Report - magicbarf.it/

Report Overview

Submitted URL
magicbarf.it/
IP
82.223.29.17
ASN
#8560 IONOS SE
Submitted
2022-11-26 04:14:43
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
magicbarf.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	15 kB	2.5 MB	82.223.29.17
pixel.wp.com	2545	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	504 B	239 B	192.0.76.3
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	59 kB	34.120.237.76
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	85 kB	216.58.207.195
www.magicbarf.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	447 B	323 B	82.223.29.17
stats.wp.com	2711	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	714 B	639 B	192.0.76.3
magicbarf.it	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	344 B	534 B	82.223.29.17
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	370 B	21 kB	142.250.74.174
i0.wp.com	3021	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	13 kB	192.0.77.2
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.215.107.141
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	915 B	37 kB	142.250.74.10
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	6.3 kB	142.250.74.35
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	44 kB	142.250.74.168
c0.wp.com	6988	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.6 kB	30 kB	192.0.77.37

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-26	medium	magicbarf.com/	Malware
2022-11-26	medium	magicbarf.com/wp-content/cache/wpfc-minified/lcrdxsv9/250xp.js	Malware
2022-11-26	medium	magicbarf.com/wp-content/themes/dt-the7/fonts/FontAwesome/webfonts/fa-solid-900.woff2	Malware
2022-11-26	medium	magicbarf.com/wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.ttf?wi57p5	Malware
2022-11-26	medium	magicbarf.com/wp-content/uploads/smile_fonts/icomoon-font-awesome-14x14/icomoon-font-awesome-14x14.ttf?vqvoc7	Malware
2022-11-26	medium	magicbarf.com/wp-content/cache/wpfc-minified/6vmpdb2p/250xp.js	Malware
2022-11-26	medium	magicbarf.com/wp-content/uploads/2020/08/article-e1597353946241.jpeg	Malware
2022-11-26	medium	www.magicbarf.com/	Malware
2022-11-26	medium	magicbarf.com/wp-admin/admin-ajax.php	Malware
2022-11-26	medium	magicbarf.com/wp-content/cache/wpfc-minified/mn1isi14/26w6q.js	Malware
2022-11-26	medium	magicbarf.com/wp-content/cache/wpfc-minified/osfd4c5/26w6p.js	Malware
2022-11-26	medium	magicbarf.com/wp-content/cache/wpfc-minified/1130n0n7/26w6p.js	Malware
2022-11-26	medium	magicbarf.com/wp-content/cache/wpfc-minified/m7u66gl1/26w6p.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (41)

	URL	Size	First Seen	Last Seen
	c0.wp.com/c/6.0.2/wp-includes/js/underscore.min.js	19 kB	2023-03-07	2024-04-24
Pretty URL c0.wp.com/c/6.0.2/wp-includes/js/underscore.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-24 13:45:07 Times Seen2359 Hash 42aa17e1f850a414638ee4a32a3aa807 2e42d03a5e042701191650c041eae1cfb2d6c7b9 0da4791b446818516f710c51707081aec7b23a7c5212fc0b2629c973210136a4 Loading...

	magicbarf.com/	105 B	2023-03-07	2024-04-24
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:13 Last Seen2024-04-24 00:33:35 Times Seen348 Hash 7d60ef56d9be0ca7826f531181aa4c25 c9d8900e17bd4acd80b255c7c64fa098db3c9cbe 9198fd8fd3b8ad11f272142dc77f08f384cfe814e75e02690ee443bee2ae1609 Loading...

	magicbarf.com/	174 B	2023-03-07	2023-03-17
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:11:11 Last Seen2023-03-17 12:34:30 Times Seen1 Hash 786d7cf7da0a53727531275f3a8ecef5 7dc4271b69d2c26a0f511bfa06461b20f3245d04 d6fcb92b74a278dded620c92ba7cc4c8c5a0af53c0594dcf03981a78df915c2d Loading...

	c0.wp.com/p/woocommerce/6.8.2/assets/js/jquery-blockui/jquery.blockUI.min.js	9.5 kB	2023-03-07	2024-04-25
Pretty URL c0.wp.com/p/woocommerce/6.8.2/assets/js/jquery-blockui/jquery.blockUI.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-25 13:07:05 Times Seen1881 Hash a5451283952efd5df49466bbeace6911 dce405842471c303c3d8fd6fa3c084aa56a71029 f4e38e5ef16efe51836cf7142412b8e1aa8b73ce89afed23be0cf77dfd8e095d Loading...

	www.googletagmanager.com/gtag/js?id=UA-175841621-1	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-175841621-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:27:39 Last Seen2023-03-11 20:27:39 Times Seen1 Hash f192f851fb33f52190c98438f375c782 275616a2f4afce41f5c0cb340c49a25322fe20da 1c189de6868454f3dda02783319f3ed706022b36c31fad8ff8b1a811f25e396f Loading...

	magicbarf.com/	140 B	2023-03-07	2023-05-29
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-05-29 02:15:16 Times Seen18 Hash 790f8ba52fad7f360f95785c7cade86f b88cc23b2f53822d9e6b315222dedb729310208d dba696a8e5118ed5a67c41ce3193d7fc10a2db69440028311e74e9f11b60966b Loading...

	c0.wp.com/p/woocommerce/6.8.2/assets/js/js-cookie/js.cookie.min.js	1.8 kB	2023-03-07	2024-04-26
Pretty URL c0.wp.com/p/woocommerce/6.8.2/assets/js/js-cookie/js.cookie.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-26 02:00:04 Times Seen21608 Hash d0a6d8547c66b0d7b0172466558d1208 ff93916519c7b9483251f609e4d29f38c30a66e3 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612 Loading...

	magicbarf.com/	416 B	2023-03-07	2024-01-27
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2024-01-27 11:28:31 Times Seen4 Hash 28477a1b029003def532ca9255806c42 8b57404601e374eea97c232cdfb0797f4b5fbaa1 560419575dbca07a5917c02d411970cccf0d21858afae08b72ac2dccbb442275 Loading...

	magicbarf.com/	325 B	2023-03-07	2024-04-24
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:59 Last Seen2024-04-24 00:33:37 Times Seen284 Hash 641b381b7b286e898b4a5d3bad3c2802 8e8277915629c2012cbe6973ef9550e327e82a0d 773012ffbbc55d1daeae2d73c1e00567d053b950dd1cffcfc93d24b5371daa8a Loading...

	stats.wp.com/s-202236.js	9.4 kB	2023-03-07	2024-03-07
Pretty URL stats.wp.com/s-202236.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-03-07 00:14:50 Times Seen3354 Hash 82d763decfeb58a330f075ecd1bfbec4 9834c21e75bcf80d52c98bf55641f2bd92e200d3 7faf2fee5a715e1668f517f67a4b21cddd539b978678ce1bfd48a597044079e1 Loading...

	magicbarf.com/	226 B	2023-03-07	2023-05-29
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-05-29 02:15:16 Times Seen18 Hash a81b765520bf45e63fa10e5c719f266a dfef57af66ac2b535085035afe43fe78a0e71f4c 31b106de6042e007080a37be73fbe47c59f14f351cc29c8f0b08e29e256936ba Loading...

	magicbarf.com/	129 B	2023-03-07	2024-04-24
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:59 Last Seen2024-04-24 00:33:34 Times Seen153 Hash edf651b795e6117ab921478239cfb6ea accd529088d88122b083148d4bfa830913697add 5dc809155f761dec3963e7878ee90ba7c85f14d5e29892ebf3e47fc3033e6f93 Loading...

	magicbarf.com/	662 B	2023-03-07	2023-03-17
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-03-17 12:34:30 Times Seen1 Hash e36eca1d0507061987aac4ffc87e3785 75d575b07c9e091ca39676735441572883abbcf9 2edac3a2236053464657fa85e81dd4a6797914c8a48d670a21388275f59e3a69 Loading...

	magicbarf.com/	264 B	2023-03-07	2023-05-29
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:46 Last Seen2023-05-29 02:15:16 Times Seen18 Hash c9c715b051a11d6c77bc0e4dc7271142 ee3195f9dfc50c691e7dd6778c16c799db2208da bf4728109a059e7fd18f02e6bfe4bfb430a9b181dea9d56db84b5947905e9f3a Loading...

	c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/add-to-cart.min.js	3.0 kB	2023-03-07	2024-04-25
Pretty URL c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/add-to-cart.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-25 13:07:05 Times Seen1755 Hash 4e544022235ced14996464116a9ed9b2 31ee19d95973124b812a22c5ff5944d5b5bf8147 4ef2d5b0ef62523af87f3e13d8061449b2ddbfce07064f26b1305084abbf18f1 Loading...

	magicbarf.com/	427 B	2023-03-07	2023-05-29
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-05-29 02:15:16 Times Seen18 Hash 77f290382a70a3ea4945568e707cbdda 821d27bca8d4ae77a8ba15fa1e4ea6606d30d836 9dd55c7602afb2809529b3a9ca4ba037ad5532e16a9d86b8bc788e70cc892074 Loading...

	magicbarf.com/	1.6 kB	2023-03-07	2023-05-29
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-05-29 02:15:17 Times Seen18 Hash a9ac8c3f98656be4b75dda45945ff872 4254eda8c996aa95d6f728ead0dcc840c6b8eb5b ff36ed811df11d43e4dff55ac311887de046bd38abc8eb152f3cd307cc97f109 Loading...

	c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js	90 kB	2023-03-07	2024-04-25
Pretty URL c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 23:26:46 Times Seen31832 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/tabs.min.js	12 kB	2023-03-07	2024-04-25
Pretty URL c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/tabs.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:43 Last Seen2024-04-25 18:37:12 Times Seen459 Hash 1d376be55e51aea00d432f6659d3e0d1 cc5b9f6fa12d0a90b38d3d6e918401c9ad26332b 34934dc0d2652647955344d4d53218860096f14217c81c1eb5b02e54526835b6 Loading...

	magicbarf.com/wp-content/cache/wpfc-minified/m7u66gl1/26w6p.js	198 kB	2023-03-07	2023-03-17
Pretty URL magicbarf.com/wp-content/cache/wpfc-minified/m7u66gl1/26w6p.js IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-03-17 12:34:30 Times Seen1 Hash d7d0c5a8813c16d623173ad5da930b80 aa40317484b9376dac5b90559a9fd1974ed4ea58 ffbf0ac1d4946180beaed0ac1b5cc15b7ae6f53964becf8be90aa162501e942d Loading...

	magicbarf.com/	3.5 kB	2023-03-07	2024-04-24
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:59 Last Seen2024-04-24 00:33:34 Times Seen220 Hash a573bd6c3f73818e2161d644f2e498e9 3161207c174b02fb6b5939053eb52527fcd275b3 337c6bd7bf9018c6659a485ee81761b6807eff28416b146f14b0424e1edeefbd Loading...

	c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/core.min.js	21 kB	2023-03-07	2024-04-25
Pretty URL c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/core.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 18:37:12 Times Seen3655 Hash 6aaf0a4e8eac131defea126f5b1b5fbf 24da0326af36303e5a1e9799a3c26f7a1077928c 240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5 Loading...

	stats.wp.com/e-202236.js	9.0 kB	2023-03-07	2024-01-05
Pretty URL stats.wp.com/e-202236.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:19 Last Seen2024-01-05 09:08:33 Times Seen3233 Hash 9152c169155daa333287728cb8e4ae93 1e45a9ea1464acf983f022567cb9f669f4c77f65 82d0aae1e7b8cfc0574d6548d1f35096f5e4310321aa964ff3fdb46c4d12e302 Loading...

	magicbarf.com/	1.9 kB	2023-03-07	2024-02-14
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2024-02-14 12:45:03 Times Seen36 Hash 1e083bf68ac0b69f1e82472d722c7195 2195466bcd4e245efc18f416314ad308d71d1180 b6c11ca69339131036851abd42487a2ecf49b5a0a06fd4f1a603175247d2306b Loading...

	c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/cart-fragments.min.js	2.9 kB	2023-03-07	2024-04-26
Pretty URL c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/cart-fragments.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-26 02:00:04 Times Seen13989 Hash 0fd625c3991a4015814cffdc88e2fc82 d7c2f53e058210ff3ea773297641008bab71a5f3 2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-26
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-26 00:32:39 Times Seen1530 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	magicbarf.com/	406 B	2023-03-07	2023-03-17
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:11:11 Last Seen2023-03-17 12:34:30 Times Seen1 Hash a5d338bc078671984b560bfb6c4b3d2f 92b85d7acdef6ce29aa3ed399b406dfb4e8528f0 984aae06ffb0662e1a26bf1e78e821133f96352ad6a982c1c30e5cc824656b43 Loading...

	magicbarf.com/	3.0 kB	2023-03-07	2023-03-17
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:11:11 Last Seen2023-03-17 12:34:30 Times Seen1 Hash 61e348196704f0e10773bbd89a5b41bc 43ce15c3db351b720760ed2a3bd5734a4c459ecb baf06ec7d74e237cf0ec24ab2f0a608156e539e03b5525b7034d1c122d11e2a4 Loading...

	magicbarf.com/	47 B	2023-03-07	2023-03-17
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-03-17 12:34:30 Times Seen1 Hash 5799c0a2024cdb1b12cb18140d7af9c3 61492de0da73de358a437159cdee7f639a9dc53f 951c0ead784c2151b8ece677dc28ebbf4fb5f6b8c007ba7b451702a37c6fce1a Loading...

	magicbarf.com/wp-content/cache/wpfc-minified/lcrdxsv9/250xp.js	840 B	2023-03-07	2024-01-30
Pretty URL magicbarf.com/wp-content/cache/wpfc-minified/lcrdxsv9/250xp.js IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2024-01-30 11:30:08 Times Seen18 Hash c68f47887584d2849e36374daf41f076 a59f24c84697e706fa5b1f599e150ede20245d74 bea950138963bf0375a5aafdb33efbbf8458ff06e61fedc1c044611a7cf3499e Loading...

	c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/woocommerce.min.js	2.1 kB	2023-03-07	2024-04-26
Pretty URL c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/woocommerce.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-26 02:00:04 Times Seen22408 Hash b72c1cbb1530a011a27bd9800f26765a 27b825c5d8255f33b8427a059d4545ebd65e1746 a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8 Loading...

	magicbarf.com/	667 B	2023-03-07	2023-03-17
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:11:11 Last Seen2023-03-17 12:34:30 Times Seen1 Hash 0671f5a5e84154b0c80bd08383fcc4e6 ebb8cf3c21f5072e67de87d5123783e13aafe7c0 c1ded3a57761a857136a5d35c28573bb5da2282e40b78207fc5c0d2ead7eab13 Loading...

	magicbarf.com/	243 B	2023-03-07	2023-05-29
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-05-29 02:15:17 Times Seen18 Hash 404c29bc9aab8c3e8fc2898a879fd1e3 cf0b03a5175396d370ee0645a4ef109d9c9be58c eeb9f96c1c4d1e9956a5877e54331831f1a123e019cb8dcdc2b29a9b692e712a Loading...

	magicbarf.com/wp-content/cache/wpfc-minified/6vmpdb2p/250xp.js	848 kB	2023-03-07	2023-03-17
Pretty URL magicbarf.com/wp-content/cache/wpfc-minified/6vmpdb2p/250xp.js IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-03-17 12:34:30 Times Seen1 Hash ce177f14918ff2b7db49027b7243664b 5d2540886c89710dc680c4626ad5e89a4d7b8019 3110f0e5f8e44d5ba0675307e5b85cb298ef3a53f4cb5d6602052579a8553fc2 Loading...

	magicbarf.com/wp-content/cache/wpfc-minified/1130n0n7/26w6p.js	26 kB	2023-03-07	2023-12-17
Pretty URL magicbarf.com/wp-content/cache/wpfc-minified/1130n0n7/26w6p.js IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-12-17 20:21:15 Times Seen3 Hash a12906fd9e7ff784fcfa2ed8dcf1589b 1cfcf264f31e35f5310711e0929e6502e9ba900e 8f0146524a76d41105e02f758e2cb82203645cc4f51864888d3eecac3870693a Loading...

	magicbarf.com/wp-content/cache/wpfc-minified/osfd4c5/26w6p.js	126 kB	2023-03-07	2023-03-17
Pretty URL magicbarf.com/wp-content/cache/wpfc-minified/osfd4c5/26w6p.js IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-03-17 12:34:30 Times Seen1 Hash 6185173375dffa2fe07c3eaabdd8ef23 cf6e4e4cc1b7c50e312ed406a9179ef280eadf86 55faf6d7fd31c26a644da028f4c8d85a9748f7c15f6db440ddb3ec028797c3a7 Loading...

	magicbarf.com/	28 B	2023-03-07	2024-03-30
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:46 Last Seen2024-03-30 20:10:35 Times Seen64 Hash 0f6d6150835d2974b4d67889fbeef93a 38f82db4cd226335f6d4249f683f564b9bc2dcf8 52a8507f5f3898a00c6d5d67e856a73b6f8ecd1d246e074ab5a645cd96a6e023 Loading...

	c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js	11 kB	2023-03-07	2024-04-26
Pretty URL c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 01:56:03 Times Seen68646 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	magicbarf.com/wp-content/cache/wpfc-minified/mn1isi14/26w6q.js	54 kB	2023-03-07	2023-03-17
Pretty URL magicbarf.com/wp-content/cache/wpfc-minified/mn1isi14/26w6q.js IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:46 Last Seen2023-03-17 12:34:30 Times Seen1 Hash 55cb3b3149530376ee4d69b03a05fe23 be0ff1388fe05fb8d45f2e44c4d2e6abb8cfe028 4ef784d8fc8181f91b761d5d9982221bce06ae7ac195b398f716d6fad81b6d49 Loading...

	magicbarf.com/	290 B	2023-03-07	2024-02-14
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2024-02-14 12:45:03 Times Seen34 Hash d8eb23a3d57383e3b31cf26c50751733 0b72b422f9a9fc394d143db464de34363f12db6a dd714b4e040d04a2633df19fdaa27a4e4d5e81f75fdeefbc6c9bacb84b3a5208 Loading...

	magicbarf.com/	485 B	2023-03-07	2024-01-30
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2024-01-30 11:30:08 Times Seen33 Hash 51290609336539dd3234ec6c3e85d828 bfca16c7abda2c94fcdbc3e45d8cec45ff16f771 93eee6dfd011a697e1180d5c2a2649c697ea8d5c1e4835367795eef3308b7c5b Loading...

HTTP Transactions (89)

URL IP Response Size

magicbarf.it/

82.223.29.17

301 Moved Permanently

234 B

URL HTTP/1.1
magicbarf.it/
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
234 B (234 bytes)
Hash
9f4cf6472fbf645f52a02a5a886965a4
974dbb47be55acb957154d021fa73468d5928994
6169f67b696fa4b3ec0e6593dbee051da1388d76aa82f0074a3e5f35aec5fda6

HTTP Headers

GET / HTTP/1.1
Host: magicbarf.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 26 Nov 2022 04:14:31 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 234
Connection: keep-alive
Location: https://www.magicbarf.com/
Strict-Transport-Security: max-age=15768000; includeSubDomains
X-Powered-By: PleskLin

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5644
Cache-Control: max-age=114647
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 04:14:31 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 12:05:18 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 03:19:12 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3319
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6298
Expires: Sat, 26 Nov 2022 05:59:29 GMT
Date: Sat, 26 Nov 2022 04:14:31 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 4GFqsKjazpvshztRcydohYGXaQPR0ojA6rpFE/fo63N8w0bi/A+D1FoPNC+lUtLnkwVlwUSQ9sw=
x-amz-request-id: 8H4FCJP3Z5QTYEHC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 03:41:03 GMT
age: 2008
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4070
Expires: Sat, 26 Nov 2022 05:22:21 GMT
Date: Sat, 26 Nov 2022 04:14:31 GMT
Connection: keep-alive

