Report - magicbarf.com/

Report Overview

Submitted URL
magicbarf.com/
IP
82.223.29.17
ASN
#8560 IONOS SE
Submitted
2022-09-21 04:15:01
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
24

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
magicbarf.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	14 kB	2.1 MB	82.223.29.17
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	119 kB	142.250.74.163
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	51 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	978 B	2.7 kB	23.36.76.226
i0.wp.com	3021	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	14 kB	192.0.77.2
stats.wp.com	2711	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	690 B	639 B	192.0.76.3
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	371 B	43 kB	142.250.74.72
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
pixel.wp.com	2545	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	494 B	239 B	192.0.76.3
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	435 B	746 B	142.250.74.10
c0.wp.com	6988	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.4 kB	480 kB	192.0.77.37
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	325 B	1.6 kB	143.204.55.35
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	5.6 kB	142.250.74.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-21	medium	magicbarf.com/	Malware
2022-09-21	medium	magicbarf.com/	Malware
2022-09-21	medium	magicbarf.com/wp-content/cache/wpfc-minified/lcrdxsv9/250xp.js	Malware
2022-09-21	medium	magicbarf.com/wp-content/themes/dt-the7/fonts/FontAwesome/webfonts/fa-solid-900.woff2	Malware
2022-09-21	medium	magicbarf.com/wp-content/cache/wpfc-minified/6vmpdb2p/250xp.js	Malware
2022-09-21	medium	magicbarf.com/wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.ttf?wi57p5	Malware
2022-09-21	medium	magicbarf.com/wp-content/cache/wpfc-minified/m7u66gl1/26w6p.js	Malware
2022-09-21	medium	magicbarf.com/wp-content/uploads/2020/08/article-e1597353946241.jpeg	Malware
2022-09-21	medium	magicbarf.com/wp-content/cache/wpfc-minified/mn1isi14/26w6q.js	Malware
2022-09-21	medium	magicbarf.com/wp-content/cache/wpfc-minified/osfd4c5/26w6p.js	Malware
2022-09-21	medium	magicbarf.com/wp-admin/admin-ajax.php	Malware
2022-09-21	medium	magicbarf.com/wp-content/cache/wpfc-minified/1130n0n7/26w6p.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (40)

	URL	Size	First Seen	Last Seen
	magicbarf.com/wp-content/cache/wpfc-minified/mn1isi14/26w6q.js	54 kB	2023-03-07	2023-03-17
Pretty URL magicbarf.com/wp-content/cache/wpfc-minified/mn1isi14/26w6q.js IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:46 Last Seen2023-03-17 12:34:30 Times Seen1 Hash 55cb3b3149530376ee4d69b03a05fe23 be0ff1388fe05fb8d45f2e44c4d2e6abb8cfe028 4ef784d8fc8181f91b761d5d9982221bce06ae7ac195b398f716d6fad81b6d49 Loading...

	magicbarf.com/	226 B	2023-03-07	2023-05-29
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-05-29 02:15:16 Times Seen18 Hash a81b765520bf45e63fa10e5c719f266a dfef57af66ac2b535085035afe43fe78a0e71f4c 31b106de6042e007080a37be73fbe47c59f14f351cc29c8f0b08e29e256936ba Loading...

	magicbarf.com/	28 B	2023-03-07	2024-03-30
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:46 Last Seen2024-03-30 20:10:35 Times Seen64 Hash 0f6d6150835d2974b4d67889fbeef93a 38f82db4cd226335f6d4249f683f564b9bc2dcf8 52a8507f5f3898a00c6d5d67e856a73b6f8ecd1d246e074ab5a645cd96a6e023 Loading...

	c0.wp.com/c/6.0.2/wp-includes/js/underscore.min.js	19 kB	2023-03-07	2024-04-24
Pretty URL c0.wp.com/c/6.0.2/wp-includes/js/underscore.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-24 13:45:07 Times Seen2359 Hash 42aa17e1f850a414638ee4a32a3aa807 2e42d03a5e042701191650c041eae1cfb2d6c7b9 0da4791b446818516f710c51707081aec7b23a7c5212fc0b2629c973210136a4 Loading...

	stats.wp.com/s-202236.js	9.4 kB	2023-03-07	2024-03-07
Pretty URL stats.wp.com/s-202236.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-03-07 00:14:50 Times Seen3354 Hash 82d763decfeb58a330f075ecd1bfbec4 9834c21e75bcf80d52c98bf55641f2bd92e200d3 7faf2fee5a715e1668f517f67a4b21cddd539b978678ce1bfd48a597044079e1 Loading...

	magicbarf.com/	1.9 kB	2023-03-07	2024-02-14
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2024-02-14 12:45:03 Times Seen36 Hash 1e083bf68ac0b69f1e82472d722c7195 2195466bcd4e245efc18f416314ad308d71d1180 b6c11ca69339131036851abd42487a2ecf49b5a0a06fd4f1a603175247d2306b Loading...

	magicbarf.com/	325 B	2023-03-07	2024-04-24
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:59 Last Seen2024-04-24 00:33:37 Times Seen284 Hash 641b381b7b286e898b4a5d3bad3c2802 8e8277915629c2012cbe6973ef9550e327e82a0d 773012ffbbc55d1daeae2d73c1e00567d053b950dd1cffcfc93d24b5371daa8a Loading...

	c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/add-to-cart.min.js	3.0 kB	2023-03-07	2024-04-18
Pretty URL c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/add-to-cart.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-18 15:46:15 Times Seen1751 Hash 4e544022235ced14996464116a9ed9b2 31ee19d95973124b812a22c5ff5944d5b5bf8147 4ef2d5b0ef62523af87f3e13d8061449b2ddbfce07064f26b1305084abbf18f1 Loading...

	magicbarf.com/	243 B	2023-03-07	2023-05-29
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-05-29 02:15:17 Times Seen18 Hash 404c29bc9aab8c3e8fc2898a879fd1e3 cf0b03a5175396d370ee0645a4ef109d9c9be58c eeb9f96c1c4d1e9956a5877e54331831f1a123e019cb8dcdc2b29a9b692e712a Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-04-18
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-18 21:14:10 Times Seen840 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	magicbarf.com/	406 B	2023-03-07	2023-03-17
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:11:11 Last Seen2023-03-17 12:34:30 Times Seen1 Hash a5d338bc078671984b560bfb6c4b3d2f 92b85d7acdef6ce29aa3ed399b406dfb4e8528f0 984aae06ffb0662e1a26bf1e78e821133f96352ad6a982c1c30e5cc824656b43 Loading...

	magicbarf.com/	105 B	2023-03-07	2024-04-24
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:13 Last Seen2024-04-24 00:33:35 Times Seen348 Hash 7d60ef56d9be0ca7826f531181aa4c25 c9d8900e17bd4acd80b255c7c64fa098db3c9cbe 9198fd8fd3b8ad11f272142dc77f08f384cfe814e75e02690ee443bee2ae1609 Loading...

	magicbarf.com/	47 B	2023-03-07	2023-03-17
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-03-17 12:34:30 Times Seen1 Hash 5799c0a2024cdb1b12cb18140d7af9c3 61492de0da73de358a437159cdee7f639a9dc53f 951c0ead784c2151b8ece677dc28ebbf4fb5f6b8c007ba7b451702a37c6fce1a Loading...

	magicbarf.com/	427 B	2023-03-07	2023-05-29
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-05-29 02:15:16 Times Seen18 Hash 77f290382a70a3ea4945568e707cbdda 821d27bca8d4ae77a8ba15fa1e4ea6606d30d836 9dd55c7602afb2809529b3a9ca4ba037ad5532e16a9d86b8bc788e70cc892074 Loading...

	magicbarf.com/	290 B	2023-03-07	2024-02-14
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2024-02-14 12:45:03 Times Seen34 Hash d8eb23a3d57383e3b31cf26c50751733 0b72b422f9a9fc394d143db464de34363f12db6a dd714b4e040d04a2633df19fdaa27a4e4d5e81f75fdeefbc6c9bacb84b3a5208 Loading...

	c0.wp.com/p/woocommerce/6.8.2/assets/js/js-cookie/js.cookie.min.js	1.8 kB	2023-03-07	2024-04-24
Pretty URL c0.wp.com/p/woocommerce/6.8.2/assets/js/js-cookie/js.cookie.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-24 20:13:16 Times Seen21592 Hash d0a6d8547c66b0d7b0172466558d1208 ff93916519c7b9483251f609e4d29f38c30a66e3 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612 Loading...

	magicbarf.com/	416 B	2023-03-07	2024-01-27
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2024-01-27 11:28:31 Times Seen4 Hash 28477a1b029003def532ca9255806c42 8b57404601e374eea97c232cdfb0797f4b5fbaa1 560419575dbca07a5917c02d411970cccf0d21858afae08b72ac2dccbb442275 Loading...

	magicbarf.com/	667 B	2023-03-07	2023-03-17
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:11:11 Last Seen2023-03-17 12:34:30 Times Seen1 Hash 0671f5a5e84154b0c80bd08383fcc4e6 ebb8cf3c21f5072e67de87d5123783e13aafe7c0 c1ded3a57761a857136a5d35c28573bb5da2282e40b78207fc5c0d2ead7eab13 Loading...

	unknown	0 B	2023-03-07	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 21:24:49 Times Seen37047832 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	magicbarf.com/	3.0 kB	2023-03-07	2023-03-17
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:11:11 Last Seen2023-03-17 12:34:30 Times Seen1 Hash 61e348196704f0e10773bbd89a5b41bc 43ce15c3db351b720760ed2a3bd5734a4c459ecb baf06ec7d74e237cf0ec24ab2f0a608156e539e03b5525b7034d1c122d11e2a4 Loading...

	stats.wp.com/e-202236.js	9.0 kB	2023-03-07	2024-01-05
Pretty URL stats.wp.com/e-202236.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:19 Last Seen2024-01-05 09:08:33 Times Seen3233 Hash 9152c169155daa333287728cb8e4ae93 1e45a9ea1464acf983f022567cb9f669f4c77f65 82d0aae1e7b8cfc0574d6548d1f35096f5e4310321aa964ff3fdb46c4d12e302 Loading...

	magicbarf.com/	3.5 kB	2023-03-07	2024-04-24
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:59 Last Seen2024-04-24 00:33:34 Times Seen220 Hash a573bd6c3f73818e2161d644f2e498e9 3161207c174b02fb6b5939053eb52527fcd275b3 337c6bd7bf9018c6659a485ee81761b6807eff28416b146f14b0424e1edeefbd Loading...

	magicbarf.com/	485 B	2023-03-07	2024-01-30
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2024-01-30 11:30:08 Times Seen33 Hash 51290609336539dd3234ec6c3e85d828 bfca16c7abda2c94fcdbc3e45d8cec45ff16f771 93eee6dfd011a697e1180d5c2a2649c697ea8d5c1e4835367795eef3308b7c5b Loading...

	c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/woocommerce.min.js	2.1 kB	2023-03-07	2024-04-24
Pretty URL c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/woocommerce.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-24 20:13:16 Times Seen22390 Hash b72c1cbb1530a011a27bd9800f26765a 27b825c5d8255f33b8427a059d4545ebd65e1746 a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8 Loading...

	magicbarf.com/	1.6 kB	2023-03-07	2023-05-29
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-05-29 02:15:17 Times Seen18 Hash a9ac8c3f98656be4b75dda45945ff872 4254eda8c996aa95d6f728ead0dcc840c6b8eb5b ff36ed811df11d43e4dff55ac311887de046bd38abc8eb152f3cd307cc97f109 Loading...

	magicbarf.com/	174 B	2023-03-07	2023-03-17
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:11:11 Last Seen2023-03-17 12:34:30 Times Seen1 Hash 786d7cf7da0a53727531275f3a8ecef5 7dc4271b69d2c26a0f511bfa06461b20f3245d04 d6fcb92b74a278dded620c92ba7cc4c8c5a0af53c0594dcf03981a78df915c2d Loading...

	c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js	11 kB	2023-03-07	2024-04-24
Pretty URL c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-24 20:13:15 Times Seen68600 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js	90 kB	2023-03-07	2024-04-24
Pretty URL c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-24 19:00:10 Times Seen31817 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	magicbarf.com/wp-content/cache/wpfc-minified/1130n0n7/26w6p.js	26 kB	2023-03-07	2023-12-17
Pretty URL magicbarf.com/wp-content/cache/wpfc-minified/1130n0n7/26w6p.js IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-12-17 20:21:15 Times Seen3 Hash a12906fd9e7ff784fcfa2ed8dcf1589b 1cfcf264f31e35f5310711e0929e6502e9ba900e 8f0146524a76d41105e02f758e2cb82203645cc4f51864888d3eecac3870693a Loading...

	magicbarf.com/	264 B	2023-03-07	2023-05-29
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:46 Last Seen2023-05-29 02:15:16 Times Seen18 Hash c9c715b051a11d6c77bc0e4dc7271142 ee3195f9dfc50c691e7dd6778c16c799db2208da bf4728109a059e7fd18f02e6bfe4bfb430a9b181dea9d56db84b5947905e9f3a Loading...

	magicbarf.com/	662 B	2023-03-07	2023-03-17
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-03-17 12:34:30 Times Seen1 Hash e36eca1d0507061987aac4ffc87e3785 75d575b07c9e091ca39676735441572883abbcf9 2edac3a2236053464657fa85e81dd4a6797914c8a48d670a21388275f59e3a69 Loading...

	magicbarf.com/wp-content/cache/wpfc-minified/lcrdxsv9/250xp.js	840 B	2023-03-07	2024-01-30
Pretty URL magicbarf.com/wp-content/cache/wpfc-minified/lcrdxsv9/250xp.js IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2024-01-30 11:30:08 Times Seen18 Hash c68f47887584d2849e36374daf41f076 a59f24c84697e706fa5b1f599e150ede20245d74 bea950138963bf0375a5aafdb33efbbf8458ff06e61fedc1c044611a7cf3499e Loading...

	c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/cart-fragments.min.js	2.9 kB	2023-03-07	2024-04-24
Pretty URL c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/cart-fragments.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-24 20:13:16 Times Seen13972 Hash 0fd625c3991a4015814cffdc88e2fc82 d7c2f53e058210ff3ea773297641008bab71a5f3 2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1 Loading...

	c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/core.min.js	21 kB	2023-03-07	2024-04-24
Pretty URL c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/core.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen3653 Hash 6aaf0a4e8eac131defea126f5b1b5fbf 24da0326af36303e5a1e9799a3c26f7a1077928c 240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5 Loading...

	c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/tabs.min.js	12 kB	2023-03-07	2024-04-15
Pretty URL c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/tabs.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:43 Last Seen2024-04-15 11:35:11 Times Seen457 Hash 1d376be55e51aea00d432f6659d3e0d1 cc5b9f6fa12d0a90b38d3d6e918401c9ad26332b 34934dc0d2652647955344d4d53218860096f14217c81c1eb5b02e54526835b6 Loading...

	magicbarf.com/	129 B	2023-03-07	2024-04-24
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:59 Last Seen2024-04-24 00:33:34 Times Seen153 Hash edf651b795e6117ab921478239cfb6ea accd529088d88122b083148d4bfa830913697add 5dc809155f761dec3963e7878ee90ba7c85f14d5e29892ebf3e47fc3033e6f93 Loading...

	magicbarf.com/wp-content/cache/wpfc-minified/6vmpdb2p/250xp.js	848 kB	2023-03-07	2023-03-17
Pretty URL magicbarf.com/wp-content/cache/wpfc-minified/6vmpdb2p/250xp.js IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-03-17 12:34:30 Times Seen1 Hash ce177f14918ff2b7db49027b7243664b 5d2540886c89710dc680c4626ad5e89a4d7b8019 3110f0e5f8e44d5ba0675307e5b85cb298ef3a53f4cb5d6602052579a8553fc2 Loading...

	magicbarf.com/	140 B	2023-03-07	2023-05-29
Pretty URL magicbarf.com/ IP 82.223.29.17 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:45 Last Seen2023-05-29 02:15:16 Times Seen18 Hash 790f8ba52fad7f360f95785c7cade86f b88cc23b2f53822d9e6b315222dedb729310208d dba696a8e5118ed5a67c41ce3193d7fc10a2db69440028311e74e9f11b60966b Loading...

	c0.wp.com/p/woocommerce/6.8.2/assets/js/jquery-blockui/jquery.blockUI.min.js	9.5 kB	2023-03-07	2024-04-23
Pretty URL c0.wp.com/p/woocommerce/6.8.2/assets/js/jquery-blockui/jquery.blockUI.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-23 15:28:43 Times Seen1877 Hash a5451283952efd5df49466bbeace6911 dce405842471c303c3d8fd6fa3c084aa56a71029 f4e38e5ef16efe51836cf7142412b8e1aa8b73ce89afed23be0cf77dfd8e095d Loading...

	www.googletagmanager.com/gtag/js?id=UA-175841621-1	109 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-175841621-1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:19:21 Last Seen2023-03-07 22:19:21 Times Seen1 Hash b776143420dea4833d86b6e696c9c2a6 1411e3723281e6598389e216879693f0c8332077 fabc76e945fb750738be106ad2c05e9842934b8757783dcb84caa8dcfea5e5dc Loading...

HTTP Transactions (80)

URL IP Response Size

magicbarf.com/

82.223.29.17

301 Moved Permanently

162 B

URL HTTP/1.1
magicbarf.com/
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Sep 2022 04:14:49 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://magicbarf.com/

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Retry-After, Content-Type, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 04:13:32 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iDSoLLbasHkkrkkmg_CLkZi98-34j2MlRz9kB1rNGDlb-cdl6b39qQ==
Age: 77

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12225
Expires: Wed, 21 Sep 2022 07:38:35 GMT
Date: Wed, 21 Sep 2022 04:14:50 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.35

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JMkM6aAAYY_wgFhrsTR_eoMRdZm-Sr4Bgsc4flQu0dSXXMWMgoDeIA==
age: 85177
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

magicbarf.com/

82.223.29.17

200 OK

30 kB

URL HTTP/2
magicbarf.com/
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18029)
Size
30 kB (30198 bytes)
Hash
d9a6751733923003ad91c1213d32c860
9b816d866cc33e943f5567dd4d1320d51da0e9e8
202c94798170fc3a1af0962e32c826472af964fdbe8dc4675deef9832d8e1579

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: text/html; charset=UTF-8
content-length: 30198
last-modified: Thu, 08 Sep 2022 14:30:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 29 Oct 1923 20:30:00 GMT
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
596ea0e7cffcb12819c214fd7e55e6b5
fdf581b35743d7693bf8c7f6154471a1b2646f06
a78eee2be3725b096407fde832e7762dad74ac69165f57a10b1ef76b5b2d9874

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 04:14:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-175841621-1

142.250.74.72

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-175841621-1
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1720)
Size
42 kB (42239 bytes)
Hash
c490a95d4c76473064a8e9d8fe319e6e
98c6826ef45b5c5eb05e7598d271db44bbe36295
30f2b17de86df17ed0d9041e7c23ea098b3b07c301168fd3a593dd050b1344fa

HTTP Headers

GET /gtag/js?id=UA-175841621-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Sep 2022 04:14:50 GMT
expires: Wed, 21 Sep 2022 04:14:50 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42239
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/assets/js/jquery-blockui/jquery.blockUI.min.js

192.0.77.37

200 OK

3.7 kB

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/assets/js/jquery-blockui/jquery.blockUI.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (9115)
Size
3.7 kB (3716 bytes)
Hash
f8cc1096742a7bf4e1629de065e65001
6eb081b1f09fb51df21df5b3d7aa1d91e664c233
c16471a17a6539bea1d06b436a5e56845b0e9911d8b8221e21a5f2a9092a63e1

HTTP Headers

GET /p/woocommerce/6.8.2/assets/js/jquery-blockui/jquery.blockUI.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 19 Jul 2022 19:16:40 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/lcrdxsv9/250xp.js

82.223.29.17

200 OK

348 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/lcrdxsv9/250xp.js
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
348 B (348 bytes)
Hash
a86680b6bfe19bdb7eaf547f96cfd141
efc5eef1efea02dd92dc2ddf6d253606f5b38366
71cc7f9e23ef0b0f0685e6e05044f9c4e5ad50fd6a33ccec3d9d23e74238a532

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/wpfc-minified/lcrdxsv9/250xp.js HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
content-length: 348
x-accel-version: 0.01
last-modified: Wed, 06 Jul 2022 17:44:25 GMT
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2021/10/MagicBARF.png

82.223.29.17

200 OK

49 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2021/10/MagicBARF.png
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
PNG image data, 879 x 245, 8-bit/color RGBA, non-interlaced\012- data
Size
49 kB (49040 bytes)
Hash
5be1545043d16efba8e0d44fc28d1af2
a9eea914005d1e02b6f5de5e9b9fa0de829bea75
fdaf91d426c23c135e75b8184b00b5126eb53906ab618676f0d7fddfc1d202bf

HTTP Headers

GET /wp-content/uploads/2021/10/MagicBARF.png HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: image/png
content-length: 49040
last-modified: Sat, 30 Oct 2021 16:45:00 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "617d768c-bf90"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/plugins/revslider/public/assets/assets/dummy.png

82.223.29.17

200 OK

68 B

URL HTTP/2
magicbarf.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: image/png
content-length: 68
x-accel-version: 0.01
last-modified: Wed, 06 Jul 2022 15:52:14 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/plugins/wp-fastest-cache-premium/pro/images/blank.gif

82.223.29.17

200 OK

43 B

URL HTTP/2
magicbarf.com/wp-content/plugins/wp-fastest-cache-premium/pro/images/blank.gif
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /wp-content/plugins/wp-fastest-cache-premium/pro/images/blank.gif HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: image/gif
content-length: 43
x-accel-version: 0.01
last-modified: Wed, 06 Jul 2022 15:49:31 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/themes/dt-the7/fonts/FontAwesome/webfonts/fa-solid-900.woff2

82.223.29.17

200 OK

78 kB

URL HTTP/2
magicbarf.com/wp-content/themes/dt-the7/fonts/FontAwesome/webfonts/fa-solid-900.woff2
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 78212, version 331.-31261\012- data
Size
78 kB (78212 bytes)
Hash
8c4f474a3aaa695346196b1f33fab616
abc1ae262d760e104a5a5cb68614ac119fd0db18
ef2369c82b6ec19bcf4fe76799d94edc43604e164c0f73978059536159845441

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/dt-the7/fonts/FontAwesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://magicbarf.com/wp-content/cache/wpfc-minified/g47gecp/26w6p.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/font-woff2
content-length: 78212
last-modified: Thu, 08 Sep 2022 14:21:02 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6319fa4e-13184"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/6vmpdb2p/250xp.js

82.223.29.17

200 OK

217 kB

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/6vmpdb2p/250xp.js
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (47853)
Size
217 kB (217078 bytes)
Hash
3df7ced37b3e421f03bc441eff8599b4
d1abf0dfb17c17132d66f9a680e1b834c09754b8
e624523b90029ce3c155bb04a4fe2da8c12481edfb79c72931f461c5315bd5f4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/wpfc-minified/6vmpdb2p/250xp.js HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
last-modified: Wed, 06 Jul 2022 17:44:25 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5c9f9-cef11"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

magicbarf.com/wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.ttf?wi57p5

82.223.29.17

200 OK

48 kB

URL HTTP/2
magicbarf.com/wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.ttf?wi57p5
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, the7-default-font\012- data
Size
48 kB (48020 bytes)
Hash
71f9dfd69c5a3adbbb31a994bffb7b36
97fbd02448d6db534ddfe4bcdc3df7ec5d92af9a
e0394e418d7858c3f9fabb6897f4e9364cf86a23a809127690f467ad111f190d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.ttf?wi57p5 HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/wp-content/cache/wpfc-minified/g47gecp/26w6p.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: x-font/ttf
content-length: 48020
last-modified: Thu, 08 Sep 2022 14:21:02 GMT
cache-control: max-age=0
expires: max-age=A10368000, public
etag: "6319fa4e-bb94"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/assets/js/js-cookie/js.cookie.min.js

192.0.77.37

200 OK

201 kB

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/assets/js/js-cookie/js.cookie.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (1668)
Size
201 kB (201392 bytes)
Hash
aa56199524fe514cef13ed1a84348785
4ccf5b428eb010ec024ba7bc3d729c0c7eb0c353
d0645663fef3ce596fb5117a621877f45dd07bedde9951549f4534ab1bcad98d

HTTP Headers

GET /p/woocommerce/6.8.2/assets/js/js-cookie/js.cookie.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 19 Jan 2021 23:55:30 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2020/08/unnamed-2.jpg

82.223.29.17

200 OK

50 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2020/08/unnamed-2.jpg
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x384, components 3\012- data
Size
50 kB (49961 bytes)
Hash
0c65027857e48d999667b64fced31794
0222c9d33aeaa2ee5456f32576576f4ce7654db5
6d2064cc8a34048b7a912464b7e19d36fc4c0c67361518cb622832bfdfbf891f

HTTP Headers

GET /wp-content/uploads/2020/08/unnamed-2.jpg HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: image/jpeg
content-length: 49961
last-modified: Thu, 22 Apr 2021 20:38:35 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081decb-c329"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2021/04/1-150x150.png

82.223.29.17

200 OK

8.9 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2021/04/1-150x150.png
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
8.9 kB (8877 bytes)
Hash
17248dad25630060efe2e076a2125d33
8998327f15b4337a10e2444b00e1e24d7a35fc2a
a51f778a025037cf087f6e18453365da1a2c74c91fc76aecdffa0294f00e8847

HTTP Headers

GET /wp-content/uploads/2021/04/1-150x150.png HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: image/png
content-length: 8877
last-modified: Sun, 25 Apr 2021 19:26:28 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6085c264-22ad"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
edf07cd621f733b0eb50c632387ebf4f
61a082d26501c2c8d481b1676d0de2e585269613
e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4825
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 04:14:51 GMT
Last-Modified: Wed, 21 Sep 2022 02:54:26 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

pixel.wp.com/g.gif?v=ext&j=1%3A11.3&blog=150720208&post=36&tz=0&srv=magicbarf.com&host=magicbarf.com&ref=&fcp=1304&rand=0.9724981215255664

