| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/s05.png | 188.114.96.1 | 200 OK | 2.3 kB |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/s05.png IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typePNG image data, 640 x 26, 8-bit/color RGB, non-interlaced\012- data Hash7ed09509dd9da4111f53fbf1c7434fed eaa6335546fcd2d46c87ca7563c80c1cec72272e 1d824227fb2b15e801d705e2e5ed2281b215bfeafd958a12b5c93de87f5e85d1
GET /wp-admin/css/colors/blue/wwww/files/s05.png HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:04 GMT
content-type: image/png
content-length: 2257
last-modified: Tue, 30 May 2023 23:40:46 GMT
etag: "6476897e-8d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9z0PtEgaT7fUXP9amQehu6Mj%2BrJ9tAxKNOcKdg%2B8C3hjNkN1XNt9PZdmfs6mcznM2LkROrYVS0wtXVi84afzf4lXkLd8Ixhzo%2BfCvOmz2IJ0bFsSi4oj1YHjor5wbY1YG%2BnsG4W%2BaonoqAjMsDo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d2c0ee8ca0eb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/s06.png | 188.114.96.1 | 200 OK | 504 B |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/s06.png IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typePNG image data, 149 x 28, 8-bit/color RGB, non-interlaced\012- data Hash602cf0309694df4a362cd215dc3e5b91 f8216dae7e7e9d14490f334d8294c4dca3ccb86a ed83e472c4144e7c541d6e4f0554c4f833fc591db421ccf71ab468112b18c445
GET /wp-admin/css/colors/blue/wwww/files/s06.png HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:04 GMT
content-type: image/png
content-length: 504
last-modified: Tue, 30 May 2023 23:48:52 GMT
etag: "64768b64-1f8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pfp%2F9VB7xXGIQz2%2B96Iub2aGfiNhKDVJZmhRfXSrREVZcNalTZAoFRFisVmELiA2WIQjAhWrlzu86Eb%2BB7z5k7ulJ892EG6ycvxj0BYy99ydwA9tyZ7rubTUsQuNdG3weBMaU9G2oB7lCHtCazQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d2c0ee8ca10b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/s04.png | 188.114.96.1 | 200 OK | 1.2 kB |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/s04.png IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typePNG image data, 122 x 31, 8-bit/color RGB, non-interlaced\012- data Hashc4ab645036355d1751338d726452fde1 591af55d5e60020e761882efc9b434644dc860c3 7c4fe831cef76e6a20204dbd1a2468e25f6668b70e5c6592f59b5425af1fa0ce
GET /wp-admin/css/colors/blue/wwww/files/s04.png HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:04 GMT
content-type: image/png
content-length: 1183
last-modified: Tue, 30 May 2023 23:47:04 GMT
etag: "64768af8-49f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wMa9ZtpclI3oBNCquJvsyN8mvBIvHYOg6ZQOuRQzxZxuQyfFO0cWcbjrsmckolu904RDKxDFLDnmWsBi7fZcxrrq7inakiq%2F%2BLp7Q5M52WUC%2BpiAUc5FUSTS0291z3uNg%2BavtyA60tJ2KJbxx7U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d2c0ee8ba09b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/1614969224184.png | 188.114.96.1 | 200 OK | 2.0 kB |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/1614969224184.png IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typePNG image data, 214 x 20, 8-bit/color RGBA, non-interlaced\012- data Hash5d14ab93691604e826e1319d53599eb9 78724360e9d25da584445b851e37bca05abe6b85 3f0c62b5ccdcdbf3b3ae3885f1e6959e2d937eba9b29dea9a6bdb98788041756
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/css/colors/blue/wwww/files/1614969224184.png HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:04 GMT
content-type: image/png
content-length: 1998
last-modified: Tue, 06 Apr 2021 01:09:44 GMT