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

magicbarf.com/

82.223.29.17

200 OK

30 kB

URL HTTP/2
magicbarf.com/
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18029)
Size
30 kB (30198 bytes)
Hash
d9a6751733923003ad91c1213d32c860
9b816d866cc33e943f5567dd4d1320d51da0e9e8
202c94798170fc3a1af0962e32c826472af964fdbe8dc4675deef9832d8e1579

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:31 GMT
content-type: text/html; charset=UTF-8
content-length: 30198
last-modified: Thu, 08 Sep 2022 14:30:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 29 Oct 1923 20:30:00 GMT
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6584
Cache-Control: max-age=110523
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 04:14:32 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 10:56:35 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 04:14:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 04:08:54 GMT
cache-control: public,max-age=3600
age: 338
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-175841621-1

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-175841621-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43619 bytes)
Hash
8b4894e02975fe956f544383b4ae7f72
d3bda871bd7058afa0a614a744df1006640150be
41a58405302d7b65fe4fba4b830b6c7f64a6e469f982ca70180b77725d495590

HTTP Headers

GET /gtag/js?id=UA-175841621-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 04:14:32 GMT
expires: Sat, 26 Nov 2022 04:14:32 GMT
cache-control: private, max-age=900
last-modified: Sat, 26 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43619
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/assets/js/js-cookie/js.cookie.min.js

192.0.77.37

200 OK

1.4 kB

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/assets/js/js-cookie/js.cookie.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (1668)
Size
1.4 kB (1372 bytes)
Hash
4dd0eaf0446a20f6e71796ecf5f1b263
b90c90b8a6b7d023a87a6d1605a11b6893f66c24
b57fb8f10ea3aade6729a3bd0a1d900bf603394a38f88fa934f37ba1761baa61

HTTP Headers

GET /p/woocommerce/6.8.2/assets/js/js-cookie/js.cookie.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 19 Jan 2021 23:55:30 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/lcrdxsv9/250xp.js

82.223.29.17

200 OK

348 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/lcrdxsv9/250xp.js
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
348 B (348 bytes)
Hash
a86680b6bfe19bdb7eaf547f96cfd141
efc5eef1efea02dd92dc2ddf6d253606f5b38366
71cc7f9e23ef0b0f0685e6e05044f9c4e5ad50fd6a33ccec3d9d23e74238a532

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/wpfc-minified/lcrdxsv9/250xp.js HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
content-length: 348
x-accel-version: 0.01
last-modified: Wed, 06 Jul 2022 17:44:25 GMT
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/plugins/revslider/public/assets/assets/dummy.png

82.223.29.17

200 OK

68 B

URL HTTP/2
magicbarf.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: image/png
content-length: 68
x-accel-version: 0.01
last-modified: Wed, 06 Jul 2022 15:52:14 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/plugins/wp-fastest-cache-premium/pro/images/blank.gif

82.223.29.17

200 OK

43 B

URL HTTP/2
magicbarf.com/wp-content/plugins/wp-fastest-cache-premium/pro/images/blank.gif
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /wp-content/plugins/wp-fastest-cache-premium/pro/images/blank.gif HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: image/gif
content-length: 43
x-accel-version: 0.01
last-modified: Tue, 22 Nov 2022 17:15:54 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2021/10/MagicBARF.png

82.223.29.17

200 OK

49 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2021/10/MagicBARF.png
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
PNG image data, 879 x 245, 8-bit/color RGBA, non-interlaced\012- data
Size
49 kB (49040 bytes)
Hash
5be1545043d16efba8e0d44fc28d1af2
a9eea914005d1e02b6f5de5e9b9fa0de829bea75
fdaf91d426c23c135e75b8184b00b5126eb53906ab618676f0d7fddfc1d202bf

HTTP Headers

GET /wp-content/uploads/2021/10/MagicBARF.png HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: image/png
content-length: 49040
last-modified: Sat, 30 Oct 2021 16:45:00 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "617d768c-bf90"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.215.107.141

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.215.107.141:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zMnNOPhX3DTYp3hoDGPQqg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Zh5F/I5GeO5f/NcD61aIF4FIII8=

magicbarf.com/wp-content/themes/dt-the7/fonts/FontAwesome/webfonts/fa-solid-900.woff2

82.223.29.17

200 OK

78 kB

URL HTTP/2
magicbarf.com/wp-content/themes/dt-the7/fonts/FontAwesome/webfonts/fa-solid-900.woff2
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 78212, version 331.-31261\012- data
Size
78 kB (78212 bytes)
Hash
8c4f474a3aaa695346196b1f33fab616
abc1ae262d760e104a5a5cb68614ac119fd0db18
ef2369c82b6ec19bcf4fe76799d94edc43604e164c0f73978059536159845441

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/dt-the7/fonts/FontAwesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://magicbarf.com/wp-content/cache/wpfc-minified/g47gecp/26w6p.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/font-woff2
content-length: 78212
last-modified: Tue, 22 Nov 2022 17:17:01 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "637d040d-13184"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.ttf?wi57p5

82.223.29.17

200 OK

48 kB

URL HTTP/2
magicbarf.com/wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.ttf?wi57p5
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, the7-default-font\012- data
Size
48 kB (48020 bytes)
Hash
71f9dfd69c5a3adbbb31a994bffb7b36
97fbd02448d6db534ddfe4bcdc3df7ec5d92af9a
e0394e418d7858c3f9fabb6897f4e9364cf86a23a809127690f467ad111f190d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.ttf?wi57p5 HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/wp-content/cache/wpfc-minified/g47gecp/26w6p.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: x-font/ttf
content-length: 48020
last-modified: Tue, 22 Nov 2022 17:17:01 GMT
cache-control: max-age=0
expires: max-age=A10368000, public
etag: "637d040d-bb94"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/smile_fonts/icomoon-font-awesome-14x14/icomoon-font-awesome-14x14.ttf?vqvoc7

82.223.29.17

200 OK

200 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/smile_fonts/icomoon-font-awesome-14x14/icomoon-font-awesome-14x14.ttf?vqvoc7
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon-font-awesome-14x14\012- data
Size
200 kB (200492 bytes)
Hash
4d63a9d635dc0c73be22d2f67e79ac55
c14b1574c204c617bfccac78eea236beec530468
88e7e7fa91044afd6929c7058df0ddf6ff059041edbfe92bfbfc1d84d86cb373

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/smile_fonts/icomoon-font-awesome-14x14/icomoon-font-awesome-14x14.ttf?vqvoc7 HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/wp-content/cache/wpfc-minified/km6an1cp/26w6p.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: x-font/ttf
content-length: 200492
last-modified: Thu, 22 Apr 2021 20:38:35 GMT
cache-control: max-age=0
expires: max-age=A10368000, public
etag: "6081decb-30f2c"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2020/08/unnamed-2.jpg

82.223.29.17

200 OK

50 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2020/08/unnamed-2.jpg
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x384, components 3\012- data
Size
50 kB (49961 bytes)
Hash
0c65027857e48d999667b64fced31794
0222c9d33aeaa2ee5456f32576576f4ce7654db5
6d2064cc8a34048b7a912464b7e19d36fc4c0c67361518cb622832bfdfbf891f

HTTP Headers

GET /wp-content/uploads/2020/08/unnamed-2.jpg HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: image/jpeg
content-length: 49961
last-modified: Thu, 22 Apr 2021 20:38:35 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081decb-c329"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/6vmpdb2p/250xp.js

82.223.29.17

200 OK

226 kB

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/6vmpdb2p/250xp.js
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (47853)
Size
226 kB (225626 bytes)
Hash
a44982d51f8b9f21ac0a719c5a142b98
c143384a535f0b9f95dcd820a6e7484dc174eb18
f887f12d84ae30d63e7296e73adde0377c65d2a9035dc89ab5167d8594e38ebc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/wpfc-minified/6vmpdb2p/250xp.js HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
last-modified: Wed, 06 Jul 2022 17:44:25 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5c9f9-cef11"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

pixel.wp.com/g.gif?v=ext&j=1%3A11.3&blog=150720208&post=36&tz=0&srv=magicbarf.com&host=magicbarf.com&ref=&fcp=0&rand=0.18189303972342985

192.0.76.3

200 OK

50 B

URL HTTP/2
pixel.wp.com/g.gif?v=ext&j=1%3A11.3&blog=150720208&post=36&tz=0&srv=magicbarf.com&host=magicbarf.com&ref=&fcp=0&rand=0.18189303972342985
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type
GIF image data, version 89a, 6 x 5\012- data
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&j=1%3A11.3&blog=150720208&post=36&tz=0&srv=magicbarf.com&host=magicbarf.com&ref=&fcp=0&rand=0.18189303972342985 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 26 Nov 2022 02:41:08 GMT
expires: Sat, 26 Nov 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 5604
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css

192.0.77.37

200 OK

2.9 kB

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (11256), with no line terminators
Size
2.9 kB (2867 bytes)
Hash
2a6525397040a1d43559889c2f3ee1c5
a32f68fbd455ba6924da2a5562041302b167bbe9
126a7c9bc9a01fa249f8b12cb55821818d7a7d096af16deef61d47216cbc664c

HTTP Headers

GET /c/6.0.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 04:14:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

magicbarf.com/favicon.ico

82.223.29.17

200 OK

114 kB

URL HTTP/2
magicbarf.com/favicon.ico
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
MS Windows icon resource - 7 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel\012- data
Size
114 kB (113459 bytes)
Hash
1db747255c64a30f9236e9d929e986ca
384023452346aa087d40c93c23ca2f5e32ff1b1f
88baf40feb43463a8f6aa6543e88bdbe33f0db9a317486e786eee1e5c76a9544

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: image/vnd.microsoft.icon
content-length: 113459
last-modified: Thu, 22 Apr 2021 20:38:27 GMT
cache-control: max-age=0
expires: max-age=A10368000, public
etag: "6081dec3-1bb33"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/tabs.min.js

192.0.77.37

200 OK

3.8 kB

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/tabs.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (11760)
Size
3.8 kB (3762 bytes)
Hash
b6eb524c8f66bcdf5118d5da462db35c
82451efc4b7f71a4ea00119c5697621bc921e436
21e83dc229b82f66281418a9c9c574cf7918d9acf39919039eca321159d06bdb

HTTP Headers

GET /c/6.0.2/wp-includes/js/jquery/ui/tabs.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 04:14:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 04:14:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 04:14:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 04:14:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 04:14:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 04:14:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/robotoslab/v24/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjoa4Omb2Rj.woff2

216.58.207.195

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/robotoslab/v24/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjoa4Omb2Rj.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12820, version 1.0\012- data
Size
13 kB (12820 bytes)
Hash
5c02543fd50416d417c4fde1410008d5
82803a4554e56c2247c2ce50e9a0a3c77b5e0730
084c044e1a353a41a04f9c923b418d582f8e8d3a1996053c8e4912a57d158799

HTTP Headers

GET /s/robotoslab/v24/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjoa4Omb2Rj.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:41:51 GMT
expires: Fri, 24 Nov 2023 16:41:51 GMT
cache-control: public, max-age=31536000
age: 127962
last-modified: Mon, 11 Jul 2022 19:15:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.195

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 167502
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2

216.58.207.195

200 OK

7.8 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7824, version 1.0\012- data
Size
7.8 kB (7824 bytes)
Hash
af4d371a10271dafeb343f1eace762bc
6d11d743bc3cfb169d70bc86450f18351dc1a905
60bf0aba6526436f3930c58c12047687fbb6bff4dd180cce4613458ed3439ea2

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:50:37 GMT
expires: Thu, 23 Nov 2023 19:50:37 GMT
cache-control: public, max-age=31536000
age: 203036
last-modified: Wed, 27 Apr 2022 16:52:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:400,600,700%7CRoboto:400,600,700%7CRoboto+Slab:400,600,700

142.250.74.10

200 OK

34 kB

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,600,700%7CRoboto:400,600,700%7CRoboto+Slab:400,600,700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
34 kB (33889 bytes)
Hash
72d83becaedd5996450804499e3e536e
39f3e9348b0a6e223a903506b7131ccdf1989fbf
766d2fb5c82d89c0f7da025f952afb5e0b1884165bd48a2a7602d71caa2bc79e

HTTP Headers

GET /css?family=Open+Sans:400,600,700%7CRoboto:400,600,700%7CRoboto+Slab:400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 04:14:32 GMT
date: Sat, 26 Nov 2022 04:14:32 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 04:14:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

magicbarf.com/wp-content/uploads/2020/08/unnamed.png

82.223.29.17

200 OK

225 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2020/08/unnamed.png
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
PNG image data, 469 x 330, 8-bit/color RGBA, non-interlaced\012- data
Size
225 kB (224694 bytes)
Hash
72934c15d4a94b04f5ce4f9a8ccb17d7
1ae0cff8fdcb12cb3a975bf82f22f3d55fbef874
8e934f294c04b8cad45633629fb204337090be28737c06041e73497ba58c9905

HTTP Headers

GET /wp-content/uploads/2020/08/unnamed.png HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1765591160.1669436072; _gid=GA1.2.719360281.1669436072; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: image/png
content-length: 224694
last-modified: Thu, 22 Apr 2021 20:38:35 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081decb-36db6"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:400%2C700%7CPoppins:800%7COpen+Sans:700%2C600%2C800%7CRoboto+Slab:700&display=swap

142.250.74.10

200 OK

1.2 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:400%2C700%7CPoppins:800%7COpen+Sans:700%2C600%2C800%7CRoboto+Slab:700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.2 kB (1233 bytes)
Hash
db36d793e31f73b9ddbaa47d228040dd
83b8fa7de94f1c218cffb2a5049f43893bcbbc14
2ba9a51668362d98184d54c5fe0832a45cb6e410af7114dc3a63ce1a551a2bc3

HTTP Headers

GET /css?family=Roboto:400%2C700%7CPoppins:800%7COpen+Sans:700%2C600%2C800%7CRoboto+Slab:700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 04:14:32 GMT
date: Sat, 26 Nov 2022 04:14:32 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 204025
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2021/04/0fa6ad140dea46bce036b669e4daea26.gif

82.223.29.17

200 OK

309 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2021/04/0fa6ad140dea46bce036b669e4daea26.gif
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
GIF image data, version 89a, 618 x 618\012- data
Size
309 kB (308916 bytes)
Hash
3c8c241c2f3199a513ddd99a83afa196
ef357747585f352ac228768aa28ec682e84967c1
7637fb2569256569e1ad83113a6ced37a62b9ccc68a6ea061a3071d2178455fd

HTTP Headers

GET /wp-content/uploads/2021/04/0fa6ad140dea46bce036b669e4daea26.gif HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1765591160.1669436072; _gid=GA1.2.719360281.1669436072; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:33 GMT
content-type: image/gif
content-length: 308916
last-modified: Sat, 24 Apr 2021 22:37:59 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "60849dc7-4b6b4"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2021/04/14122.png

82.223.29.17

200 OK

81 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2021/04/14122.png
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
PNG image data, 800 x 711, 8-bit gray+alpha, non-interlaced\012- data
Size
81 kB (80899 bytes)
Hash
a47194423dddad8e99f2b7accfd738bd
5435609eaacc7e596d74d19e00bb9a05c3171307
cb45bf4909557c759920ceb8acbe62ad82d3bf09ea58b48a48ef9fe923945fcd

HTTP Headers

GET /wp-content/uploads/2021/04/14122.png HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1765591160.1669436072; _gid=GA1.2.719360281.1669436072; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:33 GMT
content-type: image/png
content-length: 80899
last-modified: Sun, 25 Apr 2021 18:26:02 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6085b43a-13c03"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10249
Expires: Sat, 26 Nov 2022 07:05:22 GMT
Date: Sat, 26 Nov 2022 04:14:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10249
Expires: Sat, 26 Nov 2022 07:05:22 GMT
Date: Sat, 26 Nov 2022 04:14:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10249
Expires: Sat, 26 Nov 2022 07:05:22 GMT
Date: Sat, 26 Nov 2022 04:14:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10249
Expires: Sat, 26 Nov 2022 07:05:22 GMT
Date: Sat, 26 Nov 2022 04:14:33 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8913 bytes)
Hash
5088223f5973e3cd56f03f50a1e84b79
0b6c9b51d10762a4747286ab5b1c2354fa39c622
8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: whO__FB0B2ywDP_p63eQ044RXbT207sX1i87I6nPAFUB85nSYc0Cuw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:06 GMT
age: 23307
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53b989dd-5b05-43e6-807e-30a5611591c1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12505 bytes)
Hash
9443750de7962c9e235cbb6dbda24df0
05de7f68103849bd0cd80a704ef97685d0150800
d84e37f9bfd9888a385364c52cdc0d817aa680ee0a83e579ca1f1083f1131468

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53b989dd-5b05-43e6-807e-30a5611591c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12505
x-amzn-requestid: a89c780f-e1a4-451e-842b-656ba43958be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVOeHzfIAMFpGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381358f-3478b6c81d94ec65388bd3da;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mUic7CJjKQ8l7EKhTTSs2LTLaCqnVQUBuxzmfzET4TwSa_LX8na-MA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:28 GMT
age: 23465
etag: "05de7f68103849bd0cd80a704ef97685d0150800"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/css/dist/block-library/style.min.css

192.0.77.37

200 OK

15 kB

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/css/dist/block-library/style.min.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (43771)
Size
15 kB (15221 bytes)
Hash
2c9e8467feaba276963134776104b3bf
4390ecdba02ab628bc09de82c531b01de7398f1f
c1d61639d02c7d2baea5f66cd2fdd2936cbcf57f69e7526aa3b3e2147f0d0b4a

HTTP Headers

GET /c/6.0.2/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 04 Jul 2022 12:10:37 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9914 bytes)
Hash
3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qKxrYxVsJWOXAbrn6IpwLycF3rknFLkQeDyKOLq5WyflvTLeUjg_Lg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:18:42 GMT
age: 21351
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9ff3e15-6cd5-46f6-800f-5ad08b71ffbc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10209 bytes)
Hash
56d1528e942a2aa2a7f3f6a85f71e277
475980dd8b123ad0acdd54c441271bacad56489f
01f9bd707598d6cb869856ad01d1087f5abc8298727805f61266f6e823814cb8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9ff3e15-6cd5-46f6-800f-5ad08b71ffbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10209
x-amzn-requestid: e6cf9a8b-bbdc-4978-a186-ffc82b369066
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWINF69oAMF5RA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813701-35f60a7425e3617e672916c9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:43:29 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: eq6JvA1Pf3M-JLZWNgHPo8sIGff8AYqLHpvVxCeu_-uLTQ4DCDN3NA==
via: 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:27:24 GMT
age: 20829
etag: "475980dd8b123ad0acdd54c441271bacad56489f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56b1fea9-e9cd-44f8-a1ed-26557538d958.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12319 bytes)
Hash
8a82cc688f934411a894427bd493c429
fd67260f92d7faee2360956e8d2ed50a00c1dbcf
fbd1a487dac7233861d173e711218d3e3402bc71f538025c540b93696309dc67

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56b1fea9-e9cd-44f8-a1ed-26557538d958.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12319
x-amzn-requestid: 6973e196-9eb3-4aea-9c60-b8e2158641ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVOoGkgIAMFY4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813590-62965d4c607d4f0a060265d9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: U2lRuGTHsBCJ7HqZcNbwMXTuNJsghqL0p-hMJyUfiWAdXla2pJ6JRw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:06 GMT
etag: "fd67260f92d7faee2360956e8d2ed50a00c1dbcf"
content-type: image/jpeg
age: 23307
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2021/10/MagicBARF-1-e1635680051560.png

82.223.29.17

200 OK

18 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2021/10/MagicBARF-1-e1635680051560.png
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
PNG image data, 300 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (17702 bytes)
Hash
dc573f8744dc63977020e078f8f02cbc
b1b315e2c2678293f28a17065449195059a160d3
e5203fb4be48d03d85a267b9acb3a13d8c1a1c22f4449f537c42d5aa54cabcd7

HTTP Headers

GET /wp-content/uploads/2021/10/MagicBARF-1-e1635680051560.png HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1765591160.1669436072; _gid=GA1.2.719360281.1669436072; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:35 GMT
content-type: image/png
content-length: 17702
last-modified: Sun, 31 Oct 2021 11:34:11 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "617e7f33-4526"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2020/08/IMG20200809174148-scaled-e1597133490406.jpg

82.223.29.17

200 OK

333 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2020/08/IMG20200809174148-scaled-e1597133490406.jpg
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, height=4000, manufacturer=OPPO, model=OPPO A9 2020, orientation=upper-left, xresolution=146, yresolution=154, resolutionunit=2, datetime=2020:08:09 17:41:48, width=3000], baseline, precision 8, 1000x1333, components 3\012- data
Size
333 kB (333329 bytes)
Hash
3490874a13ccaa568356f8c4a4cd6c74
9ec739f20d463983e0feda91b213cbc2f34150ec
b1c2b5386843d0a52d617ce8b95553c2978752ce88e9a9b3a44da49fdded046d

HTTP Headers

GET /wp-content/uploads/2020/08/IMG20200809174148-scaled-e1597133490406.jpg HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1765591160.1669436072; _gid=GA1.2.719360281.1669436072; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:35 GMT
content-type: image/jpeg
content-length: 333329
last-modified: Thu, 22 Apr 2021 20:38:34 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081deca-51611"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif

192.0.77.2

200 OK

8.7 kB

URL HTTP/2
i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif
IP
192.0.77.2:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image\012- data
Size
8.7 kB (8684 bytes)
Hash
3b502c9bd78a0ded58de26a6b5571ecf
b03ee01d7b03a098633dfab09c8e61ea7ce00a69
58436cf3c59f76bea9c053744c9c86d8602e90d3b3ce4578b679ba7fc2f39cf7

HTTP Headers

GET /magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:35 GMT
content-type: image/webp
content-length: 8684
last-modified: Tue, 15 Nov 2022 05:14:53 GMT
expires: Thu, 14 Nov 2024 17:14:53 GMT
cache-control: public, max-age=63115200
link: <http://magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif>; rel="canonical"
x-content-type-options: nosniff
etag: "3710b320b4331ae8"
vary: Accept
x-nc: HIT arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png

192.0.77.2

200 OK

898 B

URL HTTP/2
i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png
IP
192.0.77.2:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image\012- data
Size
898 B (898 bytes)
Hash
c5ea653ef93ae91f9f99effb2140c1d3
397c889e2026082ead6b0bc7f1ca7d90037d00fd
6bc096703ef1dfacb1f4b237d04ef92e2241d49a94c30638864b941ec576be71

HTTP Headers

GET /magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:35 GMT
content-type: image/webp
content-length: 898
last-modified: Tue, 15 Nov 2022 05:14:53 GMT
expires: Thu, 14 Nov 2024 17:14:53 GMT
cache-control: public, max-age=63115200
link: <http://magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png>; rel="canonical"
x-content-type-options: nosniff
etag: "d60a78f25d75924b"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png

192.0.77.2

200 OK

896 B

URL HTTP/2
i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png
IP
192.0.77.2:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image\012- data
Size
896 B (896 bytes)
Hash
0c7e6fd1fe4f303a829baca75b345c9d
af5bb95298285b80b3e5705422fed709e1f213ae
cd4cdde1fc65ba661adcdde693fb326368677a51fd36c6d86824cec69657ec3e

HTTP Headers

GET /magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:35 GMT
content-type: image/webp
content-length: 896
last-modified: Tue, 15 Nov 2022 05:14:53 GMT
expires: Thu, 14 Nov 2024 17:14:53 GMT
cache-control: public, max-age=63115200
link: <http://magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png>; rel="canonical"
x-content-type-options: nosniff
etag: "be489e947afa0af3"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png

192.0.77.2

200 OK

218 B

URL HTTP/2
i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png
IP
192.0.77.2:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image\012- data
Size
218 B (218 bytes)
Hash
aa25ab177327f67af9bdb6a20e76c88a
6ba143824ad58321cd56075a5db49a8e2177c975
1bb9c6ea966134cdb99d8e6fb8ea2562a7d272c70071e2d06605453be3a1934f

HTTP Headers

GET /magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:35 GMT
content-type: image/webp
content-length: 218
last-modified: Tue, 15 Nov 2022 05:14:53 GMT
expires: Thu, 14 Nov 2024 17:14:53 GMT
cache-control: public, max-age=63115200
link: <http://magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png>; rel="canonical"
x-content-type-options: nosniff
etag: "2e0c79d989479420"
vary: Accept
x-nc: HIT arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2020/08/IMG20200809174205-1-scaled-e1597343225506.jpg

82.223.29.17

200 OK

340 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2020/08/IMG20200809174205-1-scaled-e1597343225506.jpg
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, height=3000, manufacturer=OPPO, model=OPPO A9 2020, orientation=upper-left, xresolution=146, yresolution=154, resolutionunit=2, datetime=2020:08:09 17:42:05, width=4000], baseline, precision 8, 1500x798, components 3\012- data
Size
340 kB (340115 bytes)
Hash
d7b954e8676cee502e13b335b195dde1
7776a73e97603b7a720f8181b7d635b8903ff22e
06df86a40c0c38f8c35844be90b8e2af2536ae2b1f9fb324526f396c810e7603

HTTP Headers

GET /wp-content/uploads/2020/08/IMG20200809174205-1-scaled-e1597343225506.jpg HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1765591160.1669436072; _gid=GA1.2.719360281.1669436072; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:35 GMT
content-type: image/jpeg
content-length: 340115
last-modified: Thu, 22 Apr 2021 20:38:34 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081deca-53093"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2020/08/cani-gatti-e-parquet-2-scaled-e1597343692994.jpg

82.223.29.17

200 OK

142 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2020/08/cani-gatti-e-parquet-2-scaled-e1597343692994.jpg
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 1500x581, components 3\012- data
Size
142 kB (141704 bytes)
Hash
edcf330ca4b47992ad18eb4fa2880292
9726e8b5a765d1e6ef5add42f6741025dbf0ae0e
252c2cdf79ed49d435c6082ebebc6769bfe95f65baa5b71794a33438eb627087

HTTP Headers

GET /wp-content/uploads/2020/08/cani-gatti-e-parquet-2-scaled-e1597343692994.jpg HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1765591160.1669436072; _gid=GA1.2.719360281.1669436072; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:35 GMT
content-type: image/jpeg
content-length: 141704
last-modified: Thu, 22 Apr 2021 20:38:34 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081deca-22988"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2020/08/article-e1597353946241.jpeg

82.223.29.17

200 OK

127 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2020/08/article-e1597353946241.jpeg
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=1700, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2555], baseline, precision 8, 1500x498, components 3\012- data
Size
127 kB (127103 bytes)
Hash
0d251f9cb996b7c9b1238b46bae8ece6
79825a2dedc5f9dce9ca6a98782665f47ef9c3b7
024ae42c7bb0aedd59d94935a79d00c4e33211024694a95034812fc68706a115

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2020/08/article-e1597353946241.jpeg HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1765591160.1669436072; _gid=GA1.2.719360281.1669436072; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:35 GMT
content-type: image/jpeg
content-length: 127103
last-modified: Thu, 22 Apr 2021 20:38:34 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081deca-1f07f"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2021/04/magic-barf-1.jpg

82.223.29.17

200 OK

112 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2021/04/magic-barf-1.jpg
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1024x599, components 3\012- data
Size
112 kB (112046 bytes)
Hash
1a3f4d46875c0cb1bc6bdf74f1e1876d
142b75362bca613390b8e073e81ac0421e29cd68
ef0f46ebb34c67bf7ee9af5b9ba0fca6a16857efaf1c43de34e898d81c7a4e98

HTTP Headers

GET /wp-content/uploads/2021/04/magic-barf-1.jpg HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1765591160.1669436072; _gid=GA1.2.719360281.1669436072; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:35 GMT
content-type: image/jpeg
content-length: 112046
last-modified: Thu, 22 Apr 2021 20:45:11 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081e057-1b5ae"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.magicbarf.com/

82.223.29.17

301 Moved Permanently

0 B

URL HTTP/2
www.magicbarf.com/
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 26 Nov 2022 04:14:31 GMT
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://magicbarf.com/
x-cache-status: HIT
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/6.0.2/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/packages/woocommerce-blocks/build/wc-blocks-style.css

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/packages/woocommerce-blocks/build/wc-blocks-style.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p/woocommerce/6.8.2/packages/woocommerce-blocks/build/wc-blocks-style.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 26 Jul 2022 03:28:45 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/?wc-ajax=get_refreshed_fragments

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/?wc-ajax=get_refreshed_fragments
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1765591160.1669436072; _gid=GA1.2.719360281.1669436072; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:36 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://magicbarf.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

stats.wp.com/e-202236.js

192.0.76.3

200 OK

0 B

URL HTTP/2
stats.wp.com/e-202236.js
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /e-202236.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 28 Aug 2023 02:01:00 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/add-to-cart.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/add-to-cart.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p/woocommerce/6.8.2/assets/js/frontend/add-to-cart.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 19 Jul 2022 19:16:40 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/wp-admin/admin-ajax.php

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-admin/admin-ajax.php
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 293
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1765591160.1669436072; _gid=GA1.2.719360281.1669436072; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:37 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://magicbarf.com
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/underscore.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/underscore.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/6.0.2/wp-includes/js/underscore.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 27 Apr 2022 14:39:21 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/wp-mediaelement.min.css

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/6.0.2/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/cart-fragments.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/cart-fragments.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p/woocommerce/6.8.2/assets/js/frontend/cart-fragments.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 23 Nov 2021 22:30:13 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/mn1isi14/26w6q.js

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/mn1isi14/26w6q.js
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/wpfc-minified/mn1isi14/26w6q.js HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
last-modified: Wed, 06 Jul 2022 17:57:22 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd02-d114"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/osfd4c5/26w6p.js

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/osfd4c5/26w6p.js
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/wpfc-minified/osfd4c5/26w6p.js HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
last-modified: Wed, 06 Jul 2022 17:57:21 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd01-1ee24"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/core.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/core.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/6.0.2/wp-includes/js/jquery/ui/core.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/1130n0n7/26w6p.js

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/1130n0n7/26w6p.js
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/wpfc-minified/1130n0n7/26w6p.js HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
last-modified: Wed, 06 Jul 2022 17:57:21 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd01-6683"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/m7u66gl1/26w6p.js

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/m7u66gl1/26w6p.js
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/wpfc-minified/m7u66gl1/26w6p.js HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
last-modified: Wed, 06 Jul 2022 17:57:21 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd01-3056b"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/g47gecp/26w6p.css

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/g47gecp/26w6p.css
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/wpfc-minified/g47gecp/26w6p.css HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:31 GMT
content-type: text/css
last-modified: Wed, 06 Jul 2022 17:57:21 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd01-c9ea6"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/assets/js/jquery-blockui/jquery.blockUI.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/assets/js/jquery-blockui/jquery.blockUI.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p/woocommerce/6.8.2/assets/js/jquery-blockui/jquery.blockUI.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 19 Jul 2022 19:16:40 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/p/jetpack/11.3/css/jetpack.css

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/p/jetpack/11.3/css/jetpack.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p/jetpack/11.3/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 19 Jul 2022 17:25:16 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

stats.wp.com/s-202236.js

192.0.76.3

200 OK

0 B

URL HTTP/2
stats.wp.com/s-202236.js
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s-202236.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-2494"
content-encoding: br
expires: Thu, 31 Aug 2023 17:29:08 GMT
cache-control: max-age=31536000
x-nc: HIT arn
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/qizkfa8u/26w6p.css

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/qizkfa8u/26w6p.css
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/wpfc-minified/qizkfa8u/26w6p.css HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: text/css
last-modified: Wed, 06 Jul 2022 17:57:21 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd01-1d8ca"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/woocommerce.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/woocommerce.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p/woocommerce/6.8.2/assets/js/frontend/woocommerce.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 18 May 2021 17:00:20 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p/woocommerce/6.8.2/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:32 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 18 Jan 2022 21:24:33 GMT
content-encoding: br
expires: Sun, 26 Nov 2023 04:14:32 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/km6an1cp/26w6p.css

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/km6an1cp/26w6p.css
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/wpfc-minified/km6an1cp/26w6p.css HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 04:14:31 GMT
content-type: text/css
last-modified: Wed, 06 Jul 2022 17:57:21 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd01-c59c0"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (41)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations