r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d27590a1d3cbe1e9632b8ae92aaae3f4
202b34e8a0c3b88c8826fd56c6227b34f2cd6f46
6bcfa518476658128c1fb4ea2435c4e58531454cf97138dce7ece9def589aead
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BCFA518476658128C1FB4EA2435C4E58531454CF97138DCE7ECE9DEF589AEAD"
Last-Modified: Wed, 16 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4680
Expires: Fri, 18 Nov 2022 06:17:03 GMT
Date: Fri, 18 Nov 2022 04:59:03 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash be1be806b5dca7facbb45a6c3db44652
7ae9380a2f3eca959fe6ff6b3832a17cffd12cf4
1f3338058f8e9cae5c9fdd733c74564312726b01c6efdcd628d851d0c99876b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1789
Cache-Control: max-age=108129
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 04:59:03 GMT
Etag: "63760d7b-1d7"
Expires: Sat, 19 Nov 2022 11:01:12 GMT
Last-Modified: Thu, 17 Nov 2022 10:31:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 04:45:00 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 843
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e84f361a3c81abc5d665a5f441452a8
7aa4b9cb0a7ba1daa514dbb48fe8e74fdf09b60d
04d64920cc8e6b096841938b0c1140889f5d7a04eabd440934a31f1c7ab90352
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "04D64920CC8E6B096841938B0C1140889F5D7A04EABD440934A31F1C7AB90352"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2420
Expires: Fri, 18 Nov 2022 05:39:23 GMT
Date: Fri, 18 Nov 2022 04:59:03 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: O52Gg2HV85GGNf2QuRAk+9An1khoOx4/8p5mYa06dclowXYmdFNIIg5yQb0BU01z4YmVahEUxbY=
x-amz-request-id: Z2D37MEXV01722GF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 04:15:27 GMT
age: 2616
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 04:59:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 04:44:49 GMT
cache-control: public,max-age=3600
age: 854
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c10055ce87434f700ff8b20e3be1f919
477b3c9f1da0c464282bb54572737e76b6e346da
4d78eb296876122e5ff40fcd7667adf1bf8a4b1ee4c8203c88a63ce8d7910a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4515
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 04:59:03 GMT
Last-Modified: Fri, 18 Nov 2022 03:43:48 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
craftbrand.com.pe/
108.179.194.18200 OK 26 kB IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash d41a22e3298be1c72b6a6e8120ae3bed
2d1c95bca5693e482fe1e9c03130988f289dceb1
570d418d04d4ff7968efe7e7e9f3b82de3b306a8d7fe2839fca567173c6e353d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:02 GMT
Server: Apache
Link: <https://craftbrand.com.pe/wp-json/>; rel="https://api.w.org/", <https://craftbrand.com.pe/wp-json/wp/v2/pages/2206>; rel="alternate"; type="application/json", <https://craftbrand.com.pe/>; rel=shortlink
Set-Cookie: pll_language=es; expires=Sat, 18-Nov-2023 04:59:03 GMT; Max-Age=31536000; path=/; SameSite=Lax
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Accept-Ranges: none
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/icon?family=Material+Icons&ver=6.1.1
142.250.74.10200 OK 341 B URL HTTP/1.1 fonts.googleapis.com/icon?family=Material+Icons&ver=6.1.1
IP 142.250.74.10:0
Hash 46010be433ab06a22bfca4c2cfb2f970
4a9bde41d3d6fcd07a1f9ea96bd0c30d03046116
7f18f9c052064fae3db4d7d45a6dd023e4f665a4f00908af70bef7561b348405
GET /icon?family=Material+Icons&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 18 Nov 2022 04:59:03 GMT
Date: Fri, 18 Nov 2022 04:59:03 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Overpass%3A300%2C300i%2C400%2C400i%2C500%2C600%2C700&ver=1.0.0
142.250.74.10200 OK 681 B URL HTTP/1.1 fonts.googleapis.com/css?family=Overpass%3A300%2C300i%2C400%2C400i%2C500%2C600%2C700&ver=1.0.0
IP 142.250.74.10:0
Hash 2b5c623230ecdc9a5f9bd911c3a33572
0f6e39dd866634fab6edb4ecfb838ff230613028
2397cb5cd2d8f671887d4e60b5c046ea3e69def1ce7b8b077b725923cf546e12
GET /css?family=Overpass%3A300%2C300i%2C400%2C400i%2C500%2C600%2C700&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 18 Nov 2022 04:59:03 GMT
Date: Fri, 18 Nov 2022 04:59:03 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
craftbrand.com.pe/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.4
108.179.194.18200 OK 1.6 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.4
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13766)
Hash 62a3e8ede9a61445c50a10e5181e7680
9bca5c0ec7116d80be7cb876ff794810e147bab0
af9af8e94ad196859761c5216e8cf46e4e7dc95d7a89a94c91e4ad39a85d6367
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.4 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1608
Keep-Alive: timeout=5, max=75
Content-Type: text/css
craftbrand.com.pe/wp-content/uploads/elementor/css/post-2206.css?ver=1654101784
108.179.194.18200 OK 5.5 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/uploads/elementor/css/post-2206.css?ver=1654101784
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (26364)
Hash 00caca190183677c9eb0c80fccaeb114
3a0e3242655776bf0a8dd7ae29c1be12bcea71bd
f5d16a42c3073ffb80d909c9520adcd80e6dcc12217c94c5371c3e0560b99012
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-2206.css?ver=1654101784 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:03 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5454
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/uploads/elementor/css/post-2631.css?ver=1651601393
108.179.194.18200 OK 2.1 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/uploads/elementor/css/post-2631.css?ver=1651601393
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10715)
Hash db309d1c05da5a697c84a6e81818c137
90d23a59446214ea32de0d77a6a6ad7f64066f25
72ed6c6201b2a7892017682d699254a65747f6ede3de3a1f3f88670d6d00bfe7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-2631.css?ver=1651601393 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2067
Keep-Alive: timeout=5, max=75
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.1.0
108.179.194.18200 OK 1.7 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.1.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5305), with no line terminators
Hash 0332c949167f256eaeb32063c28950ae
55d38da2c11e1b193de19a9fa3a6a275a4accdfe
1c1dcbb08352422a98b8dd9632753b904e9040eea0a538dc2d169935e7fa5fb3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.1.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1723
Keep-Alive: timeout=5, max=75
Content-Type: text/css
craftbrand.com.pe/wp-includes/css/classic-themes.min.css?ver=1
108.179.194.18200 OK 189 B URL HTTP/1.1 craftbrand.com.pe/wp-includes/css/classic-themes.min.css?ver=1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 07:44:15 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 189
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
35.86.38.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.86.38.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kebCgjXTSYjVJtJ4wfIdeQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SFILIqRXQQPoFWSZwuouEWMlMu8=
craftbrand.com.pe/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
108.179.194.18200 OK 18 kB URL HTTP/1.1 craftbrand.com.pe/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (47826)
Hash 9415c9562591af7a582c29139621505f
0b12eecf36a48b871a3198550f4f65bb4a6d9b1b
06c70d3232c2ae3ed2aa259eb7a1beb329b654926813935fffa8902cd5ebaa4a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 15 Nov 2022 20:01:28 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.9.1
108.179.194.18200 OK 3.1 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (17923), with no line terminators
Hash cb050cf785dc6a3154760c12096a2f5c
797c9ea468aa1f60667926bd35bf6874a3e548ea
97ac5d6189e1cdb1d62b676c0769ec783131500f02155eba5b4eae109fe1fa0f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3138
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.1.0
108.179.194.18200 OK 38 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.1.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 74300681965c84df23ed459c0770711c
5b0d3dbae70c03ca8d841033209c86bd72155974
e49010b126502121bf41f9f5bad2d16a6b6e1841e88628f0a5a46cfde9e5a8dc
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.1.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.3
108.179.194.18409 Conflict 83 B URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.3
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.3 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 409 Conflict
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 04:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 04:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-226362097-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-226362097-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 0520507c567b1842ccbfadac460f0f3e
96316f081254f690f0b38c7344c1fba201b3a369
15baff459c7d762d015725a8e093870e03881c646e914da3ad71d2655368f9ab
GET /gtag/js?id=UA-226362097-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Nov 2022 04:59:04 GMT
expires: Fri, 18 Nov 2022 04:59:04 GMT
cache-control: private, max-age=900
last-modified: Fri, 18 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43681
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
craftbrand.com.pe/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.5
108.179.194.18200 OK 17 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.5
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash bb417ec7edb8e1cbfc78598eda32ffbf
e9609f9bdccab27b522bc0e1091fe7d25af394ac
098e4d9a0e07ccc65ea78c9045c28af0dec8ba88cac8ac58f212d8e32dd50c0d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.5 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16941
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/themes/vara/assets/css/magnific-popup.css?ver=1.0.0
108.179.194.18200 OK 2.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/css/magnific-popup.css?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 69a5934a1dea7afb2716521e5ac7cad8
37cf803e263a1a53516aa716a3189a2f503bced4
b70ac9759029eb092ca91a5db43c9731c7dd7f61a400026332ff9a18313a1d00
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/css/magnific-popup.css?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2196
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/themes/vara/assets/css/owl.carousel.min.css?ver=1.0.0
108.179.194.18200 OK 1.1 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/css/owl.carousel.min.css?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3184)
Hash 8110dac83703c6f3bdab05005b338dae
2d7fa29ab9e77366216866a3c399cff917625015
8b88b876325a3b5deaea39fc31f97d9ea452bf5f5a27a4eb0d0cdc5be386fb92
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/css/owl.carousel.min.css?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1142
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=5.9.1
108.179.194.18200 OK 13 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (62789), with no line terminators
Hash 82896daaf5244f88f56a2a05ad01f545
d29b7c23ec5d0c5996138a0191fa8e44ebe01e2d
5a9ff1f54c905da4d01e306753da7a9bd10c98e1e84b5bd89d112567dc687da3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13274
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/themes/vara/assets/css/vara.css?ver=1.0.0
108.179.194.18200 OK 63 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/css/vara.css?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (339)
Hash 0c49b7ac2c1a781c2702e6ffecde982f
3580bd022b26fa04efeafe987239f7027f70eacf
f7baf35f1dd6ed56dc2ebebaccebecc983e8ae776b8be609762bd370a0940263
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/css/vara.css?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/css/select2.css?ver=5.9.1
108.179.194.18200 OK 3.3 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/css/select2.css?ver=5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15057), with no line terminators
Hash f53a21acc2fc016f6bc320c17f9cd46a
ecde2f24e60652eaa040ea0091c56689999292ee
c6bdee7c4048ca4e03a8249b470721fc27f578db4f1e0d6b6d9e31a6b5b037ae
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/css/select2.css?ver=5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3265
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/themes/vara/assets/css/elegant-icons.css?ver=1.0.0
108.179.194.18200 OK 7.0 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/css/elegant-icons.css?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (20670)
Hash af49772b7fa9ba204c08f564ee273458
52a342a3e78a84451914343b84f753a8ba297d9a
0e0529fe143f5b102a7b6e6306be9f983615873d86ab840fd666b299f4cfc979
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/css/elegant-icons.css?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6976
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/themes/vara-child/style.css?ver=6.1.1
108.179.194.18200 OK 166 B URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara-child/style.css?ver=6.1.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 4c082c834a037dab201b8e3ead3aa22a
4ade3c2a5d8b50e2c2ff06f43b977afbbd4e0499
3092bf5631037dda9ce6dbbbdf5703fb1626d4908602caf6ea3e5f647aa8340a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara-child/style.css?ver=6.1.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 166
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.5.3
108.179.194.18200 OK 12 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.5.3
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4fb0795711301ef32d45d6f3fdef07b4
631536b58397ce6a01ea02f5b15bd445176f4a06
9ae496f3fc96cb6feec38d3965fefe4f998320f9a0c92130658d81367a696fa5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.5.3 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12485
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/themes/vara/assets/css/perfect-scrollbar.css?ver=1.0.0
108.179.194.18200 OK 773 B URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/css/perfect-scrollbar.css?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type troff or preprocessor input, ASCII text
Hash 6877f3cb7068e722a78fced42e225b89
6229f733cbe4f8e1d983f9f614b195f22dc341ab
2a89e486d27e997ca623a61f97ef059358eca0615036278839ce0f27bad203f4
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/css/perfect-scrollbar.css?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 773
Keep-Alive: timeout=5, max=75
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.4.2
108.179.194.18200 OK 5.4 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.4.2
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14831), with no line terminators
Hash 640a0eb5cd452a5e6740a134c528d638
c1dc37e640f442f182541f6e6a58c8eb781367b1
81af9214870593190df9de395f51274151c0b57d81e6f8e41e311fcd60f0e56f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.4.2 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5435
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
108.179.194.18200 OK 4.0 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19082)
Hash 1a51c193793d105fc6aaddfc3bc05349
238e509973276daa145be273af1aba0fbb3801bf
69e8578f795564941f826ab314ab57c83da7fb6ca7d9221c8df5f1e9081ae6e3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3978
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/uploads/elementor/css/post-7.css?ver=1651601393
108.179.194.18200 OK 399 B URL HTTP/1.1 craftbrand.com.pe/wp-content/uploads/elementor/css/post-7.css?ver=1651601393
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1567), with no line terminators
Hash 167ac9d8928747c9e35f0ac441ef618b
56a9f695f690e36514d5cca4f667f8a72f4b9e76
9ae8cae96685cfc0f4b75dc9ca03cea1664ed8c15c760dcf7c181575290113d2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-7.css?ver=1651601393 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 399
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/uploads/elementor/css/global.css?ver=1651601394
108.179.194.18200 OK 6.0 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/uploads/elementor/css/global.css?ver=1651601394
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (24955)
Hash 94115b1f4653bae2ec6a8a7e7909aa94
9158d7edd932bce64832adcb8e3854ccb27bed7b
1e5aeeaa2a46f265d8c7e1bd9e5c6e4e25b74f8a12589b98b35cfdeded3011f7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/global.css?ver=1651601394 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6010
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.7
108.179.194.18200 OK 40 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.7
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65493)
Hash 6da1860307af8abbd48f11124baad7b9
07519aa6221018590e65826129bd4b5801bea44d
20181bd0f24e0cc12c042524fbbbc162f1bcc2c246ccf14e7b0080b0be22f983
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.3.7 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/woocommerce-product-addon/css/ppom-style.css?ver=24.6
108.179.194.18200 OK 3.5 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce-product-addon/css/ppom-style.css?ver=24.6
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 60055560933401f1df40690301991fbc
23ca6385433b470bd31299dbaecee5dc74adfe64
136e20f99d075cfe9efe0002c61d0e32a2b4d3684870b2681c7b73c50da64ad2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce-product-addon/css/ppom-style.css?ver=24.6 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3471
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/uploads/elementor/css/post-2583.css?ver=1653100658
108.179.194.18200 OK 789 B URL HTTP/1.1 craftbrand.com.pe/wp-content/uploads/elementor/css/post-2583.css?ver=1653100658
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3316)
Hash 478329397152b18b5de84e8cc2693d85
6aa2f3a422197e3ccc685c9d181729cf0ad3e93f
c9aab8a0c84c1ebae02a8a8a4d0af64103a63dd8bac062566a834deb2a0231ae
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-2583.css?ver=1653100658 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 789
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.4
108.179.194.18200 OK 31 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.4
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65497)
Hash d7e1cf95db237cef4810e5ffac863445
6f507cd81ea1aaa0a1910f27311c4d67443cb72f
408eb0136e179673c5810c4eec1156526ba91a2faa297bef229b8ab524bb4e53
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.4 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
craftbrand.com.pe/wp-content/themes/vara/style.css?ver=6.1.1
108.179.194.18200 OK 935 B URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/style.css?ver=6.1.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 8a2c811e0b5d3338e99dd67dcee335dd
f5abac3d91254e8c12f397a6d4ef47ed294c311a
96ab9a4e3d28299173bd66b7c74ade5bebbcc9ca15ed388000a330e150012c8f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/style.css?ver=6.1.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 935
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.5.3
108.179.194.18200 OK 4.4 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.5.3
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30283), with no line terminators
Hash c2c381b76f533a3992b1060b1e8275ed
8441603d412df07e265d70d72569bd3ed90c51ee
6b1c02e5f7f5a04d0320c0a69a67651c6c322b81dfcf1ad9ca29e0f7374cf613
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.5.3 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4436
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
108.179.194.18200 OK 13 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12577
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
108.179.194.18200 OK 308 B URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 308
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
108.179.194.18200 OK 308 B URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 308
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
108.179.194.18200 OK 39 kB URL HTTP/1.1 craftbrand.com.pe/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash 32f58a61f7c5a7e10f8b2dcf8e9a8e34
865c25589283ab1debd45bdfa6c4d8c6ecf15ad3
481cb2216fbdb0797af8c61b69c0bda2c10d025f7b11f2cdfac382d35dc45d63
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 07:44:15 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 04:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 04:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
craftbrand.com.pe/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.5.3
108.179.194.18200 OK 80 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.5.3
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 6483e25e0edc919aebfb2e9c8293fd3b
b2f6e36c2296003020ad1cd9b3f081ae92851d52
7d2281125f604dd3a68f9d317712033f4f8067341383f127b41a5ae756f9a34a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.5.3 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
craftbrand.com.pe/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
108.179.194.18200 OK 4.6 kB URL HTTP/1.1 craftbrand.com.pe/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.5
108.179.194.18200 OK 56 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.5
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (42889)
Hash 99032018d62f4811390576344b58ccbe
949c8e72b2858776a8617b55b9671976828a42de
0820301f0e717e4fe54b5af464f4a9fcecbf4e46de1975615fc123b2205a04b3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.5 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementskit/widgets/init/assets/css/widget-styles-pro.css?ver=2.6.2
108.179.194.18200 OK 44 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementskit/widgets/init/assets/css/widget-styles-pro.css?ver=2.6.2
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 60050a8d5ce9042ec320ac685464ba71
892ad06c3f0d64eef91d89b737c9ff7b1198114f
fdc6891161a3b97f4023bf6f75a798cd120c5aa4ac57f8616b77c7bfe8dc1172
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementskit/widgets/init/assets/css/widget-styles-pro.css?ver=2.6.2 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e9ce86f0fa5d1b4b015b7c3af40fdb14
d9c31eb3f81e317f0eb111c488961eb8c909afd6
6111b4688995b5e38bb967534e6c13eca51502faf37f807d0f13248ad76486f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6111B4688995B5E38BB967534E6C13ECA51502FAF37F807D0F13248AD76486F9"
Last-Modified: Fri, 18 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21575
Expires: Fri, 18 Nov 2022 10:58:40 GMT
Date: Fri, 18 Nov 2022 04:59:05 GMT
Connection: keep-alive
craftbrand.com.pe/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
108.179.194.18200 OK 5.3 kB URL HTTP/1.1 craftbrand.com.pe/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5321
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e9ce86f0fa5d1b4b015b7c3af40fdb14
d9c31eb3f81e317f0eb111c488961eb8c909afd6
6111b4688995b5e38bb967534e6c13eca51502faf37f807d0f13248ad76486f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6111B4688995B5E38BB967534E6C13ECA51502FAF37F807D0F13248AD76486F9"
Last-Modified: Fri, 18 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 18 Nov 2022 10:59:05 GMT
Date: Fri, 18 Nov 2022 04:59:05 GMT
Connection: keep-alive
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=5.9.1
108.179.194.18200 OK 1.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3287), with no line terminators
Hash 11f7a6ddd7e2e236cd8e226dec51cdfc
153d8e70ee244d351264838750b7234e323b987e
56deb1fee625119e221a50a5c5d9bfa8ec79b54790a373b99b9da6fb2a3d3283
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1150
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=5.9.1
108.179.194.18200 OK 2.3 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7887), with no line terminators
Hash 5ee0a5bb15a0a3016316cc499a4872d5
75ccabaedbc64937c41db46fa04ab962c1ab9c1b
7f5c0290c50ba573d8cb9a62bd8c1bcd4a0de4b2e145f7f5fada7d97392a0ef5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2311
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.4
108.179.194.18200 OK 3.0 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.4
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.4 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2997
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
108.179.194.18200 OK 2.7 kB URL HTTP/1.1 craftbrand.com.pe/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6475), with no line terminators
Hash 45bd1d6f7fc3a4069fc6fd400b90c961
903c7e28c7141e9fc1bdb4dfc62d043a97a01e2d
c638a0057b4be0a61cfb65b1860a855a327397e9871f5dde28fa2f138fb394dc
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2675
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/uploads/elementor/thumbs/smartphone-dos-pqncwkv2i4ccmmzdo5votfpayjjnjkzdflcm0umjb4.png
108.179.194.18200 OK 849 B URL HTTP/2 craftbrand.com.pe/wp-content/uploads/elementor/thumbs/smartphone-dos-pqncwkv2i4ccmmzdo5votfpayjjnjkzdflcm0umjb4.png
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a227793a3fd19b650fcce606e2deb7be
8f191ab387c2bc92d60af2100f1718c02b1b9612
1c526198fc116ad3f0c22ad1ec38c47e36d8daeede9bb3a37e0e3c313a50fb71
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/thumbs/smartphone-dos-pqncwkv2i4ccmmzdo5votfpayjjnjkzdflcm0umjb4.png HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Jun 2022 17:07:09 GMT
accept-ranges: bytes
content-length: 849
content-type: image/png
date: Fri, 18 Nov 2022 04:59:05 GMT
server: Apache
X-Firefox-Spdy: h2
craftbrand.com.pe/wp-content/uploads/elementor/thumbs/image-12-pqncwkv2f1tstdm0nu7wo3zf34nfu5r9tkfg6yaj3u.png
108.179.194.18200 OK 768 B URL HTTP/2 craftbrand.com.pe/wp-content/uploads/elementor/thumbs/image-12-pqncwkv2f1tstdm0nu7wo3zf34nfu5r9tkfg6yaj3u.png
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 398a7dc371c07e6dd88e7b25245dcc10
9ef217d92b74c54e9a56065b3dcf8d4fd26290fe
f2f3eae759ed1e45a3ada7bfbbdbe4b2ae8c199c7dd642375ddf06f3395717dc
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/thumbs/image-12-pqncwkv2f1tstdm0nu7wo3zf34nfu5r9tkfg6yaj3u.png HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Jun 2022 17:07:09 GMT
accept-ranges: bytes
content-length: 768
content-type: image/png
date: Fri, 18 Nov 2022 04:59:05 GMT
server: Apache
X-Firefox-Spdy: h2
craftbrand.com.pe/wp-content/uploads/2022/05/box.svg
108.179.194.18200 OK 464 B URL HTTP/2 craftbrand.com.pe/wp-content/uploads/2022/05/box.svg
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (464), with no line terminators
Hash 7db86dd35a32b69423688cb53aa70687
b15149e65bb2dc10deed3bef18e49be2de18c7d9
b43d9b4b616cbcc3a3d39d3a9435e2490561fd05b831c010c628e83840b110ab
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/05/box.svg HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Jun 2022 16:13:12 GMT
accept-ranges: bytes
content-length: 464
content-type: image/svg+xml
date: Fri, 18 Nov 2022 04:59:05 GMT
server: Apache
X-Firefox-Spdy: h2
craftbrand.com.pe/wp-content/uploads/elementor/thumbs/mail-dos-pqncwkv2i4ccmmzdo5votfpayjjnjkzdflcm0umjb4.png
108.179.194.18200 OK 1.1 kB URL HTTP/2 craftbrand.com.pe/wp-content/uploads/elementor/thumbs/mail-dos-pqncwkv2i4ccmmzdo5votfpayjjnjkzdflcm0umjb4.png
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 576fce7e600579af303fdd21a9f6fc8c
b931192660d8a43a59fe713b522b03d297e973b6
6dad6936180b6f0724cc1aef9ba5ed8f211d20812fcfaf372d0a9a03b4377a3d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/elementor/thumbs/mail-dos-pqncwkv2i4ccmmzdo5votfpayjjnjkzdflcm0umjb4.png HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Jun 2022 17:07:09 GMT
accept-ranges: bytes
content-length: 1131
content-type: image/png
date: Fri, 18 Nov 2022 04:59:05 GMT
server: Apache
X-Firefox-Spdy: h2
craftbrand.com.pe/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
108.179.194.18200 OK 7.6 kB URL HTTP/1.1 craftbrand.com.pe/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 66c68f2158dcf7d97a02f3719a17aab0
fdb04fb4c632b9fb4275006a4e402cd0d4fa393a
e4b360f0e6ae1afc06f05f958e8696e5ae45257912bc2ab0b9334bd1382a51aa
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 07:44:15 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7621
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3
108.179.194.18409 Conflict 83 B URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 409 Conflict
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.5.9.1
108.179.194.18200 OK 4.0 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9151)
Hash 338b374df64ac61f520f0dc2c42f84a4
7f5d52c9681f54bd3adbda325dffaac88b48839f
c411e1e640b16842b6142a6e4db4b7172abedc8740b0944fc7c510c7f8f85609
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3952
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.9.1
108.179.194.18200 OK 1.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 57b5945094a547e06221f8f949e6d335
76fc7361f00684ea29ffbf4b7d46e5429b8c245a
f9d0da987075df31cc4cf8aed46bc193467ce7165568d83c8016e6fe904e72c3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1200
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.5.9.1
108.179.194.18200 OK 1.0 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1668)
Hash 0bebfb5722cbc8ac04e62aa40698be49
3bc5e4f29cb19a2d80d46dee242dabf7e42c0fd3
70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1000
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21171
Expires: Fri, 18 Nov 2022 10:51:56 GMT
Date: Fri, 18 Nov 2022 04:59:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21171
Expires: Fri, 18 Nov 2022 10:51:56 GMT
Date: Fri, 18 Nov 2022 04:59:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21171
Expires: Fri, 18 Nov 2022 10:51:56 GMT
Date: Fri, 18 Nov 2022 04:59:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29c72a34-350b-448d-b69f-b0adfe74dc64.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29c72a34-350b-448d-b69f-b0adfe74dc64.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c96e8dc581a03b62c5f0a7c8ac49916
9051be78c17480c8e5128836c2cda0c6b96b0261
99c330ef89dbe0ac0b957e419e85c2c7de20bb74e6437961f60779410f70ba0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29c72a34-350b-448d-b69f-b0adfe74dc64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14762
x-amzn-requestid: f60d1de2-407f-4e2f-bbb0-750f77d42878
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9VRGlUoAMFSqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ee-1ef9573e23c7774435cbc843;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: q7BJuj9zJGgpNjNWlzye-YAQ6zJrH2_SmycSmPt3YQNCtF8bDPBM3Q==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:04:39 GMT
age: 24866
etag: "9051be78c17480c8e5128836c2cda0c6b96b0261"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.10200 OK 8.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.10:0
Hash 4f3d5f9fb4bd735e06eee309cb120c74
5c8e40382cedfb6b07bd05358fcf584ebd270792
8f40448b382f47d628b542a6af91c9ed5d5b03954295381470c663a257f1fb38
GET /css?family=Roboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 04:59:04 GMT
date: Fri, 18 Nov 2022 04:59:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: 4778d1bd-28c3-4665-89da-046e356087f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyD1HE-oAMF0QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-53c7330c5fd36d3c4d9e6aed;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5zDWKjYmvVLCemXw5Swm2qkhw1mQtD5c07Fl7Krydo_XR5FFyHDu4Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 07:15:37 GMT
age: 78208
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05289172c1455c4134e496c6f4606efd
ce1bb33256b0754f9acc01e7e9f3e5dc85f89244
a8b4411a0310cc376efe2aec7c0830b8d3b63b8827631b0ff43ec092f1f80f82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12065
x-amzn-requestid: 45c97153-71c7-4985-a1ad-fc21a509d153
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-K5FyVIAMFtDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa45-0f9d22dd544a4580570f3089;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dxT2WJB7m5tUhgBn2PwTIN4Zskzm3X7CW-29hl1nCyNPbKt5j6q5iA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:02:57 GMT
age: 24968
etag: "ce1bb33256b0754f9acc01e7e9f3e5dc85f89244"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7d16e5ff718353c095d266b080fe547f
fa7c5c9a1d16355859196271f3d13f3850931888
9a94d8eb20cc56d0898b1e2b80c0006ebbef75c15ad94e907050c5be4e19a960
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10349
x-amzn-requestid: fc85e078-a81a-4fed-899e-15249961f59c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7tHGLIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7d-4224d193517794684fcdc0ad;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UK-XD_8EcfPwfLb-QVwfLr8aG-sqVBoUJcbPb5hKAlQS68eOxdgM5g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:52 GMT
age: 24793
etag: "fa7c5c9a1d16355859196271f3d13f3850931888"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2b71261-68cc-40d8-9fce-033095c5889d.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2b71261-68cc-40d8-9fce-033095c5889d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f22c78eb5d83b4a108e0fff0806ff1a1
7e246b0b4697140ae7429aeff92aa16ab88dd6f6
1afadc1fb89b5a321e067893609c154b6d7dbd39123d15883c799aab6214cd4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2b71261-68cc-40d8-9fce-033095c5889d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9661
x-amzn-requestid: dcff71d8-a6ac-45f2-acc1-e14314334495
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7RHGAIAMFSOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7b-3598a746247615de161878e3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:31 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nNm3mly0cy8etL6Tg2gC2jpSc37d77L8rNny7C5fSTG2jn4zRo04lg==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:49:45 GMT
age: 25760
etag: "7e246b0b4697140ae7429aeff92aa16ab88dd6f6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
craftbrand.com.pe/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.5
108.179.194.18200 OK 114 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.5
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (64270)
Size 114 kB (113582 bytes)
Hash 5872f6d7d0dfa753245feafa688f38fa
e9d0b71356fde1dd9ce6c51578111ee4999efa05
b03820647e1ecd49d69af3c39de9b9218f029186a0470cb5f79fed0df40dddab
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.5 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:04 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
craftbrand.com.pe/wp-content/themes/vara/assets/js/isotope.pkgd.min.js?ver=1.0.0
108.179.194.18200 OK 13 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/js/isotope.pkgd.min.js?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32019)
Hash 79bdc8a5c2a9c6ba42ef1ec8ba415eec
260a40aaafeca5df5fedf236d22dea4d175f1dde
476c850c6c72f0e91c30758823a3e2959dff3c03d30accf5b026422dc824ad65
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/js/isotope.pkgd.min.js?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13105
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/themes/vara/assets/js/packery-mode.pkgd.min.js?ver=1.0.0
108.179.194.18200 OK 5.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/js/packery-mode.pkgd.min.js?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13554)
Hash e3ea0cad9f5bfc717417a855c1fc072b
9a27f7e2b31c114013e0888fce9b441f328186c2
30e87cd2baa3a889b1a62a4a00ab6f9d3a87540f843fb9dbb4fe450d5806e180
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/js/packery-mode.pkgd.min.js?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5154
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/themes/vara/assets/js/jquery.magnific-popup.min.js?ver=1.0.0
108.179.194.18200 OK 9.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/js/jquery.magnific-popup.min.js?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (20087)
Hash 7a10ae63b238729dc4da7f7bd8986219
654c47168dca0ec7080f6c57e8c4482b57f879d4
b782185399b361358f7c409d6f23f22d45f695dcbb63876c35752c7b1de72db3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/js/jquery.magnific-popup.min.js?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9204
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/themes/vara/assets/js/owl.carousel.min.js?ver=1.0.0
108.179.194.18200 OK 16 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/js/owl.carousel.min.js?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31997)
Hash ba78dadb78df59caee0df08562fb49a2
79d2e4dec4a95d1c060bebeb5dc1f808a97c8638
0ba0f2a7cd40e766d612588b3ad57368abc00d60074da1a2d31ac2d7a4bac0c6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/js/owl.carousel.min.js?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15885
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/themes/vara/assets/js/typed.min.js?ver=1.0.0
108.179.194.18200 OK 4.6 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/js/typed.min.js?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11506)
Hash e8d316f27a23460e9b14da724a9838db
6a5584ccfde050db17aa38ab7b56f28366e806c0
c92f1a14f74a45b4b437a0ed3312ac23f1674845efd273e1cff1b0a14e322259
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/js/typed.min.js?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4640
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/themes/vara/assets/js/wow.min.js?ver=1.0.0
108.179.194.18200 OK 3.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/js/wow.min.js?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8385)
Hash 79e31352a6a6b27bc37a564573388e15
2eff861607e5294687ec3f3c85804003d7e12870
31ae6448ce5b8ae0a6a1209ab7fc6542f9ac1eb511c5f7ca3c7ab3fe25f26a1a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/js/wow.min.js?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3202
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/themes/vara/assets/js/theia-sticky-sidebar.js?ver=1.0.0
108.179.194.18200 OK 4.4 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/js/theia-sticky-sidebar.js?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text
Hash 75f7322ed98e5433663c4e15b2a899ab
7ac4172e8a62d652438c3d10b8a1b87375f9fff2
6ed6abd89327753f59810e79d36a995ea36127b6248049270a9cecdca492b537
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/js/theia-sticky-sidebar.js?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4374
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e90a1ef50e5322f618f24eba85f8b4b6
b9e863b504bd2f80754e2d61015eecd8956bcebf
e6bd85419538030717c8f5b70597c609ce84cccb52e429111fe87cf449697877
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=89049
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 04:59:05 GMT
Etag: "6375c9f2-117"
Expires: Sat, 19 Nov 2022 05:43:14 GMT
Last-Modified: Thu, 17 Nov 2022 05:43:14 GMT
Server: nginx
Content-Length: 279
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.9.1