etag: "606bb4d8-7ce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rIa3gvV9hp5jBUGuHPO206b8gpVOuu6qnWpe8IWTV9MzSenzUu5w3WP3wnCZw9ysLk28EDRDKovhwAn6ruvCo5VJ4zS0C8x3syXZP8teGHNYd6rNFB51Pu3kc0ASfR8Nw7%2FyxjCOlHOHJQdUBUY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d2c0ee8ba08b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/a84df3d7f5ef54c3a8b208c50809bd4cc6169f07.png | 188.114.96.1 | 200 OK | 3.7 kB |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/a84df3d7f5ef54c3a8b208c50809bd4cc6169f07.png IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typePNG image data, 66 x 44, 8-bit/color RGBA, non-interlaced\012- data Hashde3747810df2c1313da28d9def5fec9c a84df3d7f5ef54c3a8b208c50809bd4cc6169f07 6d1c749f39a21f5828048ed98d33385cb496a46a0b93403c40c921893ae6b343
GET /wp-admin/css/colors/blue/wwww/files/a84df3d7f5ef54c3a8b208c50809bd4cc6169f07.png HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:04 GMT
content-type: image/png
content-length: 3740
last-modified: Tue, 06 Apr 2021 01:11:00 GMT
etag: "606bb524-e9c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U1wyvL7r5mEPW3%2Fkep5X0CsFIaRgL%2BkfxOzx%2FMcY3aRQWAET4FSvwQi7fYkkeZXQIgGXctp0mQYsHJuDhO6UwX%2BwOcQ2iPlspYiaN%2B38cYGkecsj0n7qYoQyQI6A5%2FuQSyJDl8NriDbO9FuuI%2FQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d2c0ee8ca16b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/cd33e12d588c3a9f68d87246f55c08830addd061.png | 188.114.96.1 | 200 OK | 2.3 kB |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/cd33e12d588c3a9f68d87246f55c08830addd061.png IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typePNG image data, 66 x 44, 8-bit/color RGBA, non-interlaced\012- data Hash0392985edadc64e27bd5cf7dc80d0c35 cd33e12d588c3a9f68d87246f55c08830addd061 04fcd9851d28c6b893c9dc872964c0b42f7fa09ef205393864422c8681ef8fff
GET /wp-admin/css/colors/blue/wwww/files/cd33e12d588c3a9f68d87246f55c08830addd061.png HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:04 GMT
content-type: image/png
content-length: 2291
last-modified: Tue, 06 Apr 2021 01:11:00 GMT
etag: "606bb524-8f3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MFCyZxEcEjgponT0rm1PipKNnhGKI1A%2FMCsx0hFBX1SqD%2B6NwwWo7jLwSXTyKrEq0S2MpKke5MmuJX1vZc738PhvVM6aSiJsi%2Bnlk4x2JTnEu36PeK7e2fB7BQHthbUQ9bjUN6Z7H0nRzTfGmks%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d2c0ee8ca12b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/sfooter.png | 188.114.96.1 | 200 OK | 1.4 kB |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/sfooter.png IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typePNG image data, 250 x 18, 8-bit/color RGBA, non-interlaced\012- data Hash1ee5c63550ff8e54cec82451038f9e21 151e2b6a68546529a4e9c19fffe20d46592fea99 56499499ee05542754a16d9cb2711f2d85abe70d488330ddb9bb411484bb8a2f
GET /wp-admin/css/colors/blue/wwww/files/sfooter.png HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:04 GMT
content-type: image/png
content-length: 1393
last-modified: Tue, 13 Apr 2021 23:40:46 GMT
etag: "60762bfe-571"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yA%2BWCFsKVOKBMHjvu3fb1JswQgtTT7LovdNGeuMdirtJM%2BHhq00Ifx1LJcyjnXjP%2FexYFpxg0449N28jkwC2Cd2ZGEB1lN0KyWUv13tKtVJ598DRePQAxYwySNKNTAnNQggezED%2BFkUhv9tWC7Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d2c0ee8da3cb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/1614968422695.png | 188.114.96.1 | 200 OK | 3.9 kB |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/1614968422695.png IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typePNG image data, 187 x 18, 8-bit/color RGBA, non-interlaced\012- data Hash11ff7152775863d8bf58eb585a3cfa46 25127f0e304d9145ef8a824a8be504664a799b7f 5c4b801e60c49235941cfc562ed465a951c937c668db31e3c1ba152513c672d3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/css/colors/blue/wwww/files/1614968422695.png HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:04 GMT
content-type: image/png
content-length: 3878
last-modified: Tue, 06 Apr 2021 01:09:44 GMT
etag: "606bb4d8-f26"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pivtz60iU4dXxKUAloUHJU%2FYDOvrezonQg2XZJupb3%2Bvf2AwC7bAxRNRAXOitHjJhwdkxc5uZL6kMKvrXyzotchhwBNsHzNHAsuYpl9lQ7SFcC5PFxUOMoQ7SuhjrAQ%2FDh1HQwb%2Bjkdk99rfgrQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d2c0ee8da34b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/ewf-components.9ce7abcd4bcccd54398bb946b71d0e79fc0d76e3915cf02533e892832d4e0dd1.css | 188.114.96.1 | 200 OK | 40 kB |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/ewf-components.9ce7abcd4bcccd54398bb946b71d0e79fc0d76e3915cf02533e892832d4e0dd1.css IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typeUnicode text, UTF-8 text, with very long lines (65535), with no line terminators Hash64788921fac833caf388f5c79ed35b31 92c045e6b06f1f046ab36351347e50e50a10c29e 04633187a0d25293c117084b168f7277a7fe0b8c36ff2af04a67649b8c4e22ea
GET /wp-admin/css/colors/blue/wwww/files/ewf-components.9ce7abcd4bcccd54398bb946b71d0e79fc0d76e3915cf02533e892832d4e0dd1.css HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:04 GMT
content-type: text/css
last-modified: Tue, 06 Apr 2021 01:09:44 GMT
vary: Accept-Encoding
etag: W/"606bb4d8-35058"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AY%2BLlR%2BNd5bR5ZE5DBKLVwBP91SLmqwTPedmnfO6uZBqC4xmvlsbjN1LncaEnd704F%2FojHHxBhR9DmfNgRi5AQpysPcnuse%2Bi8WIiHtFFg1BXD5N8WxOeHwNhDkH6S2n8tDdE0aptyXhEoJv5bU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d2c0ee8ba02b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/ewf-base.d0b32e2aa5bde8d44fd25fb84e676c83a08c45abfcb4a4dca34bfa5d90d51da1.css | 188.114.96.1 | 200 OK | 82 kB |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/ewf-base.d0b32e2aa5bde8d44fd25fb84e676c83a08c45abfcb4a4dca34bfa5d90d51da1.css IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typeCSV text\012- assembler source, ASCII text, with CRLF line terminators Hashea5182799fb1be36299683ee74178a8d 0acbb0099ba32acf515869f70199eb6d8155d53e 2d5aa70a4912d9d133c32490f6ad2f5105bacf64588dec67a45d41a9ca7052f2
GET /wp-admin/css/colors/blue/wwww/files/ewf-base.d0b32e2aa5bde8d44fd25fb84e676c83a08c45abfcb4a4dca34bfa5d90d51da1.css HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:04 GMT
content-type: text/css
last-modified: Wed, 14 Apr 2021 00:57:44 GMT
vary: Accept-Encoding
etag: W/"60763e08-4b1c2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ihz0VWudW2HiNh7IqWxnnGsiRK5eaeRaLLmqH04HpSAImRWWxVbeSw%2FbA5QORRyfPWZYJzhi1Y4nWjlTj3nhIYqgekBGWsaUQmNUEMINmXoWU4SAXICaP%2FVk8xqaqfUjKjNcoQwa4q5ezJdUPM8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d2c0ee8b9ffb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/favicon.gif | 188.114.96.1 | 200 OK | 2.2 kB |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/favicon.gif IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typeMS Windows icon resource - 1 icon, 32x32, 8 bits/pixel\012- data Hasha6f1af8e79a11829ba9a66474b06bb97 d99e3ec7747c865033a8dfad43c9f49634404bc1 b0dbd00f3650fa6b931e678a9d8f79a405d23c7adf111ab91b1a01a0e7109807
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/css/colors/blue/wwww/files/favicon.gif HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:05 GMT
content-type: image/gif
content-length: 2238
last-modified: Tue, 06 Apr 2021 01:09:42 GMT
etag: "606bb4d6-8be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K1%2B5kLPorSIXJGNzdbeXAb9VzJAVINcto%2FRFa6yKfuLWFa7QaNLvTvV5O4Ywuh02jFx%2BeFozpVHWyRAK%2FS5UAADbrWkAZgY8BsiAwiiUvEGujIMk%2Bt8kXIyEosiKIjHPYA%2FeG36pEXR24kHwpVA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d2c0eed2cf5b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/dhl.woff | 188.114.96.1 | 200 OK | 39 kB |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/dhl.woff IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typeWeb Open Font Format, TrueType, length 38796, version 1.0\012- data Hashe3934d3b5ed8ef04704b7505669a6f72 c30be834f06076e67377f98b6672432b648fad2c 336dead1ab83a6fd413d19608c2d1256fb712b85cb1cea5b792381948930a7fc
GET /wp-admin/css/colors/blue/wwww/files/dhl.woff HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/ewf-base.d0b32e2aa5bde8d44fd25fb84e676c83a08c45abfcb4a4dca34bfa5d90d51da1.css
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:05 GMT
content-type: application/font-woff
content-length: 38796
last-modified: Tue, 06 Apr 2021 01:09:44 GMT
etag: "606bb4d8-978c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R7zagFBwqQqLCFHZNgtTxGOw1XjqzSSzuRkurhKcKjxrT88yY%2FWXKrF4jWD7xItBxToreMUKrpfPzvliScm45QEL9MTfqlzVEHMJ2Py8iOjSWb%2BprV6OV9t1imdDxRaQ4OavBQEI7isAHcGxuGQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d2c0eee3da6b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php | 188.114.96.1 | 200 OK | 65 kB |
URL User Request GET HTTP/2seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL | openphish | DHL Airways, Inc. | |
GET /wp-admin/css/colors/blue/wwww/agreepay.php HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 05 Jun 2023 23:05:03 GMT
content-type: text/html
vary: Accept-Encoding
set-cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef; path=/
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
pragma: no-cache
x-turbo-charged-by: LiteSpeed
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
x-cloudez-verify: 77308e2f9c84a3a15f16f403206b24423c34d396c8437fcaf54e9bab
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RMhV6S8eIk%2BFpJ2b0at9ZtAPhZhDBwk%2FBscmTfKXCGUJpFOd91x2NiUW%2FpnST8TrQx3tuSkJABoR0bfRBna%2FuCOXEKXkA7AsMjfjFhCGsu1xvSGhl8Chd9vMEBZ%2Bl6xmOrZ4UimZwK22OSyLemQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d2c0ee33b7d0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/ewf-cosmetic.7d0b07e2e3eed7c681fd1adf46e1e8bf716f2f153ddcdc0841c9e1940ba8b6d0.css | 188.114.96.1 | 200 OK | 8.0 kB |
URL GET HTTP/3seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/files/ewf-cosmetic.7d0b07e2e3eed7c681fd1adf46e1e8bf716f2f153ddcdc0841c9e1940ba8b6d0.css IP188.114.96.1:443
Requested byhttps://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php CertificateIssuerGoogle Trust Services LLC Subjectmvpexchange.com.br Fingerprint07:02:FB:0B:1A:4F:1E:E3:0C:33:5E:12:5F:8D:B4:C1:84:65:F0:A9 ValidityTue, 25 Apr 2023 01:47:21 GMT - Mon, 24 Jul 2023 01:47:20 GMT
File typeASCII text, with very long lines (7990), with no line terminators Hash6092787e4e7e7d13e4dfc45a418735d5 2fffcc055fb3f6a4b739b170ab6cf1c88cc3c2e7 da60129f835c135469d19193bc721a7fd44a174be76ece0944d403d674e77a17
GET /wp-admin/css/colors/blue/wwww/files/ewf-cosmetic.7d0b07e2e3eed7c681fd1adf46e1e8bf716f2f153ddcdc0841c9e1940ba8b6d0.css HTTP/1.1
Host: seletiva.mvpexchange.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://seletiva.mvpexchange.com.br/wp-admin/css/colors/blue/wwww/agreepay.php
Cookie: PHPSESSID=32965fb764df0fb6fd73df757aafccef
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 05 Jun 2023 23:05:04 GMT
content-type: text/css
last-modified: Tue, 06 Apr 2021 01:09:44 GMT
vary: Accept-Encoding
etag: W/"606bb4d8-1f35"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
pragma: public
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qMjhQVtyH%2FxNXyzizsyfx5IMQ5BayPwladz9gHixXLIPcTmayWBsgbKYO07vI1y2yGCXKr8HIYFYv9f%2Fgv1wd72ibHHVSk2SvO1Ry5B%2Br7Z8%2Bv3JjJZLjE5rZJx6HEdv2sjpWZQU%2B4S5d75gcDg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d2c0ee8ba04b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|