r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9447
Expires: Sat, 26 Nov 2022 22:06:38 GMT
Date: Sat, 26 Nov 2022 19:29:11 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3658
Cache-Control: max-age=144175
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 19:29:11 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 11:32:06 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ofertasblackfriiday.com/
65.108.254.144200 OK 30 kB IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7093)
Hash e3f6a7c8ef57dca9c147e74dac60c915
9afe24ea2e9910530b7793b019c33b3c0b8f3c0a
0f9674ad4f0a93a61a27b116c0800d2c4f293640cfa9cd4c08fe5c9b55aca99b
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET / HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://ofertasblackfriiday.com/wp-json/>; rel="https://api.w.org/", <https://ofertasblackfriiday.com/wp-json/wp/v2/pages/34>; rel="alternate"; type="application/json", <https://ofertasblackfriiday.com/>; rel=shortlink
vary: Accept-Encoding
x-litespeed-cache: hit
content-encoding: gzip
content-length: 30173
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 19:17:33 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 698
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10124
Expires: Sat, 26 Nov 2022 22:17:55 GMT
Date: Sat, 26 Nov 2022 19:29:11 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qtntdq2ofGQzx200ZDPEbwjXxf8IlGnBldVefb1D6ndFimrJR40bOLCDqnTjZjkWsqe7RGsW5ZE=
x-amz-request-id: 3DHFCW03XF8NFHS2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 18:44:20 GMT
age: 2691
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 19:29:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/minmax-quantity-for-woocommerce/css/shop.css?ver=1.3.2.4
65.108.254.144200 OK 164 B URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/minmax-quantity-for-woocommerce/css/shop.css?ver=1.3.2.4
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 881a31cba386f72fe36c0f19e1cd121e
9cc832830712e7b6483ab6dab7c3a401792b8391
d33f6f574fc0408a8f39bf8e7f84f88de677d334543d20187a1f8a60e0da769b
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/plugins/minmax-quantity-for-woocommerce/css/shop.css?ver=1.3.2.4 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "1b8-63082d83-17687c;br"
last-modified: Fri, 26 Aug 2022 02:18:43 GMT
content-type: text/css
content-length: 164
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6.1
65.108.254.144200 OK 849 B URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
Hash 609623ebf891eb69f49fa3bda5c5ae25
a2d4efea962799411d1fb0124e92b6c1263d79aa
0013f6b13fab28af9cc648227a1fda28b2ded32c0df6a825810c8053b23d4770
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "aab-62967538-157a24;br"
last-modified: Tue, 31 May 2022 20:06:16 GMT
content-type: text/css
content-length: 849
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.2
65.108.254.144200 OK 824 B URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.2
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
Hash 53b5d403730a42c086a321f170062db7
4daf443e7ce24df8bca8e48cf5f97203411592df
9c9851ab60da125468cb26b8be0f6482a1205b626e0a3ca5fe0de4b713579caf
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.2 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "c22-6296cad8-157ab4;br"
last-modified: Wed, 01 Jun 2022 02:11:36 GMT
content-type: text/css
content-length: 824
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.1.2
65.108.254.144200 OK 4.1 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.1.2
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
Hash a4d48a15ebfaeb04ef0a1b7336869d3a
99658d3e87417e41e4c83d04fb994092854d153a
142d2a051eff091df0871616d3a28ec712adc4928b9d13ad17e3064e6fe82e0c
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.1.2 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "6a71-6296cad8-157ab3;br"
last-modified: Wed, 01 Jun 2022 02:11:36 GMT
content-type: text/css
content-length: 4092
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/woo-add-to-cart-text-change/css/style.css?ver=1.0
65.108.254.144200 OK 181 B URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/woo-add-to-cart-text-change/css/style.css?ver=1.0
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash f2d217654e4aa0748c80ab27f174b066
21084059cba1466b1a77399e1077508c81b510e3
6c973f370c6ccaa7831ee999ca398dd154245a3d360a01e10b12261456174f32
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/plugins/woo-add-to-cart-text-change/css/style.css?ver=1.0 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "1f6-62ad5420-176930;br"
last-modified: Sat, 18 Jun 2022 04:27:12 GMT
content-type: text/css
content-length: 181
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/woocommerce-mercadopago/assets/css/global.min.css?ver=5.7.6
65.108.254.144200 OK 317 B URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/woocommerce-mercadopago/assets/css/global.min.css?ver=5.7.6
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (767), with no line terminators
Hash a291130bc890f59aa3512db05afc0fb9
5c6642586e944316ffe30ecced7f6b1eb40a39a6
332d2e55360711ef2725056a9826587c8cbf95a03f4975156503852bd81f3f7a
GET /wp-content/plugins/woocommerce-mercadopago/assets/css/global.min.css?ver=5.7.6 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "2ff-6297779d-1769ff;br"
last-modified: Wed, 01 Jun 2022 14:28:45 GMT
content-type: text/css
content-length: 317
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.css?ver=3.10.2
65.108.254.144200 OK 1.0 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.css?ver=3.10.2
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
Hash 44b7508f9dc9d7b13265132727cb430e
dbeab35f3cbc4ff5a72e44716027a542bc2a4764
9a44c868928f5b9f6a56df1aaff93fb118fbeecfca52a49a30578a0da3c2b182
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.css?ver=3.10.2 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "f67-629674cd-1b520a;br"
last-modified: Tue, 31 May 2022 20:04:29 GMT
content-type: text/css
content-length: 1042
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.15.5
65.108.254.144200 OK 30 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.15.5
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 93a73b3e455b17fa9810c94be41f8bbe
689ccc89d544ea3fffedf1e95409643fbe96d7f4
cc3d6df6f6298fc9f1dc685a35bba95a6d4b457edfc098fcb163b0290ec2ca03
GET /wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.15.5 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "2b751-629674cc-1b4ba6;br"
last-modified: Tue, 31 May 2022 20:04:28 GMT
content-type: text/css
content-length: 29661
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.15.5
65.108.254.144200 OK 5.2 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.15.5
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (23988), with no line terminators
Hash d0390faca4d84f913b69c86162a72c56
77c9e158129639a7df78b0ccb596142d5c8ba04f
