Report - salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25

Report Overview

Submitted URL
salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
IP
162.241.2.87
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-12-03 03:49:39
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
56

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	121 kB	216.58.207.227
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	852 B	560 B	216.239.32.36
salads.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	29 kB	480 kB	162.241.2.87
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	370 B	21 kB	142.250.74.110
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	57 kB	34.120.237.76
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	1.5 kB	142.250.74.106
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.5 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	45 kB	142.250.74.168
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.43.228.5
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	6.3 kB	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-11-09	medium	salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25	Bank of America
2022-11-09	medium	salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25	Bank of America

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-03	medium	salads.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0	Phishing
2022-12-03	medium	salads.com.br/wp-content/uploads/elementor/css/post-3055.css?ver=1669048232	Phishing
2022-12-03	medium	salads.com.br/wp-content/uploads/elementor/css/post-4400.css?ver=1669048233	Phishing
2022-12-03	medium	salads.com.br/wp-content/uploads/elementor/css/global.css?ver=1669048233	Phishing
2022-12-03	medium	salads.com.br/wp-content/uploads/elementor/css/post-4078.css?ver=1669048233	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.3	Phishing
2022-12-03	medium	salads.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3	Phishing
2022-12-03	medium	salads.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2022-12-03	medium	salads.com.br/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/headroom.min.js?ver=4.9.38	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1	Phishing
2022-12-03	medium	salads.com.br/wp-content/themes/astra/assets/js/minified/style.min.js?ver=3.9.4	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/webpack-pro.runtime.min.js?ver=3.8.0	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/premium-nav-menu.min.js?ver=4.9.38	Phishing
2022-12-03	medium	salads.com.br/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5	Phishing
2022-12-03	medium	salads.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/frontend.min.js?ver=3.8.0	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/css/frontend.min.css?ver=3.8.0	Phishing
2022-12-03	medium	salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/premium-addons.min.css?ver=4.9.38	Phishing
2022-12-03	medium	salads.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (39)

	URL	Size	First Seen	Last Seen
	salads.com.br/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.3	8.2 kB	2023-03-08	2024-03-26
Pretty URL salads.com.br/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.3 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:47 Last Seen2024-03-26 13:56:01 Times Seen56 Hash 8e05b5f30f52c6945e022b0530220a92 d0365de44bb0f057629811caa098e43e3e491e93 00d4a77dd4b514aa28dce3f45816647d96dcbd4d4b16fbbcd6d3e2012a996dd0 Loading...

	salads.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL salads.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 22:30:21 Times Seen68500 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	salads.com.br/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae	10 kB	2023-03-08	2024-04-19
Pretty URL salads.com.br/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:32 Last Seen2024-04-19 20:39:51 Times Seen25597 Hash 8cd696505481e74ffee89b4995f37379 ee9aad199ef2bc60a3460f4c52f37d22907b2ec9 01c3955df67a9b9d1367957e2c187729eae46b72e92c2b52bdb217b14a8fc874 Loading...

	salads.com.br/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	139 kB	2023-03-07	2024-04-19
Pretty URL salads.com.br/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 14:54:09 Times Seen23120 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25	440 B	2023-03-08	2023-03-26
Pretty URL salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:00:02 Last Seen2023-03-26 09:29:09 Times Seen2 Hash cd90c1eea5e18b8b40fba9c906ea94fc 96cd6f8ac31bfbe534976ce69366c6404d356558 e45e0d1f59e51963fe2363ba7ef51eeb7048f4ca50818f91c12fe9347e022b4c Loading...

	salads.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1	40 kB	2023-03-08	2024-04-15
Pretty URL salads.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen724 Hash 2331d602370faa61829c8aa628996c7d e097dda010d924637e9c9f906be7653ae2d29343 5ceb0c2088d29cecbe3ee571dc3cf6fec764bbb7c73f0e22c73007149a2ce68d Loading...

	salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/preloaded-elements-handlers.min.js?ver=3.8.0	139 kB	2023-03-08	2024-03-04
Pretty URL salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/preloaded-elements-handlers.min.js?ver=3.8.0 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:48:18 Last Seen2024-03-04 09:49:35 Times Seen44 Hash ee957ae17b79afe1cc0bd5e353b5ec78 1e717f402e6120818ce31c50fc26e8912aeac350 9ff5f8590a7746ca463887acd34e23b6586bca5e8dbe87f017a7ee914d9eee02 Loading...

	salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25	68 B	2023-03-07	2024-04-20
Pretty URL salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-20 00:20:00 Times Seen22400 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	salads.com.br/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1	2.6 kB	2023-03-07	2024-04-19
Pretty URL salads.com.br/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:07 Last Seen2024-04-19 20:32:06 Times Seen11281 Hash 020e87460ce58802842e34a3aac97d83 d2eed5f7573c0bd640fb9f125b6bfedf43ebf9b9 138154c0deed3326477b9b4909175101070a5a3a95342291b53d8cc9879a5f47 Loading...

	salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25	2.0 kB	2023-03-08	2023-03-13
Pretty URL salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:00:02 Last Seen2023-03-13 15:04:04 Times Seen1 Hash e0c553864b627d6a42fcc858b853b7d9 e9aa676a7b10b31d4dc24e24fc8f0af843046409 44e2da70014ef995dd33200ca65650d6c8ee4f23e5592aebd38d92f075b553d6 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-19
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-19 19:03:21 Times Seen1521 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25	2.1 kB	2023-03-08	2023-03-13
Pretty URL salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:00:02 Last Seen2023-03-13 15:04:03 Times Seen1 Hash 36072c66b603a82fc5faa2bd9fa1fb69 da71a722684a30b365dcfb469e31db6f503cd93e 3d363b38e35b0cb503612f7b020eabd097eb6b24ca6c621dfa80fc76a762fd47 Loading...

	salads.com.br/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0	11 kB	2023-03-07	2024-04-19
Pretty URL salads.com.br/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 14:54:09 Times Seen5346 Hash 4eee50ac6f4f364ba3a284d0753ddae3 a8e7e824e6824ae0b370ff36e2c07ca07276fae0 b936db5880aa9b6b2f26a8d32fc2b689fb75f69d971b94194f16dba801221ffe Loading...

	salads.com.br/wp-content/themes/astra/assets/js/minified/style.min.js?ver=3.9.4	10 kB	2023-03-07	2024-03-18
Pretty URL salads.com.br/wp-content/themes/astra/assets/js/minified/style.min.js?ver=3.9.4 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:55 Last Seen2024-03-18 17:12:39 Times Seen264 Hash 90108aa84abd32de121c6eb75d002d85 17608a3c4b1ec53dd8201e42e5a577416eb8ed56 c4073c72b720b3645c4e7e2e57b81b450cc658b65908013057a0bc9d158cf457 Loading...

	salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25	4.7 kB	2023-03-08	2023-03-08
Pretty URL salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:00:02 Last Seen2023-03-08 15:00:02 Times Seen1 Hash 7e6d3f027f1284167afceaf5e9adf2ac f2db97c101799bf6e862e63e9df3cda50f5de88f a059f396df5449208c812081829374a2afbf300529e8f66684bda4ac539473a8 Loading...

	salads.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-20
Pretty URL salads.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-20 00:20:01 Times Seen52514 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	salads.com.br/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=16612949913.0.3	58 kB	2023-03-08	2024-03-03
Pretty URL salads.com.br/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=16612949913.0.3 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:18:27 Last Seen2024-03-03 20:45:57 Times Seen53 Hash ff9f0dc3318b17db02ca7e3042a3bc24 ba9c6b9696378cc26b737f07f2e08a0ca3dba5e3 6d3bd6d4a33d1c661275be2f99c107627e2943309bfdf4c201f7d4b25192e09d Loading...

	salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25	298 B	2023-03-08	2023-03-26
Pretty URL salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:00:02 Last Seen2023-03-26 09:29:09 Times Seen2 Hash 300791028a7c8ad529ccb7e664ea237c 17f275ff02e5f78fa424087f6ce7aa92b7639158 3d1f2e025562b02b66708b22ad0a9ead9597bc05186fe50b04433648fd993560 Loading...

	salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25	48 B	2023-03-08	2023-03-13
Pretty URL salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:00:02 Last Seen2023-03-13 15:04:04 Times Seen1 Hash b828bbcd95dd894a245ae703d1e80f4c a73418c6e67768e4068c606fc36afbf86292c1db 47e9c3b0aad8ea2db871943020db42e247a74923e1b7281e0227e540fc21e18b Loading...

	www.googletagmanager.com/gtag/js?id=G-337VFVTX2L&l=dataLayer&cx=c	229 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-337VFVTX2L&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:00:02 Last Seen2023-03-08 15:00:02 Times Seen1 Hash b4b5b665ceb12321afe35a124f5f7409 26afe45214efa9db16907eb9db2b9fe84dffdeec c70b55a792e8823e7fa3c7dac80df90e11b9351640a64143f4adf69db4aaf390 Loading...

	salads.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1	33 kB	2023-03-08	2024-04-15
Pretty URL salads.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen658 Hash 48b7a16ab38005edf9c9964313ce1cd7 8b8569d937aac61fd792b6c68fca974e3cdd94ab 5d80f13fd7524318f81eb1301170d4d0fbee242c12403c01f3a06c9f681192c7 Loading...

	salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/premium-nav-menu.min.js?ver=4.9.38	9.3 kB	2023-03-08	2023-03-13
Pretty URL salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/premium-nav-menu.min.js?ver=4.9.38 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:00:02 Last Seen2023-03-13 15:04:04 Times Seen1 Hash ac5ab57231184bc778b502873085c5cb ccc8c32d9bf254a02666a27ed7909c1f5dc800a4 f53a8f9dd03c4e02fde08ecb7f7f4dc9e1d460d639a69dccaf1cb4602ea571d9 Loading...

	www.googletagmanager.com/gtag/js?id=UA-164221465-1	115 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=UA-164221465-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:00:02 Last Seen2023-03-08 15:00:02 Times Seen1 Hash 7bc04c32504974f942253f0883d58284 4ebb3243e28303c09a58a4189cd3d8f246c98bb7 563964fd3f09f391fd9e90b8942715dc88de57f318d720be921275e58a8671c7 Loading...

	salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25	875 B	2023-03-08	2023-03-08
Pretty URL salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:00:02 Last Seen2023-03-08 15:00:02 Times Seen1 Hash 808e868cb121784d14059492fd52d386 c260872b558c87c87118b42b8efa4ee6bc509f13 b3b93b69f185b49330ee3e55ed9b15c053a3c399337cb83584e3cf19847cf504 Loading...

	salads.com.br/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5	4.9 kB	2023-03-07	2024-04-19
Pretty URL salads.com.br/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 20:39:51 Times Seen24371 Hash b33ab4d5dcf02436276a717e9d1b7c18 f47b9a9c41b3b11c9dffabca22945727c3ec6566 9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134 Loading...

	salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25	1.2 kB	2023-03-08	2023-03-08
Pretty URL salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:00:02 Last Seen2023-03-08 15:00:02 Times Seen1 Hash 69a5b641e96d5f461ed316c623d24f45 aa786a8b078f166f62bac599c7040ce14eca8eb3 003c15218d8cbb498b7469efbe9d0f54266e23561e55195e0716c696cd13af68 Loading...

	salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25	333 B	2023-03-07	2024-04-19
Pretty URL salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-19 12:28:57 Times Seen7450 Hash 3688fd64c409264431201fa55a828e81 2b7eeefaa1edf3a7621f7576b35b01c895ef5367 944433761a880eab1d567dd5389499af76aa03582c82a8aa88838e3c6c2134c6 Loading...

	salads.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-19
Pretty URL salads.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 20:39:52 Times Seen37996 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.38	283 kB	2023-03-08	2023-11-30
Pretty URL salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.38 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:17:18 Last Seen2023-11-30 11:20:39 Times Seen19 Hash 9c31734586b2afe82fcae8c7e9fcf878 5d456f77f711c1921002d08b73e0e30ed6190adb 008c2e69b02a846cf3a281f4ff1e969ae75046b8b20f208981463d1b459cd094 Loading...

	salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/webpack-pro.runtime.min.js?ver=3.8.0	5.2 kB	2023-03-08	2024-03-31
Pretty URL salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/webpack-pro.runtime.min.js?ver=3.8.0 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:52 Last Seen2024-03-31 13:37:46 Times Seen160 Hash f0ec20191944f58a275e3c7d643f38c6 f8c59757ff502526429eae1ffe71ebc389b4a74b 11419ff9af708505354449e2cf7337b30a444b1eb923a1442cfa61742206af7b Loading...

	salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/frontend.min.js?ver=3.8.0	22 kB	2023-03-08	2024-03-31
Pretty URL salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/frontend.min.js?ver=3.8.0 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:52 Last Seen2024-03-31 13:37:46 Times Seen175 Hash 640f6ba78342d98a181de1778c4a761f 30f2e35b7fce66756676e1edd7ecd833e7318e1a dedf00f95adadf2d612af384431bb49bb3c367eae2fb071581c1ac82a769428e Loading...

	salads.com.br/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1	43 kB	2023-03-08	2024-02-03
Pretty URL salads.com.br/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:56 Last Seen2024-02-03 17:57:52 Times Seen207 Hash ecbb36c3ad3be14e777b453ce278557b 11611ee478e60ecf2cd969c37bc55da1e1dc9ba4 689cd339b9de5d18314f13848a05a7ede4548ae9e30673035d1302da6d139ba1 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-NJ6NH6Q	96 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-NJ6NH6Q IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:00:02 Last Seen2023-03-08 15:00:02 Times Seen1 Hash d0d7af441428dd91e1cbcb23898c2ab9 04c2440e4dcd3c133fd8cbfe82501a6a8582c9e9 74f18cf9bdb0ae0a09b7f0327b4b18da92eafa158415b618531426de9346c0e7 Loading...

	salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/headroom.min.js?ver=4.9.38	4.3 kB	2023-03-08	2024-04-03
Pretty URL salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/headroom.min.js?ver=4.9.38 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:29:09 Last Seen2024-04-03 13:08:42 Times Seen78 Hash 7375f8a00df85e5944efcf47b5cc2412 f6938e94adada0695c51b1c4ecd9e63fef72676a cb2bef25f1f298be8c65d2826f7c9248fe912903ca7d8d571fa0709d9c48c274 Loading...

	salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.0	3.8 kB	2023-03-08	2024-03-27
Pretty URL salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.0 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:52 Last Seen2024-03-27 12:08:51 Times Seen80 Hash eb516a522b58bed320e5f84398c6fc7b 0d16533aafbf908f8e01d9c8fb7e272e14747590 f21b923285e6f48addadbed2568b5308dd73c5edb7c2dc6c8f1fe6523883bbf6 Loading...

	salads.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-19
Pretty URL salads.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-19 20:39:51 Times Seen31782 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	salads.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-19
Pretty URL salads.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 20:39:51 Times Seen15475 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	salads.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-04-19
Pretty URL salads.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-19 20:39:51 Times Seen9798 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	salads.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1	5.0 kB	2023-03-08	2024-04-15
Pretty URL salads.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 IP 162.241.2.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen647 Hash 562ad59077018eb139d1f46afd69a050 d33c188f7d0f306b8a0ede1e3b67a0edb7be8966 f6eb858ead7f15dcd18541c5433714e0c0966d81b8d009a2d49e5a181e548fbb Loading...

HTTP Transactions (85)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7164
Expires: Sat, 03 Dec 2022 05:48:52 GMT
Date: Sat, 03 Dec 2022 03:49:28 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6462
Cache-Control: max-age=116969
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:49:28 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 12:18:57 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25

162.241.2.87

301 Moved Permanently

0 B

URL HTTP/1.1
salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
openphish	Bank of America

HTTP Headers

GET /boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 03:49:28 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 03:19:58 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1770
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6066
Expires: Sat, 03 Dec 2022 05:30:34 GMT
Date: Sat, 03 Dec 2022 03:49:28 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: e5a/MO5BVBZMo/vCZqwajm9NDAy5QmHCQ+sU8QANjoNyt4T5La8/2vbfWnZ965t2AUidXMGz25rgB/bKZA/fBQ==
x-amz-request-id: JV4KJXHQJ2CYCTSN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 03:46:58 GMT
age: 150
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 03:49:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
85c0a162d83beb3a53d4183a8582a6b5
8fac771d7de4946a3965b7008153a7e9101c2101
b38bfcea5574be4d3ad52506201ab275bce355ef7f61801c888c1cce3351ef52

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B38BFCEA5574BE4D3AD52506201AB275BCE355EF7F61801C888C1CCE3351EF52"
Last-Modified: Fri, 02 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21518
Expires: Sat, 03 Dec 2022 09:48:06 GMT
Date: Sat, 03 Dec 2022 03:49:28 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 03:08:58 GMT
cache-control: public,max-age=3600
age: 2430
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6443
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:49:28 GMT
Last-Modified: Sat, 03 Dec 2022 02:02:05 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.43.228.5

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.228.5:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: q1vugToPTQ+SMveAA5r68w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Q13phwmVps03bLlxXFAhXJfnhs4=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:49:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:49:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:49:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

salads.com.br/wp-content/plugins/chaty/css/chaty-front.min.css?ver=16612949913.0.3

162.241.2.87

200 OK

6.5 kB

URL HTTP/2
salads.com.br/wp-content/plugins/chaty/css/chaty-front.min.css?ver=16612949913.0.3
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (21881)
Size
6.5 kB (6513 bytes)
Hash
dfce581e1800e0ee98dc3d01f6ea7201
aa552a30e664b9153d2da9062488fe3e5cb81b26
d9ce17004349fa80737dbc52707aa9c2a4c1d6182a479c2291461dd9f20a396f

HTTP Headers

GET /wp-content/plugins/chaty/css/chaty-front.min.css?ver=16612949913.0.3 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:49:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6513
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/themes/astra/assets/css/minified/style.min.css?ver=3.9.4

162.241.2.87

200 OK

17 kB

URL HTTP/2
salads.com.br/wp-content/themes/astra/assets/css/minified/style.min.css?ver=3.9.4
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (63030), with CRLF line terminators
Size
17 kB (17096 bytes)
Hash
6340dda955785b24be4d5cc8088804fd
0dc2cef74bc0608f1ce39a94bb4eb7a5da71f5d7
0c49bd705c7fdd14ed89c50b0e409be0dc578e60050a5cda1ed79f251ea5aedc

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/style.min.css?ver=3.9.4 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:50:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 17096
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-164221465-1

142.250.74.168

200 OK

45 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-164221465-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
45 kB (44645 bytes)
Hash
685aa3ab2dd98738c5dd6babe9810b37
f1184768c699f1354a148fb26335d8813724da0b
ed49694de6d7df22639a7a343b5743f625a9b91c4395e0adb00447d660ca30e4

HTTP Headers

GET /gtag/js?id=UA-164221465-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Dec 2022 03:49:29 GMT
expires: Sat, 03 Dec 2022 03:49:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44645
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

162.241.2.87

200 OK

4.0 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (19233)
Size
4.0 kB (4008 bytes)
Hash
2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4008
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:49:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:49:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

salads.com.br/wp-content/uploads/elementor/css/post-3055.css?ver=1669048232

162.241.2.87

200 OK

506 B

URL HTTP/2
salads.com.br/wp-content/uploads/elementor/css/post-3055.css?ver=1669048232
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1372)
Size
506 B (506 bytes)
Hash
f0d03686de940f74907c727f51b67654
011a40f8273f98b71870d5c059d6d7fdeeae30c6
9d7a73e24210b68751a4617d3b3c1e10aba797b813aa152ee96dc4f89ffb35da

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-3055.css?ver=1669048232 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 506
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1

162.241.2.87

200 OK

1.6 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (13766)
Size
1.6 kB (1609 bytes)
Hash
7e47cec420b48e49d1e640389561dea0
c2211071a56905121ef526b8860cc0b87ed37cc0
caf6180227353323d2fcafeefcf9686c00034933ee249093ba6e61c10954228e

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1609
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/uploads/elementor/css/post-4400.css?ver=1669048233

162.241.2.87

200 OK

1.1 kB

URL HTTP/2
salads.com.br/wp-content/uploads/elementor/css/post-4400.css?ver=1669048233
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5440), with CRLF line terminators
Size
1.1 kB (1106 bytes)
Hash
6d817531f5b87b111e780ba18e67a417
54e9fa22c5518d2d219d3ae6942c300b488387c6
304a8c029e403e5d8c6ccbbe5fdcc59677f6e1bfc5e073a2a1b0e232f0e55014

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-4400.css?ver=1669048233 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1106
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/uploads/elementor/css/global.css?ver=1669048233

162.241.2.87

200 OK

9.9 kB

URL HTTP/2
salads.com.br/wp-content/uploads/elementor/css/global.css?ver=1669048233
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (28067), with CRLF, LF line terminators
Size
9.9 kB (9897 bytes)
Hash
bef64933da90f14e5d65a493bc863d36
4ee4a0ca3787c47033770c1bc9de4ae3fb454d80
3ab61f525af18cdd32992b1185cdfb6cf5bf8d9712a9a72227eee1e523c06f47

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1669048233 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9897
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/uploads/elementor/css/post-4078.css?ver=1669048233

162.241.2.87

200 OK

461 B

URL HTTP/2
salads.com.br/wp-content/uploads/elementor/css/post-4078.css?ver=1669048233
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2123), with no line terminators
Size
461 B (461 bytes)
Hash
83a2b4c36b2ffc83fe448a217ffd09d9
98d52ecb227582351ecea47c22a9fc63c0828270
40bf8a59bdaf8802e9a723b56ade52735b8c0d824abbae882f4a4b500678d8d7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-4078.css?ver=1669048233 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 461
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.3

162.241.2.87

200 OK

900 B

URL HTTP/2
salads.com.br/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.3
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3432)
Size
900 B (900 bytes)
Hash
1e0ef5b4ebd931aecd01564980628978
e618b92e03a6c4bd4abffed22abb1e835c05a601
1deef467f6db854d82e8c6288086664c7cf60a41b18bb7216d63bb83061ba878

HTTP Headers

GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.3 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 12:37:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 900
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

162.241.2.87

200 OK

309 B

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (483)
Size
309 B (309 bytes)
Hash
0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.3

162.241.2.87

200 OK

3.0 kB

URL HTTP/2
salads.com.br/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.3
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (8185), with no line terminators
Size
3.0 kB (3022 bytes)
Hash
e0fea81cd5864819e1795e09fb0db808
f36029824f283e56db1752c034a4e3abc9d95eaf
fcafe0fc6d4318bd5326aa1752906e097bd5defbb2062059ac89887dcf042f49

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.3 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 12:37:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3022
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

162.241.2.87

200 OK

5.3 kB

URL HTTP/2
salads.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15660)
Size
5.3 kB (5321 bytes)
Hash
710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

162.241.2.87

200 OK

13 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (57726)
Size
13 kB (12577 bytes)
Hash
dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12577
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1

162.241.2.87

200 OK

3.0 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (10019)
Size
3.0 kB (2997 bytes)
Hash
c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2997
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

162.241.2.87

200 OK

4.6 kB

URL HTTP/2
salads.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11126)
Size
4.6 kB (4618 bytes)
Hash
acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

162.241.2.87

200 OK

3.7 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (12198), with no line terminators
Size
3.7 kB (3747 bytes)
Hash
e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3747
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae

162.241.2.87

200 OK

4.2 kB

URL HTTP/2
salads.com.br/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
4.2 kB (4233 bytes)
Hash
3b62593186f7f91a9470ab6968ec5feb
bd7728c79c04f4f2f7a787097b0868e06ceba5ad
2a9920dc63cbd8228103c7d6bf2a044f06963041253c385c3cebb147297aa782

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:50:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4233
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1

162.241.2.87

200 OK

13 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (32907)
Size
13 kB (13291 bytes)
Hash
ec532bc72e833d74239248a507033f2d
e682bb6b3a3d8dce061c9974064efa177b286cbc
5225c44ca2b4081202505c1b0a9c16446eda2d51038ac8ed1a5eea1630b0541b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13291
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/headroom.min.js?ver=4.9.38

162.241.2.87

200 OK

1.6 kB

URL HTTP/2
salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/headroom.min.js?ver=4.9.38
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4289), with no line terminators
Size
1.6 kB (1565 bytes)
Hash
a906932a4810ce47aef805049b008746
abef23fcf127db458eb20339523e64249966c3ac
14e615fe12aa26f28a95a7f5f629c74e0013f0e307328ba1df0b09aadb6a63ca

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/headroom.min.js?ver=4.9.38 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1565
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1

162.241.2.87

200 OK

2.3 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4918)
Size
2.3 kB (2312 bytes)
Hash
afe0ea20b00c3b25a89a6b2d6a98c6ac
53c0425fb9abdc217a90ec20509996cd2a5f9e1d
f70c2aa0ee7d185b9ded30b1f2037e4fbd828583d61f68eab99fd2f37b36b2a3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2312
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1

162.241.2.87

200 OK

1.2 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2620), with no line terminators
Size
1.2 kB (1187 bytes)
Hash
55936584085d0d310919b755eda1ab3f
be317c3b2ed5143669375295b3107e591bf708da
aad2265c39cafa6e01b791b1ef5025a2d237ee91346ef446beb722fdcd578d58

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1187
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0

162.241.2.87

200 OK

4.2 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (10544)
Size
4.2 kB (4200 bytes)
Hash
552977febe8ef2c71b0806dfaefd2552
01baebfd09383c5d44f066e7b5540fcca6a5eae4
7895907f5a4f54c08c4705b1a194e21c556d68027c5e0a70d4c05b377e712b1d

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4200
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.0

162.241.2.87

200 OK

1.7 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.0
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3808)
Size
1.7 kB (1748 bytes)
Hash
44cacf382b1efaec2c09b3501c46f576
bc805b71304e479bdd433d1a58014ca29dfaf5fe
3805d0110db0197de2ce0f173afa957a1f0c2b40fc84e779077dbd93f71a4d64

HTTP Headers

GET /wp-content/plugins/elementor-pro-v3.8.0/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.0 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:49:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1748
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/themes/astra/assets/js/minified/style.min.js?ver=3.9.4

162.241.2.87

200 OK

3.6 kB

URL HTTP/2
salads.com.br/wp-content/themes/astra/assets/js/minified/style.min.js?ver=3.9.4
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (10398), with no line terminators
Size
3.6 kB (3584 bytes)
Hash
24a2e6342962f0d0c52ea626efb180aa
2390c50a381d2808316905a38e12cca282e20b32
d45d38dadcffc780aba0024b0c745eff21fc6532990fd6ac484a7e5186502800

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/astra/assets/js/minified/style.min.js?ver=3.9.4 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:50:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3584
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/webpack-pro.runtime.min.js?ver=3.8.0

162.241.2.87

200 OK

2.5 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/webpack-pro.runtime.min.js?ver=3.8.0
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5191)
Size
2.5 kB (2475 bytes)
Hash
4f64e047f77f983d784ace34d0416784
dae5c0842ed9fe97a1063ebf6235a825c49cd8c4
21f982a0590251e893874a385b36718a32c372e266ff8ce0e3df957a5bebcb07

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-pro-v3.8.0/assets/js/webpack-pro.runtime.min.js?ver=3.8.0 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:49:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2475
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/premium-nav-menu.min.js?ver=4.9.38

162.241.2.87

200 OK

2.9 kB

URL HTTP/2
salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/premium-nav-menu.min.js?ver=4.9.38
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (9286), with no line terminators
Size
2.9 kB (2934 bytes)
Hash
1c194258f90df48335431fe42f60993c
51ddde4f3956be3d7b8a8040ba2eaf7b3d77069d
09e1217f3c393f4a43109876f0143889f03d2c658b1dc9a9797fe9930e841b5e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/premium-nav-menu.min.js?ver=4.9.38 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2934
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5

162.241.2.87

200 OK

1.7 kB

URL HTTP/2
salads.com.br/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4875)
Size
1.7 kB (1712 bytes)
Hash
6a452794a68bc140a53b30519b94edf6
68046f5611ba3cf5da1c46087609aff18f59fdc1
259990a9e6191a72a51ac9d038d0c52bb56d880a2b0d460b1fca3f3fee7961ed

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1712
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

162.241.2.87

200 OK

2.7 kB

URL HTTP/2
salads.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (6475), with no line terminators
Size
2.7 kB (2675 bytes)
Hash
45bd1d6f7fc3a4069fc6fd400b90c961
903c7e28c7141e9fc1bdb4dfc62d043a97a01e2d
c638a0057b4be0a61cfb65b1860a855a327397e9871f5dde28fa2f138fb394dc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2675
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

162.241.2.87

200 OK

7.6 kB

URL HTTP/2
salads.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Size
7.6 kB (7621 bytes)
Hash
66c68f2158dcf7d97a02f3719a17aab0
fdb04fb4c632b9fb4275006a4e402cd0d4fa393a
e4b360f0e6ae1afc06f05f958e8696e5ae45257912bc2ab0b9334bd1382a51aa

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:50:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7621
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/frontend.min.js?ver=3.8.0

162.241.2.87

200 OK

7.7 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/frontend.min.js?ver=3.8.0
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (21624)
Size
7.7 kB (7668 bytes)
Hash
172667bec56888e050739962545c72d7
fe4723f65e0208d489033acd2b8877d4ad84269c
aeea25e6154739c10be0b414a3f6168aaabf3c2e8c54b8e7a926ad38f16398f7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-pro-v3.8.0/assets/js/frontend.min.js?ver=3.8.0 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:49:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7668
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

162.241.2.87

200 OK

8.3 kB

URL HTTP/2
salads.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
8.3 kB (8344 bytes)
Hash
838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:50:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8344
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1

162.241.2.87

200 OK

16 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (40474)
Size
16 kB (16151 bytes)
Hash
6aeb2153cae643eef82bc2bfd981284f
72ded3873d2eca2490b951a270c2ad90d2be820f
e1f85226ca5e06d9aa02a495ab567529e78f5aeae6924566e58e18debe6f38bb

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16151
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1

162.241.2.87

200 OK

17 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (43101)
Size
17 kB (16899 bytes)
Hash
38a87ff524e8c045d28f62eb94a0cd7a
fe483c45a46432fdec74917f92e814730adef61b
e9c68236f1feaae21075cfdc23e4f06c99e303b089c0e5718a93ca83a42b27dc

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16899
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.38

162.241.2.87

200 OK

96 kB

URL HTTP/2
salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.38
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
96 kB (96152 bytes)
Hash
440ce930c9b223c20241e690d3a581dd
93dd78b7be94b9eeb9112086b3d609440d0f9ae8
acd23fdd07f5148d7671745447163e1dd46402e3b5b40e39ce1f44d23fd50e21

HTTP Headers

GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.38 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:49:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:49:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://salads.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 202535
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:49:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/bitter/v28/rax8HiqOu8IVPmn7f4xp.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/bitter/v28/rax8HiqOu8IVPmn7f4xp.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30896, version 1.0\012- data
Size
31 kB (30896 bytes)
Hash
a7332c352b59e1d882b5770b68ed9db5
6a4b2b9a2b35ae86769e0c6a0a6decbf67300db6
c470360f2548fb327562d8ce35185a96f59ab6daeb56c0d45ab712b63de848da

HTTP Headers

GET /s/bitter/v28/rax8HiqOu8IVPmn7f4xp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://salads.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30896
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 00:43:34 GMT
expires: Sun, 03 Dec 2023 00:43:34 GMT
cache-control: public, max-age=31536000
age: 11155
last-modified: Fri, 24 Jun 2022 18:46:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2

216.58.207.227

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 18096, version 1.0\012- data
Size
18 kB (18096 bytes)
Hash
f29503a1895affee5ed85d0246238af8
f474c6e8a3e4e28fb68cf7fb29bd448cdfeb0278
7164a212fb4df27bf1e006342d1686badcba58f5a5d301772c14cc7adf1d4821

HTTP Headers

GET /s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://salads.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 22:11:26 GMT
expires: Fri, 01 Dec 2023 22:11:26 GMT
cache-control: public, max-age=31536000
age: 106683
last-modified: Thu, 21 Apr 2022 16:54:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://salads.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 202514
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriASitCBimCw.woff2

216.58.207.227

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriASitCBimCw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 18212, version 1.0\012- data
Size
18 kB (18212 bytes)
Hash
ca72fb4e277e59be50b8850190822581
159b97b22006fe2a483da0a13d33cfb3cc5aa031
f3c0fa2cd71bb91d0e3acf5d77b93c49a184e9ad941532ca8c07c82eb0bd6a6c

HTTP Headers

GET /s/dmsans/v11/rP2Cp2ywxg089UriASitCBimCw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://salads.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 22:11:50 GMT
expires: Fri, 01 Dec 2023 22:11:50 GMT
cache-control: public, max-age=31536000
age: 106659
last-modified: Thu, 21 Apr 2022 16:54:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:49:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

salads.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

162.241.2.87

200 OK

78 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://salads.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
content-length: 78196
content-type: font/woff2
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/preloaded-elements-handlers.min.js?ver=3.8.0

162.241.2.87

200 OK

51 kB

URL HTTP/2
salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/js/preloaded-elements-handlers.min.js?ver=3.8.0
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
51 kB (51279 bytes)
Hash
73fb0a6bc782f3e5fd2558c32a4c4e0a
fe6221cdb2daffe667b1f0b22863bec52e916f11
ca96ed5595d87dca4479276b19d1134156a0da2854ef5e0f42638bee6708a55d

HTTP Headers

GET /wp-content/plugins/elementor-pro-v3.8.0/assets/js/preloaded-elements-handlers.min.js?ver=3.8.0 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:49:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/uploads/2022/08/salads-logo-branco-1536x682.png

162.241.2.87

200 OK

64 kB

URL HTTP/2
salads.com.br/wp-content/uploads/2022/08/salads-logo-branco-1536x682.png
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1536 x 682, 8-bit gray+alpha, non-interlaced\012- data
Size
64 kB (63570 bytes)
Hash
4b1f278fdac836af3bd116e4c7b9ccd5
ac980bff5201d7194d184121d1a7a921bf5aff90
e95d248ad7fa4a44a471cc76f05cfbbb1f7822b51805e0a0ed6bdbef2b509172

HTTP Headers

GET /wp-content/uploads/2022/08/salads-logo-branco-1536x682.png HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Aug 2022 22:37:47 GMT
accept-ranges: bytes
content-length: 63570
content-type: image/png
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/bitter/v28/raxhHiqOu8IVPmnRc6SY1KXhnF_Y8fbfOLjOXQ.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/bitter/v28/raxhHiqOu8IVPmnRc6SY1KXhnF_Y8fbfOLjOXQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16140, version 1.0\012- data
Size
16 kB (16140 bytes)
Hash
4487ec4bbeb4a1191d9c56bcff9b9262
02f0c52b3c5e47ef6c105ef253401dd45e4f013f
3b1f0c650eb15d9eb32681ed84b5360c5e6327f9704b6efd76a6e3ac126b8bd0

HTTP Headers

GET /s/bitter/v28/raxhHiqOu8IVPmnRc6SY1KXhnF_Y8fbfOLjOXQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://salads.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16140
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 04:25:43 GMT
expires: Sun, 26 Nov 2023 04:25:43 GMT
cache-control: public, max-age=31536000
age: 602627
last-modified: Fri, 24 Jun 2022 18:45:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 03 Dec 2022 02:41:08 GMT
expires: Sat, 03 Dec 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 4102
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

salads.com.br/wp-content/uploads/2020/08/cropped-salads-favicon-32x32.png

162.241.2.87

200 OK

1.1 kB

URL HTTP/2
salads.com.br/wp-content/uploads/2020/08/cropped-salads-favicon-32x32.png
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size
1.1 kB (1079 bytes)
Hash
c0739b565370de3108acf60fd82fc8ed
49b168087759cbbbc5e92cfcc4e3b95d2e1d3e32
dd1c3ee655ec20d2984289348c634313bb3f1b0c7ddd19769a086877e0d9f4ad

HTTP Headers

GET /wp-content/uploads/2020/08/cropped-salads-favicon-32x32.png HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Cookie: chatyWidget_0=[{"k":"v-widget","v":"2022-12-03T03:49:28.149Z"},{"k":"v-Whatsapp","v":"2022-12-03T03:49:28.149Z"}]; activechatyWidgets=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 17 Aug 2020 22:38:49 GMT
accept-ranges: bytes
content-length: 1079
content-type: image/png
date: Sat, 03 Dec 2022 03:49:30 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/uploads/2020/08/cropped-salads-favicon-192x192.png

162.241.2.87

200 OK

4.4 kB

URL HTTP/2
salads.com.br/wp-content/uploads/2020/08/cropped-salads-favicon-192x192.png
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Size
4.4 kB (4421 bytes)
Hash
5115da35e345f197b1d435f92c668640
fb3b9e84779083aff092ee7555539634998ea7f3
a0334f7ac43c570e1b04441cd28df3064aa7d2c3e560be60324d1188adcc792b

HTTP Headers

GET /wp-content/uploads/2020/08/cropped-salads-favicon-192x192.png HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Cookie: chatyWidget_0=[{"k":"v-widget","v":"2022-12-03T03:49:28.149Z"},{"k":"v-Whatsapp","v":"2022-12-03T03:49:28.149Z"}]; activechatyWidgets=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 17 Aug 2020 22:38:49 GMT
accept-ranges: bytes
content-length: 4421
content-type: image/png
date: Sat, 03 Dec 2022 03:49:30 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3063
Expires: Sat, 03 Dec 2022 04:40:33 GMT
Date: Sat, 03 Dec 2022 03:49:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3063
Expires: Sat, 03 Dec 2022 04:40:33 GMT
Date: Sat, 03 Dec 2022 03:49:30 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F741da48c-a860-42fc-8f5c-4572522c2f56.jpeg

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F741da48c-a860-42fc-8f5c-4572522c2f56.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6416 bytes)
Hash
585e7e56aed6b2f2f5e658f46bb791c4
34b768eb68f6cb850ff984fd687096e089649523
5412ba902e667571b0bbb3879ba6b9ad39501abce59381e84e6aa09779e7198b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F741da48c-a860-42fc-8f5c-4572522c2f56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6416
x-amzn-requestid: f5456dd6-8459-4a19-a9b5-b7b567fceb01
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cik2pG5aoAMFrVg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a81c3-0923232b35133f471332062b;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 22:52:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8TZjwYhWWdmfZcne3lTU9GR4TqsEjoslXu5WxuF0arKiup8-kBjqbQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 23:08:35 GMT
age: 16855
etag: "34b768eb68f6cb850ff984fd687096e089649523"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F690354e1-4f19-43a3-a840-dac23e2cbe16.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10454 bytes)
Hash
94556ef834fbd97092ea3e546fece90d
3f75442d8577c6272b9a3fdf2c5d1305c5e02703
0e49c3b246f4f999404e408e5326c636584f18ddaeec4ff50ffdd74ad48b9dd3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F690354e1-4f19-43a3-a840-dac23e2cbe16.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10454
x-amzn-requestid: 3c95e941-d127-43a5-a338-7fff4e751367
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTPfcG82IAMF2JA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63845f95-4dde51fa769890d057216cfa;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 07:13:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GaPRHeLJCWSLgGsYaCxii5UNLcRbVsBJV-XvSnDid4KzIqGqLWCc7Q==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 08:18:23 GMT
age: 70267
etag: "3f75442d8577c6272b9a3fdf2c5d1305c5e02703"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PIC-TIeTFK_Y2AiqowYT4_8tMuzIKO23lAwx18fYepTf4PIWkmLqkQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 05:20:15 GMT
age: 80955
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10877 bytes)
Hash
dbee75c6c314655f738b57b828bef016
bb36d39c7adf764e8a7dcf7f91125001623975b4
fd40949b9711db01be746d1723f78c2bb04d356063c6249b8b5ae1470532367a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10877
x-amzn-requestid: bebc4f7f-7349-4973-99f5-d6c3b8a27072
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1G2uIAMFryg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-0637a1a946db78074bc19dc3;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wtaahzdJXnHSYwqIlHyqFy-LsdPl1Nh-CThm-x57bU3dUEgrfB1Gvw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:47 GMT
age: 22303
etag: "bb36d39c7adf764e8a7dcf7f91125001623975b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11942 bytes)
Hash
becc8cdba57494c6fe212eb67634e1eb
c8bd6bd9086e0a52b83b89dfd755e7ebba222fb8
fbb25b88b10a818bb0c6ad385b1e5ba54b87672c73bfa8a9c1ecb17dcc689d5a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11942
x-amzn-requestid: ba8a5d03-7796-4c6d-a6df-3cc71b1c5259
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: chqukGmWoAMFtLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a24c3-609dc90d769060d30a16e3df;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 16:16:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: m6j_3bDGFIAHQYzrZ1zXqUb-HbEJ8XCoGH5mgBFOWRbLzoSiuNBnhg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:55 GMT
etag: "c8bd6bd9086e0a52b83b89dfd755e7ebba222fb8"
content-type: image/jpeg
age: 22295
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6119 bytes)
Hash
7ffa12df550123f63b20f67437cd8a04
398fd2d837c73f54c4591b69cd683f29bdf9184a
fd9ac4396488098923c27531295e64475047dd008a901e59915109a73a69f305

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6119
x-amzn-requestid: b0bf3aed-f968-4ebb-953e-35300d74ef16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdCe8GgNIAMFQag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63884ac5-4b20ca67753e65c5232660f5;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 06:33:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: axyk2U1R7AX1RVQmdc303S2S2CUs_RgphyeYPsbGveGHMAjY3KEzdw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 13:19:35 GMT
age: 52195
etag: "398fd2d837c73f54c4591b69cd683f29bdf9184a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-337VFVTX2L&gtm=2oebu0&_p=2058600350&cid=260748137.1670039368&ul=en-us&sr=1280x1024&_s=1&sid=1670039368&sct=1&seg=0&dl=https%3A%2F%2Fsalads.com.br%2Fboa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3D6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25%26session%3D6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&dt=P%C3%A1gina%20n%C3%A3o%20encontrada%20-%20Salad%27s&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-337VFVTX2L&gtm=2oebu0&_p=2058600350&cid=260748137.1670039368&ul=en-us&sr=1280x1024&_s=1&sid=1670039368&sct=1&seg=0&dl=https%3A%2F%2Fsalads.com.br%2Fboa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3D6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25%26session%3D6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&dt=P%C3%A1gina%20n%C3%A3o%20encontrada%20-%20Salad%27s&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-337VFVTX2L&gtm=2oebu0&_p=2058600350&cid=260748137.1670039368&ul=en-us&sr=1280x1024&_s=1&sid=1670039368&sct=1&seg=0&dl=https%3A%2F%2Fsalads.com.br%2Fboa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3D6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25%26session%3D6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&dt=P%C3%A1gina%20n%C3%A3o%20encontrada%20-%20Salad%27s&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://salads.com.br
Connection: keep-alive
Referer: https://salads.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://salads.com.br
date: Sat, 03 Dec 2022 03:49:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Bitter&ver=6.1.1

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Bitter&ver=6.1.1
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Bitter&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 03:49:29 GMT
date: Sat, 03 Dec 2022 03:49:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1

162.241.2.87

200 OK

0 B

URL HTTP/2
salads.com.br/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/css/frontend.min.css?ver=3.8.0

162.241.2.87

200 OK

0 B

URL HTTP/2
salads.com.br/wp-content/plugins/elementor-pro-v3.8.0/assets/css/frontend.min.css?ver=3.8.0
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-pro-v3.8.0/assets/css/frontend.min.css?ver=3.8.0 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:49:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/premium-addons.min.css?ver=4.9.38

162.241.2.87

200 OK

0 B

URL HTTP/2
salads.com.br/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/premium-addons.min.css?ver=4.9.38
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/premium-addons.min.css?ver=4.9.38 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:30:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25

162.241.2.87

404 Not Found

0 B

URL HTTP/2
salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Bank of America

HTTP Headers

GET /boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://salads.com.br/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sat, 03 Dec 2022 03:49:28 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

162.241.2.87

200 OK

0 B

URL HTTP/2
salads.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Nov 2022 16:21:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

162.241.2.87

200 OK

0 B

URL HTTP/2
salads.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:50:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

salads.com.br/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=16612949913.0.3

162.241.2.87

200 OK

0 B

URL HTTP/2
salads.com.br/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=16612949913.0.3
IP
162.241.2.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/chaty/js/cht-front-script.min.js?ver=16612949913.0.3 HTTP/1.1
Host: salads.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/boa/login.php?cmd=login_submit&id=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25&session=6961ae8b3cf0c0b986c0f968e4689d256961ae8b3cf0c0b986c0f968e4689d25
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 14:49:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sat, 03 Dec 2022 03:49:29 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CDM+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBitter%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CDM+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBitter%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CDM+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBitter%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://salads.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 03:49:29 GMT
date: Sat, 03 Dec 2022 03:49:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (39)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations