r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9053
Expires: Tue, 06 Dec 2022 08:24:02 GMT
Date: Tue, 06 Dec 2022 05:53:09 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2459
Cache-Control: max-age=105549
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:09 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:12:18 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 05:20:22 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1967
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9132
Expires: Tue, 06 Dec 2022 08:25:21 GMT
Date: Tue, 06 Dec 2022 05:53:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PtR2+jMO9AXcrqJ0QQHoW44FVnFcfN0DxRAdZFQ+oCbOYa4Q5CyyzZ4+gBEugnaH3hG7QBUWda4=
x-amz-request-id: BDCM85JVJBF3AYHR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 05:46:59 GMT
age: 370
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 05:53:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.mavtechsolar.com.br/macu/macu.com/m.html
108.179.252.44200 OK 104 kB URL HTTP/1.1 www.mavtechsolar.com.br/macu/macu.com/m.html
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (25760), with CRLF line terminators
Size 104 kB (104011 bytes)
Hash a521c523503b2bbe3fe2707b9e0734b3
92ec5219be0a49db9ad73a07c674062a4cf9841e
3cb9bd2ec637ffdaf127e45dffd6eca73642fdaa0f0cd2e1f396c96e55b96a7a
Analyzer Verdict Alert fortinet Phishing
GET /macu/macu.com/m.html HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 05:53:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=0, public
Expires: Tue, 06 Dec 2022 05:53:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: WP Rocket/3.10.7
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
use.typekit.net/cvd1zmo.css
23.36.76.122200 OK 686 B URL HTTP/2 use.typekit.net/cvd1zmo.css
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash 16792e2de31566f6cefcf218d801da01
1b45a1423a1c3c29fc78978c301562b5ff946d1f
0f754cc70b406fe48f7088393e8691a33fcfe2f491ff43a18353fdc14e9fb665
GET /cvd1zmo.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 686
date: Tue, 06 Dec 2022 05:53:09 GMT
X-Firefox-Spdy: h2
img.en25.com/i/elqCfg.min.js
104.66.120.119200 OK 2.2 kB URL HTTP/1.1 img.en25.com/i/elqCfg.min.js
IP 104.66.120.119:0
File type ASCII text, with very long lines (6080), with no line terminators
Hash 653932b9065b662394993fd19677a932
854c6c3b96fc647f07bf9a1698387d1253bcb61c
ba8a6983167c051ebdd701cb59293a88346b84f2a9802f59ecc75ca49f383a7d
GET /i/elqCfg.min.js HTTP/1.1
Host: img.en25.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
HTTP/1.1 200 OK
Pragma: no-cache
Content-Type: application/x-javascript
Last-Modified: Mon, 03 Oct 2022 17:55:36 GMT
Accept-Ranges: bytes
ETag: "ff37a05751d7d81:0"
P3P: CP="IDC DSP COR DEVa TAIa OUR BUS PHY ONL UNI COM NAV CNT STA",
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex, nofollow
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: no-store
Expires: Tue, 06 Dec 2022 05:53:09 GMT
Date: Tue, 06 Dec 2022 05:53:09 GMT
Content-Length: 2183
Connection: keep-alive
wsv3cdn.audioeye.com/build/jquery.bundle.js?cb=b4842f8
104.18.24.76301 Moved Permanently 0 B URL HTTP/1.1 wsv3cdn.audioeye.com/build/jquery.bundle.js?cb=b4842f8
IP 104.18.24.76:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /build/jquery.bundle.js?cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 06 Dec 2022 06:53:10 GMT
Location: https://wsv3cdn.audioeye.com/build/jquery.bundle.js?cb=b4842f8
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7752c275be5a0b41-OSL
wsv3cdn.audioeye.com/build/startup.bundle.js?cb=b4842f8
104.18.24.76301 Moved Permanently 0 B URL HTTP/1.1 wsv3cdn.audioeye.com/build/startup.bundle.js?cb=b4842f8
IP 104.18.24.76:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /build/startup.bundle.js?cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 06 Dec 2022 06:53:10 GMT
Location: https://wsv3cdn.audioeye.com/build/startup.bundle.js?cb=b4842f8
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7752c275c89db500-OSL
p.typekit.net/p.css?s=1&k=cvd1zmo&ht=tk&f=39680.39685.39687&a=1540528&app=typekit&e=css
23.36.76.122200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=cvd1zmo&ht=tk&f=39680.39685.39687&a=1540528&app=typekit&e=css
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=cvd1zmo&ht=tk&f=39680.39685.39687&a=1540528&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: text/css
cross-origin-resource-policy: cross-origin
etag: "613bee4d-5"
last-modified: Fri, 10 Sep 2021 23:46:21 GMT
server: nginx
content-length: 5
unused62: 8096267
date: Tue, 06 Dec 2022 05:53:10 GMT
X-Firefox-Spdy: h2
www.macu.com/MACU/Stylesheets/font-awesome.min.css
45.60.46.50301 Moved Permanently 0 B URL HTTP/2 www.macu.com/MACU/Stylesheets/font-awesome.min.css
IP 45.60.46.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /MACU/Stylesheets/font-awesome.min.css HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://www.macu.com/media/Stylesheets/font-awesome.min.css?
content-length: 0
X-Firefox-Spdy: h2
www.macu.com/MACU/Stylesheets/jquery.smartbanner.css
45.60.46.50301 Moved Permanently 0 B URL HTTP/2 www.macu.com/MACU/Stylesheets/jquery.smartbanner.css
IP 45.60.46.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /MACU/Stylesheets/jquery.smartbanner.css HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://www.macu.com/media/Stylesheets/jquery.smartbanner.css?
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 716796f726dc7df154896cac3af089b6
0c65362a7a7ffe91dd9258eabbe0ab3b61fe77ef
ff1961d969cc1ffbdcb008145a35b921bd6795e18a4d6ba467a4d63712093988
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 527
Cache-Control: max-age=149650
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638e7c49-139"
Expires: Wed, 07 Dec 2022 23:27:20 GMT
Last-Modified: Mon, 05 Dec 2022 23:18:33 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 313
code.jquery.com/jquery-3.3.1.slim.min.js
69.16.175.10200 OK 24 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.slim.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (65247)
Hash 0f2e7d37e730fdbb1d8a1e8638529ecb
c21d16978a858baa75be15cb7e799ff000929429
cc938c08b93e67c94c68995709f52133c62cac78991f42058503b9c3d9e4b0b0
GET /jquery-3.3.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-encoding: gzip
content-length: 24038
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1111d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670305990.dop225.sk1.t,1670305990.cds237.sk1.hn,1670305990.cds230.sk1.c
X-Firefox-Spdy: h2
www.mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:09 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 3f4ef8a54bffe08abfd72fbbe3b259e8
28770087be63936aabfdd9d802739767c8fca454
642f68596c1c285397713d2b1147f77a94a5e2eadcb8b18632133f1f87276639
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6519
Cache-Control: max-age=145232
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638e539f-118"
Expires: Wed, 07 Dec 2022 22:13:42 GMT
Last-Modified: Mon, 05 Dec 2022 20:25:03 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280
www.macu.com/media/Stylesheets/font-awesome.min.css?
45.60.46.50301 Moved Permanently 0 B URL HTTP/2 www.macu.com/media/Stylesheets/font-awesome.min.css?
IP 45.60.46.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /media/Stylesheets/font-awesome.min.css? HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
location: https://www.macu.com/media/Stylesheets/font-awesome.min.css
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 3f4ef8a54bffe08abfd72fbbe3b259e8
28770087be63936aabfdd9d802739767c8fca454
642f68596c1c285397713d2b1147f77a94a5e2eadcb8b18632133f1f87276639
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6308
Cache-Control: max-age=145021
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638e539f-118"
Expires: Wed, 07 Dec 2022 22:10:11 GMT
Last-Modified: Mon, 05 Dec 2022 20:25:03 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:09 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d9339bfb0393ef6575db48a0481f2556
351fa573fc3ea6626f3258061743cad65e0c4fce
5890254c4fac81ab169d788b9e5f9100f36e1ea2a2a6fe9036c45122aff062b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 37d7e15f5b1dcefb0bad6fd6e24218de
0192e54b3a2648a39475eef74ae63d7ad6fed01b
e28e8202e6c49ed220b8b9b030c17f215571da4a9ad9ec9235cc54b14260aa31
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638dc16b-118"
Server: ECS (amb/6BA6)
Content-Length: 280
cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js
104.17.25.14200 OK 4.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js
IP 104.17.25.14:0
Hash e40e054c5726f042bad463e3774a2777
5c9413b72837a440b327444104830c35ae3b052c
fcc8a86d2e89e8fbe9815d50c23bf205191ab8a6c0bec67358cd975d94283ff8
GET /ajax/libs/jquery.mask/1.14.10/jquery.mask.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 4517
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-4e98"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4111105
expires: Sun, 26 Nov 2023 05:53:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ixaqmy5Aoz6zWfzTqOagxPk3IVynt0ax08O%2Fg9MpfxMEqxOWMxdPwe9zrUo%2BDgZdrIo51qg9rvA6G8jkLMDItV5Tq%2BEsKAc2jAvNg6K1%2FhuzhsbnrrJ%2Fhka0aIIEyrPZxhCpml0o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7752c2770bbfb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.macu.com/media/Stylesheets/jquery.smartbanner.css?
45.60.46.50301 Moved Permanently 0 B URL HTTP/2 www.macu.com/media/Stylesheets/jquery.smartbanner.css?
IP 45.60.46.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /media/Stylesheets/jquery.smartbanner.css? HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
location: https://www.macu.com/media/Stylesheets/jquery.smartbanner.css
content-length: 0
X-Firefox-Spdy: h2
wsv3cdn.audioeye.com/css/launcher.css?cb=b4842f8
104.18.24.76404 Not Found 29 B URL HTTP/2 wsv3cdn.audioeye.com/css/launcher.css?cb=b4842f8
IP 104.18.24.76:0
File type ASCII text, with no line terminators
Hash e8eacfe6d5c10c70b79875a1e49e70f4
406e1c098ed111fe1e5eb5aed29fbb3e5ab27163
8b3bc42630ce797308e3ad9ac29de81ae883fa51d646e0c84a1165b27646cffd
GET /css/launcher.css?cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 29
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7752c27609050b61-OSL
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/979871099/?random=1639145706877&cv=9&fst=1639145706877&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=1&u_tz=60&u_java=false&u_nplug=0&u_nmime=0>m=2wgc10&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.macu.com%2F&tiba=Mountain%20America%20Credit%20Union%20in%20Utah%20%26%20the%20West&hn=www.google.com&async=1&rfmt=3&fmt=4
216.58.211.2200 OK 955 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/979871099/?random=1639145706877&cv=9&fst=1639145706877&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=1&u_tz=60&u_java=false&u_nplug=0&u_nmime=0>m=2wgc10&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.macu.com%2F&tiba=Mountain%20America%20Credit%20Union%20in%20Utah%20%26%20the%20West&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 216.58.211.2:0
File type ASCII text, with very long lines (2183), with no line terminators
Hash a7ef64cd0f2382ccc12ae6fa4004ed70
de765b1ad901ca4cf9d89acead5fb64893cf4ab5
029406bf0fe40e1b6df3e373a48d96a28bd43f0bf3925ecd7c2b8a7126fa2383
GET /pagead/viewthroughconversion/979871099/?random=1639145706877&cv=9&fst=1639145706877&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=1&u_tz=60&u_java=false&u_nplug=0&u_nmime=0>m=2wgc10&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.macu.com%2F&tiba=Mountain%20America%20Credit%20Union%20in%20Utah%20%26%20the%20West&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Dec 2022 05:53:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 955
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 06-Dec-2022 06:08:10 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
wsv3cdn.audioeye.com/build/compliance-min.css?cb=b4842f8
104.18.24.76404 Not Found 29 B URL HTTP/2 wsv3cdn.audioeye.com/build/compliance-min.css?cb=b4842f8
IP 104.18.24.76:0
File type ASCII text, with no line terminators
Hash e8eacfe6d5c10c70b79875a1e49e70f4
406e1c098ed111fe1e5eb5aed29fbb3e5ab27163
8b3bc42630ce797308e3ad9ac29de81ae883fa51d646e0c84a1165b27646cffd
GET /build/compliance-min.css?cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 29
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7752c276291c0b61-OSL
X-Firefox-Spdy: h2
wsv3cdn.audioeye.com/scripts/loader.js?d=www.macu.com&lang=en&cb=b4842f8
104.18.24.76404 Not Found 29 B URL HTTP/2 wsv3cdn.audioeye.com/scripts/loader.js?d=www.macu.com&lang=en&cb=b4842f8
IP 104.18.24.76:0
File type ASCII text, with no line terminators
Hash e8eacfe6d5c10c70b79875a1e49e70f4
406e1c098ed111fe1e5eb5aed29fbb3e5ab27163
8b3bc42630ce797308e3ad9ac29de81ae883fa51d646e0c84a1165b27646cffd
GET /scripts/loader.js?d=www.macu.com&lang=en&cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 29
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7752c27628ed0b06-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b9e460c077e837add10b7e423b149f6e
cde6854da1c7108d3d6c8184f9a39d2d20ba0c78
874a4babc2bf54d880f94425142d3cce3151d964efd54c8bffec992b064c1be3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2253
Cache-Control: max-age=92739
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638d973c-117"
Expires: Wed, 07 Dec 2022 07:38:49 GMT
Last-Modified: Mon, 05 Dec 2022 07:01:16 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
code.jquery.com/jquery-3.2.1.min.js
69.16.175.10200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-3.2.1.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32058)
Hash 148f8d3ffd9cc02048c5f4d1cc83c407
9f2b89cfd151be6a29b4d43ad64d164fb8471046
4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e
GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-encoding: gzip
content-length: 30125
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670305990.dop230.sk1.t,1670305990.cds250.sk1.hn,1670305990.cds222.sk1.c
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
104.17.25.14200 OK 6.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (20322)
Hash df9fe6d48e380554eb0ec9687bed3246
207263d754220200c1916edfbda262f62223ecf5
91d57502b7260e6752c2b5f1636d77707929fa9f09da28589691e61816a448f9
GET /ajax/libs/popper.js/1.14.0/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 6458
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-500f"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 391555
expires: Sun, 26 Nov 2023 05:53:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V3Ej96mqoQwx7JlMsLiVDhrEGa8JdwwQO7A2%2FURTAKcCwCADwCL3pOKSpTj3nQlEkZqhzQNR%2FaLB4YN%2F7PasNxr%2BHZi1cprV41ff514shKXLQNu5vboAwDlUADQHgWvbCzJmGBTR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7752c2776905b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js
152.199.19.160200 OK 30 kB URL HTTP/2 ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js
IP 152.199.19.160:0
File type ASCII text, with very long lines (65451)
Hash a263be51483c81a54aa8c85104a93e55
555a54a73531c553bd2aede6abc25c128b63312e
b2f13ad730928958c09d89e6e32bb6a227c0260d032a39ca464d998a59e57a66
GET /ajax/jQuery/jquery-3.3.1.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 23307485
cache-control: public,max-age=31536000
content-type: application/javascript
date: Tue, 06 Dec 2022 05:53:10 GMT
etag: "80288516b793d31:0"
last-modified: Mon, 22 Jan 2018 19:27:49 GMT
server: ECAcc (ska/F7A8)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30394
X-Firefox-Spdy: h2
www.mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /dist/module/chat.bundle.9f4001edfbe0129311de.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 3f4ef8a54bffe08abfd72fbbe3b259e8
28770087be63936aabfdd9d802739767c8fca454
642f68596c1c285397713d2b1147f77a94a5e2eadcb8b18632133f1f87276639
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6532
Cache-Control: max-age=145245
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638e539f-118"
Expires: Wed, 07 Dec 2022 22:13:55 GMT
Last-Modified: Mon, 05 Dec 2022 20:25:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280
www.mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
analytics.twitter.com/i/adsct?type=javascript&version=2.0.4&p_id=Twitter&p_user_id=0&txn_id=o3vv6&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0&event_id=5ef5987f-e377-45de-b5cd-af2abaa2e812&tw_document_href=https%3A%2F%2Fwww.macu.com%2F&tpx_cb=twttr.conversion.loadPixels
104.244.42.67200 OK 57 B URL HTTP/2 analytics.twitter.com/i/adsct?type=javascript&version=2.0.4&p_id=Twitter&p_user_id=0&txn_id=o3vv6&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0&event_id=5ef5987f-e377-45de-b5cd-af2abaa2e812&tw_document_href=https%3A%2F%2Fwww.macu.com%2F&tpx_cb=twttr.conversion.loadPixels
IP 104.244.42.67:0
File type ASCII text, with no line terminators
Hash d6cff1cc2ef6dbf2da25fade3bab8c65
c96e2822fd1459b7f171d86d88dcd76bc167c113
8d5b13815d3883037c78495a28abfe1815bfc702cade0cd8a7592be793e72996
GET /i/adsct?type=javascript&version=2.0.4&p_id=Twitter&p_user_id=0&txn_id=o3vv6&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0&event_id=5ef5987f-e377-45de-b5cd-af2abaa2e812&tw_document_href=https%3A%2F%2Fwww.macu.com%2F&tpx_cb=twttr.conversion.loadPixels HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
date: Tue, 06 Dec 2022 05:53:10 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_gyL4WlusV67wGwNbslBz7w=="; Max-Age=63072000; Expires=Thu, 05 Dec 2024 05:53:10 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: application/javascript;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 57
content-encoding: gzip
x-transaction-id: d662f0f589d2f759
strict-transport-security: max-age=631138519
x-response-time: 110
x-connection-hash: 28d538984cb5fbb0bc6d79a30fad4bea5c465975a55d63e2569afadd08dc4643
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2414bc9e2993b455badf154b25b4dd7a
509bca703da28d3c5747ef35d78c489a8ca4006b
cd4269727da96037d4ea17c904bb3f31c88801539c25096b4ba031fc219efd15
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=155597
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638e9593-1d7"
Expires: Thu, 08 Dec 2022 01:06:27 GMT
Last-Modified: Tue, 06 Dec 2022 01:06:27 GMT
Server: nginx
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d9339bfb0393ef6575db48a0481f2556
351fa573fc3ea6626f3258061743cad65e0c4fce
5890254c4fac81ab169d788b9e5f9100f36e1ea2a2a6fe9036c45122aff062b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b9e460c077e837add10b7e423b149f6e
cde6854da1c7108d3d6c8184f9a39d2d20ba0c78
874a4babc2bf54d880f94425142d3cce3151d964efd54c8bffec992b064c1be3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2253
Cache-Control: max-age=92739
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638d973c-117"
Expires: Wed, 07 Dec 2022 07:38:49 GMT
Last-Modified: Mon, 05 Dec 2022 07:01:16 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 05:08:58 GMT
cache-control: public,max-age=3600
age: 2652
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.mavtechsolar.com.br/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
elq.macu.com/visitor/v200/svrGP?pps=50&siteid=2213&DLKey=f30397214b8a46999ee05dc731734107&DLLookup=&ms=342&firstPartyCookieDomain=elq.macu.com&elqGUID=FA460857BF194EDC924F7D6D6CD86BB4
142.0.173.12200 OK 0 B URL HTTP/1.1 elq.macu.com/visitor/v200/svrGP?pps=50&siteid=2213&DLKey=f30397214b8a46999ee05dc731734107&DLLookup=&ms=342&firstPartyCookieDomain=elq.macu.com&elqGUID=FA460857BF194EDC924F7D6D6CD86BB4
IP 142.0.173.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /visitor/v200/svrGP?pps=50&siteid=2213&DLKey=f30397214b8a46999ee05dc731734107&DLLookup=&ms=342&firstPartyCookieDomain=elq.macu.com&elqGUID=FA460857BF194EDC924F7D6D6CD86BB4 HTTP/1.1
Host: elq.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-store
Pragma: no-cache
Content-Type: application/javascript
Expires: -1
X-Robots-Tag: noindex, nofollow
X-Xss-Protection: 1; mode=block
P3P: CP="IDC DSP COR DEVa TAIa OUR BUS PHY ONL UNI COM NAV CNT STA",
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 05:53:09 GMT
Content-Length: 0
stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js
104.18.10.207200 OK 15 kB URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js
IP 104.18.10.207:0
File type ASCII text, with very long lines (50395)
Hash ce18099669e4e0800f3986bce7d8672d
2584819a4ad8c7eb44027b2ba6eb680ba8dffbf9
fa45b1926cb6a10ebfe1dbb4234d3659ab4031117825044ff81d1a540be56c3a
GET /bootstrap/4.1.0/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ce6e785579ae4cb555c9de311d1b9271"
last-modified: Mon, 25 Jan 2021 22:04:05 GMT
cdn-cachedat: 11/15/2022 10:39:35
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1054
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 1680d8f13e953e5471785231ef08c985
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7752c2778a120afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.mavtechsolar.com.br/ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2455
Cache-Control: max-age=100477
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 09:47:47 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
collector.fraudmap.net/fs/e517993e82e64ad6428327ea680b88b3/validate/validate.js
63.128.130.61200 OK 0 B URL HTTP/1.1 collector.fraudmap.net/fs/e517993e82e64ad6428327ea680b88b3/validate/validate.js
IP 63.128.130.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fs/e517993e82e64ad6428327ea680b88b3/validate/validate.js HTTP/1.1
Host: collector.fraudmap.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 05:53:09 GMT
Server: Apache
Content-Length: 0
Strict-Transport-Security: max-age=16070400; includeSubDomains
X-XSS-Protection: 1
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
wsv3cdn.audioeye.com/css/aggregate.css?files=default|core&cb=b4842f8
104.18.24.76404 Not Found 29 B URL HTTP/2 wsv3cdn.audioeye.com/css/aggregate.css?files=default|core&cb=b4842f8
IP 104.18.24.76:0
File type ASCII text, with no line terminators
Hash e8eacfe6d5c10c70b79875a1e49e70f4
406e1c098ed111fe1e5eb5aed29fbb3e5ab27163
8b3bc42630ce797308e3ad9ac29de81ae883fa51d646e0c84a1165b27646cffd
GET /css/aggregate.css?files=default|core&cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 29
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7752c27639240b61-OSL
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.149.51.98101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.51.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MJXL1PrBf5gRdzgROwz0lg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tE6BJx/2OzOl8teMDsfmczwsCLI=
www.mavtechsolar.com.br/ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/ScriptResource.axd?d=X6kQKInQS5YQqruiTh57iHeaqGhylJacXh4DuBuN6RnvjSaza2opTyZ6Y4V1oLnlg8kmrzbbyH8JXutTnG4tsxpEVou2BBknGi2YKIuxDxcvYrGTfcwhVL_S4qTzGg8v0&t=27679117
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/ScriptResource.axd?d=X6kQKInQS5YQqruiTh57iHeaqGhylJacXh4DuBuN6RnvjSaza2opTyZ6Y4V1oLnlg8kmrzbbyH8JXutTnG4tsxpEVou2BBknGi2YKIuxDxcvYrGTfcwhVL_S4qTzGg8v0&t=27679117
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ScriptResource.axd?d=X6kQKInQS5YQqruiTh57iHeaqGhylJacXh4DuBuN6RnvjSaza2opTyZ6Y4V1oLnlg8kmrzbbyH8JXutTnG4tsxpEVou2BBknGi2YKIuxDxcvYrGTfcwhVL_S4qTzGg8v0&t=27679117 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=X6kQKInQS5YQqruiTh57iHeaqGhylJacXh4DuBuN6RnvjSaza2opTyZ6Y4V1oLnlg8kmrzbbyH8JXutTnG4tsxpEVou2BBknGi2YKIuxDxcvYrGTfcwhVL_S4qTzGg8v0&t=27679117
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/MACU/Scripts/Lib/tippy.all.min.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/MACU/Scripts/Lib/tippy.all.min.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /MACU/Scripts/Lib/tippy.all.min.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/MACU/Scripts/Lib/tippy.all.min.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 5c2f6a3adc06848841a272911bd8fc7c
140bf8e3b9d0342929ebb232a35fb1f4ac2478de
e96255e3c665e644a8ab482f5cf896af5d7b001c4c13f955d03155fbdd72f46e
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8925
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash e44ff30b210842377ff5391013075a0e
b836ae3b6878e482c4d16cba2e6b37e9671cc7d0
065aad020a8c19f6938fab7d3b1652240cd7e7733c3f99758e6c01997409d195
GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8917
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 5c2f6a3adc06848841a272911bd8fc7c
140bf8e3b9d0342929ebb232a35fb1f4ac2478de
e96255e3c665e644a8ab482f5cf896af5d7b001c4c13f955d03155fbdd72f46e
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8925
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/dist/module/main.bundle.6748b61948611561aebb.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/dist/module/main.bundle.6748b61948611561aebb.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /dist/module/main.bundle.6748b61948611561aebb.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/dist/module/main.bundle.6748b61948611561aebb.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/MACU/Scripts/Lib/skipto.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/MACU/Scripts/Lib/skipto.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /MACU/Scripts/Lib/skipto.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/MACU/Scripts/Lib/skipto.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/macu/macu.com/js/actions.js
108.179.252.44404 Not Found 836 B URL HTTP/1.1 www.mavtechsolar.com.br/macu/macu.com/js/actions.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash e73571aebce42792b40325ac9117da29
d3fe79abd3a925079c1133a0d3c46fd8941514f7
2726faa315039af16d833fbca9694060c9cece0cbe9dd3069bdbba15d073aef2
Analyzer Verdict Alert fortinet Phishing
GET /macu/macu.com/js/actions.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:11 GMT
Server: Apache
Last-Modified: Tue, 04 Oct 2022 14:01:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 836
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html
cloud.typography.com/689828/7556792/css/fonts.css
23.14.4.143403 Forbidden 146 B URL HTTP/1.1 cloud.typography.com/689828/7556792/css/fonts.css
IP 23.14.4.143:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bfb5c79eb1ead7b710cc38f95ff4f30e
ddda6c54f45b871a51e7fe20eca7e3ae1a15b82c
2cf1bb309d429fa4e99f311a284b152424f8ff2c4fb5f09737f3c36965052af7
GET /689828/7556792/css/fonts.css HTTP/1.1
Host: cloud.typography.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Server: AkamaiNetStorage
Content-Length: 146
Content-Type: text/html
X-hfj-bad-referrer: http://www.mavtechsolar.com.br/
ETag: "83b6a7ceb375fc5067a4e2dd33927406:1539106211"
Cache-Control: max-age=300
Date: Tue, 06 Dec 2022 05:53:11 GMT
Connection: keep-alive
mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
108.179.252.44404 Not Found 9.0 kB URL HTTP/1.1 mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 99d345998108cb7a353dbafa9f13fec0
5f795949761ca5578524cd11d343a83713b805a6
16cf1989a5a8e75ea2caf2017e0ed3263aea432c30bbbc634592584cb5c8b29f
Analyzer Verdict Alert fortinet Phishing
GET /dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8960
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9158
Expires: Tue, 06 Dec 2022 08:25:50 GMT
Date: Tue, 06 Dec 2022 05:53:12 GMT
Connection: keep-alive
mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 0b14b48c23dd193e77285c4b352ee687
8a85ed36686522711fa25fe18ccb724eba175f9b
0c4ef68b99feacc24861e5d372706b83990612797b6814d6d92cfecc2b0cfe67
Analyzer Verdict Alert fortinet Phishing
GET /dist/module/chat.bundle.9f4001edfbe0129311de.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8942
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 5c2f6a3adc06848841a272911bd8fc7c
140bf8e3b9d0342929ebb232a35fb1f4ac2478de
e96255e3c665e644a8ab482f5cf896af5d7b001c4c13f955d03155fbdd72f46e
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8925
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9158
Expires: Tue, 06 Dec 2022 08:25:50 GMT
Date: Tue, 06 Dec 2022 05:53:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9158
Expires: Tue, 06 Dec 2022 08:25:50 GMT
Date: Tue, 06 Dec 2022 05:53:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9158
Expires: Tue, 06 Dec 2022 08:25:50 GMT
Date: Tue, 06 Dec 2022 05:53:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9158
Expires: Tue, 06 Dec 2022 08:25:50 GMT
Date: Tue, 06 Dec 2022 05:53:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7f2c354a00ab51d4a41221b6bf191c10
01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4
7d3c8417e1db0db41ceb8b4bf3f506864392dd1ad29319a06a8a6055f6f2ed12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11352
x-amzn-requestid: 7c3fc7bb-eb1f-46ec-8e92-b6ffc6261848
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwuF1ToAMFiIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d1-7c53152a279f00595b9886bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:25 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aYf5d6wAJlPSXVwF5uQXUb1g_65z-v6tInk7IF64bBV-w31d3MKeIQ==
via: 1.1 b6d577696b14c86cbfeb5b3459f38c50.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:23 GMT
age: 27049
etag: "01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.macu.com/media/Stylesheets/font-awesome.min.css
45.60.46.50200 OK 18 kB URL HTTP/2 www.macu.com/media/Stylesheets/font-awesome.min.css
IP 45.60.46.50:0
Hash 2806578a161d71864d7417b700305e4d
917ab42d642c15c6b4d430a0ce5e850e76f226d6
5e6a9a3e20c2066a71acc751bb8200ecce8555d04eb10965ef0c86ef92b9b1f3
GET /media/Stylesheets/font-awesome.min.css HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Tue, 06 Dec 2022 05:53:11 GMT
last-modified: Tue, 06 Dec 2022 00:17:49 GMT
etag: "c8d466bdaef05a158194dfc6885edca7"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 3529bf84e9522012233c3dd2a59fdfe8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: _ZP__ao5UViAAAbYjxfkzfZZk5xb9Htjd7ZLF3w6jvL56zsuWE4UOQ==
set-cookie: nlbi_1224669=gHn7ASp+0mtcuPCrQbRnuQAAAACojGUq1Qf6Lq7S2w3XZ75n; path=/; Domain=.macu.com
visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
incap_ses_275_1224669=lI1sGCnRmQkiHh9rlP/QA8bYjmMAAAAAZasAvtFLvwgekT5I+6Qjeg==; path=/; Domain=.macu.com
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 6-32856639-32856249 2NYN RT(1670305990006 231) q(0 0 0 0) r(4 4) U18
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e11524d75503e35c404d6c9a12ac540
5626b75f5c2523f1a0fc301839a06a4e2407f106
d5eb74d026014c0a68893bde1107a9a111b1f0af835e28bb740308017ef80b7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9354
x-amzn-requestid: fb2dad44-2f8c-4f02-bbc5-405e9586e5af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmctYGLdoAMFyDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e55-28b5680933de0ff4208240be;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6jWrhftx7tANXoWkKtCCjzm66zJDY13bpoA-7qVaZJNHEGsJS8dniw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 04:05:41 GMT
age: 6451
etag: "5626b75f5c2523f1a0fc301839a06a4e2407f106"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01b6b798-4c76-47d4-ae22-c8967b0f2c5c.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01b6b798-4c76-47d4-ae22-c8967b0f2c5c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9fda84db003d0cfc70d73dcb6a3763dd
5c54b4ca3db1c975b3ad7f780f0ebdc867fc2ef4
f00aa6b88dd85164d8f6ee685937a3ca8039b98b442a2e6aede1c4c421b4fc4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01b6b798-4c76-47d4-ae22-c8967b0f2c5c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8997
x-amzn-requestid: 54d7ed8c-119c-4583-929c-fd053524814c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csT_8F78IAMFY6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66cc-3d9816725e7e0b1b3404bc4a;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:46:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6nXJg548cHz0REe43NepPeMmnFBAiWO_Fwy2PCKbco4XhNZnBs0Jhw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:46:52 GMT
etag: "5c54b4ca3db1c975b3ad7f780f0ebdc867fc2ef4"
content-type: image/jpeg
age: 29180
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e5de346-6863-4521-9b1c-e74cf4df1d53.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e5de346-6863-4521-9b1c-e74cf4df1d53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2409529ecac5140de749d864da85af0d
99f431b4ca446996dbacb969440e2ecfb11fd9e0
81b379b16874d6644b0cf63e02c5174e44a40ab7cb4f4727bb96ad44bfcaa72f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e5de346-6863-4521-9b1c-e74cf4df1d53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6422
x-amzn-requestid: 7c6de5da-a534-4b39-ba5a-b3613404bbaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnAaTEHuIAMFuKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c4774-01fdb62864e594235b569f78;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:08:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iNIswtAzDZrcEhTO1li8CCP7VfwpfFdP8gJPCcm222TGPA2JSlMJRw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 07:25:07 GMT
age: 80885
etag: "99f431b4ca446996dbacb969440e2ecfb11fd9e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d72fb8d20c29763234c2817b119d11b
d4924ec714f5157bcb2fddcb5f768188a3dd37dc
e9aa59142e0673ed3f58b36beaca48213c678dbe4655f9c4b64581cb0f6f22f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12830
x-amzn-requestid: 66f5f2fa-8472-4484-bbea-20ece7e98b1f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcsxGDyIAMFX4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e51-146167697890d9312ce3dbac;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WMeay1i2pxnboCB3Qcwb2ray4tnyEzO89tQrHCfGdI3s9kJsMWvzBw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 04:19:52 GMT
age: 5600
etag: "d4924ec714f5157bcb2fddcb5f768188a3dd37dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mavtechsolar.com.br/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 3c33b168bfb896e1914ec05e5340daef
952f8732089e29a83faf3db8f866af2a390a6639
a60f15ea90991351fdb0c013d9e90aeb8b5850846cf42c8d35fd3c8b814bf2f7
GET /ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:11 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8918
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/dist/module/main.bundle.6748b61948611561aebb.js
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/dist/module/main.bundle.6748b61948611561aebb.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 088ad663ec0ed6ccba422e00a0bbdcea
27dd831de1b28a2ea1d376eb956db065af816c18
098610a24b6b6887b1cee59488cd2db6a4235245e175c1af934ad9af4d3c02bd
Analyzer Verdict Alert fortinet Phishing
GET /dist/module/main.bundle.6748b61948611561aebb.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.mavtechsolar.com.br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:11 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8942
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 3c33b168bfb896e1914ec05e5340daef
952f8732089e29a83faf3db8f866af2a390a6639
a60f15ea90991351fdb0c013d9e90aeb8b5850846cf42c8d35fd3c8b814bf2f7
GET /ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:11 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8918
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 5c2f6a3adc06848841a272911bd8fc7c
140bf8e3b9d0342929ebb232a35fb1f4ac2478de
e96255e3c665e644a8ab482f5cf896af5d7b001c4c13f955d03155fbdd72f46e
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:11 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8925
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/media/Icons/icon-budget-accounting.svg
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/media/Icons/icon-budget-accounting.svg
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /media/Icons/icon-budget-accounting.svg HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/media/Icons/icon-budget-accounting.svg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/macu/macu.com/cmss/script/custom/fonts/images/img/loading.gif
108.179.252.44200 OK 39 kB URL HTTP/1.1 www.mavtechsolar.com.br/macu/macu.com/cmss/script/custom/fonts/images/img/loading.gif
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 200 x 200\012- data
Hash d10ef01e81faa2c2d812bdf670b4e072
77d09a57b2091fd7665dff763a5eab23e0ff907e
5e3d5246b17e19e65385092db07554d8e1c5c4a226a6d7f97824b8e1e8571e34
GET /macu/macu.com/cmss/script/custom/fonts/images/img/loading.gif HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Last-Modified: Sat, 11 Aug 2018 16:03:52 GMT
Accept-Ranges: bytes
Content-Length: 38636
Cache-Control: max-age=10368000, public
Expires: Wed, 05 Apr 2023 05:53:12 GMT
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/gif
www.mavtechsolar.com.br/media/Icons/icon-security-padlock.svg
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/media/Icons/icon-security-padlock.svg
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /media/Icons/icon-security-padlock.svg HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/media/Icons/icon-security-padlock.svg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/media/Icons/icon-map-location.svg
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/media/Icons/icon-map-location.svg
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /media/Icons/icon-map-location.svg HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/media/Icons/icon-map-location.svg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/media/Icons/icon-fraud-detection.svg
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/media/Icons/icon-fraud-detection.svg
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /media/Icons/icon-fraud-detection.svg HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/media/Icons/icon-fraud-detection.svg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 3c33b168bfb896e1914ec05e5340daef
952f8732089e29a83faf3db8f866af2a390a6639
a60f15ea90991351fdb0c013d9e90aeb8b5850846cf42c8d35fd3c8b814bf2f7
GET /ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8918
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/media/Icons/icon-account.svg
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/media/Icons/icon-account.svg
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /media/Icons/icon-account.svg HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/media/Icons/icon-account.svg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 3c33b168bfb896e1914ec05e5340daef
952f8732089e29a83faf3db8f866af2a390a6639
a60f15ea90991351fdb0c013d9e90aeb8b5850846cf42c8d35fd3c8b814bf2f7
GET /ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8918
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 3c33b168bfb896e1914ec05e5340daef
952f8732089e29a83faf3db8f866af2a390a6639
a60f15ea90991351fdb0c013d9e90aeb8b5850846cf42c8d35fd3c8b814bf2f7
GET /ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8918
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/media/Icons/icon-market-prediction.svg
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/media/Icons/icon-market-prediction.svg
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /media/Icons/icon-market-prediction.svg HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/media/Icons/icon-market-prediction.svg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
wsv3cdn.audioeye.com/build/startup.bundle.js?cb=b4842f8
104.18.24.76200 OK 172 kB URL HTTP/2 wsv3cdn.audioeye.com/build/startup.bundle.js?cb=b4842f8
IP 104.18.24.76:0
File type Unicode text, UTF-8 text, with very long lines (64218), with NEL line terminators
Size 172 kB (172054 bytes)
Hash f66711e0bdc73e72ac56fad1ea533647
5ba5bc04207b8fa60c7a2dc647cd2eb4251f446a
aafeb88155b277d957d8b1c088f395dd7b20084646f3089925fabc1e1f639ba2
GET /build/startup.bundle.js?cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:11 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 22:33:35 GMT
etag: W/"9002d-5e4584ee06722-gzip"
vary: Accept-Encoding
cache-control: max-age=63072000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 7752c276994e0b61-OSL
content-encoding: br
X-Firefox-Spdy: h2
mavtechsolar.com.br/ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 3c33b168bfb896e1914ec05e5340daef
952f8732089e29a83faf3db8f866af2a390a6639
a60f15ea90991351fdb0c013d9e90aeb8b5850846cf42c8d35fd3c8b814bf2f7
GET /ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8918
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.macu.com/media/Stylesheets/jquery.smartbanner.css
45.60.46.50200 OK 10 kB URL HTTP/2 www.macu.com/media/Stylesheets/jquery.smartbanner.css
IP 45.60.46.50:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (9381), with CRLF, LF line terminators
Hash f16f35f29033855802dba1bab035b1b4
46011276160bfdbd96dea4e0ca635b058835a99a
0ee637fde240d3edd3f00316e0b5500c29b2dbffd01bb1f1489bf6e15b7e67f2
GET /media/Stylesheets/jquery.smartbanner.css HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Tue, 06 Dec 2022 05:53:11 GMT
last-modified: Tue, 06 Dec 2022 00:17:49 GMT
etag: "d1f9aaa2dcbb9ddbbbbf13314d6c515d"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 ffa40c4091d11859ad05cf9748508c58.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: XOC9-uCaCCbOeY2gmOm87bzQ9K-rx2omMXfMnAYIxDYs8BhxDbTQ-Q==
set-cookie: nlbi_1224669=j2u+OOzvV1JebBw5QbRnuQAAAAAIzPPsD4m2UmegiRjNDZ6o; path=/; Domain=.macu.com
visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
incap_ses_275_1224669=hjRIJTdfjm0iHh9rlP/QA8bYjmMAAAAAJzG4987uFTjz9l9IBP5l5A==; path=/; Domain=.macu.com
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 6-32856639-32853356 2NYN RT(1670305990006 257) q(0 0 0 0) r(5 5) U18
X-Firefox-Spdy: h2
mavtechsolar.com.br/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 8938e1458820b97ee2dbab051d7c5599
db09f901f1e736d4c5fa94b247187677dc584614
a74a96800c373a5aa60aab08a6bbe2b1f262d2e4736313ffc7180b83a7e04671
GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8920
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/media/Icons/icon-budget-accounting.svg
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/media/Icons/icon-budget-accounting.svg
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash c7e5bba38d32cd46737eb6ed5be964fb
dcd5c645d51682761d610ffe97f371f934ec14f2
a263c2f9232778705444e4f1eaf480bb9e03899d4b46447cba9ff47730dd4a16
Analyzer Verdict Alert fortinet Phishing
GET /media/Icons/icon-budget-accounting.svg HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8929
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/MACU/Scripts/Lib/skipto.js
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/MACU/Scripts/Lib/skipto.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 9ec89dc05253473fa4010f7af29bb2ee
3bfb77bc0451e3263bc8e246bd2a15b998e43c79
444150f75ef67fdd9691d468d92f8b1d6e420e84a4e7a8ca4155e0478dd8d8a5
Analyzer Verdict Alert fortinet Phishing
GET /MACU/Scripts/Lib/skipto.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8926
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
108.179.252.44404 Not Found 9.0 kB URL HTTP/1.1 mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 99d345998108cb7a353dbafa9f13fec0
5f795949761ca5578524cd11d343a83713b805a6
16cf1989a5a8e75ea2caf2017e0ed3263aea432c30bbbc634592584cb5c8b29f
Analyzer Verdict Alert fortinet Phishing
GET /dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8960
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/media/Icons/icon-map-location.svg
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/media/Icons/icon-map-location.svg
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash a5d435de0f0c526acc82308a3a0cdfb8
e64822ce12094f641e1f2703772898c53483bfd9
9c7f65e708e531f1fca94a1e60bc389f76b6d55d6808a93eea758f101437aa49
Analyzer Verdict Alert fortinet Phishing
GET /media/Icons/icon-map-location.svg HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8926
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/media/Icons/icon-security-padlock.svg
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/media/Icons/icon-security-padlock.svg
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 38124982bda8f2a2b702ae957a2355bf
e5ff13f365d440433e02a758701d72f15dea6606
a2dd35de7d6fb56b6603ebd5447333d89a7912ba5cfe52e7c75f34e59b1b9340
Analyzer Verdict Alert fortinet Phishing
GET /media/Icons/icon-security-padlock.svg HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8930
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/media/Icons/icon-fraud-detection.svg
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/media/Icons/icon-fraud-detection.svg
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash f11547486b0a6b17bd335ad3aa1d2e09
a44790c4d3a4e0059df7a83bed5474589a19b713
56a89029fc9fdc1a3bed6647100e94689d695ac94eef4cce227bf49dde6e5b77
Analyzer Verdict Alert fortinet Phishing
GET /media/Icons/icon-fraud-detection.svg HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:14 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8928
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/media/Icons/icon-account.svg
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/media/Icons/icon-account.svg
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash fc57a1813cfbadd16d5b7be53b26ca82
fd55a55b7bd7aeb94b2b068cadc08ce8cc34a279
9afe7e0663c72644cd0a39a72910a52cfbe4f4af99028e6a193cffc425143ebe
Analyzer Verdict Alert fortinet Phishing
GET /media/Icons/icon-account.svg HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:14 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8923
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/media/Icons/icon-market-prediction.svg
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/media/Icons/icon-market-prediction.svg
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash bf559b68cb9a54be141b1d004002c2db
1140d555c18592981b7e798ea16c380b4e4be2ff
68a460c364b42679cdaafb3e112131d8a29df304d2c00b0a740dada441ac0f6f
Analyzer Verdict Alert fortinet Phishing
GET /media/Icons/icon-market-prediction.svg HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:14 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8930
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /dist/module/chat.bundle.9f4001edfbe0129311de.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:14 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 0b14b48c23dd193e77285c4b352ee687
8a85ed36686522711fa25fe18ccb724eba175f9b
0c4ef68b99feacc24861e5d372706b83990612797b6814d6d92cfecc2b0cfe67
Analyzer Verdict Alert fortinet Phishing
GET /dist/module/chat.bundle.9f4001edfbe0129311de.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:15 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8942
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.macu.com/media/Fonts/fontawesome-webfont.woff2?v=4.7.0
45.60.46.50200 OK 212 B URL HTTP/2 www.macu.com/media/Fonts/fontawesome-webfont.woff2?v=4.7.0
IP 45.60.46.50:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 185dd5ec503c683da355a50e70f25c68
cf79e1a0b6f763060a526886494db0b1b2e053b7
d02032286070b4dd9d8fbd985a7bdca8af8edf52b89ff177db3bfcb2c8a9c43d
GET /media/Fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: https://www.macu.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
cache-control: no-cache, no-store
content-length: 212
x-iinfo: 6-32856639-0 0NNN RT(1670305990006 5564) q(0 -1 -1 0) r(0 -1) B10(4,314,0) U18
set-cookie: visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
incap_ses_275_1224669=ADkDbIKQlgoiHh9rlP/QA8vYjmMAAAAAvwqS+3UemUjMvdXtZSclLw==; path=/; Domain=.macu.com
X-Firefox-Spdy: h2
www.mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:15 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash e44ff30b210842377ff5391013075a0e
b836ae3b6878e482c4d16cba2e6b37e9671cc7d0
065aad020a8c19f6938fab7d3b1652240cd7e7733c3f99758e6c01997409d195
GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8917
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 5c2f6a3adc06848841a272911bd8fc7c
140bf8e3b9d0342929ebb232a35fb1f4ac2478de
e96255e3c665e644a8ab482f5cf896af5d7b001c4c13f955d03155fbdd72f46e
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8925
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
108.179.252.44404 Not Found 8.9 kB URL HTTP/1.1 mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 5c2f6a3adc06848841a272911bd8fc7c
140bf8e3b9d0342929ebb232a35fb1f4ac2478de
e96255e3c665e644a8ab482f5cf896af5d7b001c4c13f955d03155fbdd72f46e
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8925
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
108.179.252.44301 Moved Permanently 0 B URL HTTP/1.1 www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
IP 108.179.252.44:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.macu.com/dist/module/main.6748b61948611561aebb.css
45.60.46.50404 Not Found 0 B URL HTTP/2 www.macu.com/dist/module/main.6748b61948611561aebb.css
IP 45.60.46.50:0
GET /dist/module/main.6748b61948611561aebb.css HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
last-modified: Tue, 06 Dec 2022 00:17:52 GMT
etag: "5fc40fd6abd59dfba4a6090d38554477"
x-amz-error-code: NoSuchKey
x-amz-error-message: The specified key does not exist.
x-amz-error-detail-key: dist/module/main.6748b61948611561aebb.css
date: Tue, 06 Dec 2022 05:53:12 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 e0a5445a9b6b20c3399e57d2c05d4520.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: nPrP5D9ceQDhNTZghgZh6BANtqKDYljdtpv_VjEe5bE8sbjj8HQI8g==
set-cookie: nlbi_1224669=ASMiUdOwz1lj9GDxQbRnuQAAAADcnDgw/b8bPpOp229eeXtF; path=/; Domain=.macu.com
visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
incap_ses_275_1224669=DyeDDeF+fx8iHh9rlP/QA8jYjmMAAAAA44dvQEXv/Uswv6HNjCFiZA==; path=/; Domain=.macu.com
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 6-32856639-32854433 2NYN RT(1670305990006 1637) q(0 0 0 1) r(5 5) U11
X-Firefox-Spdy: h2
ws.audioeye.com/ae.js
104.18.25.76200 OK 0 B IP 104.18.25.76:0
GET /ae.js HTTP/1.1
Host: ws.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=UTF-8
etag: W/"c5f5d23dbd841fb0868078e4bfbbd713"
cache-control: max-age=3600
cache-tags:
surrogate-keys:
cf-cache-status: HIT
age: 1748
vary: Accept-Encoding
server: cloudflare
cf-ray: 7752c2776d0bb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
oc-cdn-ocprod.azureedge.net/livechatwidget/scripts/LiveChatBootstrapper.js
13.107.213.53200 OK 0 B URL HTTP/2 oc-cdn-ocprod.azureedge.net/livechatwidget/scripts/LiveChatBootstrapper.js
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /livechatwidget/scripts/LiveChatBootstrapper.js HTTP/1.1
Host: oc-cdn-ocprod.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-encoding: br
content-md5: Y6JNtsb4g/40LaCwZ4bOGw==
last-modified: Sat, 12 Nov 2022 03:06:51 GMT
etag: 0x8DAC45AF2704E9A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 72205686-701e-001d-5da1-089de2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0EzSOYwAAAAD3dAZBsmQHQ7PpIYvNLgZMQU1TMDRFREdFMTkyMQA0YjJlN2NmYi1mMGJiLTQwOGItYmVlMy0wMDRmNTQzMjdhYTQ=
x-azure-ref: 0xtiOYwAAAADzLESFJ8JNSY2ioiuAHmfbU1ZHMjBFREdFMDUxMAA0YjJlN2NmYi1mMGJiLTQwOGItYmVlMy0wMDRmNTQzMjdhYTQ=
date: Tue, 06 Dec 2022 05:53:10 GMT
X-Firefox-Spdy: h2
www.macu.com/media/Fonts/fontawesome-webfont.woff?v=4.7.0
45.60.46.50404 Not Found 0 B URL HTTP/2 www.macu.com/media/Fonts/fontawesome-webfont.woff?v=4.7.0
IP 45.60.46.50:0
GET /media/Fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: https://www.macu.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
last-modified: Tue, 06 Dec 2022 00:17:52 GMT
etag: "5fc40fd6abd59dfba4a6090d38554477"
x-amz-error-code: NoSuchKey
x-amz-error-message: The specified key does not exist.
x-amz-error-detail-key: media/Fonts/fontawesome-webfont.woff
date: Tue, 06 Dec 2022 05:53:14 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 9c3701a40f5e4766165113d719972734.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 5P-_dP-0PzmgSAvF_7ziUewqZlA-BskSM59T75W5QW96imGh0QUGRg==
set-cookie: nlbi_1224669=i6xWNqKmbSB0iXaEQbRnuQAAAACoTBJrThOJ0ePn1VdA725H; path=/; Domain=.macu.com
visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
incap_ses_275_1224669=Er6/AXPBDjkiHh9rlP/QA8vYjmMAAAAAWVKx1Aa1jflpr1dFGVRG6Q==; path=/; Domain=.macu.com
x-cdn: Imperva
x-iinfo: 6-32856639-32853356 2NNN RT(1670305990006 5588) q(0 0 0 0) r(3 3) U11
X-Firefox-Spdy: h2
www.macu.com/dist/module/main.6748b61948611561aebb.css
45.60.46.50404 Not Found 0 B URL HTTP/2 www.macu.com/dist/module/main.6748b61948611561aebb.css
IP 45.60.46.50:0
GET /dist/module/main.6748b61948611561aebb.css HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
last-modified: Tue, 06 Dec 2022 00:17:52 GMT
etag: "5fc40fd6abd59dfba4a6090d38554477"
x-amz-error-code: NoSuchKey
x-amz-error-message: The specified key does not exist.
x-amz-error-detail-key: dist/module/main.6748b61948611561aebb.css
date: Tue, 06 Dec 2022 05:53:10 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 66be79bde9fd204b1a11f560cee8fff4.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: SBQHMBG2wWYN6_RIaZq-BmUa3GKEJ6W7H5MyrREwa1Sy4jEv-FyUhw==
set-cookie: nlbi_1224669=52d5Xgy3qHLJzx2gQbRnuQAAAACypKYqiOBs8PDdO5jeO1EM; path=/; Domain=.macu.com
visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
incap_ses_275_1224669=jLF8HiN1FFwiHh9rlP/QA8bYjmMAAAAAsWSckFjDosyy3hx1bx8JAg==; path=/; Domain=.macu.com
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 6-32856639-32854433 2NYN RT(1670305990006 74) q(0 0 0 1) r(3 3) U11
X-Firefox-Spdy: h2
wsv3cdn.audioeye.com/bootstrap.js
104.18.24.76200 OK 0 B URL HTTP/2 wsv3cdn.audioeye.com/bootstrap.js
IP 104.18.24.76:0
GET /bootstrap.js HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=UTF-8
etag: W/"2ef7b27df52b83e643315afca567e285"
cache-control: max-age=120
cache-tags:
surrogate-keys:
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7752c27609030b61-OSL
content-encoding: br
X-Firefox-Spdy: h2
wsv3cdn.audioeye.com/build/jquery.bundle.js?cb=b4842f8
104.18.24.76200 OK 0 B URL HTTP/2 wsv3cdn.audioeye.com/build/jquery.bundle.js?cb=b4842f8
IP 104.18.24.76:0
GET /build/jquery.bundle.js?cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 22:33:14 GMT
etag: W/"17e63-5e4584da36f1c-gzip"
vary: Accept-Encoding
cache-control: max-age=63072000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 7752c27629190b61-OSL
content-encoding: br
X-Firefox-Spdy: h2
oc-cdn-ocprod.azureedge.net/livechatwidget/WebChatControl/styles/LiveChatWidgetFrame.css
13.107.213.53200 OK 0 B URL HTTP/2 oc-cdn-ocprod.azureedge.net/livechatwidget/WebChatControl/styles/LiveChatWidgetFrame.css
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /livechatwidget/WebChatControl/styles/LiveChatWidgetFrame.css HTTP/1.1
Host: oc-cdn-ocprod.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
content-md5: vPalaAAocbbnNoUsQ6PQkw==
last-modified: Sat, 12 Nov 2022 03:06:46 GMT
etag: 0x8DAC45AEF13BD68
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 74a4dfbf-f01e-0061-0f51-05b31d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0TsiMYwAAAAB2t6kvQWhvRIxuDf5KHk7TQU1TMDRFREdFMTkyMQA0YjJlN2NmYi1mMGJiLTQwOGItYmVlMy0wMDRmNTQzMjdhYTQ=
x-azure-ref: 0xtiOYwAAAAAvX/b32bf5R47rNzh5cebMU1ZHMjBFREdFMDUxMAA0YjJlN2NmYi1mMGJiLTQwOGItYmVlMy0wMDRmNTQzMjdhYTQ=
date: Tue, 06 Dec 2022 05:53:10 GMT
X-Firefox-Spdy: h2
oc-cdn-ocprod.azureedge.net/livechatwidget/WebChatControl/scripts/LiveChatBootstrapper.js
13.107.213.53200 OK 0 B URL HTTP/2 oc-cdn-ocprod.azureedge.net/livechatwidget/WebChatControl/scripts/LiveChatBootstrapper.js
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /livechatwidget/WebChatControl/scripts/LiveChatBootstrapper.js HTTP/1.1
Host: oc-cdn-ocprod.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-encoding: br
content-md5: Y6JNtsb4g/40LaCwZ4bOGw==
last-modified: Sat, 12 Nov 2022 03:06:42 GMT
etag: 0x8DAC45AECC1BED8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 37233516-c01e-0037-7b99-0742f2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0H5uMYwAAAABj3hHpe13HRrxwZlBCBrSvQU1TMDRFREdFMTkxNQA0YjJlN2NmYi1mMGJiLTQwOGItYmVlMy0wMDRmNTQzMjdhYTQ=
x-azure-ref: 0xtiOYwAAAAAKiNFFsYRTR4fvVV+u96c4U1ZHMjBFREdFMDUxMAA0YjJlN2NmYi1mMGJiLTQwOGItYmVlMy0wMDRmNTQzMjdhYTQ=
date: Tue, 06 Dec 2022 05:53:10 GMT
X-Firefox-Spdy: h2
www.macu.com/media/Fonts/fontawesome-webfont.ttf?v=4.7.0
45.60.46.50404 Not Found 0 B URL HTTP/2 www.macu.com/media/Fonts/fontawesome-webfont.ttf?v=4.7.0
IP 45.60.46.50:0
GET /media/Fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: https://www.macu.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
last-modified: Tue, 06 Dec 2022 00:17:52 GMT
etag: "5fc40fd6abd59dfba4a6090d38554477"
x-amz-error-code: NoSuchKey
x-amz-error-message: The specified key does not exist.
x-amz-error-detail-key: media/Fonts/fontawesome-webfont.ttf
date: Tue, 06 Dec 2022 05:53:15 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 f46b6835a58763129c9d1db5dc3ef62e.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: _cihFRcdmxCWr1ZT7DbM1V4ELdJHsPTvTkAgaSi3_KdZ_gBqM1IFCw==
set-cookie: visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
nlbi_1224669=JLebItKt0DW7Yj9TQbRnuQAAAABWh7vXTNwhHYtbWA0JAgpD; path=/; Domain=.macu.com
incap_ses_275_1224669=Kf76flXCSH8iHh9rlP/QA8zYjmMAAAAAMHAzwt69USpRnvGqrK5xyA==; path=/; Domain=.macu.com
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 6-32856639-32856751 NNYN CT(1 11 0) RT(1670305990006 5876) q(0 0 0 0) r(0 3) U11
X-Firefox-Spdy: h2