cc3f77f1f149be2f313eeb9ab8c0e62f03ea7da0ffd0511a9e22417d2b9d8d35
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.15.5 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "5db7-629674cc-1b4ba5;br"
last-modified: Tue, 31 May 2022 20:04:28 GMT
content-type: text/css
content-length: 5190
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/style.css?ver=3.15.5
65.108.254.144200 OK 274 B URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/style.css?ver=3.15.5
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
Hash 4c6c9bcd37ecb771a71807fa37ce7551
23f2f9d421d0584e6a00f332f6f631daa28a26dc
c564fe9118e75ca53e999b52c1c79b6e551a6a909c483bcd7f4798245cf4d504
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/themes/flatsome/style.css?ver=3.15.5 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "274-629674cb-157b98;br"
last-modified: Tue, 31 May 2022 20:04:27 GMT
content-type: text/css
content-length: 274
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
65.108.254.144200 OK 30 kB URL HTTP/2 ofertasblackfriiday.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65447)
Hash b40fb9fe7e58ef64962baf56f90a40ab
cce116673633bf6862f084fdd8fb7840aa0545fe
34166ef654e1cadd20263c5bf7d770c40848f13652487a46e85feec43e5bf0a3
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "15e54-636219f8-1b7321;br"
last-modified: Wed, 02 Nov 2022 07:19:20 GMT
content-type: application/x-javascript
content-length: 30176
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
65.108.254.144200 OK 4.0 kB URL HTTP/2 ofertasblackfriiday.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (11126)
Hash e32c5db077b45cddc36bbdec187ba4c4
dfdbe8e2f28238b3a218785514a452884aa789a8
51bd9696f8c91a26501c40b40842e759b5cbcd352b3ce7d1f6875996abec46f6
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "2bd8-629669f0-1b7319;br"
last-modified: Tue, 31 May 2022 19:18:08 GMT
content-type: application/x-javascript
content-length: 3992
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.2
65.108.254.144200 OK 7.1 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.2
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
Hash 162000d19cf2dcd560dee4dd4758a232
e07589b935327eb4bf883d31438cb894ed7b8aa8
850a16bfbe8c8f5b61b7a0e8c501c8f6ee2536cbad1550881c840664f0810d67
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.2 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "8583-6296cad8-157ab8;br"
last-modified: Wed, 01 Jun 2022 02:11:36 GMT
content-type: application/x-javascript
content-length: 7141
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/minmax-quantity-for-woocommerce/js/frontend.js?ver=6.1.1
65.108.254.144200 OK 148 B URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/minmax-quantity-for-woocommerce/js/frontend.js?ver=6.1.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 6380fa815ad60efd997a51d66d5ab2c6
e65aa47521be044f6667d73bd29ceeb89c8d6273
4818636842c351e55c36b66d8bb2eb5ad7360ea2a88ad83490ccf2274f552c9d
GET /wp-content/plugins/minmax-quantity-for-woocommerce/js/frontend.js?ver=6.1.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "94-63082d83-176885;;;"
last-modified: Fri, 26 Aug 2022 02:18:43 GMT
content-type: application/x-javascript
content-length: 148
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/11/magalu-black-1.png
65.108.254.144200 OK 34 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/11/magalu-black-1.png
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 448 x 113, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ecc22373e156b77d943ff5f00d39e6f
1d7963426c7a08f0b0dc77e6dba41bb90a6bb0a4
60e5e7a1e0ec13a2d318647a3f2019ca503f4a5fe06c3e4762110621376ccec8
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/11/magalu-black-1.png HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "8513-638005de-1b6de4;;;"
last-modified: Fri, 25 Nov 2022 00:01:34 GMT
content-type: image/png
content-length: 34067
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/Captura-da-Web_12-4-2022_202848_www.bing_.com_-1-300x300.jpeg
65.108.254.144200 OK 10 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/Captura-da-Web_12-4-2022_202848_www.bing_.com_-1-300x300.jpeg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 535b1b80baccc816c11e2bb78e2dcb69
ddd109ca528c3ef57b711a6ac743078ee476d685
7e107d0a4a5032375b58992ee34572eb80a57d13918e3b2678c2e56c47e295c8
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/uploads/2022/06/Captura-da-Web_12-4-2022_202848_www.bing_.com_-1-300x300.jpeg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "2823-62ad1e6b-1b56e1;;;"
last-modified: Sat, 18 Jun 2022 00:38:03 GMT
content-type: image/jpeg
content-length: 10275
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/11/5422207010_1SZ-300x300.webp
65.108.254.144200 OK 19 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/11/5422207010_1SZ-300x300.webp
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7ad68ea892bf8c77bc7393377ae33fa4
ae7357cd19cd4c9650d720afb53b667cbfae7f7c
f219a35f9d767c005e3b35b09f3d16103f3633ed7ce5a2ce6485b7ca974eacec
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/uploads/2022/11/5422207010_1SZ-300x300.webp HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "48dc-6380144d-1b6d5d;;;"
last-modified: Fri, 25 Nov 2022 01:03:09 GMT
content-type: image/webp
content-length: 18652
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/kit-4-pneus-aro-13-goodyear-direction-touring-175-70r13-82t-sl-8ae44d99-2-300x300.jpg
65.108.254.144200 OK 22 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/kit-4-pneus-aro-13-goodyear-direction-touring-175-70r13-82t-sl-8ae44d99-2-300x300.jpg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 5ab2d9582475d4dac547905a9b788e95
e0d8c655074981bb6226b91172c91455fa7d9bbc
a7da92ef51201c45b007eb9fb0dfdfb98935cbdbad1c2780574886a04b3ae761
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/06/kit-4-pneus-aro-13-goodyear-direction-touring-175-70r13-82t-sl-8ae44d99-2-300x300.jpg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "5597-62ad1bae-1b6166;;;"
last-modified: Sat, 18 Jun 2022 00:26:22 GMT
content-type: image/jpeg
content-length: 21911
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/iphone-12-pro-apple-256gb-dourado-tela-61-camera-tripla-12mp-ios-cdb891c0-2-300x300.jpg
65.108.254.144200 OK 9.8 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/iphone-12-pro-apple-256gb-dourado-tela-61-camera-tripla-12mp-ios-cdb891c0-2-300x300.jpg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 369f3868d87d9bc2587d45ca2e87d5e2
299bd7ba9637d95bc9c55dcb7183d1000dcd2175
9becef745f891ad98246749d3037d0d7c8de1139b4cc874cda39af83ca541c58
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/06/iphone-12-pro-apple-256gb-dourado-tela-61-camera-tripla-12mp-ios-cdb891c0-2-300x300.jpg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "265d-62ad1b93-1b6101;;;"
last-modified: Sat, 18 Jun 2022 00:25:55 GMT
content-type: image/jpeg
content-length: 9821
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/Captura-da-Web_14-4-2022_94330_-300x300.jpeg
65.108.254.144200 OK 6.3 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/Captura-da-Web_14-4-2022_94330_-300x300.jpeg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 434e2e599ed101dafa5d59613ec8b75a
78aeba926ae508e3bcfe34885a818db1abd2b1ff
ae3853a0c504de7011ff74a934a6cee4e6499932fd6e3ba230ce0f38556ba897
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/uploads/2022/06/Captura-da-Web_14-4-2022_94330_-300x300.jpeg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "18be-62ad23be-1b5993;;;"
last-modified: Sat, 18 Jun 2022 01:00:46 GMT
content-type: image/jpeg
content-length: 6334
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/bicicleta-x-tuff25-freeride-aro-26-viking-fd2942e3-2-300x300.jpg
65.108.254.144200 OK 14 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/bicicleta-x-tuff25-freeride-aro-26-viking-fd2942e3-2-300x300.jpg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash cdf70b4e04cad57cd0749b5025524ec6
5c45fa2da31d86f2e19bac76474fbd11bbb88d7d
9454ed9b4d77762edbf8dda8ff230ff2eeb3f206904410873c1c879c5f7012f7
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/06/bicicleta-x-tuff25-freeride-aro-26-viking-fd2942e3-2-300x300.jpg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "37e0-62ad1a44-1b5bd5;;;"
last-modified: Sat, 18 Jun 2022 00:20:20 GMT
content-type: image/jpeg
content-length: 14304
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/Captura-da-Web_13-4-2022_185720_-1-300x300.jpeg
65.108.254.144200 OK 8.0 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/Captura-da-Web_13-4-2022_185720_-1-300x300.jpeg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 55e68b16fe82ad0816f97f351e7d48a1
571e83183c55ffcd2e52e83a906bf75051b42369
9bc024de93b2ad38d1bed03494d128cdbdec599828f5ec41035b6e1be6eb3c4b
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/uploads/2022/06/Captura-da-Web_13-4-2022_185720_-1-300x300.jpeg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "1f3e-62ad1eb1-1b581c;;;"
last-modified: Sat, 18 Jun 2022 00:39:13 GMT
content-type: image/jpeg
content-length: 7998
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/Captura-da-Web_12-4-2022_231311_-1-300x300.jpeg
65.108.254.144200 OK 13 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/Captura-da-Web_12-4-2022_231311_-1-300x300.jpeg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash acb46f6db371a3fc387585876ba2a6d9
38a90f06b0825fc0787107f9098c52d340d47f24
38c0991c25dbdfda803f2b8783b0c0b909dd987cfca0a4c87fbee8c948695cc8
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/uploads/2022/06/Captura-da-Web_12-4-2022_231311_-1-300x300.jpeg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "331a-62ad1e7c-1b5751;;;"
last-modified: Sat, 18 Jun 2022 00:38:20 GMT
content-type: image/jpeg
content-length: 13082
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/panela-de-pressao-eletrica-philco-5l-multifuncional-digital-gold-2d6ae2d9-2.jpg
65.108.254.144200 OK 11 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/panela-de-pressao-eletrica-philco-5l-multifuncional-digital-gold-2d6ae2d9-2.jpg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 196x196, components 3\012- data
Hash 015ec7fcd3e168d67806a5e0428980f3
79de861e9bdcfc6dba6b57db27d4a2e10e39e9cd
f50f3db5b55f3b05df9ba5b96f2280dbbfaf2e56fd8c57b86c923d8859225b34
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/06/panela-de-pressao-eletrica-philco-5l-multifuncional-digital-gold-2d6ae2d9-2.jpg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "2ae2-62ad1c56-1b63cc;;;"
last-modified: Sat, 18 Jun 2022 00:29:10 GMT
content-type: image/jpeg
content-length: 10978
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/jogo-de-ferramentas-com-maleta-dobravel-121-pecas-fm-02-mondia-be184e44-2-300x300.jpg
65.108.254.144200 OK 27 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/jogo-de-ferramentas-com-maleta-dobravel-121-pecas-fm-02-mondia-be184e44-2-300x300.jpg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash e03715fb2ca59d2c4a1580e86b90718d
54a7b59d1e7402cc11480bc04b4e07181b756618
d67cc1d5497d62ae9e1db507a747c506c94bc087225dd8cabc03805c1555830e
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/06/jogo-de-ferramentas-com-maleta-dobravel-121-pecas-fm-02-mondia-be184e44-2-300x300.jpg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "6893-62ad1ba7-1b6149;;;"
last-modified: Sat, 18 Jun 2022 00:26:15 GMT
content-type: image/jpeg
content-length: 26771
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/cadeira-gamer-verde-e-preto-healer-strike-reclinavel-giratoria-f07f7082-2-300x300.jpg
65.108.254.144200 OK 9.4 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/cadeira-gamer-verde-e-preto-healer-strike-reclinavel-giratoria-f07f7082-2-300x300.jpg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 6ad2523bc520d927bd8aa88fe4f22b9d
2c53850852a6fb29b383492f780eff5dca5cd727
873c86a5f6d29537a7a74d6253b2388845467df1fbd2e955d242bfbda6ad6200
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/06/cadeira-gamer-verde-e-preto-healer-strike-reclinavel-giratoria-f07f7082-2-300x300.jpg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "248b-62ad1a4b-1b5bef;;;"
last-modified: Sat, 18 Jun 2022 00:20:27 GMT
content-type: image/jpeg
content-length: 9355
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/guarda-roupa-casal-6-portas-6-gavetas-urban-moveis-lopas-carvalho-cc276bd5-2-300x300.jpg
65.108.254.144200 OK 12 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/guarda-roupa-casal-6-portas-6-gavetas-urban-moveis-lopas-carvalho-cc276bd5-2-300x300.jpg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 295b7d482241fa56bbea286522ae63f3
2de7190455a96a66469d5c9cdc212fcf6cad4c9f
dd8802a174905b645dd91f54e68e2fc8917c5eb8e6d91c489ea2801053932ec5
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/06/guarda-roupa-casal-6-portas-6-gavetas-urban-moveis-lopas-carvalho-cc276bd5-2-300x300.jpg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "3062-62ad1b6b-1b6018;;;"
last-modified: Sat, 18 Jun 2022 00:25:15 GMT
content-type: image/jpeg
content-length: 12386
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/relogio-smartwatch-iwo-13-pro-44mm-tela-infinita-azul-989609b2-2.jpg
65.108.254.144200 OK 14 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/relogio-smartwatch-iwo-13-pro-44mm-tela-infinita-azul-989609b2-2.jpg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 206x245, components 3\012- data
Hash 69b87413257304e2a13fe8d3fec6a3c7
09c30f4e247ef4ec1cb783307374f5e43f20997c
cf275aa319cee6075bb5b9ba4d7a7ae2e8870e40640a9992f0d9ab8289f9f020
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/06/relogio-smartwatch-iwo-13-pro-44mm-tela-infinita-azul-989609b2-2.jpg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "34ea-62ad1d22-1b6691;;;"
last-modified: Sat, 18 Jun 2022 00:32:34 GMT
content-type: image/jpeg
content-length: 13546
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/06/bandeiras.png
65.108.254.144200 OK 83 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/06/bandeiras.png
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 2208 x 217, 8-bit/color RGB, non-interlaced\012- data
Hash c809cacf977a4ed812344a7e0e433931
89f0ab3c445068b2a856a7e5e00f6781accea199
4e6fff8509972d9789214596f9c8d3bd50227cab25d5458c4e8a9eba8b8cb2b2
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/06/bandeiras.png HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "145d1-62ae191a-1b5b45;;;"
last-modified: Sat, 18 Jun 2022 18:27:38 GMT
content-type: image/png
content-length: 83409
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-table.css?ver=2.1.2
65.108.254.144200 OK 1.6 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-table.css?ver=2.1.2
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (401)
Hash 4f58560e1732d70314d8c96c6e39f302
d90aeea4550571774fa68e41e6a5921ae6d21e3d
be45c67aa2f114b96f0e15b6f878df3d0e5a8e3e6ae0ae0265652e624a19f98c
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-table.css?ver=2.1.2 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "17e1-6296cad8-157ab5;br"
last-modified: Wed, 01 Jun 2022 02:11:36 GMT
content-type: text/css
content-length: 1606
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
65.108.254.144200 OK 2.4 kB URL HTTP/2 ofertasblackfriiday.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (6475), with no line terminators
Hash 6fc7f6a64943fb700809729d3bd733b4
5f794ac00a49aa543c1f9c3eb7b1d20bc797e6f2
3101fde9e69cf266ba9486abd29a0f82fa43e6d3bebd43218b6d3f9c0fd903bc
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "194b-629669f0-1b72ff;br"
last-modified: Tue, 31 May 2022 19:18:08 GMT
content-type: application/x-javascript
content-length: 2356
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
65.108.254.144200 OK 6.3 kB URL HTTP/2 ofertasblackfriiday.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 3c6659fbb66ea33733c0f42ba480920b
324c2181a146a348ec1a7ef99a7746f669bfefa0
bb68c0faf97a89bbf27bdf885d2625163133ec25df932577fa31d3438bff5633
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "459f-636219f8-1b730f;br"
last-modified: Wed, 02 Nov 2022 07:19:20 GMT
content-type: application/x-javascript
content-length: 6323
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1
65.108.254.144200 OK 3.1 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash df7309fac279cc898e23454891c73e2b
0acad8c9fbf0559b2975de7789b94c014bf20e8a
f1f80500471714244953fb34d4437e2be32588eb744052c3fcee46574b1444ae
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "25f8-62967538-157a26;br"
last-modified: Tue, 31 May 2022 20:06:16 GMT
content-type: application/x-javascript
content-length: 3058
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.5.1
65.108.254.144200 OK 3.2 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.5.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (9139)
Hash 1568b99f07913ca659def1bd41b1f3a8
ce9af5a089469d24dbedf6c6316f5379974d50d6
a9809afb7b4ce99d60ec7295b1a3316b0bac864399fe3356f7b3d164389757cd
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.5.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "253d-62967549-176d14;br"
last-modified: Tue, 31 May 2022 20:06:33 GMT
content-type: application/x-javascript
content-length: 3239
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.5.1
65.108.254.144200 OK 900 B URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.5.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1668)
Hash 766c1682fc69065285c6fb14d98c6422
f502cfb48c7fee56d9c5dbfe91be523e51c69979
bd9bccee9b99dbff696c30578b7e3157f90c5467f0af041d6aa562adcfd88b4c
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.5.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "72a-62967549-176d2d;br"
last-modified: Tue, 31 May 2022 20:06:33 GMT
content-type: application/x-javascript
content-length: 900
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.5.1
65.108.254.144200 OK 679 B URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.5.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2139), with no line terminators
Hash c00f1cd43510ba42a921e0bb59ea8e87
42c210ed2474a5ec4a01dabede23bdb137dfbfb1
29661345e1828835312338355eda1d96c00d144f9cb0d833842744c82bd6f9d6
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.5.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "85b-62967549-176d12;br"
last-modified: Tue, 31 May 2022 20:06:33 GMT
content-type: application/x-javascript
content-length: 679
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.5.1
65.108.254.144200 OK 935 B URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.5.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2938), with no line terminators
Hash 2a2becb166d808fb38698cc9b9704de5
8d8d30366901f99d4a82aa2937811c74f55c53c4
ef4fef6bcb1b701eab018e145e58ebdad8e36ad062294dbcaa2639ee82fc3e2a
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.5.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "b7a-62967549-176cfc;br"
last-modified: Tue, 31 May 2022 20:06:33 GMT
content-type: application/x-javascript
content-length: 935
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/ean-for-woocommerce/includes/js/alg-wc-ean-variations.min.js?ver=4.1.2
65.108.254.144200 OK 290 B URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/ean-for-woocommerce/includes/js/alg-wc-ean-variations.min.js?ver=4.1.2
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (855), with no line terminators
Hash 5d14037a22922942ae33bd122a0de1a6
23a350d1a442107e611593e439293953cb54d8c4
56dd9cf7ad1ebef60d7ea70af0513d9726bf3c96bea037880a924a269d3909d6
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/plugins/ean-for-woocommerce/includes/js/alg-wc-ean-variations.min.js?ver=4.1.2 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "357-62acedfd-157ad9;br"
last-modified: Fri, 17 Jun 2022 21:11:25 GMT
content-type: application/x-javascript
content-length: 290
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
65.108.254.144200 OK 669 B URL HTTP/2 ofertasblackfriiday.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1464)
Hash 28e2c5bc3240ea6352fa08c118639748
0f3ce3fac80cefc0220eeae7eaa10e99871b1588
cd63ebd74665f3c1adfb647ea7ab426b0354fe9bd8fc44937eae9365b6324cb4
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "5db-629669f0-1b7237;br"
last-modified: Tue, 31 May 2022 19:18:08 GMT
content-type: application/x-javascript
content-length: 669
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/flatsome.js?ver=8d32fe071187c00e5c8eae51dcdefdd9
65.108.254.144200 OK 15 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/flatsome.js?ver=8d32fe071187c00e5c8eae51dcdefdd9
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (55672), with no line terminators
Hash 16e91cc045771595f47636652639fc86
2bfe169786130f517eef192eba4ea1ddb92baf61
f9aebcecaf87c8041950d8f8239b85876f40c04e9eed88f4be4daf2e032f941a
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/themes/flatsome/assets/js/flatsome.js?ver=8d32fe071187c00e5c8eae51dcdefdd9 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "d978-629674cc-1b4c38;br"
last-modified: Tue, 31 May 2022 20:04:28 GMT
content-type: application/x-javascript
content-length: 15384
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 19:29:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ofertasblackfriiday.com/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.js?ver=3.10.2
65.108.254.144200 OK 620 B URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.js?ver=3.10.2
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
Hash 4a586100191a207b994ed00695ed285a
3d1f3640bd0b6538fbe8f4f2f98dedf0c29a0bd8
3adb84d2ff33c348ee9fe67198fac600e2c99d42006fc138f6bfbf7a2ec52f65
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.js?ver=3.10.2 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "7c5-629674cd-1b520b;br"
last-modified: Tue, 31 May 2022 20:04:29 GMT
content-type: application/x-javascript
content-length: 620
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.15.5
65.108.254.144200 OK 4.8 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.15.5
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (12801)
Hash a5c26ff25125f2bc99c169a364bd91e5
423f0b7008787e252f113152a3be76124243b301
d4ab38b3889faa6f49111b776546a37428cb248f6e71ea75a0d27e22ed062ecb
GET /wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.15.5 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "3e58-629674cd-1b51dc;br"
last-modified: Tue, 31 May 2022 20:04:29 GMT
content-type: application/x-javascript
content-length: 4838
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=7a63f7aa2c4bbf851812535d8e4e7958
65.108.254.144200 OK 5.8 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=7a63f7aa2c4bbf851812535d8e4e7958
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (18420), with no line terminators
Hash 6eda2d759966f1e6b83ff31039729255
b5c04098652a086191b8644c5dd4cb08f721a96b
1877663327197ea231b658a341f0817c0f24d76191237e4bffe5b2af6a69e8a4
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/themes/flatsome/assets/js/woocommerce.js?ver=7a63f7aa2c4bbf851812535d8e4e7958 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "47f4-629674cc-1b4c3b;br"
last-modified: Tue, 31 May 2022 20:04:28 GMT
content-type: application/x-javascript
content-length: 5791
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
65.108.254.144200 OK 3.5 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Hash f519bc1ac3079aab44d06f9e9be19356
90726b0c33094257720c4a9cc0ff5514ddd65069
9cc590ab887aafafbfefb64b69aa028cf324c96b9f2edc601052c790a08e9e3f
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "3a4f-6296ace2-19624b;br"
last-modified: Wed, 01 Jun 2022 00:03:46 GMT
content-type: application/x-javascript
content-length: 3482
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
65.108.254.144200 OK 5.4 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text, with very long lines (21538), with no line terminators
Hash c24cbc4f68cf7ea320d7816159e818a4
1bacfd6182ac70f0e95ab08bfbffb2b7ed80b83b
bceaf33087e14a5d728704a98b77255a2a40d9a3955cd4c5fdc526fe469b6d59
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "5422-62967549-176d3d;br"
last-modified: Tue, 31 May 2022 20:06:33 GMT
content-type: application/x-javascript
content-length: 5368
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-includes/js/underscore.min.js?ver=1.13.4
65.108.254.144200 OK 7.2 kB URL HTTP/2 ofertasblackfriiday.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (18798)
Hash 478d0bfce286ef4a33b13a891471a1a0
97efdde3797b8361fc320b969ff6c3bc4ef175d9
d0619db8d0f153c0c190a27fd3546669c0b08e7d8dd58d9780cd663fbd17d680
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "4991-636219f8-1b7253;br"
last-modified: Wed, 02 Nov 2022 07:19:20 GMT
content-type: application/x-javascript
content-length: 7172
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-includes/js/wp-util.min.js?ver=6.1.1
65.108.254.144200 OK 690 B URL HTTP/2 ofertasblackfriiday.com/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1391)
Hash 3b9092933df7895039d5d5c569e1413b
c641e75667b0918deb86f02ff759c3a69326be06
18ae73e892896ad44e865fffa02d9fd20bc767b72237a98ef46f64d7809e30fb
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "592-636219f8-1b7272;br"
last-modified: Wed, 02 Nov 2022 07:19:20 GMT
content-type: application/x-javascript
content-length: 690
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.5.1
65.108.254.144200 OK 3.4 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.5.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (13590), with no line terminators
Hash 2a3925adbb423fa7a3497b99504d92bd
eed170c6978c3d112e8a02a3c88f00642bfe9da6
557bc8e7ecf619f12c73c9fd63760226001d824911b5d1a354150c430d328ade
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.5.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "3516-62967549-176cf6;br"
last-modified: Tue, 31 May 2022 20:06:33 GMT
content-type: application/x-javascript
content-length: 3420
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-includes/js/zxcvbn-async.min.js?ver=1.0
65.108.254.144200 OK 188 B URL HTTP/2 ofertasblackfriiday.com/wp-includes/js/zxcvbn-async.min.js?ver=1.0
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (316)
Hash 977d1aeaa7aa33247b5064067abc1693
30e0b5d317179ba6467af034b8334c7a62333f3f
3751dee57a02d41e7551fa87cce1862daac8150f36b377f37cb4ec0177b52b7e
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-includes/js/zxcvbn-async.min.js?ver=1.0 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "15f-629669f0-1b7278;br"
last-modified: Tue, 31 May 2022 19:18:08 GMT
content-type: application/x-javascript
content-length: 188
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
65.108.254.144200 OK 1.6 kB URL HTTP/2 ofertasblackfriiday.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (4875)
Hash 334c10434c5114c1b6a896a4bfb97762
3141a7c37d1d5775dd56e0a971420aa95e952eed
4bc9855c90cecf283f832865270bd1a718c3d5cf3054e2df60cecbbb6fdd51e0
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "132e-629669f0-1b72bd;br"
last-modified: Tue, 31 May 2022 19:18:08 GMT
content-type: application/x-javascript
content-length: 1575
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
65.108.254.144200 OK 3.7 kB URL HTTP/2 ofertasblackfriiday.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
Hash 3f471ffad1090960396e523f26e756e5
b441e2050b1a4afe445c2f7cd1e354f511d5d755
7293b4d7d6a360e036b268be2586c313d702353ae7cea1c5e8024b005440148d
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "27f6-636219f8-1b72c1;br"
last-modified: Wed, 02 Nov 2022 07:19:20 GMT
content-type: application/x-javascript
content-length: 3718
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-admin/js/password-strength-meter.min.js?ver=6.1.1
65.108.254.144200 OK 560 B URL HTTP/2 ofertasblackfriiday.com/wp-admin/js/password-strength-meter.min.js?ver=6.1.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1088)
Hash a58211fab1dbb8bd30482fdfc0ff0939
992d617caf627ab037608f79746759e1baa730f8
18ba8003910a5ca99f85ec3d05cde021302218a54f7c58c072c61dff2dbf5630
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-admin/js/password-strength-meter.min.js?ver=6.1.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "463-629669f0-1577b1;br"
last-modified: Tue, 31 May 2022 19:18:08 GMT
content-type: application/x-javascript
content-length: 560
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/frontend/password-strength-meter.min.js?ver=6.5.1
65.108.254.144200 OK 699 B URL HTTP/2 ofertasblackfriiday.com/wp-content/plugins/woocommerce/assets/js/frontend/password-strength-meter.min.js?ver=6.5.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2028), with no line terminators
Hash f121b85f6970f2b75b4d5305a389033b
b49772021d84d508d757b922971a17822dd564e2
adf516674fd65173982063eab98e2e28cab149714693245013147ec924ae783f
GET /wp-content/plugins/woocommerce/assets/js/frontend/password-strength-meter.min.js?ver=6.5.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "7ec-62967549-176d0a;br"
last-modified: Tue, 31 May 2022 20:06:33 GMT
content-type: application/x-javascript
content-length: 699
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
65.108.254.144200 OK 4.6 kB URL HTTP/2 ofertasblackfriiday.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (15660)
Hash 8b21827e4cc06ac9d6c686e463be1fb2
395e1545d76868371b3110d48179027eadef1b39
bf023dff36bcaa1d34063e0804ebfc1598550f64915890b39a2afbe95b8aed8a
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "48b9-629669f0-1b7266;br"
last-modified: Tue, 31 May 2022 19:18:08 GMT
content-type: application/x-javascript
content-length: 4584
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 19:29:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 19:11:12 GMT
cache-control: public,max-age=3600
age: 1080
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2?v=3.15.5
65.108.254.144200 OK 6.8 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2?v=3.15.5
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 6752, version 1.0\012- data
Hash fea1aeac745dbd246870467857e90f02
b9f8ea8bd9d496f5706b306bc0e777b6a9906b27
343b461359461daad66cca6ae40315cd78bf58ebe79eca9af84596d3d873c209
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2?v=3.15.5 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "1a60-629674cc-1b4bb6;;;"
last-modified: Tue, 31 May 2022 20:04:28 GMT
content-type: font/woff2
content-length: 6752
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 19:29:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 19:29:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 19:29:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ofertasblackfriiday.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:10:21 GMT
expires: Wed, 22 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 353931
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ofertasblackfriiday.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 21:11:39 GMT
expires: Sun, 19 Nov 2023 21:11:39 GMT
cache-control: public, max-age=31536000
age: 598653
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/11/maxresdefault-1024x576.jpg
65.108.254.144200 OK 41 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/11/maxresdefault-1024x576.jpg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1024x576, components 3\012- data
Hash 9127c0b14d614dafa77f46d36bda822b
1c40fda4f90ca0f75e4b46f34c64f7df4746a8e1
7f797c24d86909f354bd2695488ab656bb1c3aa8dd4fd9c8850c79b3a00991a7
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/11/maxresdefault-1024x576.jpg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "9f0d-638007bc-1b6df5;;;"
last-modified: Fri, 25 Nov 2022 00:09:32 GMT
content-type: image/jpeg
content-length: 40717
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/11/Captura-da-Web_24-11-2022_221315_www.magazineluiza.com_.br_-1024x192.jpeg
65.108.254.144200 OK 23 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/11/Captura-da-Web_24-11-2022_221315_www.magazineluiza.com_.br_-1024x192.jpeg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1024x192, components 3\012- data
Hash 545d496beec62f844173e8dc7e5c5bec
3ead58c0713d35c6ea60f6f760e2f67ca124ac62
5124d407f8d94267bad46c237719f1a21d491cc6f96239bdb6fb06cbf9c91b58
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/uploads/2022/11/Captura-da-Web_24-11-2022_221315_www.magazineluiza.com_.br_-1024x192.jpeg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "5995-638016d0-1b6d71;;;"
last-modified: Fri, 25 Nov 2022 01:13:52 GMT
content-type: image/jpeg
content-length: 22933
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/11/Captura-da-Web_24-11-2022_22834_www.magazineluiza.com_.br_-1024x117.jpeg
65.108.254.144200 OK 28 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/11/Captura-da-Web_24-11-2022_22834_www.magazineluiza.com_.br_-1024x117.jpeg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1024x117, components 3\012- data
Hash f930445b8500c754f62a06b0bee62c4b
d1ff31a6b5d4d9e24d181021f2ade7260e84d3cb
cbe1c40a86efcbd7ccb4c7c3a7e6073396d936aa568618845c2a9a8e9b89162a
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/uploads/2022/11/Captura-da-Web_24-11-2022_22834_www.magazineluiza.com_.br_-1024x117.jpeg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "6dd1-63801612-1b6d7a;;;"
last-modified: Fri, 25 Nov 2022 01:10:42 GMT
content-type: image/jpeg
content-length: 28113
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/11/cropped-parceiro-magalu-logo-2477a0a7a83e6b957cf62be40e168ebe-1-192x192.png
65.108.254.144200 OK 26 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/11/cropped-parceiro-magalu-logo-2477a0a7a83e6b957cf62be40e168ebe-1-192x192.png
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a3a07e8275dc2ef96f0a22dbeb2a0e7
635c9c67eb25b8ae86cf32f0a4c1042c4c15a002
b04556603f757188e3d9f740da2383c9bb660d38481b434dcbf00e6ebefe2328
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/11/cropped-parceiro-magalu-logo-2477a0a7a83e6b957cf62be40e168ebe-1-192x192.png HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "63bf-63800888-1b6dce;;;"
last-modified: Fri, 25 Nov 2022 00:12:56 GMT
content-type: image/png
content-length: 25535
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/11/cropped-parceiro-magalu-logo-2477a0a7a83e6b957cf62be40e168ebe-1-32x32.png
65.108.254.144200 OK 2.1 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/11/cropped-parceiro-magalu-logo-2477a0a7a83e6b957cf62be40e168ebe-1-32x32.png
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 8a8042eb1adac8f894a6793a8fff746d
094079f9d1e92d5c984c77a821c2d889f5c4160a
fa237fcb450ca244ffb5484e709ac0c43bea36322a42ede37f1cfcc19566507a
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/11/cropped-parceiro-magalu-logo-2477a0a7a83e6b957cf62be40e168ebe-1-32x32.png HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "841-63800888-1b6dd1;;;"
last-modified: Fri, 25 Nov 2022 00:12:56 GMT
content-type: image/png
content-length: 2113
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Lato&display=swap
142.250.74.10200 OK 811 B URL HTTP/2 fonts.googleapis.com/css2?family=Lato&display=swap
IP 142.250.74.10:0
Hash f00e7f3be2187c5717de7bce65c759b6
ac50474a2aadc34db9ec5a88f4b334ed45251ac3
6b564e46c1fa6a29aaddc54aa5b809414ca6eb4aef29cc19b98e9f74d1683d25
GET /css2?family=Lato&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 19:29:12 GMT
date: Sat, 26 Nov 2022 19:29:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6202
Cache-Control: max-age=141661
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 19:29:12 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:50:13 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ofertasblackfriiday.com/wp-includes/js/zxcvbn.min.js
65.108.254.144200 OK 385 kB URL HTTP/2 ofertasblackfriiday.com/wp-includes/js/zxcvbn.min.js
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (53869)
Size 385 kB (384740 bytes)
Hash fe93e9bd7cfd79bcb86dae2df36dc015
dd31c2c6aab81a3d60882e2079e440477862a734
af305be03ed9bd46865f9abd9d31e6e4092e0e3fd18ab2250dba537c96ea4e19
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-includes/js/zxcvbn.min.js HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Cookie: cookielawinfo-checkbox-funcional=yes; cookielawinfo-checkbox-desempenho=yes; cookielawinfo-checkbox-analise=yes; cookielawinfo-checkbox-propaganda=yes; cookielawinfo-checkbox-outros=yes; cookielawinfo-checkbox-necessarios=yes
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "c8bdd-629669f0-1b7279;br"
last-modified: Tue, 31 May 2022 19:18:08 GMT
content-type: application/x-javascript
content-length: 384740
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/chunk.countup.fe2c1016.js
65.108.254.144200 OK 1.4 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/chunk.countup.fe2c1016.js
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (4771), with no line terminators
Hash f53afc1e02fbe6e6b8473a4db7996d99
cb76d3e1dc3e30de470a51ec79e0a42b8e819b14
5cc9ffb4cb169f1b9df1fbf6ea96974f24bf1bfaa1d26c81d432111c5f2e9122
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/themes/flatsome/assets/js/chunk.countup.fe2c1016.js HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Cookie: cookielawinfo-checkbox-funcional=yes; cookielawinfo-checkbox-desempenho=yes; cookielawinfo-checkbox-analise=yes; cookielawinfo-checkbox-propaganda=yes; cookielawinfo-checkbox-outros=yes; cookielawinfo-checkbox-necessarios=yes
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "12a3-629674cb-1b4c32;br"
last-modified: Tue, 31 May 2022 20:04:27 GMT
content-type: application/x-javascript
content-length: 1435
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/chunk.sticky-sidebar.a58a6557.js
65.108.254.144200 OK 3.1 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/chunk.sticky-sidebar.a58a6557.js
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (10850), with no line terminators
Hash c91b22e53fa66e513676f6cb96b3eac1
5d810d4d9893cfdf2846736d9140e1e1a8ffd5f0
710e5f80b6318fd4f5c093046945f7f64794fd0b1d585641f80d15010a8fe146
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/themes/flatsome/assets/js/chunk.sticky-sidebar.a58a6557.js HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Cookie: cookielawinfo-checkbox-funcional=yes; cookielawinfo-checkbox-desempenho=yes; cookielawinfo-checkbox-analise=yes; cookielawinfo-checkbox-propaganda=yes; cookielawinfo-checkbox-outros=yes; cookielawinfo-checkbox-necessarios=yes
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "2a62-629674cb-1b4c33;br"
last-modified: Tue, 31 May 2022 20:04:27 GMT
content-type: application/x-javascript
content-length: 3093
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/chunk.tooltips.29144c1c.js
65.108.254.144200 OK 4.6 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/chunk.tooltips.29144c1c.js
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (16876), with no line terminators
Hash 997eb8f93d5c9d2d171b3e85213adf82
d501645df4f1bb4b310071027eeac9c91a42af46
bf445f116ab916392d110146b142833cd1f49ac5064358ff6e09e17e75a586bb
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/themes/flatsome/assets/js/chunk.tooltips.29144c1c.js HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Cookie: cookielawinfo-checkbox-funcional=yes; cookielawinfo-checkbox-desempenho=yes; cookielawinfo-checkbox-analise=yes; cookielawinfo-checkbox-propaganda=yes; cookielawinfo-checkbox-outros=yes; cookielawinfo-checkbox-necessarios=yes
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "41ec-629674cb-1b4c34;br"
last-modified: Tue, 31 May 2022 20:04:27 GMT
content-type: application/x-javascript
content-length: 4640
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/chunk.vendors-popups.947eca5c.js
65.108.254.144200 OK 6.9 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/chunk.vendors-popups.947eca5c.js
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (20237), with no line terminators
Hash f0ae5790377613e3a1e30ef8b8e825c8
599cc8373f77c10cb5641c34122258c8426348e8
2702bca278321361ad5c6b3fd8d0507cb02fd90e9a2cb515b334fbbe84b912c4
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/themes/flatsome/assets/js/chunk.vendors-popups.947eca5c.js HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Cookie: cookielawinfo-checkbox-funcional=yes; cookielawinfo-checkbox-desempenho=yes; cookielawinfo-checkbox-analise=yes; cookielawinfo-checkbox-propaganda=yes; cookielawinfo-checkbox-outros=yes; cookielawinfo-checkbox-necessarios=yes
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "4f0d-629674cc-1b4c35;br"
last-modified: Tue, 31 May 2022 20:04:28 GMT
content-type: application/x-javascript
content-length: 6866
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.f0d2cbc9.js
65.108.254.144200 OK 13 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.f0d2cbc9.js
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (49648), with no line terminators
Hash 9f15841e2618b742cb84db5f0a340787
9c14455ba411c7fd59865f124ac79cefd1c66dee
3cdeb5709059696fd539e93bda208fb07fa3afb438204861f93cb5a4454551d6
Analyzer Verdict Alert openphish Magalu
fortinet Malware
GET /wp-content/themes/flatsome/assets/js/chunk.vendors-slider.f0d2cbc9.js HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Cookie: cookielawinfo-checkbox-funcional=yes; cookielawinfo-checkbox-desempenho=yes; cookielawinfo-checkbox-analise=yes; cookielawinfo-checkbox-propaganda=yes; cookielawinfo-checkbox-outros=yes; cookielawinfo-checkbox-necessarios=yes
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "c1f0-629674cc-1b4c36;br"
last-modified: Tue, 31 May 2022 20:04:28 GMT
content-type: application/x-javascript
content-length: 12711
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/?wc-ajax=get_refreshed_fragments
65.108.254.144200 OK 358 B URL HTTP/2 ofertasblackfriiday.com/?wc-ajax=get_refreshed_fragments
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with very long lines (700), with no line terminators
Hash f5be14d3576d39626d4d5866fcf8da81
7c61a773b5ad7c4886a529e4b2403a62d6cf1f35
478823db841dc8fb5be5b988c6eeea1ccfe62a4fa08b7960f2a20bb90b1b2a88
Analyzer Verdict Alert openphish Magalu
fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://ofertasblackfriiday.com
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Cookie: cookielawinfo-checkbox-funcional=yes; cookielawinfo-checkbox-desempenho=yes; cookielawinfo-checkbox-analise=yes; cookielawinfo-checkbox-propaganda=yes; cookielawinfo-checkbox-outros=yes; cookielawinfo-checkbox-necessarios=yes
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://ofertasblackfriiday.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
x-litespeed-tag: ce9_HTTP.200,ce9_HTTP.200
content-type: application/json; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-litespeed-cache-control: no-cache
content-encoding: gzip
vary: Accept-Encoding
content-length: 358
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-content/uploads/2022/11/2018_BR_2018_06_hero_1-1-1024x575.jpg
65.108.254.144200 OK 54 kB URL HTTP/2 ofertasblackfriiday.com/wp-content/uploads/2022/11/2018_BR_2018_06_hero_1-1-1024x575.jpg
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1024x575, components 3\012- data
Hash 897f64bc63fc238b710045b48f252e9e
9200e7afe31f9d532cace67c7142a6e43c0d2c0b
0d772cc2171ce432fd42423bbb6ac7def1a6d9684e81e4215450a3d71a46e8e6
Analyzer Verdict Alert openphish Magalu
GET /wp-content/uploads/2022/11/2018_BR_2018_06_hero_1-1-1024x575.jpg HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Cookie: cookielawinfo-checkbox-funcional=yes; cookielawinfo-checkbox-desempenho=yes; cookielawinfo-checkbox-analise=yes; cookielawinfo-checkbox-propaganda=yes; cookielawinfo-checkbox-outros=yes; cookielawinfo-checkbox-necessarios=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:12 GMT
etag: "d159-63800723-1b6d4b;;;"
last-modified: Fri, 25 Nov 2022 00:06:59 GMT
content-type: image/jpeg
content-length: 53593
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.41.252.32101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.252.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZCRD230cZJDyjPp1MeD6Rg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MUDcliarWdTrHE4fuxTnEVS8MUU=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7131
Expires: Sat, 26 Nov 2022 21:28:05 GMT
Date: Sat, 26 Nov 2022 19:29:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7131
Expires: Sat, 26 Nov 2022 21:28:05 GMT
Date: Sat, 26 Nov 2022 19:29:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7131
Expires: Sat, 26 Nov 2022 21:28:05 GMT
Date: Sat, 26 Nov 2022 19:29:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7131
Expires: Sat, 26 Nov 2022 21:28:05 GMT
Date: Sat, 26 Nov 2022 19:29:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7cJmhEGkKqLUQUMqGuYtWBeu_1nlEUAxgTMy4ABekPJYrJP95wE6Jg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:59:05 GMT
age: 77409
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ofertasblackfriiday.com/wp-includes/css/classic-themes.min.css?ver=1
65.108.254.144200 OK 4.5 kB URL HTTP/2 ofertasblackfriiday.com/wp-includes/css/classic-themes.min.css?ver=1
IP 65.108.254.144:0
ASN #24940 Hetzner Online GmbH
Hash 8283d41fa7735b2af7e9239db48bdb7c
6e079c114b1ecaf28b73eb9364e82bdb2b831d25
19d28c159eaf158360204b7d45a9d6e676a244beaf0d9126ebf4c5c7565b408d
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: ofertasblackfriiday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=43200
expires: Sun, 27 Nov 2022 07:29:11 GMT
etag: "d9-636219f7-1b711b;gz"
last-modified: Wed, 02 Nov 2022 07:19:19 GMT
content-type: text/css
accept-ranges: bytes
date: Sat, 26 Nov 2022 19:29:11 GMT
server: LiteSpeed
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 44148
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17ebe470d040a6ea8c57e9b9d4f4e828
1ac7a410cd4f3709f476c776dd5646dd982dcfa8
d65114b68fcc12344c6df7bf294718b79822fa9782d3bd54ca044b66f82052b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15818
x-amzn-requestid: a6570859-3b03-492e-9f84-e25b01223da2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLXrUF3bIAMF8CA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381397b-379b1bcf2ac0715835e10e48;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:54:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HgiyaodE2vJx5JL8QfOiTersSAgAwq74gtsPkpHUhnQ3In2vZ-3rbQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:33:09 GMT
etag: "1ac7a410cd4f3709f476c776dd5646dd982dcfa8"
content-type: image/jpeg
age: 75365
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b25450-4da4-45fe-97c4-620a26a2ac8f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b25450-4da4-45fe-97c4-620a26a2ac8f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f470fab0957e148a9c58dfeedc72463
2f88534696701cfdaf7e2aa78f6d4b8766a2b77f
c2c5617f8fbf3860578a9bcf821dea13e3225ccd02774f29f4bf022e4abd9ff9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b25450-4da4-45fe-97c4-620a26a2ac8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11186
x-amzn-requestid: 67dbfbd2-ba7f-4540-8d2c-5c2c4de21cae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLUf7HGdIAMFhow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813465-36b0d8fc4bdb5faf328bd99d;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:32:21 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aWg_mLQcRYtCNYfaypt-rqwKNbzd4FOFd3mMT8sSQU_dmO7KP29Rsw==
via: 1.1 7b00c3fd9220034414107b03e53b1b8e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:01:51 GMT
age: 77243
etag: "2f88534696701cfdaf7e2aa78f6d4b8766a2b77f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 78338
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3Aregular%2C700%2Cregular%2C700%7CDancing+Script%3Aregular%2C400&display=swap&ver=3.9
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato%3Aregular%2C700%2Cregular%2C700%7CDancing+Script%3Aregular%2C400&display=swap&ver=3.9
IP 142.250.74.10:0
GET /css?family=Lato%3Aregular%2C700%2Cregular%2C700%7CDancing+Script%3Aregular%2C400&display=swap&ver=3.9 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofertasblackfriiday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 19:29:11 GMT
date: Sat, 26 Nov 2022 19:29:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2