108.179.194.18200 OK 1.1 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2938), with no line terminators
Hash cd0d4a61ea66e2609f7fafca802e10c8
6c2f2a32371a7cb6c34cd0d7abd5ca653058b6e1
21a6739f80cd455c35620bf9869f312c4ff0b7e5d4b6d6cc8401bd5deba54c1a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1093
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 04:59:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e90a1ef50e5322f618f24eba85f8b4b6
b9e863b504bd2f80754e2d61015eecd8956bcebf
e6bd85419538030717c8f5b70597c609ce84cccb52e429111fe87cf449697877
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=89049
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 04:59:05 GMT
Etag: "6375c9f2-117"
Expires: Sat, 19 Nov 2022 05:43:14 GMT
Last-Modified: Thu, 17 Nov 2022 05:43:14 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
craftbrand.com.pe/wp-content/themes/vara/assets/js/headroom.js?ver=1.0.0
108.179.194.18200 OK 3.4 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/js/headroom.js?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash bd9a45866899c93612e74dfdf1796a98
0bb6b4366afc09d6e45afedb6870fc3988fa263a
18bf772cfeca004cc941c3e84235350bb4b7c15c68a31b56f140b27574cf7567
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/js/headroom.js?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3409
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://craftbrand.com.pe
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:34:08 GMT
expires: Thu, 16 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 120297
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 04:59:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/select2/select2.full.min.js?ver=4.0.3-wc.5.9.1
108.179.194.18200 OK 27 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/select2/select2.full.min.js?ver=4.0.3-wc.5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (64065)
Hash 3696225b13d28280cc0506e05f7f2072
40c96856fe50bf85baf276aec8398d0c36a067d3
b5d15b86f75a01c13aacbd4ce7cf8be9a8b455fb424011630d980b9c0b9f02f7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/select2/select2.full.min.js?ver=4.0.3-wc.5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
craftbrand.com.pe/wp-content/themes/vara/assets/js/perfect-scrollbar.min.js?ver=1.0.0
108.179.194.18200 OK 7.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/js/perfect-scrollbar.min.js?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8464)
Hash 8f7be0ebbd49da9539f8ebb2be6bfee9
4fe7b55c6d9096097daab48f4efb8a206c845627
e2f0dc682db63370e8f5b027ea4798559093a1e3395114189a5f5cf65da32e6e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/js/perfect-scrollbar.min.js?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7196
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/themes/vara/assets/js/jQuery.headroom.js?ver=1.0.0
108.179.194.18200 OK 365 B URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/js/jQuery.headroom.js?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash dd0925c42cb9a42516b066b8e2604fe8
61c2169a55a1addef020d76a4736f60f26372cd7
cbc64e4fd8020fd57ec20b51355cbb15dc1ed58eb632fe71cd6cbf8c1252714d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/js/jQuery.headroom.js?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 365
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/themes/vara/assets/js/vara.js?ver=1.0.0
108.179.194.18200 OK 20 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/themes/vara/assets/js/vara.js?ver=1.0.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59508)
Hash f61f679fa4dafbd3fe16978198e320be
53d8ad96af29ec9c8b0ed011843b675380e7feff
9a9c1fc368c99a257ed1311aa7aeba2b4ae6bb82a6a6cc94d6ddd7486355d852
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/vara/assets/js/vara.js?ver=1.0.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.5.3
108.179.194.18200 OK 40 B URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.5.3
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash 94d041d462db321cdb888066586f2068
717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.5.3 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Content-Length: 40
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e90a1ef50e5322f618f24eba85f8b4b6
b9e863b504bd2f80754e2d61015eecd8956bcebf
e6bd85419538030717c8f5b70597c609ce84cccb52e429111fe87cf449697877
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=89049
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 04:59:05 GMT
Etag: "6375c9f2-117"
Expires: Sat, 19 Nov 2022 05:43:14 GMT
Last-Modified: Thu, 17 Nov 2022 05:43:14 GMT
Server: nginx
Content-Length: 279
craftbrand.com.pe/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.5.3
108.179.194.18200 OK 58 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.5.3
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (45027)
Hash 6a8ee0fe4183fa22f6864318f09da0ed
e21277259cf313cdbd4ae6d3089260638c396d1f
3dabf82a56e1d2882b6d52864195fa94d618ed152164022c36c1e5e6f738529b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.5.3 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.4.2
108.179.194.18200 OK 3.0 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.4.2
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7665), with no line terminators
Hash ab40b3ef42ba638ba810c42520dd0edb
59b44a17c02e861b45fc31e0e9d3139b593223fe
6b7a0f12b59b7c938db6b008754337a64f0399550ba27d8ac182bec0cee71a92
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.4.2 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3024
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
108.179.194.18200 OK 9.6 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (25115)
Hash e99001fb08857cb6e0a1688b290f924f
d8f9fcd3ccdcfe0b20ed3d408a48e8e32930c3a9
e5727ab5ba79eabd8400fd8941413d844a55642198770193780558cd2afdfab0
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9638
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.5.9.1
108.179.194.18200 OK 8.6 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (22774), with no line terminators
Hash 45bfcc767f57b2eb2ca7f455522e4607
b0407e76be6f00d1e12797ca94aa2f3e2a4fde45
f0811fe468e16ae778c5f5f6190a4d84a18a58c617944d9bf6b05202ceee73d6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8627
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.5.9.1
108.179.194.18200 OK 1.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2600)
Hash 82d334d0191f63e669e37839ecc8cf50
4d3ef9949112d860962c100d669682bd83c7b2bf
c20723c202cc484a6b9f0e2f07f65145ebccdc1cc90a33cf5937f7644ec2528d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1221
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.5.9.1
108.179.194.18200 OK 4.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (9560)
Hash 71e44ae74ae2f5f32f80fa992d46c696
ec311ac0889ad9d81bb5506c8ee1837912c7f335
91ee25faa6133e150713a2c6dcb6387ab539578fcb42e8f2d2c3644ae6889dcb
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4214
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-includes/js/underscore.min.js?ver=1.13.4
108.179.194.18200 OK 8.3 kB URL HTTP/1.1 craftbrand.com.pe/wp-includes/js/underscore.min.js?ver=1.13.4
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18798)
Hash ac9c7baaab74ef2576932d5798161987
fa202113e12b09696788a7024984879bddd29143
c03d52f8f157e9209646e3e696e9845d7d2b3cf3e73c8204f371b7393e738026
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 07:44:15 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8305
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/uploads/2020/08/craft-gris-1024x654.png
108.179.194.18200 OK 68 kB URL HTTP/2 craftbrand.com.pe/wp-content/uploads/2020/08/craft-gris-1024x654.png
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1024 x 654, 8-bit/color RGBA, non-interlaced\012- data
Hash 327000a48616177c61901c6157f9d139
93e8e553161249d7b8d1fcf1bb6ef8bffa13ba97
55541a01b70f38e1918d7983e291023342ef785b0d73cbaf48bf4a01e3fa9ed9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2020/08/craft-gris-1024x654.png HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Jun 2022 16:13:12 GMT
accept-ranges: bytes
content-length: 68120
content-type: image/png
date: Fri, 18 Nov 2022 04:59:05 GMT
server: Apache
X-Firefox-Spdy: h2
craftbrand.com.pe/wp-includes/js/wp-util.min.js?ver=6.1.1
108.179.194.18200 OK 758 B URL HTTP/1.1 craftbrand.com.pe/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1391)
Hash 60bc75e3b14030c62d9fd3a3d317d8a8
6d919bbd05a3984a8e5e67b693e6d5d41cc885f9
e22df84be1a3ffe3b54352a4a39e14adb3fac69f2ce755e4c7babbc243c5bb4b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 07:44:15 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 758
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=5.9.1
108.179.194.18200 OK 4.5 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13595), with no line terminators
Hash a7678a2219bac92e636580621aaac465
75f418b7f0614812f972b8c1c676ce7975c4ac6d
956689e4f6e951114a6b5bc5cf7d8608e00829910ad1188202399a140500680e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4497
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=5.9.1
108.179.194.18200 OK 2.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (6357), with no line terminators
Hash f76c4eed0c04146c6c8749f80fd0aee7
e9a8de22a259ed0647e2040b52e15347544154a5
e1253d086de6dc3ee950e18b31dbfeee82360f70d169693689d5c39957441ddf
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2178
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.5.9.1
108.179.194.18200 OK 14 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31090)
Hash cc5dc574ee90149f863c1885368422ac
476f14977d4a0c4b48c5e1540c733a167acb258e
d3ee38e5855640af9cd5f88d261ee5e6485980e7b0d823c79ce79d5a691aa270
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14338
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.7
108.179.194.18200 OK 2.6 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.7
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5419)
Hash 6383d957817123530d2c209cc9e3a5dc
1d836c03c11ac6f9b67af0aef456b6410af89e04
6ea36aec6d891de7643f3bc410e111ab2ceeda0800d52520c42ff64cbb5b5fe4
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.7 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2581
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.4
108.179.194.18200 OK 2.3 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.4
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4921)
Hash 7d020a34e237a973f81e36790d7a1bf4
88d384268be9926288690c6cd68bbba4b7d1c452
6be1f636695ba02ffc054502ca782f0fd3685b1e1f64ddae6a5b768f69db56c0
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.4 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2314
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.4
108.179.194.18200 OK 5.7 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.4
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14238)
Hash 755e516a396d5dcef2eec924aa7ce4d7
70e5294714b0d859904bf7bbfcf0459e7c599072
18541171013bb88267a4d73504377ae8b07071f881f9e77fd2c1d3d35895d2c9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.4 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5676
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.7
108.179.194.18200 OK 23 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.7
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (58848)
Hash 2bc1b2569de937ad51e72646b85c768c
27795d02d0b266f6bccee0f9b571f7aaf6463ca6
b9680d8569dff13d12c07a55620e3719ff08bcf3a1b45cd1c537abc63ce9664b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.7 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
108.179.194.18200 OK 3.7 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3747
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
108.179.194.18200 OK 8.3 kB URL HTTP/1.1 craftbrand.com.pe/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:05 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 07:44:15 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8344
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
108.179.194.18200 OK 47 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65280)
Hash 6d3f8ba511b26a2b5e2555673e996be4
d5a3c1ed68beeeafc4da01d71a6b7ce0f19f985e
955d1e858ec91ca4b3f5c845421692afc83dcbca3dd52577f746e18278f45315
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.4
108.179.194.18200 OK 1.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.4
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2577)
Hash 159281ac01a46f042b38d0d44cf3eb7a
54677be6b1cf85899d2ab1a6fada531ca5613d29
0738d3f931e8df2b67f3be1ec216b103560266c56cc38fdafae055bcb807ffea
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.4 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1151
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
108.179.194.18200 OK 4.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10544)
Hash 552977febe8ef2c71b0806dfaefd2552
01baebfd09383c5d44f066e7b5540fcca6a5eae4
7895907f5a4f54c08c4705b1a194e21c556d68027c5e0a70d4c05b377e712b1d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4200
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.4
108.179.194.18200 OK 15 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.4
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (37702)
Hash b371f8745337418c76d8da1bce09024b
2a431cdfbfdeac1b4902729b6da81f120717623b
cf257af34107798df389a979dff2e9ade1a63dfe32f3e85ba8fb27026f765e33
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.4 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14706
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.7
108.179.194.18200 OK 57 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.7
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65493)
Hash 36c0cb74ec1f9cf83aa949c4b9c552e6
1491137c0d7cca693ffd7430510186ae901e3297
12ec83d3d52333b57aff0bfae50b93df644b29efed3982a46f46aaadba22f7c5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.3.7 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.5.3
108.179.194.18200 OK 5.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.5.3
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (16348), with no line terminators
Hash f3930e5f97328bca5a838abc71e89fb9
208ca5498ee55b7aad93dc218d3951882356e79c
00e55c1c4e804ca17596f9b3c38ba86a35681793153b9ad2ce7bfda59e97211f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.5.3 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5235
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementskit/widgets/init/assets/js/elementor.js?ver=2.6.2
108.179.194.18200 OK 6.9 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementskit/widgets/init/assets/js/elementor.js?ver=2.6.2
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19223), with no line terminators
Hash db3b81a4ade38caafe3a5b2997e19821
6394958fe81ac9a4354e6a4834e3119312231e8a
8e7c272606ca7baccb4daf7d054cbda6a7ca2a39e3e1d4ac8680a147cb343128
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementskit/widgets/init/assets/js/elementor.js?ver=2.6.2 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6946
Keep-Alive: timeout=5, max=60
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.6.4
108.179.194.18200 OK 17 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.6.4
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43353)
Hash ca514aba7b165a823e8ac4c5d991b4a7
280bd0f022f233f1e73c172559f682723c2032cb
24b166d2bdaa6f90dad6eac9cb9866cfa8dcb79eab30c3a67d2a6289e98b8a14
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.6.4 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16889
Keep-Alive: timeout=5, max=60
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.7
108.179.194.18200 OK 2.2 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.7
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6595), with no line terminators
Hash 2aa47e22e033b1a04cf09550d521033e
a0cf9de580a0eae9481906f97c1d6b38a0f8cf36
bda46e0dfe6c4c18bc8a9f9562a6e18e4261844d2d39ddcdb8b4c0160d267be7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.3.7 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2153
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: application/javascript
craftbrand.com.pe/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3
108.179.194.18409 Conflict 83 B URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 409 Conflict
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=60
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
108.179.194.18200 OK 13 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: bytes
Content-Length: 13276
Keep-Alive: timeout=5, max=60
Connection: Keep-Alive
Content-Type: font/woff2
region1.google-analytics.com/g/collect?v=2&tid=G-VFBR73BFDV>m=2oeb90&_p=2095437335&gdid=dZTNiMT&cid=101382402.1668747544&ul=en-us&sr=1280x1024&_s=1&sid=1668747544&sct=1&seg=0&dl=http%3A%2F%2Fcraftbrand.com.pe%2F&dt=Inicio%20-%20Craftbrand&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-VFBR73BFDV>m=2oeb90&_p=2095437335&gdid=dZTNiMT&cid=101382402.1668747544&ul=en-us&sr=1280x1024&_s=1&sid=1668747544&sct=1&seg=0&dl=http%3A%2F%2Fcraftbrand.com.pe%2F&dt=Inicio%20-%20Craftbrand&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VFBR73BFDV>m=2oeb90&_p=2095437335&gdid=dZTNiMT&cid=101382402.1668747544&ul=en-us&sr=1280x1024&_s=1&sid=1668747544&sct=1&seg=0&dl=http%3A%2F%2Fcraftbrand.com.pe%2F&dt=Inicio%20-%20Craftbrand&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://craftbrand.com.pe
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://craftbrand.com.pe
date: Fri, 18 Nov 2022 04:59:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
craftbrand.com.pe/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=5.9.1
108.179.194.18200 OK 1.3 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=5.9.1
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7043), with no line terminators
Hash 23030da399d26bb36e2effda3c58d488
2480e4b14c65a29b6013515cea8a55a6646aa85a
026d41f0bbec9c4116e05c06d43d3bbae4e9ec0975f84140565760431eaa88d7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=5.9.1 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1294
Keep-Alive: timeout=5, max=59
Connection: Keep-Alive
Content-Type: text/css
craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
108.179.194.18200 OK 77 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://craftbrand.com.pe/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: bytes
Content-Length: 76764
Keep-Alive: timeout=5, max=59
Connection: Keep-Alive
Content-Type: font/woff2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 18 Nov 2022 04:41:09 GMT
expires: Fri, 18 Nov 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 1077
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
craftbrand.com.pe/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e
108.179.194.18200 OK 443 kB URL HTTP/1.1 craftbrand.com.pe/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 442864, version 1.0\012- data
Size 443 kB (442864 bytes)
Hash fd4a1534fca171a46ef07ffca631465e
14c7b48fd5e85e3e375f721299da885330e95152
7659fa917839f5a43c0141f18cad5181d379bdb86a5923e15f5167a307107e2f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://craftbrand.com.pe/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.5.3
Cookie: pll_language=es
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 16:13:12 GMT
Accept-Ranges: bytes
Content-Length: 442864
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: font/woff
craftbrand.com.pe/wp-content/uploads/2021/12/cropped-CraftBrand-%E2%94%82-Logo01-192x192.png
108.179.194.18200 OK 7.9 kB URL HTTP/2 craftbrand.com.pe/wp-content/uploads/2021/12/cropped-CraftBrand-%E2%94%82-Logo01-192x192.png
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash a28939af7335d496ede13f9b4f8dcc48
ed91b8ebdaf7380c64e98c0d026e1f1461cd9425
b27010dc1317e0f6ffa9c342966710057b502e598e22d9753d3b133377538e2f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/12/cropped-CraftBrand-%E2%94%82-Logo01-192x192.png HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Jun 2022 16:13:12 GMT
accept-ranges: bytes
content-length: 7918
content-type: image/png
date: Fri, 18 Nov 2022 04:59:06 GMT
server: Apache
X-Firefox-Spdy: h2
craftbrand.com.pe/wp-content/uploads/2021/12/cropped-CraftBrand-%E2%94%82-Logo01-32x32.png
108.179.194.18200 OK 889 B URL HTTP/2 craftbrand.com.pe/wp-content/uploads/2021/12/cropped-CraftBrand-%E2%94%82-Logo01-32x32.png
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 35b684ad72576270f69d3ba9f621f837
a215451ab4ea80374111663c6cf58a55dd595764
c42a991d59501540fcbfe55e51b6a854dd8004748ea3492ec2b0003345f372c8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/12/cropped-CraftBrand-%E2%94%82-Logo01-32x32.png HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Jun 2022 16:13:12 GMT
accept-ranges: bytes
content-length: 889
content-type: image/png
date: Fri, 18 Nov 2022 04:59:06 GMT
server: Apache
X-Firefox-Spdy: h2
craftbrand.com.pe/?wc-ajax=get_refreshed_fragments
108.179.194.18200 OK 439 B URL HTTP/1.1 craftbrand.com.pe/?wc-ajax=get_refreshed_fragments
IP 108.179.194.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JSON data\012- , ASCII text, with very long lines (1073), with no line terminators
Hash ebbc7d271e3b7edc29867877d699304c
088853a80f650df2325aecc7e3fcf6ea13242965
addbf2533f8e16944e43c23d2fa62a56da0417da3e02463b3b36b2ba7784ee8a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: craftbrand.com.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://craftbrand.com.pe
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Cookie: pll_language=es; _ga_VFBR73BFDV=GS1.1.1668747544.1.0.1668747544.0.0.0; _ga=GA1.1.101382402.1668747544
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 04:59:06 GMT
Server: Apache
Access-Control-Allow-Origin: http://craftbrand.com.pe
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Robots-Tag: noindex
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 439
Keep-Alive: timeout=5, max=59
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://craftbrand.com.pe
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 18:53:49 GMT
expires: Thu, 16 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 122718
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gradastudio.com/vara/wp-content/uploads/sites/5/2020/08/layers-1.svg
172.67.149.98200 OK 0 B URL HTTP/2 gradastudio.com/vara/wp-content/uploads/sites/5/2020/08/layers-1.svg
IP 172.67.149.98:0
GET /vara/wp-content/uploads/sites/5/2020/08/layers-1.svg HTTP/1.1
Host: gradastudio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://craftbrand.com.pe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 04:59:05 GMT
content-type: image/svg+xml
last-modified: Fri, 21 Aug 2020 03:46:11 GMT
vary: Accept-Encoding
etag: W/"5f3f4383-16f"
expires: Sun, 04 Dec 2022 19:00:43 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 117975
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z9OvVNPLPSJcWuf08x27zvCJv8fikWIhInvY58lST%2FyE1Isja5rDPC09M2uKVniq9q9fJ9%2FZfCpNt3NrvjujAH%2BCrFgLM2c52gMTV9PoTRynfgifVK47dmPR%2FqXnzxydxpw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76be227f8b1bfac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2