192.0.76.3

200 OK

50 B

URL HTTP/2
pixel.wp.com/g.gif?v=ext&j=1%3A11.3&blog=150720208&post=36&tz=0&srv=magicbarf.com&host=magicbarf.com&ref=&fcp=1304&rand=0.9724981215255664
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type
GIF image data, version 89a, 6 x 5\012- data
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&j=1%3A11.3&blog=150720208&post=36&tz=0&srv=magicbarf.com&host=magicbarf.com&ref=&fcp=1304&rand=0.9724981215255664 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:51 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/underscore.min.js

192.0.77.37

200 OK

27 kB

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/underscore.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (18876)
Size
27 kB (27183 bytes)
Hash
e190c8286ef872e7f98e1b4fb99c82e9
33896247e2e809c5a662e023945ad2775f25e48f
d6c5b63bcc84763197cb51d8de9233df93eff2646b9ba34906229c14d12bed68

HTTP Headers

GET /c/6.0.2/wp-includes/js/underscore.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 27 Apr 2022 14:39:21 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/favicon.ico

82.223.29.17

200 OK

114 kB

URL HTTP/2
magicbarf.com/favicon.ico
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
MS Windows icon resource - 7 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel\012- data
Size
114 kB (113459 bytes)
Hash
1db747255c64a30f9236e9d929e986ca
384023452346aa087d40c93c23ca2f5e32ff1b1f
88baf40feb43463a8f6aa6543e88bdbe33f0db9a317486e786eee1e5c76a9544

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:51 GMT
content-type: image/vnd.microsoft.icon
content-length: 113459
last-modified: Thu, 22 Apr 2021 20:38:27 GMT
cache-control: max-age=0
expires: max-age=A10368000, public
etag: "6081dec3-1bb33"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bcbb61a4f6f0beed45a5f963bfba6e9d
a07136aeace7036e3b7427d63c60576adbdc388f
3a910cde9f8f65341f3422d28e35ca877558e136c99067b72daaeb56b3d9e76d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 04:14:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bcbb61a4f6f0beed45a5f963bfba6e9d
a07136aeace7036e3b7427d63c60576adbdc388f
3a910cde9f8f65341f3422d28e35ca877558e136c99067b72daaeb56b3d9e76d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 04:14:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

magicbarf.com/wp-content/cache/wpfc-minified/qizkfa8u/26w6p.css

82.223.29.17

200 OK

16 kB

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/qizkfa8u/26w6p.css
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (56207)
Size
16 kB (15568 bytes)
Hash
deedfe3b183e0c4f76ad7f2ceea9a080
45ed3c771d1412ac042a203f33af731901fa4976
f60a21beec39b307259fabd31c22f9b8389bb6bfd7639758a9e297a060addcbf

HTTP Headers

GET /wp-content/cache/wpfc-minified/qizkfa8u/26w6p.css HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: text/css
last-modified: Wed, 06 Jul 2022 17:57:21 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd01-1d8ca"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/cart-fragments.min.js

192.0.77.37

200 OK

2.5 kB

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/cart-fragments.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (2938), with no line terminators
Size
2.5 kB (2517 bytes)
Hash
a6c2245179e51c6cc3798f54d7382610
26ada62ba61683c82dc4bdbdef3ad4088ca6d933
ecfb7976af1890f3e3acce43e758a8888bc4ca12d8ff82bd49b7cb00d6ca5c71

HTTP Headers

GET /p/woocommerce/6.8.2/assets/js/frontend/cart-fragments.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 23 Nov 2021 22:30:13 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 04:14:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/wp-mediaelement.min.css

192.0.77.37

200 OK

1.5 kB

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (4186), with no line terminators
Size
1.5 kB (1455 bytes)
Hash
76442d6d594c86cd854f60a278cb0c85
29768c7135339416f976ccccb02fecbb44ee4e1f
578de5d009752e8ba7586391edf3dc4825d76d48ea2c71590017fcdfab5b4562

HTTP Headers

GET /c/6.0.2/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/wp-content/plugins/revslider/public/assets/assets/transparent.png

82.223.29.17

200 OK

122 B

URL HTTP/2
magicbarf.com/wp-content/plugins/revslider/public/assets/assets/transparent.png
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
PNG image data, 300 x 200, 1-bit grayscale, non-interlaced\012- data
Size
122 B (122 bytes)
Hash
86c58b484b48eac285e131e8b55d2ce7
3d3ee4c137a6f36e5fbee31e21a4d08f2c38d20e
9603ffeb6772f1cf745e0097d5d6c046eaf16151e5bc521f20764bba5ddb7713

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/transparent.png HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1302617262.1663733691; _gid=GA1.2.1295954555.1663733691; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:51 GMT
content-type: image/png
content-length: 122
x-accel-version: 0.01
last-modified: Wed, 06 Jul 2022 15:52:14 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css

192.0.77.37

200 OK

227 kB

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (11256), with no line terminators
Size
227 kB (227089 bytes)
Hash
14f7493da6e4a3b0c6f5fc6265214fb9
444edd94c14cc54eb60770d701481935ee782c11
d2ac3c5e17c8e6a5662f216cbbebf43d229bd3da16e434ee64cefe084867d242

HTTP Headers

GET /c/6.0.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

fonts.gstatic.com/s/robotoslab/v24/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjoa4Omb2Rj.woff2

142.250.74.163

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/robotoslab/v24/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjoa4Omb2Rj.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12820, version 1.0\012- data
Size
13 kB (12820 bytes)
Hash
5c02543fd50416d417c4fde1410008d5
82803a4554e56c2247c2ce50e9a0a3c77b5e0730
084c044e1a353a41a04f9c923b418d582f8e8d3a1996053c8e4912a57d158799

HTTP Headers

GET /s/robotoslab/v24/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjoa4Omb2Rj.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 16:41:37 GMT
expires: Fri, 15 Sep 2023 16:41:37 GMT
cache-control: public, max-age=31536000
age: 473594
last-modified: Mon, 11 Jul 2022 19:15:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 04:14:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 04:14:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 04:14:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.163

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 08:31:01 GMT
expires: Wed, 20 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 71030
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2

142.250.74.163

200 OK

7.8 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7824, version 1.0\012- data
Size
7.8 kB (7824 bytes)
Hash
af4d371a10271dafeb343f1eace762bc
6d11d743bc3cfb169d70bc86450f18351dc1a905
60bf0aba6526436f3930c58c12047687fbb6bff4dd180cce4613458ed3439ea2

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:50:32 GMT
expires: Thu, 14 Sep 2023 19:50:32 GMT
cache-control: public, max-age=31536000
age: 548659
last-modified: Wed, 27 Apr 2022 16:52:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2

142.250.74.163

200 OK

33 kB

URL HTTP/2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Size
33 kB (32860 bytes)
Hash
d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536

HTTP Headers

GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 15:39:46 GMT
expires: Sat, 16 Sep 2023 15:39:46 GMT
cache-control: public, max-age=31536000
age: 390905
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 04:14:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 549643
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2021/04/14122.png

82.223.29.17

200 OK

81 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2021/04/14122.png
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
PNG image data, 800 x 711, 8-bit gray+alpha, non-interlaced\012- data
Size
81 kB (80899 bytes)
Hash
a47194423dddad8e99f2b7accfd738bd
5435609eaacc7e596d74d19e00bb9a05c3171307
cb45bf4909557c759920ceb8acbe62ad82d3bf09ea58b48a48ef9fe923945fcd

HTTP Headers

GET /wp-content/uploads/2021/04/14122.png HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1302617262.1663733691; _gid=GA1.2.1295954555.1663733691; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:51 GMT
content-type: image/png
content-length: 80899
last-modified: Sun, 25 Apr 2021 18:26:02 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6085b43a-13c03"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2021/04/0fa6ad140dea46bce036b669e4daea26.gif

82.223.29.17

200 OK

309 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2021/04/0fa6ad140dea46bce036b669e4daea26.gif
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
GIF image data, version 89a, 618 x 618\012- data
Size
309 kB (308916 bytes)
Hash
3c8c241c2f3199a513ddd99a83afa196
ef357747585f352ac228768aa28ec682e84967c1
7637fb2569256569e1ad83113a6ced37a62b9ccc68a6ea061a3071d2178455fd

HTTP Headers

GET /wp-content/uploads/2021/04/0fa6ad140dea46bce036b669e4daea26.gif HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1302617262.1663733691; _gid=GA1.2.1295954555.1663733691; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:51 GMT
content-type: image/gif
content-length: 308916
last-modified: Sat, 24 Apr 2021 22:37:59 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "60849dc7-4b6b4"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14977
Expires: Wed, 21 Sep 2022 08:24:29 GMT
Date: Wed, 21 Sep 2022 04:14:52 GMT
Connection: keep-alive

magicbarf.com/wp-content/cache/wpfc-minified/m7u66gl1/26w6p.js

82.223.29.17

200 OK

44 kB

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/m7u66gl1/26w6p.js
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (40061)
Size
44 kB (44465 bytes)
Hash
d2d7ac0983a98f42f937b43952610edc
d248d53f66c033379adee399d8c544d6fbe80a20
71f517feb62e8119b2cc9967c12dd409bc76e213d8bbb7fff4b3bf4036f1ca76

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/wpfc-minified/m7u66gl1/26w6p.js HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
last-modified: Wed, 06 Jul 2022 17:57:21 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd01-3056b"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14977
Expires: Wed, 21 Sep 2022 08:24:29 GMT
Date: Wed, 21 Sep 2022 04:14:52 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6be1360-d048-4319-9cac-dfebe92db87f.jpeg

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6be1360-d048-4319-9cac-dfebe92db87f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9271 bytes)
Hash
267173c6b4e4e6ae4a84dc08df92f82f
4183102af1963e1edb3aa572c43aeda7d855e9f5
20487bb2e59f2e6afcaaac3e3c4f1dfec9a8ef761403a44f7f92a6b57d143714

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6be1360-d048-4319-9cac-dfebe92db87f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9271
x-amzn-requestid: b8139dfc-8f24-41e0-9948-56bad215416c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yx0Q-EkZoAMF_sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a3406-4365026f7f832cee0c12e4d7;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:43:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rUeMyRv1DxHKmRAc4s-8GkQELQtAO-_lKHB2tjRYSQUSBMJMmDAZcQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:56:09 GMT
age: 22723
etag: "4183102af1963e1edb3aa572c43aeda7d855e9f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9201 bytes)
Hash
a692964324dbb9c460a1b855808d02e6
1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hI3FlJJRAUfr0EAcSvvuJajmyQDwBpTxuQIhYfA0Mtp9JyQgKnoDvA==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:43:18 GMT
age: 23494
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d9d6ae0-dc0d-4bab-98fe-eb30bb5f5b2d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11552 bytes)
Hash
370f018032c47c9e5c11e6afa4ffdd1f
639c8d2d6f1cf5fa6d742925ea61386d600dd368
6084e769cbcc679110c174e8031439f80bcfa0027d1c39c7b6626c54692da120

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d9d6ae0-dc0d-4bab-98fe-eb30bb5f5b2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11552
x-amzn-requestid: 5457ef1c-d92b-4cd5-a704-64c1ff0cb2b3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mFRXIAMFv5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-3cd341153ca71b7c069b6ead;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: X4rDCd0vk2t74s7qjkuMYwmoA8Ul9As6m5KBtDhltneCK6hSDgfXPQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:04 GMT
age: 23628
etag: "639c8d2d6f1cf5fa6d742925ea61386d600dd368"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/woocommerce.min.js

192.0.77.37

200 OK

9.5 kB

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/woocommerce.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (2139), with no line terminators
Size
9.5 kB (9538 bytes)
Hash
dd5b69e82226af435ae873d04bd52075
e216cd3223a046fae6bedf412f3eafa70942e8dd
2ff8c32792da54bee9e01760004478a7a492ea3be0dd0a3352a8c2c44a9b4a7e

HTTP Headers

GET /p/woocommerce/6.8.2/assets/js/frontend/woocommerce.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 18 May 2021 17:00:20 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0461a18-eff3-4de5-b1f6-be49fa5db229.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8826 bytes)
Hash
4eb6d1b35f680bfec656941b6167fd23
344c6000dbdafdb5105edc93a082d640c3e95ddc
67fc85fa0f1a55d57ab9db6f4c723fb9116ef3b2c5282dbdd42d9c37396bd7b9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0461a18-eff3-4de5-b1f6-be49fa5db229.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8826
x-amzn-requestid: cf0c711e-4ec9-4f87-a60f-41374262a114
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYweUHIyoAMFYQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202df5-17ad5d4e25a754586e531d05;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:15:01 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OEbpCQXLpTCDZH4OlzVvvsc-bSgbsIoXRgX6f-nKVwJTL5-SVTCHeA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:56:09 GMT
age: 22723
etag: "344c6000dbdafdb5105edc93a082d640c3e95ddc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6897 bytes)
Hash
8bae3a7a80ff40df1d701dfc925ddeff
91df60162a8322469cada0dd8eb93619f28aec1a
fab10c7ad4658bc191621d9f2042236a7b6e34448ce5215dde5b8d6a64b52952

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6897
x-amzn-requestid: 280a2e44-c21a-4d78-991b-3328e816d045
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YwWSpE0SoAMFaxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63299daa-55cb53491be78c4d5bed0462;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 11:02:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eNkM22Xu--qgJdsrH-UrTG5-Ie4nAsyLjiMaJ5ZKIz0bbw7cYrvFjw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 02:18:26 GMT
age: 6986
etag: "91df60162a8322469cada0dd8eb93619f28aec1a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2021/10/MagicBARF-1-e1635680051560.png

82.223.29.17

200 OK

18 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2021/10/MagicBARF-1-e1635680051560.png
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
PNG image data, 300 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (17702 bytes)
Hash
dc573f8744dc63977020e078f8f02cbc
b1b315e2c2678293f28a17065449195059a160d3
e5203fb4be48d03d85a267b9acb3a13d8c1a1c22f4449f537c42d5aa54cabcd7

HTTP Headers

GET /wp-content/uploads/2021/10/MagicBARF-1-e1635680051560.png HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1302617262.1663733691; _gid=GA1.2.1295954555.1663733691; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:53 GMT
content-type: image/png
content-length: 17702
last-modified: Sun, 31 Oct 2021 11:34:11 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "617e7f33-4526"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2020/08/IMG20200809174148-scaled-e1597133490406.jpg

82.223.29.17

200 OK

333 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2020/08/IMG20200809174148-scaled-e1597133490406.jpg
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, height=4000, manufacturer=OPPO, model=OPPO A9 2020, orientation=upper-left, xresolution=146, yresolution=154, resolutionunit=2, datetime=2020:08:09 17:41:48, width=3000], baseline, precision 8, 1000x1333, components 3\012- data
Size
333 kB (333329 bytes)
Hash
3490874a13ccaa568356f8c4a4cd6c74
9ec739f20d463983e0feda91b213cbc2f34150ec
b1c2b5386843d0a52d617ce8b95553c2978752ce88e9a9b3a44da49fdded046d

HTTP Headers

GET /wp-content/uploads/2020/08/IMG20200809174148-scaled-e1597133490406.jpg HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1302617262.1663733691; _gid=GA1.2.1295954555.1663733691; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:53 GMT
content-type: image/jpeg
content-length: 333329
last-modified: Thu, 22 Apr 2021 20:38:34 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081deca-51611"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2020/08/IMG20200809174205-1-scaled-e1597343225506.jpg

82.223.29.17

200 OK

340 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2020/08/IMG20200809174205-1-scaled-e1597343225506.jpg
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, height=3000, manufacturer=OPPO, model=OPPO A9 2020, orientation=upper-left, xresolution=146, yresolution=154, resolutionunit=2, datetime=2020:08:09 17:42:05, width=4000], baseline, precision 8, 1500x798, components 3\012- data
Size
340 kB (340115 bytes)
Hash
d7b954e8676cee502e13b335b195dde1
7776a73e97603b7a720f8181b7d635b8903ff22e
06df86a40c0c38f8c35844be90b8e2af2536ae2b1f9fb324526f396c810e7603

HTTP Headers

GET /wp-content/uploads/2020/08/IMG20200809174205-1-scaled-e1597343225506.jpg HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1302617262.1663733691; _gid=GA1.2.1295954555.1663733691; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:54 GMT
content-type: image/jpeg
content-length: 340115
last-modified: Thu, 22 Apr 2021 20:38:34 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081deca-53093"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2020/08/cani-gatti-e-parquet-2-scaled-e1597343692994.jpg

82.223.29.17

200 OK

142 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2020/08/cani-gatti-e-parquet-2-scaled-e1597343692994.jpg
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 1500x581, components 3\012- data
Size
142 kB (141704 bytes)
Hash
edcf330ca4b47992ad18eb4fa2880292
9726e8b5a765d1e6ef5add42f6741025dbf0ae0e
252c2cdf79ed49d435c6082ebebc6769bfe95f65baa5b71794a33438eb627087

HTTP Headers

GET /wp-content/uploads/2020/08/cani-gatti-e-parquet-2-scaled-e1597343692994.jpg HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1302617262.1663733691; _gid=GA1.2.1295954555.1663733691; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:54 GMT
content-type: image/jpeg
content-length: 141704
last-modified: Thu, 22 Apr 2021 20:38:34 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081deca-22988"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2020/08/article-e1597353946241.jpeg

82.223.29.17

200 OK

127 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2020/08/article-e1597353946241.jpeg
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=1700, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2555], baseline, precision 8, 1500x498, components 3\012- data
Size
127 kB (127103 bytes)
Hash
0d251f9cb996b7c9b1238b46bae8ece6
79825a2dedc5f9dce9ca6a98782665f47ef9c3b7
024ae42c7bb0aedd59d94935a79d00c4e33211024694a95034812fc68706a115

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2020/08/article-e1597353946241.jpeg HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1302617262.1663733691; _gid=GA1.2.1295954555.1663733691; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:54 GMT
content-type: image/jpeg
content-length: 127103
last-modified: Thu, 22 Apr 2021 20:38:34 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081deca-1f07f"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

magicbarf.com/wp-content/uploads/2021/04/magic-barf-1.jpg

82.223.29.17

200 OK

112 kB

URL HTTP/2
magicbarf.com/wp-content/uploads/2021/04/magic-barf-1.jpg
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1024x599, components 3\012- data
Size
112 kB (112046 bytes)
Hash
1a3f4d46875c0cb1bc6bdf74f1e1876d
142b75362bca613390b8e073e81ac0421e29cd68
ef0f46ebb34c67bf7ee9af5b9ba0fca6a16857efaf1c43de34e898d81c7a4e98

HTTP Headers

GET /wp-content/uploads/2021/04/magic-barf-1.jpg HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1302617262.1663733691; _gid=GA1.2.1295954555.1663733691; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:54 GMT
content-type: image/jpeg
content-length: 112046
last-modified: Thu, 22 Apr 2021 20:45:11 GMT
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: "6081e057-1b5ae"
x-cache-status: BYPASS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif

192.0.77.2

200 OK

9.5 kB

URL HTTP/2
i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif
IP
192.0.77.2:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image\012- data
Size
9.5 kB (9520 bytes)
Hash
743e813c94ab2d41537fc4db504581e8
5a3d68329c0a3fdfc05e4499f0fce8409bc1961a
b49c8f0f393b924a5bc6759618af5a8574af747cde0fd8d7f216a0c8cf4995eb

HTTP Headers

GET /magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:54 GMT
content-type: image/webp
content-length: 9520
last-modified: Mon, 12 Sep 2022 15:27:27 GMT
expires: Thu, 12 Sep 2024 03:27:27 GMT
cache-control: public, max-age=63115200
link: <http://magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif>; rel="canonical"
x-content-type-options: nosniff
etag: "6a8a2791b14979c4"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png

192.0.77.2

200 OK

898 B

URL HTTP/2
i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png
IP
192.0.77.2:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image\012- data
Size
898 B (898 bytes)
Hash
c5ea653ef93ae91f9f99effb2140c1d3
397c889e2026082ead6b0bc7f1ca7d90037d00fd
6bc096703ef1dfacb1f4b237d04ef92e2241d49a94c30638864b941ec576be71

HTTP Headers

GET /magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:54 GMT
content-type: image/webp
content-length: 898
last-modified: Mon, 12 Sep 2022 15:27:27 GMT
expires: Thu, 12 Sep 2024 03:27:27 GMT
cache-control: public, max-age=63115200
link: <http://magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png>; rel="canonical"
x-content-type-options: nosniff
etag: "887b0f008bf0d1bc"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png

192.0.77.2

200 OK

896 B

URL HTTP/2
i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png
IP
192.0.77.2:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image\012- data
Size
896 B (896 bytes)
Hash
0c7e6fd1fe4f303a829baca75b345c9d
af5bb95298285b80b3e5705422fed709e1f213ae
cd4cdde1fc65ba661adcdde693fb326368677a51fd36c6d86824cec69657ec3e

HTTP Headers

GET /magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:54 GMT
content-type: image/webp
content-length: 896
last-modified: Fri, 09 Sep 2022 01:16:35 GMT
expires: Sun, 08 Sep 2024 13:16:35 GMT
cache-control: public, max-age=63115200
link: <http://magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png>; rel="canonical"
x-content-type-options: nosniff
etag: "99d007e3ae34e37f"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png

192.0.77.2

200 OK

218 B

URL HTTP/2
i0.wp.com/magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png
IP
192.0.77.2:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image\012- data
Size
218 B (218 bytes)
Hash
aa25ab177327f67af9bdb6a20e76c88a
6ba143824ad58321cd56075a5db49a8e2177c975
1bb9c6ea966134cdb99d8e6fb8ea2562a7d272c70071e2d06605453be3a1934f

HTTP Headers

GET /magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:54 GMT
content-type: image/webp
content-length: 218
last-modified: Mon, 12 Sep 2022 15:27:27 GMT
expires: Thu, 12 Sep 2024 03:27:27 GMT
cache-control: public, max-age=63115200
link: <http://magicbarf.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png>; rel="canonical"
x-content-type-options: nosniff
etag: "7a8f91da2142d0e1"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/packages/woocommerce-blocks/build/wc-blocks-style.css

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/packages/woocommerce-blocks/build/wc-blocks-style.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p/woocommerce/6.8.2/packages/woocommerce-blocks/build/wc-blocks-style.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 26 Jul 2022 03:28:45 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/p/jetpack/11.3/css/jetpack.css

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/p/jetpack/11.3/css/jetpack.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p/jetpack/11.3/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 19 Jul 2022 17:25:16 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/mn1isi14/26w6q.js

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/mn1isi14/26w6q.js
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/wpfc-minified/mn1isi14/26w6q.js HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
last-modified: Wed, 06 Jul 2022 17:57:22 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd02-d114"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/add-to-cart.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/assets/js/frontend/add-to-cart.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p/woocommerce/6.8.2/assets/js/frontend/add-to-cart.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 19 Jul 2022 19:16:40 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

stats.wp.com/e-202236.js

192.0.76.3

200 OK

0 B

URL HTTP/2
stats.wp.com/e-202236.js
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /e-202236.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 28 Aug 2023 02:01:00 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/core.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/core.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/6.0.2/wp-includes/js/jquery/ui/core.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/km6an1cp/26w6p.css

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/km6an1cp/26w6p.css
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/wpfc-minified/km6an1cp/26w6p.css HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: text/css
last-modified: Wed, 06 Jul 2022 17:57:21 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd01-c59c0"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

stats.wp.com/s-202236.js

192.0.76.3

200 OK

0 B

URL HTTP/2
stats.wp.com/s-202236.js
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s-202236.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-2494"
content-encoding: br
expires: Thu, 31 Aug 2023 17:29:08 GMT
cache-control: max-age=31536000
x-nc: HIT arn
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/osfd4c5/26w6p.js

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/osfd4c5/26w6p.js
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/wpfc-minified/osfd4c5/26w6p.js HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
last-modified: Wed, 06 Jul 2022 17:57:21 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd01-1ee24"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:400,600,700%7CRoboto:400,600,700%7CRoboto+Slab:400,600,700

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,600,700%7CRoboto:400,600,700%7CRoboto+Slab:400,600,700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans:400,600,700%7CRoboto:400,600,700%7CRoboto+Slab:400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 04:14:51 GMT
date: Wed, 21 Sep 2022 04:14:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

c0.wp.com/p/woocommerce/6.8.2/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/p/woocommerce/6.8.2/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p/woocommerce/6.8.2/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 18 Jan 2022 21:24:33 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/?wc-ajax=get_refreshed_fragments

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/?wc-ajax=get_refreshed_fragments
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1302617262.1663733691; _gid=GA1.2.1295954555.1663733691; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:55 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://magicbarf.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/7.4.30, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

magicbarf.com/wp-admin/admin-ajax.php

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-admin/admin-ajax.php
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 293
Origin: https://magicbarf.com
Connection: keep-alive
Referer: https://magicbarf.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1302617262.1663733691; _gid=GA1.2.1295954555.1663733691; _gat_gtag_UA_175841621_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:55 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://magicbarf.com
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/7.4.30, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/6.0.2/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/tabs.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/ui/tabs.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/6.0.2/wp-includes/js/jquery/ui/tabs.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/g47gecp/26w6p.css

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/g47gecp/26w6p.css
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/wpfc-minified/g47gecp/26w6p.css HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: text/css
last-modified: Wed, 06 Jul 2022 17:57:21 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd01-c9ea6"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

magicbarf.com/wp-content/cache/wpfc-minified/1130n0n7/26w6p.js

82.223.29.17

200 OK

0 B

URL HTTP/2
magicbarf.com/wp-content/cache/wpfc-minified/1130n0n7/26w6p.js
IP
82.223.29.17:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/wpfc-minified/1130n0n7/26w6p.js HTTP/1.1
Host: magicbarf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: application/javascript
last-modified: Wed, 06 Jul 2022 17:57:21 GMT
vary: Accept-Encoding
cache-control: max-age=10368000
expires: max-age=A10368000, public
etag: W/"62c5cd01-6683"
x-cache-status: MISS
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/css/dist/block-library/style.min.css

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/css/dist/block-library/style.min.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/6.0.2/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://magicbarf.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 04:14:50 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 04 Jul 2022 12:10:37 GMT
content-encoding: br
expires: Thu, 21 Sep 2023 04:14:50 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (40)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations