 173 B URL HTTP/1.1 farmedica.com.br/wp-content/plugins/ocean-extra/includes/widgets/js/share.min.js?ver=6.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash fa0b7cb9c4d2f0a218a0a6cf9e6a5b2a
3e1d1d4aa195760ffc8e3bbe9f3309b57cbfeb12
96aaa10dd944dba10e96704edabd8be36e47b6a66d6e707e7eeee3621b8a0dea
GET /wp-content/plugins/ocean-extra/includes/widgets/js/share.min.js?ver=6.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:01:09 GMT
Accept-Ranges: bytes
Content-Length: 173
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/plugins/wp-whatsapp-chat/assets/frontend/js/frontend.js?ver=021fa4de1c6ea4db860e85f702082b24
162.241.183.132200 OK 7.6 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/wp-whatsapp-chat/assets/frontend/js/frontend.js?ver=021fa4de1c6ea4db860e85f702082b24
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7563), with no line terminators
Hash 288fa5abb2a4be47c2000c083323b59e
4eb5755fab2d2a1e99dcf3aa3d93a0fb35e2ea08
274228c386cbd98a44f30ae436ee51846b87b724b1992578fadd2a5ce2d9be5f
GET /wp-content/plugins/wp-whatsapp-chat/assets/frontend/js/frontend.js?ver=021fa4de1c6ea4db860e85f702082b24 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:01:15 GMT
Accept-Ranges: bytes
Content-Length: 7563
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:10:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:10:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
farmedica.com.br/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-quick-view.min.js?ver=3.2.1
162.241.183.132200 OK 37 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-quick-view.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (36919), with no line terminators
Hash e945d0cb3a636b1724b062825dea1c6a
7b138c4ab048df4a6ddab6c9f4168491a3042a6d
a13da55b7e68c56a85b8e83b3d2b843766cd9c110f3db90b666515294ab21418
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-quick-view.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 36919
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://farmedica.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 21:11:39 GMT
expires: Sun, 26 Nov 2023 21:11:39 GMT
cache-control: public, max-age=31536000
age: 223113
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://farmedica.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:53:49 GMT
expires: Thu, 23 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 490583
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
farmedica.com.br/wp-includes/js/underscore.min.js?ver=1.13.3
162.241.183.132200 OK 19 kB URL HTTP/1.1 farmedica.com.br/wp-includes/js/underscore.min.js?ver=1.13.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18876)
Hash 42aa17e1f850a414638ee4a32a3aa807
2e42d03a5e042701191650c041eae1cfb2d6c7b9
0da4791b446818516f710c51707081aec7b23a7c5212fc0b2629c973210136a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 06:51:58 GMT
Accept-Ranges: bytes
Content-Length: 18911
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:10:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
farmedica.com.br/wp-includes/js/wp-util.min.js?ver=6.0.3
162.241.183.132200 OK 1.3 kB URL HTTP/1.1 farmedica.com.br/wp-includes/js/wp-util.min.js?ver=6.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1305)
Hash 8637362089372427b52fa10a43d8109c
6009bed674718329dce6055ab09fa95181162d81
b8e78b48acc08ce31457aff168d6fb2c814d51a8739a97693cdba585d60f5b35
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Fri, 25 Jun 2021 14:50:58 GMT
Accept-Ranges: bytes
Content-Length: 1340
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.3.1
162.241.183.132200 OK 14 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.3.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13590), with no line terminators
Hash a49a60e0186f705f693279985371da20
3419d4683879d6a48e051e38356602a2f5094511
3b55a00b09e9df011435d1f358401cf7153066bbfeafdc3384e5d8cdaf4e3262
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.3.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:02:36 GMT
Accept-Ranges: bytes
Content-Length: 13590
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-mini-cart.min.js?ver=3.2.1
162.241.183.132200 OK 5.8 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-mini-cart.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5826), with no line terminators
Hash f1f224bb25e3b0f20db9a4456ae9eaf2
f92f97fbd751acf193854af67b24411281dda524
ca0df94ce396331a35d85335f994c97dae9fe21875c3d47a206482d71d13147a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/wp-plugins/woocommerce/woo-mini-cart.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 5826
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.6.3.1
162.241.183.132200 OK 23 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.6.3.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (22772), with no line terminators
Hash 6423ffdf89ad818fa2308a6c069f475b
a2a131aeeb0f79c3c6df45d7032efa507e0c964f
90e807e1187d524c887e59ecee631af3e5f4f68ab7b30d737dd6a3a93ad28e20
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.6.3.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:02:36 GMT
Accept-Ranges: bytes
Content-Length: 22772
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/js/vendors/perfect-scrollbar.min.js?ver=3.2.1
162.241.183.132200 OK 20 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/js/vendors/perfect-scrollbar.min.js?ver=3.2.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8460)
Hash 4707a5fde2e52a52c114cdad148fcb39
cd1784e029249ebf5d57de1f677a4a61019706ae
8ffaa73818038726b1178c18e4d06259d9a7b49cb88830946dce416b65c92840
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/vendors/perfect-scrollbar.min.js?ver=3.2.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 19461
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/plugins/ocean-modal-window/assets/js/modal-window.min.js?ver=2.0.4
162.241.183.132200 OK 10 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/ocean-modal-window/assets/js/modal-window.min.js?ver=2.0.4
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9951), with no line terminators
Hash de7fd48d6adf0408dc585d5888ced5d8
452c14402b83383fb184a4f9f8a8ff61f05f71ae
3fab30d72a0ef2cf5b5ef0e6354bd708b3e537016bd964bc2fbb32f23ba59025
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ocean-modal-window/assets/js/modal-window.min.js?ver=2.0.4 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:01:10 GMT
Accept-Ranges: bytes
Content-Length: 9951
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/plugins/ocean-social-sharing/assets/js/social.js?ver=2.0.1
162.241.183.132200 OK 474 B URL HTTP/1.1 farmedica.com.br/wp-content/plugins/ocean-social-sharing/assets/js/social.js?ver=2.0.1
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 47ecceeb0f9f11f5462201efbdec0303
85ab09b12cd13bd619dcd2a2a60a77f19b792cd4
ee8aa4be238c20b1343cd8198c419c66fb60a6be9f162bef2ba699ac2428ac75
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ocean-social-sharing/assets/js/social.js?ver=2.0.1 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:01:12 GMT
Accept-Ranges: bytes
Content-Length: 474
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/plugins/ocean-product-sharing/assets/js/social.js?ver=2.0.2
162.241.183.132200 OK 474 B URL HTTP/1.1 farmedica.com.br/wp-content/plugins/ocean-product-sharing/assets/js/social.js?ver=2.0.2
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d1a19b2f3af461fb3eb06d6597fc18e2
080a37f211308020f77620af14e2d5080fc6effb
93f65d91e28f0f7a2a5f26def1790d1c563b3495ce31cc46288edabeb28c44b0
GET /wp-content/plugins/ocean-product-sharing/assets/js/social.js?ver=2.0.2 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:01:11 GMT
Accept-Ranges: bytes
Content-Length: 474
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.3
162.241.183.132200 OK 3.3 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (546), with CRLF line terminators
Hash 455b3d639e78ffe6974d690c95c87be7
a11c7aa70e46636e9cf6585d1a2ecbac903b3ef4
81aaa35a406f46d77d915e26708d52927ca091ed92a632785310fda66a856725
GET /wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:01:12 GMT
Accept-Ranges: bytes
Content-Length: 3276
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.3
162.241.183.132200 OK 6.2 kB URL HTTP/1.1 farmedica.com.br/wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.3
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6205), with no line terminators
Hash 758eb67134900a453e13e023982adffc
b44633fdc67d2e85da2e590645599d1367b049f3
7fd5540afb9a2a1db27dd3f78d71334ec2487847b087d68142a7e07aae96d49e
GET /wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.3 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:01:12 GMT
Accept-Ranges: bytes
Content-Length: 6205
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2
162.241.183.132200 OK 78 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78460, version 331.-31392\012- data
Hash f075c50f89795e4cdb4d45b51f1a6800
f726c4275bb494a045fde059175f072de06c01df
71b3ce72680f4183d28db86b184542051fd533bb1146933233e4f6a20cf98cba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 78460
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: font/woff2
farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
162.241.183.132200 OK 80 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 80300, version 331.-31392\012- data
Hash 8e1ed89b6ccb8ce41faf5cb672677105
9b592048b9062b00f0b2dd782d70a95b7dc69b83
6b555920e358f8a25a422988b448615c33bcccb4f932e8331cebfc8e2a737fc7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 80300
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: font/woff2
farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0
162.241.183.132200 OK 30 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 30064, version 1.0\012- data
Hash 0cb0b9c589c0624c9c78dd3d83e946f6
5da603104d4d6e362824ec9e7db32eb2d617949a
104673f4859604362a18fc6294197d8fffb8cb24ad3211e92eb04f655e18cf4a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://farmedica.com.br/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 30064
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: font/woff2
farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/fontawesome/webfonts/fa-regular-400.woff2
162.241.183.132200 OK 14 kB URL HTTP/1.1 farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/fontawesome/webfonts/fa-regular-400.woff2
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 13548, version 331.-31392\012- data
Hash 4a74738e7728e93c4394b8604081da62
fb9648469530a05fa9aac80e47d4d6960472a242
ce20ed8a323117c8a718ff1ddc6dabb997373b575a8e896f2bf02b846c082c9d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://farmedica.com.br/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 17:09:00 GMT
Accept-Ranges: bytes
Content-Length: 13548
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: font/woff2
farmedica.com.br/wp-content/uploads/2020/05/inalar2-150x150.jpg
162.241.183.132200 OK 4.9 kB URL HTTP/1.1 farmedica.com.br/wp-content/uploads/2020/05/inalar2-150x150.jpg
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash ae2c64d1a10ab61b48fa441f01f2cbd5
5f62eb5f9d14929de5d591642c6a952d5d488d79
fc635019fd4d3748fcfc77fa56128be0e64a4bc0bcf3c6e83572fb280354a54d
GET /wp-content/uploads/2020/05/inalar2-150x150.jpg HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 19 Oct 2021 17:29:58 GMT
Accept-Ranges: bytes
Content-Length: 4854
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
farmedica.com.br/wp-content/uploads/2020/05/inalador1-1-150x150.jpg
162.241.183.132200 OK 4.4 kB URL HTTP/1.1 farmedica.com.br/wp-content/uploads/2020/05/inalador1-1-150x150.jpg
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash d41b1e9037770b010b785992ebcd37b8
ca553906d014a9ab3a156ea9ccc687321b9d7bec
ad7ba55fa18d3adf03f5c431cf62d57ad72a44781e43337ee6b8942cd57ba16b
GET /wp-content/uploads/2020/05/inalador1-1-150x150.jpg HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 19 Oct 2021 17:29:58 GMT
Accept-Ranges: bytes
Content-Length: 4443
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
farmedica.com.br/wp-content/uploads/2020/05/inaladorkids2-150x150.jpg
162.241.183.132200 OK 2.8 kB URL HTTP/1.1 farmedica.com.br/wp-content/uploads/2020/05/inaladorkids2-150x150.jpg
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash cd049423be033016c43b1663838ade21
5c93513c6016ee190ab27ead32e6c1f41fc5dac3
7c141b2dc03bc4755f221625246bfa90c5e9c6942c9c41c1afcc06587e5c30d2
GET /wp-content/uploads/2020/05/inaladorkids2-150x150.jpg HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 19 Oct 2021 17:29:58 GMT
Accept-Ranges: bytes
Content-Length: 2829
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
farmedica.com.br/wp-content/uploads/2019/09/cropped-logo-maxifarma-rb-3.png
162.241.183.132200 OK 51 kB URL HTTP/1.1 farmedica.com.br/wp-content/uploads/2019/09/cropped-logo-maxifarma-rb-3.png
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1433 x 315, 8-bit/color RGBA, non-interlaced\012- data
Hash 9c3037d2d2603e32d931367d1eb989db
b2cab653f4a18199cb02417a48991495effc0f29
d232f2aa050c2d53a0376b495cbae061a5bd4b954232d62c4a69935bece463bf
GET /wp-content/uploads/2019/09/cropped-logo-maxifarma-rb-3.png HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:05 GMT
Server: Apache
Last-Modified: Tue, 19 Oct 2021 17:29:58 GMT
Accept-Ranges: bytes
Content-Length: 51004
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
farmedica.com.br/wp-content/uploads/2019/09/logo.png
162.241.183.132200 OK 26 kB URL HTTP/1.1 farmedica.com.br/wp-content/uploads/2019/09/logo.png
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 171, 8-bit/color RGBA, non-interlaced\012- data
Hash 00cd0edc5b8e35cfea532d4cd1014a25
98728f9208907083325b1c0787e3181159100e0b
bf25a0d4ffce2bfed27f98b345860559f1145eef58345158f1d15efc715996fb
GET /wp-content/uploads/2019/09/logo.png HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:06 GMT
Server: Apache
Last-Modified: Tue, 19 Oct 2021 17:29:58 GMT
Accept-Ranges: bytes
Content-Length: 25567
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
code.jivosite.com/script/widget/config/QQFRqKaqfi
92.223.126.57200 OK 29 B URL HTTP/2 code.jivosite.com/script/widget/config/QQFRqKaqfi
IP 92.223.126.57:0
ASN #199524 G-Core Labs S.A.
File type JSON data\012- , ASCII text, with no line terminators
Hash ceb21f1d99ed00e8693f236204033aa1
2863469c9cf478fabbb9d1ddf49d20e86c817768
83a00ef8a5bc290c76d5813193eb405fa0ef2bb6ee3b9ac81cef030aa5de8e21
GET /script/widget/config/QQFRqKaqfi HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://farmedica.com.br
Connection: keep-alive
Referer: https://farmedica.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:10:13 GMT
content-type: application/json
content-length: 29
access-control-allow-origin: *
cache-control: max-age=7200
expires: Tue, 29 Nov 2022 13:10:13 GMT
via: 1.1 sharxy
x-geo-shard: ya
cache: MISS
x-id: am3-up-gc95
accept-ranges: bytes
X-Firefox-Spdy: h2
telemetry.jivosite.com/w
94.139.254.11204 No Content 0 B IP 94.139.254.11:0
ASN #208677 Cloud technology Limited (Ltd.)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /w HTTP/1.1
Host: telemetry.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 102
Origin: https://farmedica.com.br
Connection: keep-alive
Referer: https://farmedica.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: JivoTelemetry/fix-jivoapp-telemetry
Date: Tue, 29 Nov 2022 11:10:13 GMT
farmedica.com.br/wp-content/uploads/2019/09/cropped-favicon-32x32.png
162.241.183.132200 OK 2.0 kB URL HTTP/1.1 farmedica.com.br/wp-content/uploads/2019/09/cropped-favicon-32x32.png
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 1a94c2c2b1babb98f812edefbe08f54b
bebb85d92119ba009087eab9f61847376be7e0d9
f3dd7a20acde30e962bfe2727e052ac9af7e1763d4da2aed2eeb57f1faff4e40
GET /wp-content/uploads/2019/09/cropped-favicon-32x32.png HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:06 GMT
Server: Apache
Last-Modified: Tue, 19 Oct 2021 17:29:58 GMT
Accept-Ranges: bytes
Content-Length: 1959
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png
farmedica.com.br/wp-content/uploads/2019/09/cropped-favicon-192x192.png
162.241.183.132200 OK 18 kB URL HTTP/1.1 farmedica.com.br/wp-content/uploads/2019/09/cropped-favicon-192x192.png
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 6166e41152e0fe776b3be4be3c7747db
bf9fc0cc02e6595ce059a35787fa46fe997f2d6c
b9240dc14f7a237d176282033f5313c338078f1e645009775c03ad8c0de95022
GET /wp-content/uploads/2019/09/cropped-favicon-192x192.png HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:06 GMT
Server: Apache
Last-Modified: Tue, 19 Oct 2021 17:29:58 GMT
Accept-Ranges: bytes
Content-Length: 17484
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
farmedica.com.br/?wc-ajax=get_refreshed_fragments
162.241.183.132200 OK 1.3 kB URL HTTP/1.1 farmedica.com.br/?wc-ajax=get_refreshed_fragments
IP 162.241.183.132:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JSON data\012- HTML document, ASCII text, with very long lines (1332), with no line terminators
Hash c651eccfa60cd7c09b1036cb7a2f9cbf
59e2814aa5dd51585d319426425a8aaa0518c0f6
67859764b74c8123ed5c03fac01939af6536da5cfa6808f26bbe326a9104d4d9
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: farmedica.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://farmedica.com.br
Connection: keep-alive
Referer: https://farmedica.com.br/%5C
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 11:10:06 GMT
Server: Apache
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: https://farmedica.com.br
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8